$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/149009E6EE8111EAABC5C05CC4F9AE02.roa File: 149009E6EE8111EAABC5C05CC4F9AE02.roa (raw, json) Hash identifier: ZuNx07Xi3l7zK6QE18qPa3KdYreh+VNjcsKw+zEu9qY= Subject key identifier: 53:15:4A:47:70:C0:CD:8C:67:84:B6:D6:FA:96:6E:DE:E3:68:79:D7 Certificate issuer: /CN=A91DE8B4/serialNumber=9EAC83568ECE877C54B9230D639DA44F380D21E5 Certificate serial: 07B4 Authority key identifier: 9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/149009E6EE8111EAABC5C05CC4F9AE02.roa Signing time: Tue 04 Mar 2025 22:09:32 +0000 ROA not before: Tue 04 Mar 2025 22:09:32 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 4764 IP address blocks: 103.108.202.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:14:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1972 (0x7b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE8B4 Validity Not Before: Mar 4 22:09:32 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c77a1c-db6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ad:ba:75:85:c3:37:43:66:3b:c2:1f:f3:41: 2f:1d:24:17:6b:22:6f:47:d6:76:f7:6e:28:fd:fd: 8f:55:26:ec:db:9a:33:01:61:6e:8f:19:6c:08:3b: 0d:5d:9c:9c:c5:68:04:af:eb:68:1d:d1:a2:7c:83: 72:d9:ee:43:92:e6:47:4f:ac:53:88:5c:39:cf:f3: 7b:07:86:7e:46:45:5d:c4:6b:f9:a4:db:26:69:68: b4:7f:df:8b:c6:f1:55:87:06:d1:82:4a:3e:f9:22: 69:95:75:4b:46:3b:a4:ed:2d:63:76:e5:b2:f5:fc: 56:92:31:ae:c2:24:09:33:82:e2:0a:c8:d8:4c:91: 79:89:42:9f:61:49:10:39:c7:7c:f5:54:f0:4f:b4: ca:03:50:fd:52:ee:c9:e2:b0:1e:39:ca:75:f8:1e: 35:0e:87:8c:52:c8:a5:41:31:35:02:7f:ea:d8:be: 3e:45:9e:1c:3d:b5:e0:3e:a5:a7:8d:99:3d:31:ea: 1f:c2:c0:9b:5b:9b:d4:d0:7b:2a:5f:a5:85:ae:9a: d8:40:5c:75:63:d7:0b:79:1a:53:83:70:ce:ec:f1: 70:b7:2a:e7:2f:1e:9a:b7:68:92:8d:1b:b3:71:7e: b4:cb:3a:67:7a:9c:43:45:65:f8:ea:9a:96:cb:0c: 57:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:15:4A:47:70:C0:CD:8C:67:84:B6:D6:FA:96:6E:DE:E3:68:79:D7 X509v3 Authority Key Identifier: keyid:9E:AC:83:56:8E:CE:87:7C:54:B9:23:0D:63:9D:A4:4F:38:0D:21:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/nqyDVo7Oh3xUuSMNY52kTzgNIeU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nqyDVo7Oh3xUuSMNY52kTzgNIeU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE8B4/4A65EAC8EE8011EAA0F82C5CC4F9AE02/149009E6EE8111EAABC5C05CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.108.202.0/23 Signature Algorithm: sha256WithRSAEncryption 33:76:e0:8e:af:96:fe:c3:5b:6c:1d:31:87:9b:f7:6c:55:44: 61:c0:9c:da:81:db:82:f3:21:3d:60:25:30:cf:ad:60:ff:a1: 6d:63:f1:85:85:cf:4f:e5:54:42:d2:46:08:d3:73:11:f8:48: 9e:c9:92:2f:51:a1:17:65:5a:fb:e0:8b:69:5b:87:00:87:11: 8c:04:b6:27:c3:2c:ba:b8:ee:37:f2:f1:1c:e8:57:84:27:84: bb:2e:2a:40:6c:d1:44:63:ec:05:65:cf:9c:41:f0:53:b1:73: 9b:14:9d:af:5e:1c:d5:a3:f9:8e:1b:14:62:ae:9d:10:68:a4: 09:cd:71:66:93:13:35:8d:7f:b0:5f:95:a7:3c:0b:68:37:0d: c2:99:a7:6d:3b:45:92:b7:11:10:f8:cf:c7:db:75:f4:10:fe: 9b:23:53:28:23:2b:30:12:f2:93:a2:60:ea:35:8e:cf:f8:6e: d8:c5:31:e5:e5:92:7f:ba:6c:ec:ea:66:46:ef:fd:69:7c:8e: a9:ce:48:3d:40:0a:51:a8:ff:da:3a:72:c5:db:59:5d:42:8c: 5d:9d:97:45:0f:41:5b:7a:eb:d6:b3:e2:20:fd:b7:ac:d3:d2: b7:58:d4:b7:c5:39:55:86:8c:08:96:5f:23:2d:e6:b1:2d:5f: 68:84:c1:ec -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB7QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU4QjQxMTAvBgNVBAUTKDlFQUM4MzU2OEVDRTg3N0M1NEI5MjMwRDYzOURBNDRG MzgwRDIxRTUwHhcNMjUwMzA0MjIwOTMyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M3N2ExYy1kYjZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv626dYXDN0NmO8If80EvHSQXayJvR9Z2924o/f2PVSbs25ozAWFujxlsCDsN XZycxWgEr+toHdGifINy2e5DkuZHT6xTiFw5z/N7B4Z+RkVdxGv5pNsmaWi0f9+L xvFVhwbRgko++SJplXVLRjuk7S1jduWy9fxWkjGuwiQJM4LiCsjYTJF5iUKfYUkQ Ocd89VTwT7TKA1D9Uu7J4rAeOcp1+B41DoeMUsilQTE1An/q2L4+RZ4cPbXgPqWn jZk9MeofwsCbW5vU0HsqX6WFrprYQFx1Y9cLeRpTg3DO7PFwtyrnLx6at2iSjRuz cX60yzpnepxDRWX46pqWywxXEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFMVSkdw wM2MZ4S21vqWbt7jaHnXMB8GA1UdIwQYMBaAFJ6sg1aOzod8VLkjDWOdpE84DSHl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERThCNC80QTY1RUFDOEVF ODAxMUVBQTBGODJDNUNDNEY5QUUwMi9ucXlEVm83T2gzeFV1U01OWTUya1R6Z05J ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25xeURWbzdPaDN4VXVTTU5ZNTJrVHpnTkllVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REU4QjQvNEE2NUVBQzhFRTgwMTFFQUEwRjgyQzVDQzRGOUFFMDIvMTQ5MDA5RTZF RTgxMTFFQUFCQzVDMDVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnbMowDQYJKoZIhvcNAQELBQADggEBADN24I6vlv7DW2wd MYeb92xVRGHAnNqB24LzIT1gJTDPrWD/oW1j8YWFz0/lVELSRgjTcxH4SJ7Jki9R oRdlWvvgi2lbhwCHEYwEtifDLLq47jfy8RzoV4QnhLsuKkBs0URj7AVlz5xB8FOx c5sUna9eHNWj+Y4bFGKunRBopAnNcWaTEzWNf7Bflac8C2g3DcKZp207RZK3ERD4 z8fbdfQQ/psjUygjKzAS8pOiYOo1js/4btjFMeXlkn+6bOzqZkbv/Wl8jqnOSD1A ClGo/9o6csXbWV1CjF2dl0UPQVt669az4iD9t6zT0rdY1LfFOVWGjAiWXyMt5rEt X2iEwew= -----END CERTIFICATE-----Generated at Sat Apr 5 05:59:49 2025 by rpki-client