$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEA56/684667F4BF3A11EA94AE4E7CC4F9AE02/660823EABF3C11EAAF328582C4F9AE02.roa File: 660823EABF3C11EAAF328582C4F9AE02.roa (raw, json) Hash identifier: McY2AJFANrzWmI75qEuoRVmbI5bYcHMLwYH623aHbh0= Subject key identifier: D8:97:F1:24:A9:F7:FE:10:24:8E:F9:A4:54:7E:D4:7C:43:27:21:7A Certificate issuer: /CN=A91DEA56/serialNumber=BBE49FCB41F5026A35BF6C93B91FDFF3C88C736E Certificate serial: 0851 Authority key identifier: BB:E4:9F:CB:41:F5:02:6A:35:BF:6C:93:B9:1F:DF:F3:C8:8C:73:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-Sfy0H1Amo1v2yTuR_f88iMc24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEA56/684667F4BF3A11EA94AE4E7CC4F9AE02/660823EABF3C11EAAF328582C4F9AE02.roa Signing time: Sat 04 Jan 2025 20:29:20 +0000 ROA not before: Sat 04 Jan 2025 20:29:20 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 17819 IP address blocks: 103.23.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEA56/684667F4BF3A11EA94AE4E7CC4F9AE02/u-Sfy0H1Amo1v2yTuR_f88iMc24.crl rsync://rpki.apnic.net/member_repository/A91DEA56/684667F4BF3A11EA94AE4E7CC4F9AE02/u-Sfy0H1Amo1v2yTuR_f88iMc24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-Sfy0H1Amo1v2yTuR_f88iMc24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:49:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2129 (0x851) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEA56 Validity Not Before: Jan 4 20:29:20 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67799a20-21ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:ba:9e:ef:af:66:b7:a3:d6:17:4a:b9:c9:44: 7c:be:e7:e3:e8:29:c3:fe:4e:c6:17:11:5c:98:44: 04:98:06:c6:84:d7:f3:60:1d:a2:f1:2d:03:26:cf: 19:db:0d:d7:d0:72:e9:93:ac:90:48:85:f7:2a:67: ad:17:9d:27:49:ff:ec:01:5a:20:cc:82:00:a8:5e: 4a:d5:e6:e4:57:95:b2:67:52:e6:9b:e5:e2:fc:06: 15:1a:c0:cc:88:a2:81:9f:68:57:06:fc:69:db:fd: da:17:5b:e4:5a:f6:40:51:60:bd:70:d5:86:0f:65: 4f:49:4e:bd:94:e3:36:98:b2:0b:39:d5:5f:71:7a: fa:2d:67:0c:17:52:14:e6:b3:9f:5d:81:83:2c:b0: ac:4e:fe:f7:5c:53:19:03:b5:da:c0:5a:cc:15:a0: ae:2a:fd:4d:26:7e:e7:cb:67:7b:aa:e9:21:df:fc: 5e:3a:b4:ac:a2:47:f1:3c:9a:93:67:60:c1:5a:34: 54:04:d5:d1:44:7d:b7:ae:96:a7:fd:77:ed:02:5e: cd:5a:a8:2a:a8:42:77:ac:40:46:61:e4:fa:02:3c: 75:6e:60:ce:b0:a2:13:d7:eb:c6:8a:16:72:c9:a2: df:27:80:af:aa:15:2b:e2:6f:6c:2f:00:2b:01:23: d0:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:97:F1:24:A9:F7:FE:10:24:8E:F9:A4:54:7E:D4:7C:43:27:21:7A X509v3 Authority Key Identifier: keyid:BB:E4:9F:CB:41:F5:02:6A:35:BF:6C:93:B9:1F:DF:F3:C8:8C:73:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEA56/684667F4BF3A11EA94AE4E7CC4F9AE02/u-Sfy0H1Amo1v2yTuR_f88iMc24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u-Sfy0H1Amo1v2yTuR_f88iMc24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEA56/684667F4BF3A11EA94AE4E7CC4F9AE02/660823EABF3C11EAAF328582C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.221.0/24 Signature Algorithm: sha256WithRSAEncryption 43:b3:0c:1f:9d:b7:43:e5:d0:81:7a:50:0c:45:c6:f2:28:03: 40:98:60:01:b2:2f:80:8c:ed:86:ae:ab:53:1a:7a:0e:f8:96: d1:f9:7d:ec:39:24:b3:3c:c4:34:c0:df:3d:a1:a6:b2:31:42: 73:39:97:5f:50:9c:3f:53:0c:91:f5:20:15:56:4b:e7:aa:cf: aa:9a:f4:5a:82:64:21:b5:34:01:8c:64:27:f8:dc:0a:59:2e: 5e:1f:2d:95:93:c9:51:d8:e6:a7:fc:87:70:38:f6:51:12:34: dc:e2:8c:47:b2:b3:0f:2a:5c:7d:94:8e:7f:97:65:80:79:c0: 57:b8:ff:56:82:2b:76:b2:93:55:99:c5:ae:2e:3b:12:37:50: 39:4c:e8:5c:53:7d:f4:a4:53:2b:37:5e:c6:6d:6d:9b:98:a9: 27:a8:57:3c:f8:be:f5:94:d1:8d:c3:59:7e:e7:d6:bd:ae:9d: 3e:c7:76:3d:4c:75:dd:e3:29:18:8c:f8:22:4e:c2:a8:91:1c: 6b:b1:54:ed:1e:36:9d:3a:3a:f7:a6:9d:cd:a4:1b:9b:d2:b7: 7a:6d:12:3d:b7:e1:44:64:37:0b:b7:63:c8:4c:24:f9:de:4f: f3:3a:8b:2d:8e:c9:4e:39:33:52:51:6e:26:eb:5f:9e:ed:ad: 6e:88:d4:a1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVBNTYxMTAvBgNVBAUTKEJCRTQ5RkNCNDFGNTAyNkEzNUJGNkM5M0I5MUZERkYz Qzg4QzczNkUwHhcNMjUwMTA0MjAyOTIwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc5OWEyMC0yMWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlLqe769mt6PWF0q5yUR8vufj6CnD/k7GFxFcmEQEmAbGhNfzYB2i8S0DJs8Z 2w3X0HLpk6yQSIX3KmetF50nSf/sAVogzIIAqF5K1ebkV5WyZ1Lmm+Xi/AYVGsDM iKKBn2hXBvxp2/3aF1vkWvZAUWC9cNWGD2VPSU69lOM2mLILOdVfcXr6LWcMF1IU 5rOfXYGDLLCsTv73XFMZA7XawFrMFaCuKv1NJn7ny2d7qukh3/xeOrSsokfxPJqT Z2DBWjRUBNXRRH23rpan/XftAl7NWqgqqEJ3rEBGYeT6Ajx1bmDOsKIT1+vGihZy yaLfJ4CvqhUr4m9sLwArASPQywIDAQABo4IClTCCApEwHQYDVR0OBBYEFNiX8SSp 9/4QJI75pFR+1HxDJyF6MB8GA1UdIwQYMBaAFLvkn8tB9QJqNb9sk7kf3/PIjHNu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUE1Ni82ODQ2NjdGNEJG M0ExMUVBOTRBRTRFN0NDNEY5QUUwMi91LVNmeTBIMUFtbzF2MnlUdVJfZjg4aU1j MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UtU2Z5MEgxQW1vMXYyeVR1Ul9mODhpTWMyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVBNTYvNjg0NjY3RjRCRjNBMTFFQTk0QUU0RTdDQzRGOUFFMDIvNjYwODIzRUFC RjNDMTFFQUFGMzI4NTgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnF90wDQYJKoZIhvcNAQELBQADggEBAEOzDB+dt0Pl0IF6 UAxFxvIoA0CYYAGyL4CM7Yauq1Maeg74ltH5few5JLM8xDTA3z2hprIxQnM5l19Q nD9TDJH1IBVWS+eqz6qa9FqCZCG1NAGMZCf43ApZLl4fLZWTyVHY5qf8h3A49lES NNzijEeysw8qXH2Ujn+XZYB5wFe4/1aCK3ayk1WZxa4uOxI3UDlM6FxTffSkUys3 XsZtbZuYqSeoVzz4vvWU0Y3DWX7n1r2unT7Hdj1Mdd3jKRiM+CJOwqiRHGuxVO0e Np06Ovemnc2kG5vSt3ptEj234URkNwu3Y8hMJPneT/M6iy2OyU45M1JRbibrX57t rW6I1KE= -----END CERTIFICATE-----Generated at Sat Apr 5 22:19:51 2025 by rpki-client