$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/204E25DADE9711EC9289256FC4F9AE02.roa File: 204E25DADE9711EC9289256FC4F9AE02.roa (raw, json) Hash identifier: Nm0NB5K/NvPqifGuFp/i7DvZfN/unt+xIyxa1mf1Ru8= Subject key identifier: 1C:6B:76:91:7A:84:FE:67:17:B9:01:B1:84:E7:BE:47:EC:0D:D7:4E Certificate issuer: /CN=A91DEB81/serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Certificate serial: 0417 Authority key identifier: 77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/204E25DADE9711EC9289256FC4F9AE02.roa Signing time: Thu 20 Feb 2025 08:57:46 +0000 ROA not before: Thu 20 Feb 2025 08:57:46 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 205960 IP address blocks: 103.254.73.0/24 maxlen: 24 103.254.74.0/24 maxlen: 24 192.51.188.0/24 maxlen: 24 192.197.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:31:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1047 (0x417) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB81 Validity Not Before: Feb 20 08:57:46 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67b6ee8a-6685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3f:94:f6:13:db:7a:2b:27:d2:da:b7:1f:ce: 48:c3:96:30:ff:21:f7:06:21:c9:62:dc:7b:b9:75: 6e:e7:72:34:a1:7e:fc:65:3d:b2:1e:e2:94:a3:7f: 23:62:e5:f1:5c:8d:ca:1d:c7:a1:51:37:80:22:75: e1:e0:d6:3f:f9:2b:18:70:b5:29:fb:63:df:f1:66: 63:9d:5b:2e:bf:d3:98:cd:c6:86:de:07:8e:8c:5f: d4:43:a2:e2:83:48:88:dc:ed:f7:fe:de:2e:95:22: 17:29:19:d0:d2:66:00:c8:be:7e:d4:00:7a:d5:9e: a3:a6:b0:44:bf:ab:7c:3b:a0:59:2d:23:f0:01:b2: ce:6d:0b:80:b7:ef:f1:e4:76:33:40:6b:cb:7f:b6: e5:47:52:aa:29:8d:a7:c9:f7:67:93:bf:ad:a2:34: f4:e4:59:5e:af:5b:c7:64:66:66:10:e4:5a:49:9c: c4:2b:41:73:4f:17:41:15:77:0c:b6:dd:61:41:8e: f7:87:c0:e5:66:ac:aa:dc:0e:ef:02:88:ec:df:a3: b6:6b:44:5a:02:6d:ed:da:4b:6d:66:fe:65:a4:a2: 10:df:ed:95:79:5d:72:4d:52:2d:de:46:fb:13:42: 99:7d:cb:08:8a:e8:b4:8e:f8:3a:14:00:40:72:0e: dd:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:6B:76:91:7A:84:FE:67:17:B9:01:B1:84:E7:BE:47:EC:0D:D7:4E X509v3 Authority Key Identifier: keyid:77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/204E25DADE9711EC9289256FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.254.73.0-103.254.74.255 192.51.188.0/24 192.197.113.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:02:55:97:af:37:db:7a:97:cf:f6:b5:ac:c8:a5:b0:5f:e4: c4:62:0f:2e:67:13:64:42:61:03:44:34:b8:b3:aa:85:f0:12: ca:11:3a:86:67:78:b4:01:9f:2a:53:9f:e4:5e:23:11:3f:58: 24:e5:3b:a6:43:5d:dc:1c:48:28:76:10:c4:7e:37:33:3b:92: ea:68:3a:a2:fb:9d:95:7d:5e:cf:95:02:a5:31:a5:58:86:e5: e1:80:e0:32:cc:2d:65:35:a9:84:f4:83:52:45:05:73:0b:4b: a2:15:e1:e4:91:39:dd:d4:36:07:7d:1c:cd:56:10:31:fe:8a: cc:04:95:4a:53:7a:df:da:82:9d:2f:17:e1:87:77:87:f2:42: 6e:98:dc:3c:20:1d:49:5e:58:88:8b:df:b1:81:cd:97:4e:31: a2:f3:78:b4:63:89:8e:45:ae:89:6a:61:87:ea:50:44:fa:9a: 8f:a4:cb:c0:80:e5:4e:41:26:99:d2:58:b1:8a:93:e9:62:88: 1d:02:dd:85:46:61:59:00:b4:ab:b1:20:45:bb:c7:81:9d:10: 0e:29:4b:58:91:dd:6f:8e:d8:c1:3f:57:22:e2:62:06:48:55: a5:c6:a2:87:dc:1d:53:57:90:d6:c5:b0:47:d6:82:95:56:16: d5:5d:35:c1 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICBBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCODExMTAvBgNVBAUTKDc3NzY2MTJBNDNDMjJEMEE2NkI4RjEzNjgwQjMwNThC RUQ1RDk4OTIwHhcNMjUwMjIwMDg1NzQ2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I2ZWU4YS02Njg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxz+U9hPbeisn0tq3H85Iw5Yw/yH3BiHJYtx7uXVu53I0oX78ZT2yHuKUo38j YuXxXI3KHcehUTeAInXh4NY/+SsYcLUp+2Pf8WZjnVsuv9OYzcaG3geOjF/UQ6Li g0iI3O33/t4ulSIXKRnQ0mYAyL5+1AB61Z6jprBEv6t8O6BZLSPwAbLObQuAt+/x 5HYzQGvLf7blR1KqKY2nyfdnk7+tojT05Fler1vHZGZmEORaSZzEK0FzTxdBFXcM tt1hQY73h8DlZqyq3A7vAojs36O2a0RaAm3t2kttZv5lpKIQ3+2VeV1yTVIt3kb7 E0KZfcsIiui0jvg6FABAcg7djQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFBxrdpF6 hP5nF7kBsYTnvkfsDddOMB8GA1UdIwQYMBaAFHd2YSpDwi0KZrjxNoCzBYvtXZiS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUI4MS9DRjk2NjNDNjcw RjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xRcG11UEUyZ0xNRmktMWRt SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QzWmhLa1BDTFFwbXVQRTJnTE1GaS0xZG1KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVCODEvQ0Y5NjYzQzY3MEY3MTFFQ0IzMThFNDNBQzRGOUFFMDIvMjA0RTI1REFE RTk3MTFFQzkyODkyNTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEAGf+SQMEAGf+SgMEAMAzvAMEAMDFcTANBgkqhkiG9w0B AQsFAAOCAQEALAJVl68323qXz/a1rMilsF/kxGIPLmcTZEJhA0Q0uLOqhfASyhE6 hmd4tAGfKlOf5F4jET9YJOU7pkNd3BxIKHYQxH43MzuS6mg6ovudlX1ez5UCpTGl WIbl4YDgMswtZTWphPSDUkUFcwtLohXh5JE53dQ2B30czVYQMf6KzASVSlN639qC nS8X4Yd3h/JCbpjcPCAdSV5YiIvfsYHNl04xovN4tGOJjkWuiWphh+pQRPqaj6TL wIDlTkEmmdJYsYqT6WKIHQLdhUZhWQC0q7EgRbvHgZ0QDilLWJHdb47YwT9XIuJi BkhVpcaih9wdU1eQ1sWwR9aClVYW1V01wQ== -----END CERTIFICATE-----Generated at Sat Apr 5 01:58:08 2025 by rpki-client