$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/6AA36A7E564D11EB8B387024C4F9AE02.roa File: 6AA36A7E564D11EB8B387024C4F9AE02.roa (raw, json) Hash identifier: fGJYrfdMmxnMU9m3ImkorOWGB4M3nyP+3+G+aL2cIE0= Subject key identifier: A7:06:1B:84:4F:A0:8D:A7:D5:C4:ED:BB:51:E9:A4:3E:CC:00:3F:88 Certificate issuer: /CN=A91CFA8D/serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Certificate serial: 06A6 Authority key identifier: 1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/6AA36A7E564D11EB8B387024C4F9AE02.roa Signing time: Fri 28 Feb 2025 23:41:00 +0000 ROA not before: Fri 28 Feb 2025 23:41:00 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 141463 IP address blocks: 103.161.182.0/23 maxlen: 23 103.161.182.0/24 maxlen: 24 103.161.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 21:48:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1702 (0x6a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFA8D, serialNumber=1DEBB7371AB97BB9F3A906EB07D591C9CF388D5D Validity Not Before: Feb 28 23:41:00 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c2498c-28b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:41:89:1d:b1:8e:e4:fa:a6:17:39:de:84:bd: 83:31:ec:d7:f5:ab:0b:e0:c2:02:8f:11:b5:61:6d: 19:af:95:d4:30:97:bd:7e:ff:f7:35:0b:ea:53:69: 80:ea:09:17:12:a9:12:98:b2:70:72:43:bb:7b:a3: 02:74:60:e0:b0:00:9b:2d:e6:3d:5b:4c:5f:ec:e3: 99:67:c1:71:6e:61:2b:82:b3:21:a9:8c:7b:bd:15: 25:56:83:3c:30:6c:f1:3b:ab:f7:f1:6f:44:d6:53: c9:9f:ad:3f:a2:52:00:2e:e2:cb:ea:b3:3e:1f:9b: 66:b7:02:9d:bf:ec:37:1e:55:53:04:db:cc:ea:6a: 84:8c:94:63:59:ec:52:ed:7c:9e:f9:c3:68:7b:93: c5:0e:16:d8:a2:61:91:7f:44:04:d2:e6:3d:be:5e: b1:84:3b:c4:b0:a6:82:72:c9:48:6c:c4:96:ad:98: f7:5b:68:23:7c:df:0e:3e:de:37:cd:5e:dd:40:39: 61:da:5a:ff:ed:5a:e4:32:17:34:ac:71:51:f6:77: eb:f2:79:c1:bb:e8:6b:b3:42:73:12:d4:ca:8b:c6: d1:8f:9e:3a:81:a2:88:42:af:dd:e1:b4:bd:d6:55: 2a:02:60:72:54:34:22:11:f4:a7:3b:52:29:cf:04: 7a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:06:1B:84:4F:A0:8D:A7:D5:C4:ED:BB:51:E9:A4:3E:CC:00:3F:88 X509v3 Authority Key Identifier: keyid:1D:EB:B7:37:1A:B9:7B:B9:F3:A9:06:EB:07:D5:91:C9:CF:38:8D:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/Heu3Nxq5e7nzqQbrB9WRyc84jV0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Heu3Nxq5e7nzqQbrB9WRyc84jV0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFA8D/56FEFF80564B11EB8FE9B421C4F9AE02/6AA36A7E564D11EB8B387024C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.182.0/23 Signature Algorithm: sha256WithRSAEncryption 04:ee:ec:02:a6:d4:20:c4:96:0b:51:b6:ff:06:0c:69:e3:47: 1a:25:4a:01:e4:9a:72:4b:0d:c9:8c:6e:72:b8:06:9b:fe:f9: 87:0f:ce:5c:4d:c8:c2:34:7a:52:c7:92:94:99:c1:d6:cc:94: bd:4d:54:27:71:92:a1:55:4b:8d:41:8d:c8:c7:ca:cd:f2:df: 5a:87:e9:c1:62:64:95:61:57:50:81:18:1d:0f:d0:c5:e8:f3: cb:97:09:8d:30:46:64:aa:4f:98:1b:43:cc:e4:c9:c0:3d:9f: 8c:ad:78:75:a5:f1:59:39:ed:45:ed:d0:b9:b0:ae:eb:f7:84: ac:03:e1:3c:1d:79:db:c8:75:e7:30:8e:2c:85:53:61:fb:60: ec:2b:20:3e:8c:5c:b9:09:e9:17:9c:d9:49:ae:19:f0:75:f1: e8:0a:06:b6:41:16:7f:b2:71:d2:6b:5e:54:32:e3:95:78:df: cb:09:d7:7d:5c:20:f4:04:1d:eb:d2:de:8d:de:99:f0:3b:9c: de:aa:52:7f:1f:9f:ca:aa:f1:d5:9b:53:5f:4c:4d:04:2d:4c: 14:af:0c:f8:9d:c4:46:d8:9d:73:ae:e6:28:31:b0:68:9f:c3: a8:e0:7d:9e:97:a0:fb:9b:6e:f5:3b:b3:a0:05:e5:b1:60:b8: d3:ee:a8:56 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBOEQxMTAvBgNVBAUTKDFERUJCNzM3MUFCOTdCQjlGM0E5MDZFQjA3RDU5MUM5 Q0YzODhENUQwHhcNMjUwMjI4MjM0MTAwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MyNDk4Yy0yOGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUGJHbGO5PqmFznehL2DMezX9asL4MICjxG1YW0Zr5XUMJe9fv/3NQvqU2mA 6gkXEqkSmLJwckO7e6MCdGDgsACbLeY9W0xf7OOZZ8FxbmErgrMhqYx7vRUlVoM8 MGzxO6v38W9E1lPJn60/olIALuLL6rM+H5tmtwKdv+w3HlVTBNvM6mqEjJRjWexS 7Xye+cNoe5PFDhbYomGRf0QE0uY9vl6xhDvEsKaCcslIbMSWrZj3W2gjfN8OPt43 zV7dQDlh2lr/7VrkMhc0rHFR9nfr8nnBu+hrs0JzEtTKi8bRj546gaKIQq/d4bS9 1lUqAmByVDQiEfSnO1IpzwR6+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFKcGG4RP oI2n1cTtu1HppD7MAD+IMB8GA1UdIwQYMBaAFB3rtzcauXu586kG6wfVkcnPOI1d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkE4RC81NkZFRkY4MDU2 NEIxMUVCOEZFOUI0MjFDNEY5QUUwMi9IZXUzTnhxNWU3bnpxUWJyQjlXUnljODRq VjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hldTNOeHE1ZTduenFRYnJCOVdSeWM4NGpWMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZBOEQvNTZGRUZGODA1NjRCMTFFQjhGRTlCNDIxQzRGOUFFMDIvNkFBMzZBN0U1 NjREMTFFQjhCMzg3MDI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnobYwDQYJKoZIhvcNAQELBQADggEBAATu7AKm1CDElgtR tv8GDGnjRxolSgHkmnJLDcmMbnK4Bpv++YcPzlxNyMI0elLHkpSZwdbMlL1NVCdx kqFVS41BjcjHys3y31qH6cFiZJVhV1CBGB0P0MXo88uXCY0wRmSqT5gbQ8zkycA9 n4yteHWl8Vk57UXt0Lmwruv3hKwD4TwdedvIdecwjiyFU2H7YOwrID6MXLkJ6Rec 2UmuGfB18egKBrZBFn+ycdJrXlQy45V438sJ131cIPQEHevS3o3emfA7nN6qUn8f n8qq8dWbU19MTQQtTBSvDPidxEbYnXOu5igxsGifw6jgfZ6XoPubbvU7s6AF5bFg uNPuqFY= -----END CERTIFICATE-----Generated at Thu Apr 17 17:15:08 2025 by rpki-client