$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/CD90ED68057211F0B6E2301BC4F9AE02.roa File: CD90ED68057211F0B6E2301BC4F9AE02.roa (raw, json) Hash identifier: VUKsMbXUZ/VFyFAP8kRF14O9sqE9uokELiAUUcFuG5M= Subject key identifier: 4A:86:3D:35:D2:8B:AE:73:B5:7C:B4:7A:BE:F2:A7:E9:21:81:0F:5B Certificate issuer: /CN=A91E4E32/serialNumber=A185C0C574829C5FCD71445449E534CDAEF41396 Certificate serial: 02DC Authority key identifier: A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/CD90ED68057211F0B6E2301BC4F9AE02.roa Signing time: Thu 20 Mar 2025 10:05:08 +0000 ROA not before: Thu 20 Mar 2025 10:05:08 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 142565 IP address blocks: 103.243.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:45:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 732 (0x2dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4E32 Validity Not Before: Mar 20 10:05:08 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67dbe854-ca2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:47:fd:cd:11:b0:ae:92:ff:f4:2b:cb:fd:2b: 35:a4:13:fe:f5:4a:11:c0:f2:2d:25:5a:04:65:a4: ac:b3:69:d5:76:dc:2b:72:12:4c:38:c4:19:23:ac: f4:bc:cf:b7:a3:c8:2f:41:61:8f:04:96:9e:4b:51: 7e:d2:e2:3e:ee:73:74:cc:22:19:bc:9e:a2:0f:1f: fb:8a:37:05:d5:39:f1:dd:4f:e4:fd:f0:d8:97:c5: d3:0f:14:f6:b1:85:53:4d:19:17:b3:88:d9:76:04: 8e:82:4b:66:79:22:74:69:8f:b7:75:36:ed:58:7b: 57:e2:6b:63:59:91:34:40:5d:02:dc:64:49:59:b8: 27:70:8e:13:85:93:9a:32:c7:6a:36:5f:25:9d:11: ec:b2:5b:e0:93:26:f3:32:48:3e:c7:fa:d4:66:6c: 76:e7:57:8d:b4:2c:26:d2:a4:ee:59:bd:36:cc:5c: ed:a3:df:11:b2:f7:a6:e5:9a:67:23:e7:a0:33:9d: 1b:bc:4f:fa:bc:f1:17:73:77:2f:77:88:7a:b4:9b: 89:75:a6:99:69:c5:c8:29:f0:f8:d2:aa:cf:2b:3a: 72:7a:da:29:0f:e5:cb:94:a0:44:e8:32:63:09:f8: 77:64:b3:7b:fb:d2:8b:16:83:c7:1f:f8:ef:23:cc: 68:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:86:3D:35:D2:8B:AE:73:B5:7C:B4:7A:BE:F2:A7:E9:21:81:0F:5B X509v3 Authority Key Identifier: keyid:A1:85:C0:C5:74:82:9C:5F:CD:71:44:54:49:E5:34:CD:AE:F4:13:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/oYXAxXSCnF_NcURUSeU0za70E5Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oYXAxXSCnF_NcURUSeU0za70E5Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4E32/720959FC01C011EDBD7C6F58C4F9AE02/CD90ED68057211F0B6E2301BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.116.0/24 Signature Algorithm: sha256WithRSAEncryption 43:ec:4d:d3:5b:ef:54:2e:ba:8b:70:e9:fc:72:8a:90:08:2a: 01:b7:aa:e3:f4:40:60:fb:55:ee:0f:7a:ed:ca:4a:fc:35:34: 64:4c:ab:66:53:82:51:5f:b5:f1:3e:44:16:be:37:5c:b0:99: a3:f8:27:e5:a4:0e:c4:be:0e:e8:10:d2:bd:19:c8:91:bd:25: 49:ea:d7:65:0a:cc:26:83:aa:d8:a2:c7:a3:74:7c:0f:3a:eb: e9:7b:a4:6b:09:9d:92:6a:cc:c0:3a:32:53:9d:6c:72:39:ff: 13:e8:ec:d1:22:0c:56:a1:b5:fb:9c:57:dc:fa:f0:b1:d6:84: b5:c3:31:39:fb:79:5b:52:2e:68:90:46:79:2b:35:05:eb:3f: c6:7a:49:7f:33:a4:e6:da:37:29:db:b1:30:2c:ec:44:3d:f8: cf:6a:22:d6:68:3b:6c:65:fb:47:bc:20:36:31:f5:a7:21:a1: 28:96:28:c6:86:45:86:5d:3e:72:03:4f:ae:6a:4b:1d:19:8d: 9f:94:21:e9:9f:a6:5a:70:01:95:be:7c:99:3a:04:b4:75:8f: 8e:23:0f:dd:8e:1c:d2:a9:b0:20:da:42:23:4f:7d:93:06:64: ca:4e:d4:bb:84:8b:3c:24:16:e8:23:8d:74:12:cf:90:4b:aa: 7f:81:bb:ca -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFMzIxMTAvBgNVBAUTKEExODVDMEM1NzQ4MjlDNUZDRDcxNDQ1NDQ5RTUzNENE QUVGNDEzOTYwHhcNMjUwMzIwMTAwNTA4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RiZTg1NC1jYTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0f9zRGwrpL/9CvL/Ss1pBP+9UoRwPItJVoEZaSss2nVdtwrchJMOMQZI6z0 vM+3o8gvQWGPBJaeS1F+0uI+7nN0zCIZvJ6iDx/7ijcF1Tnx3U/k/fDYl8XTDxT2 sYVTTRkXs4jZdgSOgktmeSJ0aY+3dTbtWHtX4mtjWZE0QF0C3GRJWbgncI4ThZOa MsdqNl8lnRHsslvgkybzMkg+x/rUZmx251eNtCwm0qTuWb02zFzto98Rsvem5Zpn I+egM50bvE/6vPEXc3cvd4h6tJuJdaaZacXIKfD40qrPKzpyetopD+XLlKBE6DJj Cfh3ZLN7+9KLFoPHH/jvI8xoqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEqGPTXS i65ztXy0er7yp+khgQ9bMB8GA1UdIwQYMBaAFKGFwMV0gpxfzXFEVEnlNM2u9BOW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEUzMi83MjA5NTlGQzAx QzAxMUVEQkQ3QzZGNThDNEY5QUUwMi9vWVhBeFhTQ25GX05jVVJVU2VVMHphNzBF NVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29ZWEF4WFNDbkZfTmNVUlVTZVUwemE3MEU1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTRFMzIvNzIwOTU5RkMwMUMwMTFFREJEN0M2RjU4QzRGOUFFMDIvQ0Q5MEVENjgw NTcyMTFGMEI2RTIzMDFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn83QwDQYJKoZIhvcNAQELBQADggEBAEPsTdNb71Quuotw 6fxyipAIKgG3quP0QGD7Ve4Peu3KSvw1NGRMq2ZTglFftfE+RBa+N1ywmaP4J+Wk DsS+DugQ0r0ZyJG9JUnq12UKzCaDqtiix6N0fA866+l7pGsJnZJqzMA6MlOdbHI5 /xPo7NEiDFahtfucV9z68LHWhLXDMTn7eVtSLmiQRnkrNQXrP8Z6SX8zpObaNynb sTAs7EQ9+M9qItZoO2xl+0e8IDYx9achoSiWKMaGRYZdPnIDT65qSx0ZjZ+UIemf plpwAZW+fJk6BLR1j44jD92OHNKpsCDaQiNPfZMGZMpO1LuEizwkFugjjXQSz5BL qn+Bu8o= -----END CERTIFICATE-----Generated at Sat Apr 5 06:03:24 2025 by rpki-client