$ rpki-client -vvf rpki.apnic.net/member_repository/A91E72AB/D71734FE0CA411EA84841B3EC4F9AE02/EA903484DBE011EF8B7B8868C4F9AE02.roa File: EA903484DBE011EF8B7B8868C4F9AE02.roa (raw, json) Hash identifier: WnCn74CsMDLUDoWgKsd58XNjQZ+24XZ7nmffYeANshI= Subject key identifier: 60:69:D1:C1:65:6C:54:B7:8B:FB:F6:28:17:AA:3B:C5:28:07:D6:21 Certificate issuer: /CN=A91E72AB/serialNumber=31D09E24D5DB8C58F414EEA3EF0EEDFB355DABF4 Certificate serial: 0BEC Authority key identifier: 31:D0:9E:24:D5:DB:8C:58:F4:14:EE:A3:EF:0E:ED:FB:35:5D:AB:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdCeJNXbjFj0FO6j7w7t-zVdq_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E72AB/D71734FE0CA411EA84841B3EC4F9AE02/EA903484DBE011EF8B7B8868C4F9AE02.roa Signing time: Sun 26 Jan 2025 12:27:33 +0000 ROA not before: Sun 26 Jan 2025 12:27:33 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 138953 IP address blocks: 103.137.160.0/24 maxlen: 24 2001:df0:2480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E72AB/D71734FE0CA411EA84841B3EC4F9AE02/MdCeJNXbjFj0FO6j7w7t-zVdq_Q.crl rsync://rpki.apnic.net/member_repository/A91E72AB/D71734FE0CA411EA84841B3EC4F9AE02/MdCeJNXbjFj0FO6j7w7t-zVdq_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdCeJNXbjFj0FO6j7w7t-zVdq_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:48:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3052 (0xbec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E72AB Validity Not Before: Jan 26 12:27:33 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67962a34-d38b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6e:74:54:bc:e2:28:f3:e5:0c:dd:a3:c7:eb: 26:10:51:d8:3b:64:0d:42:3e:b0:0a:12:2f:a4:6d: 83:ef:33:0d:a9:f1:54:86:46:a9:e7:64:9b:47:2e: 79:14:35:fe:c9:03:46:3d:89:e1:6a:99:79:1b:b4: c6:38:98:67:3e:34:d5:cf:a3:f5:08:ea:1c:1f:32: ea:e5:54:dd:a7:e3:49:ea:a3:54:51:87:62:28:2f: 40:a4:f1:86:e7:28:b3:2e:9d:41:d1:ca:c1:85:96: bc:fb:b0:92:69:ed:0e:68:3a:3b:b5:65:11:cd:95: ac:c5:b1:cd:40:6b:d1:16:6f:1b:2d:0f:f9:5c:37: 4d:64:10:24:c4:fd:38:82:29:1b:b1:8b:b8:3d:ce: b1:a9:cf:ea:d1:fa:c6:08:ba:f4:97:67:fa:51:51: 62:1b:50:5e:6b:b5:bc:0a:48:8e:c2:02:3f:7a:9d: 0a:f3:57:4f:99:d2:e5:fc:a8:27:dd:26:d1:d4:8e: 8c:f4:61:d1:0f:7d:65:8a:3e:3e:f5:45:48:57:c1: 55:16:34:dc:21:bc:06:05:e0:a2:49:f5:8e:b1:52: 14:ff:19:24:47:2d:43:74:88:51:14:3c:61:b6:60: ad:56:ea:cd:8d:7b:7a:ed:48:cd:14:21:57:0d:e8: 02:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:69:D1:C1:65:6C:54:B7:8B:FB:F6:28:17:AA:3B:C5:28:07:D6:21 X509v3 Authority Key Identifier: keyid:31:D0:9E:24:D5:DB:8C:58:F4:14:EE:A3:EF:0E:ED:FB:35:5D:AB:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E72AB/D71734FE0CA411EA84841B3EC4F9AE02/MdCeJNXbjFj0FO6j7w7t-zVdq_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdCeJNXbjFj0FO6j7w7t-zVdq_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E72AB/D71734FE0CA411EA84841B3EC4F9AE02/EA903484DBE011EF8B7B8868C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.160.0/24 IPv6: 2001:df0:2480::/48 Signature Algorithm: sha256WithRSAEncryption 3e:ff:3f:79:18:27:bf:20:3e:95:7e:76:48:a6:7f:9a:10:28: 93:a8:e2:2a:de:2c:21:e0:f0:6d:0f:fa:39:74:7e:e2:9f:91: f1:a5:12:0b:7b:f0:ba:6e:61:af:f2:f1:fd:a6:33:2f:70:59: 4e:ff:a3:27:4d:38:1b:32:71:8e:dc:54:33:56:74:1b:c8:43: ab:20:ce:66:10:45:9a:11:30:5f:65:1a:af:1a:f0:25:cf:f5: 1b:a3:5c:1c:99:bd:fb:e7:f7:78:db:80:2d:40:d3:7f:03:d3: 7b:5b:74:1f:3e:2b:bf:20:18:af:48:cd:b3:54:6c:74:49:6c: d7:71:ad:84:6d:18:0a:eb:2e:cb:e5:2a:08:81:a7:35:97:d5: d3:1f:0e:d7:da:40:00:38:ef:79:17:82:27:6e:11:b9:de:b3: 6b:7e:dc:30:9e:b9:99:9c:13:a8:fa:65:fe:7f:2b:70:60:31: fe:02:b7:2f:6f:6b:b6:bb:97:27:16:93:48:b3:ba:b4:7e:04: a7:ea:e5:c8:11:f0:5b:35:63:20:06:64:f4:b1:66:eb:a6:e4: 39:18:57:b2:07:c4:5b:2f:3c:1f:65:a9:0d:db:0b:3f:68:b6: 9e:9b:75:56:dc:46:bb:1c:ba:59:35:b7:c5:44:cf:f4:9c:2f: f1:bd:46:d4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICC+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcyQUIxMTAvBgNVBAUTKDMxRDA5RTI0RDVEQjhDNThGNDE0RUVBM0VGMEVFREZC MzU1REFCRjQwHhcNMjUwMTI2MTIyNzMzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk2MmEzNC1kMzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq250VLziKPPlDN2jx+smEFHYO2QNQj6wChIvpG2D7zMNqfFUhkap52SbRy55 FDX+yQNGPYnhapl5G7TGOJhnPjTVz6P1COocHzLq5VTdp+NJ6qNUUYdiKC9ApPGG 5yizLp1B0crBhZa8+7CSae0OaDo7tWURzZWsxbHNQGvRFm8bLQ/5XDdNZBAkxP04 gikbsYu4Pc6xqc/q0frGCLr0l2f6UVFiG1Bea7W8CkiOwgI/ep0K81dPmdLl/Kgn 3SbR1I6M9GHRD31lij4+9UVIV8FVFjTcIbwGBeCiSfWOsVIU/xkkRy1DdIhRFDxh tmCtVurNjXt67UjNFCFXDegCIwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGBp0cFl bFS3i/v2KBeqO8UoB9YhMB8GA1UdIwQYMBaAFDHQniTV24xY9BTuo+8O7fs1Xav0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzJBQi9ENzE3MzRGRTBD QTQxMUVBODQ4NDFCM0VDNEY5QUUwMi9NZENlSk5YYmpGajBGTzZqN3c3dC16VmRx X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01kQ2VKTlhiakZqMEZPNmo3dzd0LXpWZHFfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTcyQUIvRDcxNzM0RkUwQ0E0MTFFQTg0ODQxQjNFQzRGOUFFMDIvRUE5MDM0ODRE QkUwMTFFRjhCN0I4ODY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABniaAwDwQCAAIwCQMHACABDfAkgDANBgkqhkiG9w0BAQsF AAOCAQEAPv8/eRgnvyA+lX52SKZ/mhAok6jiKt4sIeDwbQ/6OXR+4p+R8aUSC3vw um5hr/Lx/aYzL3BZTv+jJ004GzJxjtxUM1Z0G8hDqyDOZhBFmhEwX2UarxrwJc/1 G6NcHJm9++f3eNuALUDTfwPTe1t0Hz4rvyAYr0jNs1RsdEls13GthG0YCusuy+Uq CIGnNZfV0x8O19pAADjveReCJ24Rud6za37cMJ65mZwTqPpl/n8rcGAx/gK3L29r truXJxaTSLO6tH4Ep+rlyBHwWzVjIAZk9LFm66bkORhXsgfEWy88H2WpDdsLP2i2 npt1VtxGuxy6WTW3xUTP9Jwv8b1G1A== -----END CERTIFICATE-----Generated at Sat Apr 5 03:33:23 2025 by rpki-client