$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/A1C11FC2D18411EFBBD4971AC4F9AE02.roa File: A1C11FC2D18411EFBBD4971AC4F9AE02.roa (raw, json) Hash identifier: xZ7YqIDaoUd+RzHbOlkF6x1jlcucQQ6yGO7tO0froi4= Subject key identifier: 15:58:71:8B:1E:1B:0F:33:60:4C:7D:91:A8:E3:24:3A:25:E2:1A:25 Certificate issuer: /CN=A91E3B1D/serialNumber=5A99B0276719D3A83770FAAE14D7575CC666488D Certificate serial: 02AE Authority key identifier: 5A:99:B0:27:67:19:D3:A8:37:70:FA:AE:14:D7:57:5C:C6:66:48:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpmwJ2cZ06g3cPquFNdXXMZmSI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/A1C11FC2D18411EFBBD4971AC4F9AE02.roa Signing time: Mon 13 Jan 2025 08:04:35 +0000 ROA not before: Mon 13 Jan 2025 08:04:35 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 140228 IP address blocks: 103.189.4.0/23 maxlen: 23 103.189.4.0/24 maxlen: 24 103.189.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/WpmwJ2cZ06g3cPquFNdXXMZmSI0.crl rsync://rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/WpmwJ2cZ06g3cPquFNdXXMZmSI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpmwJ2cZ06g3cPquFNdXXMZmSI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 01:25:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 686 (0x2ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3B1D Validity Not Before: Jan 13 08:04:35 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6784c913-f35e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:71:fa:31:de:44:57:36:c7:48:96:c7:80:14: b9:d5:7a:47:eb:08:30:63:5f:6e:e3:45:80:05:b7: fc:3b:be:08:7a:d2:e6:67:31:90:ab:92:98:a4:e1: 2e:aa:8e:90:bf:87:91:03:9d:af:34:7a:93:65:e7: 02:84:ab:ab:97:37:5c:d3:d9:60:cd:e9:f4:9b:30: 84:b0:ef:99:0c:37:31:4b:20:44:7c:41:1d:ed:69: af:e1:f7:65:bc:7b:0c:fe:4e:31:ce:d7:0f:23:90: 59:64:a0:73:89:70:9b:5f:24:bf:0b:21:35:c1:f9: 70:79:44:88:11:7f:f3:3b:b1:c7:dc:81:af:99:d0: 7c:87:b3:37:38:bb:a1:31:83:07:0f:de:87:54:5b: 6b:8d:e5:cc:4d:c5:ae:76:a9:6e:3f:ed:44:77:47: 29:cc:a0:33:18:d5:f4:de:f0:ee:b6:76:e9:46:c8: fa:d9:6c:a6:ec:84:ed:cc:2a:b7:c2:23:4c:ed:ed: 9b:14:b4:16:22:39:15:80:30:90:77:41:29:db:58: 69:76:a5:4f:2e:b6:42:03:49:bd:8a:25:cb:94:c4: 73:87:f4:eb:7c:d2:81:ee:77:36:91:3b:4b:44:d9: 67:02:ce:fb:ff:a0:fb:82:f8:cd:65:df:6b:e6:3d: e1:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:58:71:8B:1E:1B:0F:33:60:4C:7D:91:A8:E3:24:3A:25:E2:1A:25 X509v3 Authority Key Identifier: keyid:5A:99:B0:27:67:19:D3:A8:37:70:FA:AE:14:D7:57:5C:C6:66:48:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/WpmwJ2cZ06g3cPquFNdXXMZmSI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpmwJ2cZ06g3cPquFNdXXMZmSI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3B1D/BA64D066E33711EC9730EB3DC4F9AE02/A1C11FC2D18411EFBBD4971AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.4.0/23 Signature Algorithm: sha256WithRSAEncryption be:c1:5f:50:f1:bf:dd:2c:32:ac:5f:74:58:97:4c:63:28:35: 97:cc:c7:d1:c2:a2:b4:40:b7:f4:ce:ba:04:e1:38:fd:3d:cc: 39:3d:02:30:88:05:49:e9:31:95:68:29:b3:a7:07:20:f7:2b: 4a:9b:44:04:b1:5e:68:d6:5f:0c:d2:0f:2a:d0:7e:45:ba:d2: 89:f2:50:98:53:62:e5:52:6a:28:11:47:55:fd:6f:36:70:b9: 48:3e:f3:6b:38:87:6f:af:d1:11:02:14:b5:4b:2a:65:52:63: 22:39:8a:06:96:8b:b3:a6:71:1b:58:f5:a3:4d:55:aa:4f:80: 82:80:22:62:f6:3a:5b:45:3f:d4:8e:20:02:dc:85:51:c9:a9: 80:3b:a2:7d:5c:e0:91:5b:84:d8:31:29:88:87:ac:83:4e:55: 1b:6b:fd:d1:64:a1:be:65:dc:ed:ab:ea:be:95:bc:11:fb:09: fb:57:5f:c8:5b:a4:9c:dd:1f:1c:09:88:ac:1c:1a:98:4f:51: f1:89:55:64:70:a1:73:43:93:12:0c:aa:34:27:d7:77:4b:23: 21:c3:17:4c:87:73:6f:4b:b7:1e:22:ae:4e:c2:03:66:c5:76: 6d:c8:f5:26:39:52:6a:1d:bf:eb:65:fc:78:3f:5d:af:c7:50: 3b:2e:33:35 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNCMUQxMTAvBgNVBAUTKDVBOTlCMDI3NjcxOUQzQTgzNzcwRkFBRTE0RDc1NzVD QzY2NjQ4OEQwHhcNMjUwMTEzMDgwNDM1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg0YzkxMy1mMzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5nH6Md5EVzbHSJbHgBS51XpH6wgwY19u40WABbf8O74IetLmZzGQq5KYpOEu qo6Qv4eRA52vNHqTZecChKurlzdc09lgzen0mzCEsO+ZDDcxSyBEfEEd7Wmv4fdl vHsM/k4xztcPI5BZZKBziXCbXyS/CyE1wflweUSIEX/zO7HH3IGvmdB8h7M3OLuh MYMHD96HVFtrjeXMTcWudqluP+1Ed0cpzKAzGNX03vDutnbpRsj62Wym7ITtzCq3 wiNM7e2bFLQWIjkVgDCQd0Ep21hpdqVPLrZCA0m9iiXLlMRzh/TrfNKB7nc2kTtL RNlnAs77/6D7gvjNZd9r5j3hkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBVYcYse Gw8zYEx9kajjJDol4holMB8GA1UdIwQYMBaAFFqZsCdnGdOoN3D6rhTXV1zGZkiN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0IxRC9CQTY0RDA2NkUz MzcxMUVDOTczMEVCM0RDNEY5QUUwMi9XcG13SjJjWjA2ZzNjUHF1Rk5kWFhNWm1T STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dwbXdKMmNaMDZnM2NQcXVGTmRYWE1abVNJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNCMUQvQkE2NEQwNjZFMzM3MTFFQzk3MzBFQjNEQzRGOUFFMDIvQTFDMTFGQzJE MTg0MTFFRkJCRDQ5NzFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvQQwDQYJKoZIhvcNAQELBQADggEBAL7BX1Dxv90sMqxf dFiXTGMoNZfMx9HCorRAt/TOugThOP09zDk9AjCIBUnpMZVoKbOnByD3K0qbRASx XmjWXwzSDyrQfkW60onyUJhTYuVSaigRR1X9bzZwuUg+82s4h2+v0RECFLVLKmVS YyI5igaWi7OmcRtY9aNNVapPgIKAImL2OltFP9SOIALchVHJqYA7on1c4JFbhNgx KYiHrINOVRtr/dFkob5l3O2r6r6VvBH7CftXX8hbpJzdHxwJiKwcGphPUfGJVWRw oXNDkxIMqjQn13dLIyHDF0yHc29Ltx4irk7CA2bFdm3I9SY5Umodv+tl/Hg/Xa/H UDsuMzU= -----END CERTIFICATE-----Generated at Sat Apr 5 02:07:49 2025 by rpki-client