$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/0BE0F63C9CBB11EBA4731E19C4F9AE02.roa File: 0BE0F63C9CBB11EBA4731E19C4F9AE02.roa (raw, json) Hash identifier: ln0lvafoMsf2mDlhqtsb54uvMwde1qgk9VtDAAnL3YY= Subject key identifier: 5D:EE:CC:44:F1:D8:04:5A:BB:3F:63:7F:AD:11:91:F0:48:39:58:A6 Certificate issuer: /CN=A91DA289/serialNumber=50431A714BC8BADCE8519E4B99147E151EDF7797 Certificate serial: 05FC Authority key identifier: 50:43:1A:71:4B:C8:BA:DC:E8:51:9E:4B:99:14:7E:15:1E:DF:77:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UEMacUvIutzoUZ5LmRR-FR7fd5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/0BE0F63C9CBB11EBA4731E19C4F9AE02.roa Signing time: Wed 05 Mar 2025 00:12:02 +0000 ROA not before: Wed 05 Mar 2025 00:12:02 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 140231 IP address blocks: 103.148.220.0/24 maxlen: 24 103.167.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.crl rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UEMacUvIutzoUZ5LmRR-FR7fd5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 17:48:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1532 (0x5fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA289, serialNumber=50431A714BC8BADCE8519E4B99147E151EDF7797 Validity Not Before: Mar 5 00:12:02 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c796d2-fcd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:71:d7:39:4e:7d:8e:64:4a:dc:30:06:1e:39: 30:d6:74:8d:a7:0e:d6:47:e0:63:9d:f8:e7:56:3a: c4:53:9d:7f:7f:af:c7:4f:6d:6c:29:c8:de:ac:79: 98:40:1b:dd:0e:4c:36:cf:4e:08:ea:4b:ae:96:e6: c2:e6:57:93:c9:24:66:98:20:ab:64:5a:92:f9:85: b3:09:08:55:a5:88:41:2c:13:20:72:0e:ec:6d:d5: b3:e5:f1:24:40:5b:0b:f1:a0:23:83:44:68:af:e6: ee:a6:4f:99:7f:64:03:7b:d5:67:7f:f1:b4:bb:4a: 84:f9:e3:8c:96:b6:80:ad:d0:ac:90:58:cc:77:0c: da:ca:f0:22:8e:37:c8:f8:7d:b0:4b:1c:59:46:bb: e2:46:dc:51:f5:82:e9:ca:69:77:80:73:86:53:21: 16:2b:e0:4f:5d:31:ea:29:90:75:0c:37:a0:ca:b8: 2e:04:87:be:0e:a4:a5:e2:1a:65:fb:3a:c5:8f:6c: 08:1c:00:9e:fe:12:d3:3d:b0:a1:24:f9:8b:8e:13: bf:10:3f:ac:09:97:ab:d8:02:08:8b:d1:c4:3b:35: 07:42:c2:68:13:c9:db:67:52:1e:de:93:4d:da:e0: d2:3f:b3:4b:49:cc:04:f0:d6:33:f5:16:77:06:4b: d1:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:EE:CC:44:F1:D8:04:5A:BB:3F:63:7F:AD:11:91:F0:48:39:58:A6 X509v3 Authority Key Identifier: keyid:50:43:1A:71:4B:C8:BA:DC:E8:51:9E:4B:99:14:7E:15:1E:DF:77:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/UEMacUvIutzoUZ5LmRR-FR7fd5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UEMacUvIutzoUZ5LmRR-FR7fd5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA289/E01B05449CB811EBAF1BA315C4F9AE02/0BE0F63C9CBB11EBA4731E19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.220.0/24 103.167.249.0/24 Signature Algorithm: sha256WithRSAEncryption 27:51:84:28:0f:98:6f:2d:0c:65:68:a5:fb:67:3c:b3:d6:d7: ee:91:86:48:48:54:b2:80:15:fc:56:85:32:5c:30:a5:3f:84: 02:86:0f:0c:1b:18:f9:8f:d1:ce:92:2d:73:1f:b6:da:88:3d: 51:15:ca:36:86:b4:ce:5b:8e:32:06:dd:07:95:c2:5d:27:7a: ea:2a:6d:12:21:bc:6d:24:09:66:58:d8:4d:48:c4:bd:2e:31: f8:27:2c:64:9d:95:37:91:08:93:ee:10:94:83:9c:bb:23:d5: 44:7c:ac:e5:f0:f8:d3:34:c3:6c:08:54:dd:50:bf:94:b5:dc: 65:d0:00:28:41:bb:82:19:8e:f1:2b:55:f9:12:ad:ca:66:09: 3f:b1:7f:f4:93:85:8d:76:83:be:63:96:ba:e8:c5:e0:7b:43: 91:fb:8d:19:4a:e4:fd:83:a5:91:5f:03:28:8e:5b:a6:2e:bf: a2:df:e8:73:f0:ec:a8:cb:2a:0d:00:0c:ff:64:3f:ba:4e:65: c6:1a:01:91:03:ee:f2:06:ed:10:ee:0f:a3:29:91:00:cd:6d: ba:96:70:82:a6:1d:00:72:a2:8b:88:0d:b8:dc:d2:14:2f:d4: 23:a9:8a:4f:62:39:4f:2c:a7:fb:f1:f6:a3:73:0e:81:37:27: c2:bf:f7:84 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyODkxMTAvBgNVBAUTKDUwNDMxQTcxNEJDOEJBRENFODUxOUU0Qjk5MTQ3RTE1 MUVERjc3OTcwHhcNMjUwMzA1MDAxMjAyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2M3OTZkMi1mY2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3HXOU59jmRK3DAGHjkw1nSNpw7WR+BjnfjnVjrEU51/f6/HT21sKcjerHmY QBvdDkw2z04I6kuulubC5leTySRmmCCrZFqS+YWzCQhVpYhBLBMgcg7sbdWz5fEk QFsL8aAjg0Ror+bupk+Zf2QDe9Vnf/G0u0qE+eOMlraArdCskFjMdwzayvAijjfI +H2wSxxZRrviRtxR9YLpyml3gHOGUyEWK+BPXTHqKZB1DDegyrguBIe+DqSl4hpl +zrFj2wIHACe/hLTPbChJPmLjhO/ED+sCZer2AIIi9HEOzUHQsJoE8nbZ1Ie3pNN 2uDSP7NLScwE8NYz9RZ3BkvR3QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFF3uzETx 2ARauz9jf60RkfBIOVimMB8GA1UdIwQYMBaAFFBDGnFLyLrc6FGeS5kUfhUe33eX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTI4OS9FMDFCMDU0NDlD QjgxMUVCQUYxQkEzMTVDNEY5QUUwMi9VRU1hY1V2SXV0em9VWjVMbVJSLUZSN2Zk NWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VFTWFjVXZJdXR6b1VaNUxtUlItRlI3ZmQ1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REEyODkvRTAxQjA1NDQ5Q0I4MTFFQkFGMUJBMzE1QzRGOUFFMDIvMEJFMEY2M0M5 Q0JCMTFFQkE0NzMxRTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnlNwDBABnp/kwDQYJKoZIhvcNAQELBQADggEBACdRhCgP mG8tDGVopftnPLPW1+6RhkhIVLKAFfxWhTJcMKU/hAKGDwwbGPmP0c6SLXMfttqI PVEVyjaGtM5bjjIG3QeVwl0neuoqbRIhvG0kCWZY2E1IxL0uMfgnLGSdlTeRCJPu EJSDnLsj1UR8rOXw+NM0w2wIVN1Qv5S13GXQAChBu4IZjvErVfkSrcpmCT+xf/ST hY12g75jlrroxeB7Q5H7jRlK5P2DpZFfAyiOW6Yuv6Lf6HPw7KjLKg0ADP9kP7pO ZcYaAZED7vIG7RDuD6MpkQDNbbqWcIKmHQByoouIDbjc0hQv1COpik9iOU8sp/vx 9qNzDoE3J8K/94Q= -----END CERTIFICATE-----Generated at Sun Apr 13 01:24:29 2025 by rpki-client