$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/67624B6088B611EFA5F28A68C4F9AE02.roa File: 67624B6088B611EFA5F28A68C4F9AE02.roa (raw, json) Hash identifier: qxNt5X+NJ/lDZV/a3w6QhqphN2TIJWTmHt+XWPeL2Fw= Subject key identifier: BB:57:99:00:F3:85:F3:0B:9B:7B:F3:50:07:62:75:63:CE:98:5F:38 Certificate issuer: /CN=A91E0D87/serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Certificate serial: 04A7 Authority key identifier: 72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/67624B6088B611EFA5F28A68C4F9AE02.roa Signing time: Tue 31 Dec 2024 23:42:52 +0000 ROA not before: Tue 31 Dec 2024 23:42:52 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 151106 IP address blocks: 103.204.20.0/24 maxlen: 24 103.204.21.0/24 maxlen: 24 103.204.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:59:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1191 (0x4a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0D87 Validity Not Before: Dec 31 23:42:52 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6774817c-4886 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a9:18:62:71:d1:7b:21:72:b0:f3:9a:fb:9e: c1:29:eb:22:22:7a:2e:22:36:91:6c:1c:4f:78:ea: f5:ad:98:52:1e:e0:5c:9b:83:c4:66:68:5e:be:7b: 51:5a:ca:6b:08:ec:62:c2:34:18:37:25:0f:71:4a: 6a:dd:d9:1a:ca:72:85:48:2e:a0:f0:46:72:df:3b: 15:eb:c7:25:f5:e0:0c:95:1c:79:96:ff:b6:c9:29: ab:22:df:6f:ba:5f:dd:bc:30:0f:35:bd:49:87:3c: 63:0f:b2:29:8c:db:83:c4:53:98:2d:e5:2c:0c:97: 61:73:6b:28:c9:2d:03:18:2c:64:63:33:c1:01:61: 96:e3:b2:d5:45:44:c9:a8:65:c3:cc:25:84:d7:29: 37:95:a8:e4:2d:70:e8:cf:82:52:ab:2d:ab:86:6f: 55:32:19:97:dc:e4:e4:78:16:d0:c5:2c:10:d0:73: d7:20:00:f2:d2:8d:25:70:be:15:b3:04:07:6e:0b: f2:eb:a9:cc:49:69:33:d4:b4:da:c9:29:0a:09:3d: 44:36:02:26:55:92:95:c3:ad:7a:8b:7d:65:67:3c: bc:7d:24:31:8d:2b:c4:a4:dc:9e:cc:38:13:d4:10: 82:db:c0:ec:07:62:a4:2d:60:16:49:06:1b:6c:af: 99:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:57:99:00:F3:85:F3:0B:9B:7B:F3:50:07:62:75:63:CE:98:5F:38 X509v3 Authority Key Identifier: keyid:72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/67624B6088B611EFA5F28A68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.20.0/23 103.204.23.0/24 Signature Algorithm: sha256WithRSAEncryption 24:91:03:64:dd:41:c5:35:a1:5f:29:f4:b7:75:10:e0:a8:88: db:df:75:20:bf:2b:76:ed:b3:e7:15:19:72:43:e1:2e:39:b9: 8b:2c:c2:69:10:e4:31:f0:bd:28:45:99:87:1f:44:c9:cd:e2: 67:5c:7c:62:0c:49:3e:64:f5:9c:90:96:a2:24:7b:81:64:0c: 7d:30:63:4e:f7:54:64:73:32:be:c6:d6:1b:53:24:b3:38:93: 19:3b:b8:ca:5e:b3:70:d6:32:97:1e:2f:8b:8a:87:8e:01:2f: e5:23:45:54:ea:6e:ec:2e:9a:dd:47:de:84:c3:9d:dd:7d:13: a4:e0:44:83:76:6e:56:75:43:f2:29:ea:26:cb:2d:36:e0:39: af:f9:44:44:f4:6b:1e:4e:60:f3:5c:84:ec:e5:8c:1d:da:c7: 84:64:0e:fc:95:71:24:0b:cd:d0:b2:12:db:a7:e4:3e:55:58: 3c:0f:a3:28:ab:f1:0e:10:9e:6a:e5:fc:d0:83:b6:29:7b:d0: e8:b5:e8:09:e4:44:56:d3:7b:82:88:29:c1:1f:61:ec:a3:58: 82:08:96:39:93:87:2c:f3:c1:31:a8:f5:f0:e9:3c:2d:7b:25: b6:8f:9b:48:4c:ef:af:12:98:60:24:58:37:9f:57:61:29:1e: 2a:92:0d:b4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBEODcxMTAvBgNVBAUTKDcyNUZEOTc3Q0U3MzRCQkE5OTMzRjI5NDNEQzI2OTM5 RkEwNjA4QTcwHhcNMjQxMjMxMjM0MjUyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc0ODE3Yy00ODg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0akYYnHReyFysPOa+57BKesiInouIjaRbBxPeOr1rZhSHuBcm4PEZmhevntR WsprCOxiwjQYNyUPcUpq3dkaynKFSC6g8EZy3zsV68cl9eAMlRx5lv+2ySmrIt9v ul/dvDAPNb1JhzxjD7IpjNuDxFOYLeUsDJdhc2soyS0DGCxkYzPBAWGW47LVRUTJ qGXDzCWE1yk3lajkLXDoz4JSqy2rhm9VMhmX3OTkeBbQxSwQ0HPXIADy0o0lcL4V swQHbgvy66nMSWkz1LTaySkKCT1ENgImVZKVw616i31lZzy8fSQxjSvEpNyezDgT 1BCC28DsB2KkLWAWSQYbbK+ZhwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLtXmQDz hfMLm3vzUAdidWPOmF84MB8GA1UdIwQYMBaAFHJf2XfOc0u6mTPylD3CaTn6Bgin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEQ4Ny9GNjgzQ0VGMjIx RUIxMUVDOTI1MDE4MTlDNEY5QUUwMi9jbF9aZDg1elM3cVpNX0tVUGNKcE9mb0dD S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NsX1pkODV6UzdxWk1fS1VQY0pwT2ZvR0NLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBEODcvRjY4M0NFRjIyMUVCMTFFQzkyNTAxODE5QzRGOUFFMDIvNjc2MjRCNjA4 OEI2MTFFRkE1RjI4QTY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnzBQDBABnzBcwDQYJKoZIhvcNAQELBQADggEBACSRA2Td QcU1oV8p9Ld1EOCoiNvfdSC/K3bts+cVGXJD4S45uYsswmkQ5DHwvShFmYcfRMnN 4mdcfGIMST5k9ZyQlqIke4FkDH0wY073VGRzMr7G1htTJLM4kxk7uMpes3DWMpce L4uKh44BL+UjRVTqbuwumt1H3oTDnd19E6TgRIN2blZ1Q/Ip6ibLLTbgOa/5RET0 ax5OYPNchOzljB3ax4RkDvyVcSQLzdCyEtun5D5VWDwPoyir8Q4Qnmrl/NCDtil7 0Oi16AnkRFbTe4KIKcEfYeyjWIIIljmThyzzwTGo9fDpPC17JbaPm0hM768SmGAk WDefV2EpHiqSDbQ= -----END CERTIFICATE-----Generated at Sun Apr 6 13:07:33 2025 by rpki-client