$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/0716B2646C7111EC8C5E6967C4F9AE02.roa File: 0716B2646C7111EC8C5E6967C4F9AE02.roa (raw, json) Hash identifier: TIDwy9LVcXS4MQZ5z7Q3BUlFE+wSiwfGMr/OEXHL42A= Subject key identifier: C9:86:1B:DA:A4:97:F0:CD:FB:2C:0E:05:6C:E2:E9:2B:8B:3D:E5:B8 Certificate issuer: /CN=A91DE4AC/serialNumber=3EEB19688D33D621994E5B3D9E46ECAAA509F423 Certificate serial: 03ED Authority key identifier: 3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/0716B2646C7111EC8C5E6967C4F9AE02.roa Signing time: Thu 06 Mar 2025 08:48:33 +0000 ROA not before: Thu 06 Mar 2025 08:48:33 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 58617 IP address blocks: 103.9.23.0/24 maxlen: 24 163.61.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:30:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1005 (0x3ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE4AC Validity Not Before: Mar 6 08:48:33 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67c96161-165d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f9:df:c9:19:db:1f:21:18:c0:8a:bd:7c:de: bc:6e:80:7a:b6:e5:47:05:16:11:f2:f7:fe:05:2f: 0f:c4:c0:fb:6d:b5:8c:08:39:79:c3:a5:b6:52:d3: ef:c9:37:05:3c:48:f5:2d:1a:6d:70:96:95:b5:e7: eb:4e:da:78:e4:45:54:8d:31:2a:a5:c6:03:31:6f: 42:c6:92:61:47:06:2c:34:d5:76:48:c6:c3:67:2e: d4:2e:b3:f1:77:1b:53:60:02:ff:b4:7c:43:b4:36: cc:4f:06:75:3c:83:1d:67:dc:f2:79:cc:45:ac:c6: 96:f0:6f:4c:8c:94:8e:d0:ed:b7:4b:b0:fd:65:68: ba:8b:6a:3f:b3:de:53:14:84:99:0f:10:0b:71:20: c9:ff:f8:96:60:ca:61:58:bc:b4:84:a0:9b:bd:a1: 0a:c1:8b:ad:bd:5d:31:2e:df:aa:3d:e2:31:d2:fa: bc:ee:12:8f:8b:95:d8:69:c8:c1:3f:e5:2b:24:6c: 28:8e:25:f6:26:a4:2a:19:5b:f3:1f:3c:fa:8f:e9: 1a:26:d0:ba:08:bc:65:43:5f:c4:f2:79:8f:3d:c6: de:74:cb:aa:86:81:11:de:26:91:0e:81:d2:6f:13: 98:67:97:63:f8:01:14:a1:d1:49:95:6e:9a:79:bf: 7a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:86:1B:DA:A4:97:F0:CD:FB:2C:0E:05:6C:E2:E9:2B:8B:3D:E5:B8 X509v3 Authority Key Identifier: keyid:3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/0716B2646C7111EC8C5E6967C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.23.0/24 163.61.154.0/24 Signature Algorithm: sha256WithRSAEncryption 99:78:17:a8:80:9c:41:a1:1d:8b:c3:13:e5:c3:19:0d:ef:fe: 43:84:02:ec:f4:3f:5d:b0:3d:ba:19:d6:2e:24:8f:7a:48:bf: 14:77:e1:9d:3f:59:22:66:77:a9:9e:ca:54:56:c3:0b:ca:5c: f4:51:db:9f:95:99:44:86:e4:48:b4:1b:e9:c9:82:2f:b3:c3: 2e:df:23:77:e1:46:5c:f2:ce:bb:87:bb:2f:15:5f:c1:2e:7d: cc:ed:a5:f1:8d:ed:42:af:be:a0:14:bf:db:99:b4:10:1c:33: 6a:62:59:88:38:20:b6:b7:0a:f6:2d:cf:a7:b5:ee:b5:a4:5d: 01:54:cb:3c:83:ec:f7:a3:09:40:20:8b:3f:43:88:65:09:ba: c0:0c:d8:a4:f3:4f:a1:76:ee:50:4d:4c:58:e1:79:2d:2f:3c: 70:40:f8:87:19:c4:43:45:3f:e7:f8:86:d5:d4:89:ea:78:f1: 43:dd:2d:9d:c5:78:f1:2c:6a:31:77:4b:ac:1f:c3:14:3a:8c: fd:ed:34:a1:58:cb:d8:58:08:f1:ec:14:e6:36:8e:80:b5:7d: 1f:8e:fb:ae:36:b3:66:b5:fc:8a:e7:0b:7d:a1:7a:87:3e:b2: af:ad:24:2b:1a:8c:ef:14:0c:cb:70:4c:f7:8a:f7:83:da:65: 70:54:eb:06 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA+0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0QUMxMTAvBgNVBAUTKDNFRUIxOTY4OEQzM0Q2MjE5OTRFNUIzRDlFNDZFQ0FB QTUwOUY0MjMwHhcNMjUwMzA2MDg0ODMzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M5NjE2MS0xNjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1fnfyRnbHyEYwIq9fN68boB6tuVHBRYR8vf+BS8PxMD7bbWMCDl5w6W2UtPv yTcFPEj1LRptcJaVtefrTtp45EVUjTEqpcYDMW9CxpJhRwYsNNV2SMbDZy7ULrPx dxtTYAL/tHxDtDbMTwZ1PIMdZ9zyecxFrMaW8G9MjJSO0O23S7D9ZWi6i2o/s95T FISZDxALcSDJ//iWYMphWLy0hKCbvaEKwYutvV0xLt+qPeIx0vq87hKPi5XYacjB P+UrJGwojiX2JqQqGVvzHzz6j+kaJtC6CLxlQ1/E8nmPPcbedMuqhoER3iaRDoHS bxOYZ5dj+AEUodFJlW6aeb96iwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMmGG9qk l/DN+ywOBWzi6SuLPeW4MB8GA1UdIwQYMBaAFD7rGWiNM9YhmU5bPZ5G7KqlCfQj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTRBQy8zNDQxRDJEMDZD NkUxMUVDQjIzM0ZCNjFDNEY5QUUwMi9QdXNaYUkwejFpR1pUbHM5bmtic3FxVUo5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1c1phSTB6MWlHWlRsczlua2JzcXFVSjlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REU0QUMvMzQ0MUQyRDA2QzZFMTFFQ0IyMzNGQjYxQzRGOUFFMDIvMDcxNkIyNjQ2 QzcxMTFFQzhDNUU2OTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnCRcDBACjPZowDQYJKoZIhvcNAQELBQADggEBAJl4F6iA nEGhHYvDE+XDGQ3v/kOEAuz0P12wPboZ1i4kj3pIvxR34Z0/WSJmd6meylRWwwvK XPRR25+VmUSG5Ei0G+nJgi+zwy7fI3fhRlzyzruHuy8VX8EufcztpfGN7UKvvqAU v9uZtBAcM2piWYg4ILa3CvYtz6e17rWkXQFUyzyD7PejCUAgiz9DiGUJusAM2KTz T6F27lBNTFjheS0vPHBA+IcZxENFP+f4htXUiep48UPdLZ3FePEsajF3S6wfwxQ6 jP3tNKFYy9hYCPHsFOY2joC1fR+O+642s2a1/IrnC32heoc+sq+tJCsajO8UDMtw TPeK94PaZXBU6wY= -----END CERTIFICATE-----Generated at Sat Apr 5 01:25:26 2025 by rpki-client