$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD34D/A794B4AA759811EBB9825F84C4F9AE02/97871B1E759A11EBB06FC386C4F9AE02.roa File: 97871B1E759A11EBB06FC386C4F9AE02.roa (raw, json) Hash identifier: 49srunPdeNBbO8KuwS63EgzNwnXuXm104MEIjX60d+8= Subject key identifier: E5:FC:73:21:6C:EA:7D:5C:65:E3:92:2B:EA:2B:F4:16:D8:25:5F:E2 Certificate issuer: /CN=A91DD34D/serialNumber=24DAA24F58FC3C268067E5AFE49FAEF5579EC069 Certificate serial: 0656 Authority key identifier: 24:DA:A2:4F:58:FC:3C:26:80:67:E5:AF:E4:9F:AE:F5:57:9E:C0:69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JNqiT1j8PCaAZ-Wv5J-u9VeewGk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD34D/A794B4AA759811EBB9825F84C4F9AE02/97871B1E759A11EBB06FC386C4F9AE02.roa Signing time: Sun 02 Mar 2025 23:21:52 +0000 ROA not before: Sun 02 Mar 2025 23:21:52 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141740 IP address blocks: 103.163.50.0/23 maxlen: 23 103.163.50.0/24 maxlen: 24 103.163.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD34D/A794B4AA759811EBB9825F84C4F9AE02/JNqiT1j8PCaAZ-Wv5J-u9VeewGk.crl rsync://rpki.apnic.net/member_repository/A91DD34D/A794B4AA759811EBB9825F84C4F9AE02/JNqiT1j8PCaAZ-Wv5J-u9VeewGk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JNqiT1j8PCaAZ-Wv5J-u9VeewGk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 21:58:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1622 (0x656) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD34D, serialNumber=24DAA24F58FC3C268067E5AFE49FAEF5579EC069 Validity Not Before: Mar 2 23:21:52 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c4e810-da10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d2:36:0f:13:dd:63:80:45:14:a1:5d:90:c8: 56:0e:e8:30:bc:7f:bc:e9:62:41:85:82:55:69:00: 0e:ad:2a:fa:22:69:34:b8:e1:26:2a:c2:29:d9:10: a6:ba:4e:79:48:00:05:4a:e2:6e:7b:4b:da:4f:f0: 6f:64:42:f7:26:bc:1f:4b:64:04:cf:30:bc:cf:34: 5d:6e:72:9e:82:3f:c9:61:f6:55:1d:31:bc:4c:ef: c4:0f:a5:15:c3:3d:10:c7:63:47:78:3d:e1:95:6a: 11:dc:de:c9:04:10:b8:b5:be:2a:04:20:49:c6:d1: 90:58:30:43:1f:ba:e2:81:2d:f1:48:5c:8d:28:bf: 47:e6:ff:c0:ae:df:da:ac:06:68:c2:4c:ae:dd:73: 88:24:b4:bb:c6:11:e1:a5:6e:84:3f:33:0c:55:1a: 12:15:43:3b:4e:96:03:3b:63:0f:c8:9c:78:ab:4d: a5:f2:81:42:42:ac:97:ca:08:ff:87:f8:09:65:ad: e0:c9:f4:bc:4a:24:bb:5d:16:93:f7:34:95:be:c6: b0:d9:25:49:49:0c:2a:7e:e2:48:76:b5:bf:3e:45: 54:f1:d4:94:34:33:df:74:d2:a3:b9:c1:93:47:3f: 5f:a9:c3:b7:12:f8:6c:c0:42:cb:c5:28:cf:6b:06: 06:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:FC:73:21:6C:EA:7D:5C:65:E3:92:2B:EA:2B:F4:16:D8:25:5F:E2 X509v3 Authority Key Identifier: keyid:24:DA:A2:4F:58:FC:3C:26:80:67:E5:AF:E4:9F:AE:F5:57:9E:C0:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD34D/A794B4AA759811EBB9825F84C4F9AE02/JNqiT1j8PCaAZ-Wv5J-u9VeewGk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JNqiT1j8PCaAZ-Wv5J-u9VeewGk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD34D/A794B4AA759811EBB9825F84C4F9AE02/97871B1E759A11EBB06FC386C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.50.0/23 Signature Algorithm: sha256WithRSAEncryption 70:51:57:07:ae:bd:d2:8a:46:2b:1b:96:42:49:24:8c:4d:bd: 4b:06:b8:87:ec:09:cd:cb:1d:fb:15:62:ba:8e:ad:a0:b9:e7: 47:3f:b5:be:bb:a3:e8:1e:18:1d:44:55:0c:60:df:6a:f0:bc: 5f:35:50:02:d0:89:19:2f:0a:f6:60:e5:50:5c:81:c6:d8:f7: 48:f4:e1:52:0d:54:85:af:7d:e9:72:fc:dd:42:e5:a2:5e:e8: 5c:62:07:c9:72:36:15:05:cb:0a:d4:f9:6c:ce:3d:c6:5a:fa: 7d:cc:75:cc:56:21:e1:1b:01:2d:76:2b:d8:21:fc:3c:e1:ce: 98:5a:55:57:ed:22:f3:5a:d0:ea:33:8a:bb:fe:69:74:db:b4: ab:e9:d2:9f:30:7b:47:ad:35:b2:f2:9a:46:82:a1:dc:04:33: 71:13:5d:5a:52:3e:e5:00:9e:3d:f2:79:d3:55:d1:18:f2:20: 8c:f9:03:5b:7c:f8:de:43:56:14:7f:e1:b8:20:f3:d5:46:ef: 84:f2:86:1c:10:e3:24:66:fd:9e:6a:d3:5e:a7:0a:ae:e1:f7: c1:94:9c:0a:5a:26:ac:94:ca:1d:20:07:e5:0f:49:e8:16:c1: 2b:57:c5:35:36:ca:c4:6c:39:50:4f:ec:ac:94:3e:c8:43:61: 89:f0:01:3f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQzNEQxMTAvBgNVBAUTKDI0REFBMjRGNThGQzNDMjY4MDY3RTVBRkU0OUZBRUY1 NTc5RUMwNjkwHhcNMjUwMzAyMjMyMTUyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2M0ZTgxMC1kYTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5dI2DxPdY4BFFKFdkMhWDugwvH+86WJBhYJVaQAOrSr6Imk0uOEmKsIp2RCm uk55SAAFSuJue0vaT/BvZEL3JrwfS2QEzzC8zzRdbnKegj/JYfZVHTG8TO/ED6UV wz0Qx2NHeD3hlWoR3N7JBBC4tb4qBCBJxtGQWDBDH7rigS3xSFyNKL9H5v/Art/a rAZowkyu3XOIJLS7xhHhpW6EPzMMVRoSFUM7TpYDO2MPyJx4q02l8oFCQqyXygj/ h/gJZa3gyfS8SiS7XRaT9zSVvsaw2SVJSQwqfuJIdrW/PkVU8dSUNDPfdNKjucGT Rz9fqcO3EvhswELLxSjPawYGaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOX8cyFs 6n1cZeOSK+or9BbYJV/iMB8GA1UdIwQYMBaAFCTaok9Y/DwmgGflr+SfrvVXnsBp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDM0RC9BNzk0QjRBQTc1 OTgxMUVCQjk4MjVGODRDNEY5QUUwMi9KTnFpVDFqOFBDYUFaLVd2NUotdTlWZWV3 R2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pOcWlUMWo4UENhQVotV3Y1Si11OVZlZXdHay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REQzNEQvQTc5NEI0QUE3NTk4MTFFQkI5ODI1Rjg0QzRGOUFFMDIvOTc4NzFCMUU3 NTlBMTFFQkIwNkZDMzg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnozIwDQYJKoZIhvcNAQELBQADggEBAHBRVweuvdKKRisb lkJJJIxNvUsGuIfsCc3LHfsVYrqOraC550c/tb67o+geGB1EVQxg32rwvF81UALQ iRkvCvZg5VBcgcbY90j04VINVIWvfely/N1C5aJe6FxiB8lyNhUFywrU+WzOPcZa +n3MdcxWIeEbAS12K9gh/DzhzphaVVftIvNa0Oozirv+aXTbtKvp0p8we0etNbLy mkaCodwEM3ETXVpSPuUAnj3yedNV0RjyIIz5A1t8+N5DVhR/4bgg89VG74TyhhwQ 4yRm/Z5q016nCq7h98GUnApaJqyUyh0gB+UPSegWwStXxTU2ysRsOVBP7KyUPshD YYnwAT8= -----END CERTIFICATE-----Generated at Tue Apr 22 12:58:43 2025 by rpki-client