$ rpki-client -vvf rpki.apnic.net/member_repository/A91D190A/071C4DE4500E11EBA73A632BC4F9AE02/4153A4B6A55C11EE9D833C0EC4F9AE02.roa File: 4153A4B6A55C11EE9D833C0EC4F9AE02.roa (raw, json) Hash identifier: WXc8/KOS9TX2lE7Vv9xqmJ2kHbWej8tocOb7UBLG2e0= Subject key identifier: 1B:24:BF:56:41:23:4C:8B:52:A7:26:E9:4C:4D:7A:69:E3:30:33:5C Certificate issuer: /CN=A91D190A/serialNumber=8E70D3A5240E3388A3F1C0D8F72D8F8AE159C46C Certificate serial: 06C0 Authority key identifier: 8E:70:D3:A5:24:0E:33:88:A3:F1:C0:D8:F7:2D:8F:8A:E1:59:C4:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnDTpSQOM4ij8cDY9y2PiuFZxGw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D190A/071C4DE4500E11EBA73A632BC4F9AE02/4153A4B6A55C11EE9D833C0EC4F9AE02.roa Signing time: Thu 30 Jan 2025 22:14:22 +0000 ROA not before: Thu 30 Jan 2025 22:14:22 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 134502 IP address blocks: 103.161.70.0/23 maxlen: 23 103.161.70.0/24 maxlen: 24 103.161.71.0/24 maxlen: 24 2001:df5:bd80::/48 maxlen: 52 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D190A/071C4DE4500E11EBA73A632BC4F9AE02/jnDTpSQOM4ij8cDY9y2PiuFZxGw.crl rsync://rpki.apnic.net/member_repository/A91D190A/071C4DE4500E11EBA73A632BC4F9AE02/jnDTpSQOM4ij8cDY9y2PiuFZxGw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnDTpSQOM4ij8cDY9y2PiuFZxGw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:12:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1728 (0x6c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D190A Validity Not Before: Jan 30 22:14:22 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=679bf9be-4232 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:46:1c:dc:e1:29:40:b2:1b:42:34:59:cf:e6: 10:ef:a1:ea:b6:53:0e:2f:ea:29:aa:4b:d8:96:b8: 02:61:08:ff:9c:9a:ac:45:5b:ca:e2:e3:fe:36:3b: 31:a9:5b:3f:c0:f3:9f:25:40:3b:0b:c6:50:82:40: 3b:32:ac:2f:49:80:8a:68:6c:c8:9b:8c:f6:4d:5f: dc:95:d3:69:9a:26:c3:c9:c5:8f:86:43:13:87:23: 51:0d:85:af:e8:52:86:9f:ec:4a:ce:11:75:6a:2d: 04:3e:c2:5e:7c:81:d7:d5:34:95:aa:91:a0:aa:88: 27:9e:c5:c4:2c:65:c6:1e:e5:c7:0b:52:da:39:e6: 31:a0:12:d5:0b:3f:e7:fa:25:dd:e9:75:6f:11:9c: a2:89:83:d0:da:28:85:1d:f9:6b:64:ae:46:0e:32: f9:46:75:72:20:ea:1e:e6:d9:7f:ca:a0:2d:d9:e5: c4:2d:6c:ed:a2:2d:74:69:2c:b1:8f:98:3d:1e:54: f9:ff:f0:3f:95:59:5d:ce:ee:e6:3f:d6:3b:ab:9c: 83:c3:cd:b7:45:bf:19:37:69:49:6c:0c:81:d5:d4: df:b2:9e:70:33:9e:59:50:c8:ca:29:ff:88:2f:9b: f1:2b:f0:a4:d2:a1:6d:44:6e:ea:bf:62:34:0d:56: bc:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:24:BF:56:41:23:4C:8B:52:A7:26:E9:4C:4D:7A:69:E3:30:33:5C X509v3 Authority Key Identifier: keyid:8E:70:D3:A5:24:0E:33:88:A3:F1:C0:D8:F7:2D:8F:8A:E1:59:C4:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D190A/071C4DE4500E11EBA73A632BC4F9AE02/jnDTpSQOM4ij8cDY9y2PiuFZxGw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jnDTpSQOM4ij8cDY9y2PiuFZxGw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D190A/071C4DE4500E11EBA73A632BC4F9AE02/4153A4B6A55C11EE9D833C0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.70.0/23 IPv6: 2001:df5:bd80::/48 Signature Algorithm: sha256WithRSAEncryption 21:6a:9b:ca:0f:e3:e7:56:c1:a5:2f:c6:ff:d9:ec:29:77:b4: 7c:6a:d0:eb:2d:4a:5a:88:c2:6c:b8:b7:5d:8e:ba:48:18:43: bc:b5:18:25:91:b4:8c:4d:e4:82:c4:e5:96:9d:60:89:f3:41: 52:76:b2:32:dc:f7:4d:85:57:1e:be:ad:46:e2:20:b9:ae:64: 01:fd:b9:9c:48:b0:97:c1:38:74:a5:cb:2b:e5:45:78:95:b9: 57:22:aa:6c:10:38:57:ad:e3:44:2d:7e:18:96:5f:8c:4f:56: 6a:5b:d1:f8:d6:14:14:2d:86:43:d0:86:83:05:e7:2f:e4:2c: ec:c5:cf:77:77:8b:b3:56:23:1d:0c:f6:3f:a0:00:65:1f:a5: 75:30:e2:97:bc:6b:8c:0b:f5:98:70:c1:51:a6:41:ae:7b:cb: 7c:37:12:11:46:94:1e:a2:14:2d:76:31:d0:0e:cc:c9:7b:57: ae:57:f3:11:ae:9d:15:be:1a:9d:3b:2d:bd:10:c9:ac:e0:5e: 58:ff:45:a8:0d:1b:98:39:77:db:b2:12:8d:1e:f7:56:67:96: 9d:52:22:d4:8c:21:98:5d:e7:8b:69:86:7f:80:55:fd:31:37: 9a:36:51:53:be:2d:97:d4:1d:9b:94:8c:a6:2f:e4:cd:56:1d: 1d:e8:98:5b -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE5MEExMTAvBgNVBAUTKDhFNzBEM0E1MjQwRTMzODhBM0YxQzBEOEY3MkQ4RjhB RTE1OUM0NkMwHhcNMjUwMTMwMjIxNDIyWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzliZjliZS00MjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUYc3OEpQLIbQjRZz+YQ76HqtlMOL+opqkvYlrgCYQj/nJqsRVvK4uP+Njsx qVs/wPOfJUA7C8ZQgkA7MqwvSYCKaGzIm4z2TV/cldNpmibDycWPhkMThyNRDYWv 6FKGn+xKzhF1ai0EPsJefIHX1TSVqpGgqognnsXELGXGHuXHC1LaOeYxoBLVCz/n +iXd6XVvEZyiiYPQ2iiFHflrZK5GDjL5RnVyIOoe5tl/yqAt2eXELWztoi10aSyx j5g9HlT5//A/lVldzu7mP9Y7q5yDw823Rb8ZN2lJbAyB1dTfsp5wM55ZUMjKKf+I L5vxK/Ck0qFtRG7qv2I0DVa8VwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBskv1ZB I0yLUqcm6UxNemnjMDNcMB8GA1UdIwQYMBaAFI5w06UkDjOIo/HA2Pctj4rhWcRs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTkwQS8wNzFDNERFNDUw MEUxMUVCQTczQTYzMkJDNEY5QUUwMi9qbkRUcFNRT000aWo4Y0RZOXkyUGl1Rlp4 R3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2puRFRwU1FPTTRpajhjRFk5eTJQaXVGWnhHdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE5MEEvMDcxQzRERTQ1MDBFMTFFQkE3M0E2MzJCQzRGOUFFMDIvNDE1M0E0QjZB NTVDMTFFRTlEODMzQzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnoUYwDwQCAAIwCQMHACABDfW9gDANBgkqhkiG9w0BAQsF AAOCAQEAIWqbyg/j51bBpS/G/9nsKXe0fGrQ6y1KWojCbLi3XY66SBhDvLUYJZG0 jE3kgsTllp1gifNBUnayMtz3TYVXHr6tRuIgua5kAf25nEiwl8E4dKXLK+VFeJW5 VyKqbBA4V63jRC1+GJZfjE9WalvR+NYUFC2GQ9CGgwXnL+Qs7MXPd3eLs1YjHQz2 P6AAZR+ldTDil7xrjAv1mHDBUaZBrnvLfDcSEUaUHqIULXYx0A7MyXtXrlfzEa6d Fb4anTstvRDJrOBeWP9FqA0bmDl327ISjR73VmeWnVIi1IwhmF3ni2mGf4BV/TE3 mjZRU74tl9Qdm5SMpi/kzVYdHeiYWw== -----END CERTIFICATE-----Generated at Sat Apr 5 06:02:20 2025 by rpki-client