$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/DE349762DBA311EA8DE35866C4F9AE02.roa File: DE349762DBA311EA8DE35866C4F9AE02.roa (raw, json) Hash identifier: W9BGV+7n/b6h+ZEgu/zCV5dkMkakdYDRjim1ueZv/vs= Subject key identifier: AE:8E:A4:1B:90:CF:ED:52:F0:8B:FF:A1:7A:18:23:97:91:56:73:40 Certificate issuer: /CN=A91E7ED9/serialNumber=CF668374EC75AB5CACD2EA730515F7B7764DD921 Certificate serial: 07E9 Authority key identifier: CF:66:83:74:EC:75:AB:5C:AC:D2:EA:73:05:15:F7:B7:76:4D:D9:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/DE349762DBA311EA8DE35866C4F9AE02.roa Signing time: Wed 12 Mar 2025 20:50:46 +0000 ROA not before: Wed 12 Mar 2025 20:50:46 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 45572 IP address blocks: 103.107.152.0/24 maxlen: 24 103.107.153.0/24 maxlen: 24 103.107.154.0/24 maxlen: 24 103.107.155.0/24 maxlen: 24 2402:58c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 20:51:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2025 (0x7e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7ED9 Validity Not Before: Mar 12 20:50:46 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67d1f3a6-210a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:58:c6:86:ab:2c:c6:b1:c5:ea:d8:c9:8e:4b: de:aa:b9:ce:fe:49:16:bb:ba:73:ca:50:05:78:a2: 81:be:ec:f0:e9:14:e0:a3:26:f8:62:30:44:a8:03: 6c:41:83:ea:bb:9b:b3:ea:52:ca:03:27:12:ff:00: 16:72:18:02:a9:e0:90:87:f5:7f:59:8b:82:17:55: b7:db:0c:67:7b:c6:16:36:84:e1:f7:ea:fc:9a:0a: c0:58:55:c7:2a:8f:de:91:7e:26:23:bb:84:3d:de: fc:44:57:ee:17:c6:17:b4:dd:ed:0d:4b:1b:c6:86: 9c:96:7c:de:29:e5:15:b0:6f:32:a9:50:1d:97:10: d3:9c:0e:a4:14:8f:6b:bb:79:0c:9c:b0:bc:6f:21: 97:69:93:5e:42:9f:11:92:58:d5:91:6b:00:d8:51: b8:1e:4e:37:6b:76:39:e2:a3:c7:f2:c5:16:03:f2: bd:f2:56:52:bd:ac:03:01:a8:80:cc:ac:e9:13:dc: b4:b5:12:2b:e4:5b:7a:08:7b:ec:e4:dc:67:7c:0e: 8b:31:a2:6b:eb:48:c7:d3:e9:b4:c3:ad:5a:68:3a: fa:a9:e6:39:b3:58:44:fb:4c:a4:48:d3:73:89:44: 06:e3:92:7f:6a:76:0a:ae:a8:d7:ce:6e:60:7d:0f: 22:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:8E:A4:1B:90:CF:ED:52:F0:8B:FF:A1:7A:18:23:97:91:56:73:40 X509v3 Authority Key Identifier: keyid:CF:66:83:74:EC:75:AB:5C:AC:D2:EA:73:05:15:F7:B7:76:4D:D9:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/z2aDdOx1q1ys0upzBRX3t3ZN2SE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z2aDdOx1q1ys0upzBRX3t3ZN2SE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7ED9/F8E0B3B2DBA211EAA88F2066C4F9AE02/DE349762DBA311EA8DE35866C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.107.152.0/22 IPv6: 2402:58c0::/32 Signature Algorithm: sha256WithRSAEncryption 05:69:19:c6:95:cc:42:a0:d9:90:4b:57:a0:52:01:38:a6:29: 4b:ca:4b:e3:22:d1:74:75:ea:6a:94:f9:2f:4d:27:16:65:1c: 18:b2:c9:06:67:87:3b:47:7e:cf:49:f5:9b:e4:2d:0e:4b:10: 12:38:d1:61:43:91:6e:cf:96:2b:ce:f9:44:fa:2a:4e:d5:c6: f3:9d:4e:d9:c2:c2:0d:d8:61:e7:1a:9a:d9:30:bd:a8:45:2a: c9:84:8d:f4:94:0e:f5:f4:32:da:2c:21:56:f3:07:ff:7d:91: 94:50:ef:7b:26:24:6c:d2:bb:95:08:68:3d:8c:00:89:5b:ce: 58:db:ae:2b:92:31:7f:b9:25:ab:19:60:2a:32:2a:23:24:4c: ce:a4:91:f5:03:3c:8d:a3:96:2e:17:17:f2:91:cc:5f:e8:ed: 5b:d8:ae:62:2b:7f:5c:9f:e6:2b:52:7d:61:75:fb:63:09:97: 02:bf:03:c1:38:ff:15:76:44:27:bd:41:e9:94:d0:a3:95:a1: a5:fd:12:45:d7:eb:9b:7a:2c:a4:be:68:99:10:e9:c4:a6:fd: 51:d0:07:1f:b0:38:bb:c3:04:86:99:0b:a9:76:04:84:3e:bc: eb:6d:27:71:95:63:64:d0:2e:f1:5f:e7:1e:43:51:e8:9b:5d: da:a4:28:04 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFRDkxMTAvBgNVBAUTKENGNjY4Mzc0RUM3NUFCNUNBQ0QyRUE3MzA1MTVGN0I3 NzY0REQ5MjEwHhcNMjUwMzEyMjA1MDQ2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2QxZjNhNi0yMTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFjGhqssxrHF6tjJjkveqrnO/kkWu7pzylAFeKKBvuzw6RTgoyb4YjBEqANs QYPqu5uz6lLKAycS/wAWchgCqeCQh/V/WYuCF1W32wxne8YWNoTh9+r8mgrAWFXH Ko/ekX4mI7uEPd78RFfuF8YXtN3tDUsbxoaclnzeKeUVsG8yqVAdlxDTnA6kFI9r u3kMnLC8byGXaZNeQp8RkljVkWsA2FG4Hk43a3Y54qPH8sUWA/K98lZSvawDAaiA zKzpE9y0tRIr5Ft6CHvs5NxnfA6LMaJr60jH0+m0w61aaDr6qeY5s1hE+0ykSNNz iUQG45J/anYKrqjXzm5gfQ8iTwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFK6OpBuQ z+1S8Iv/oXoYI5eRVnNAMB8GA1UdIwQYMBaAFM9mg3TsdatcrNLqcwUV97d2Tdkh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0VEOS9GOEUwQjNCMkRC QTIxMUVBQTg4RjIwNjZDNEY5QUUwMi96MmFEZE94MXExeXMwdXB6QlJYM3QzWk4y U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3oyYURkT3gxcTF5czB1cHpCUlgzdDNaTjJTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTdFRDkvRjhFMEIzQjJEQkEyMTFFQUE4OEYyMDY2QzRGOUFFMDIvREUzNDk3NjJE QkEzMTFFQThERTM1ODY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJna5gwDQQCAAIwBwMFACQCWMAwDQYJKoZIhvcNAQELBQAD ggEBAAVpGcaVzEKg2ZBLV6BSATimKUvKS+Mi0XR16mqU+S9NJxZlHBiyyQZnhztH fs9J9ZvkLQ5LEBI40WFDkW7PlivO+UT6Kk7VxvOdTtnCwg3YYecamtkwvahFKsmE jfSUDvX0MtosIVbzB/99kZRQ73smJGzSu5UIaD2MAIlbzljbriuSMX+5JasZYCoy KiMkTM6kkfUDPI2jli4XF/KRzF/o7VvYrmIrf1yf5itSfWF1+2MJlwK/A8E4/xV2 RCe9QemU0KOVoaX9EkXX65t6LKS+aJkQ6cSm/VHQBx+wOLvDBIaZC6l2BIQ+vOtt J3GVY2TQLvFf5x5DUeibXdqkKAQ= -----END CERTIFICATE-----Generated at Sat Apr 12 10:47:47 2025 by rpki-client