$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF24F/37C110B88F5911EAAB70E234C4F9AE02/75D9F37C007A11ECA444E049C4F9AE02.roa File: 75D9F37C007A11ECA444E049C4F9AE02.roa (raw, json) Hash identifier: dpLf2qBFe220x5GKZk4KYPgV5wQJtggmyE0D/YCjeAI= Subject key identifier: 91:80:6F:1D:B8:DC:82:1E:07:17:E4:C4:43:2F:AA:AE:D7:2B:64:3C Certificate issuer: /CN=A91CF24F/serialNumber=6DC5248164BB952E8B9ED9239BE7106A63CEF06C Certificate serial: 096D Authority key identifier: 6D:C5:24:81:64:BB:95:2E:8B:9E:D9:23:9B:E7:10:6A:63:CE:F0:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcUkgWS7lS6Lntkjm-cQamPO8Gw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF24F/37C110B88F5911EAAB70E234C4F9AE02/75D9F37C007A11ECA444E049C4F9AE02.roa Signing time: Thu 06 Mar 2025 20:11:02 +0000 ROA not before: Thu 06 Mar 2025 20:11:02 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 132405 IP address blocks: 43.230.100.0/22 maxlen: 24 43.245.72.0/21 maxlen: 24 43.250.92.0/22 maxlen: 24 103.12.22.0/24 maxlen: 24 103.13.86.0/23 maxlen: 24 103.41.216.0/22 maxlen: 24 103.49.127.0/24 maxlen: 24 103.49.144.0/23 maxlen: 24 103.82.136.0/22 maxlen: 24 103.247.224.0/23 maxlen: 24 103.253.92.0/22 maxlen: 24 2001:df0:2c7::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF24F/37C110B88F5911EAAB70E234C4F9AE02/bcUkgWS7lS6Lntkjm-cQamPO8Gw.crl rsync://rpki.apnic.net/member_repository/A91CF24F/37C110B88F5911EAAB70E234C4F9AE02/bcUkgWS7lS6Lntkjm-cQamPO8Gw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcUkgWS7lS6Lntkjm-cQamPO8Gw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:21:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2413 (0x96d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF24F Validity Not Before: Mar 6 20:11:02 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ca0155-168e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e3:22:74:2b:0d:cc:b8:34:50:43:f1:22:6a: e3:58:78:10:b3:cb:80:11:7f:78:d3:c2:bb:d1:b3: be:76:29:3b:f8:e6:31:d2:4a:88:4b:ca:80:c0:da: 4d:7e:9c:3b:7b:c5:d8:97:2f:55:c2:bc:13:a3:04: 62:b8:ea:58:2e:bc:a1:16:e8:07:79:63:10:c9:d8: 71:3b:86:69:57:97:57:93:5a:ca:35:f7:df:8d:65: e3:af:bc:45:b9:5c:a1:98:17:9a:17:5b:b1:4a:a5: a2:d3:ba:ca:5e:0c:bf:4a:ef:3d:f9:bd:4a:9f:14: 69:5d:a2:00:e5:c4:36:f9:0c:b9:6a:20:50:b2:13: c9:5d:ff:3f:ae:18:af:64:39:84:fb:3f:14:db:7b: 32:b8:bd:b9:cb:fb:11:c3:a0:0d:af:9f:38:fe:40: c1:e0:e6:a9:8d:01:2f:97:39:7f:02:07:0f:dc:96: ea:98:f2:79:0a:44:ad:c2:b9:1c:c5:ad:b1:f3:3a: 28:4f:4f:36:f0:d3:e5:f2:97:c9:2e:a5:24:e7:28: bf:49:2b:49:ac:15:f2:ca:3a:0b:98:b4:c8:7c:67: 0d:b1:68:0f:4b:4a:18:34:d6:7b:51:3b:72:e6:1a: 23:b5:47:eb:54:ca:4d:52:d9:c0:83:ac:9d:9c:d8: 34:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:80:6F:1D:B8:DC:82:1E:07:17:E4:C4:43:2F:AA:AE:D7:2B:64:3C X509v3 Authority Key Identifier: keyid:6D:C5:24:81:64:BB:95:2E:8B:9E:D9:23:9B:E7:10:6A:63:CE:F0:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF24F/37C110B88F5911EAAB70E234C4F9AE02/bcUkgWS7lS6Lntkjm-cQamPO8Gw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcUkgWS7lS6Lntkjm-cQamPO8Gw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF24F/37C110B88F5911EAAB70E234C4F9AE02/75D9F37C007A11ECA444E049C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.100.0/22 43.245.72.0/21 43.250.92.0/22 103.12.22.0/24 103.13.86.0/23 103.41.216.0/22 103.49.127.0/24 103.49.144.0/23 103.82.136.0/22 103.247.224.0/23 103.253.92.0/22 IPv6: 2001:df0:2c7::/48 Signature Algorithm: sha256WithRSAEncryption dd:44:42:26:e7:6c:03:f4:89:50:aa:48:a6:f1:fd:7c:66:8c: 8c:15:27:2f:4e:a8:a8:9d:d5:d6:34:f3:52:fc:38:65:79:e0: 94:2d:92:ea:b5:e5:a4:26:b9:17:1f:0e:81:87:a5:ab:bd:c7: a2:ea:88:8a:83:f1:5d:95:2a:a9:e5:5b:8f:3b:72:73:4c:ed: be:6c:6d:e8:58:a7:fa:ec:e5:c4:1a:6e:81:55:fd:78:ee:a7: 6f:eb:5b:ee:f0:e5:a6:39:38:b0:98:7b:3b:3b:88:8d:91:10: c7:37:3d:66:db:6b:1c:be:c7:f2:cb:34:48:30:e2:65:cc:8b: 3d:1d:e6:0d:7e:0c:de:e8:6f:e5:24:98:46:82:2b:c4:e7:5b: e6:93:67:1b:0d:33:ba:7d:61:4f:cc:5b:a0:92:43:d7:94:25: ff:fd:96:8f:84:f1:58:b9:21:9d:19:84:fe:2f:d5:00:f8:5c: e8:6d:3d:74:ba:f5:8a:87:95:2d:1f:cf:f8:1f:35:18:b1:2e: 3b:db:89:fb:ab:be:4f:f9:94:52:d8:92:23:6f:50:b0:02:b3: 7a:2c:4c:00:33:19:c9:08:f2:49:da:62:e0:48:39:91:35:97: fc:ea:dd:98:1f:27:a7:e5:e2:d8:d4:f2:13:95:f1:ec:40:96: a9:d0:4e:7c -----BEGIN CERTIFICATE----- MIIFvjCCBKagAwIBAgICCW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YyNEYxMTAvBgNVBAUTKDZEQzUyNDgxNjRCQjk1MkU4QjlFRDkyMzlCRTcxMDZB NjNDRUYwNkMwHhcNMjUwMzA2MjAxMTAyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2NhMDE1NS0xNjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOMidCsNzLg0UEPxImrjWHgQs8uAEX9408K70bO+dik7+OYx0kqIS8qAwNpN fpw7e8XYly9VwrwTowRiuOpYLryhFugHeWMQydhxO4ZpV5dXk1rKNfffjWXjr7xF uVyhmBeaF1uxSqWi07rKXgy/Su89+b1KnxRpXaIA5cQ2+Qy5aiBQshPJXf8/rhiv ZDmE+z8U23syuL25y/sRw6ANr584/kDB4OapjQEvlzl/AgcP3JbqmPJ5CkStwrkc xa2x8zooT0828NPl8pfJLqUk5yi/SStJrBXyyjoLmLTIfGcNsWgPS0oYNNZ7UTty 5hojtUfrVMpNUtnAg6ydnNg0fwIDAQABo4IC4jCCAt4wHQYDVR0OBBYEFJGAbx24 3IIeBxfkxEMvqq7XK2Q8MB8GA1UdIwQYMBaAFG3FJIFku5Uui57ZI5vnEGpjzvBs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjI0Ri8zN0MxMTBCODhG NTkxMUVBQUI3MEUyMzRDNEY5QUUwMi9iY1VrZ1dTN2xTNkxudGtqbS1jUWFtUE84 R3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JjVWtnV1M3bFM2TG50a2ptLWNRYW1QTzhHdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0YyNEYvMzdDMTEwQjg4RjU5MTFFQUFCNzBFMjM0QzRGOUFFMDIvNzVEOUYzN0Mw MDdBMTFFQ0E0NDRFMDQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwbAYIKwYBBQUHAQcBAf8E XTBbMEgEAgABMEIDBAIr5mQDBAMr9UgDBAIr+lwDBABnDBYDBAFnDVYDBAJnKdgD BABnMX8DBAFnMZADBAJnUogDBAFn9+ADBAJn/VwwDwQCAAIwCQMHACABDfACxzAN BgkqhkiG9w0BAQsFAAOCAQEA3URCJudsA/SJUKpIpvH9fGaMjBUnL06oqJ3V1jTz Uvw4ZXnglC2S6rXlpCa5Fx8OgYelq73HouqIioPxXZUqqeVbjztyc0ztvmxt6Fin +uzlxBpugVX9eO6nb+tb7vDlpjk4sJh7OzuIjZEQxzc9ZttrHL7H8ss0SDDiZcyL PR3mDX4M3uhv5SSYRoIrxOdb5pNnGw0zun1hT8xboJJD15Ql//2Wj4TxWLkhnRmE /i/VAPhc6G09dLr1ioeVLR/P+B81GLEuO9uJ+6u+T/mUUtiSI29QsAKzeixMADMZ yQjySdpi4Eg5kTWX/OrdmB8np+Xi2NTyE5Xx7ECWqdBOfA== -----END CERTIFICATE-----Generated at Sat Apr 5 06:10:04 2025 by rpki-client