$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8103/93DC754EDE0111EF93335F0BC4F9AE02/9A616002DE0411EFA80D3B34C4F9AE02.roa File: 9A616002DE0411EFA80D3B34C4F9AE02.roa (raw, json) Hash identifier: SyODw+cJwyZ2yJekBzL0vGtZJRWwofo8zfujkPhkBig= Subject key identifier: 9F:9F:47:E0:71:F2:BC:1E:C8:97:96:A7:8B:A7:BD:0A:90:80:F4:50 Certificate issuer: /CN=A91E8103/serialNumber=6031D0601D5C2D87AD662361E63BFFD91E040733 Certificate serial: 29 Authority key identifier: 60:31:D0:60:1D:5C:2D:87:AD:66:23:61:E6:3B:FF:D9:1E:04:07:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDHQYB1cLYetZiNh5jv_2R4EBzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8103/93DC754EDE0111EF93335F0BC4F9AE02/9A616002DE0411EFA80D3B34C4F9AE02.roa Signing time: Thu 03 Apr 2025 07:34:57 +0000 ROA not before: Thu 03 Apr 2025 07:34:57 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 9268 IP address blocks: 103.17.16.0/23 maxlen: 24 103.249.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8103/93DC754EDE0111EF93335F0BC4F9AE02/YDHQYB1cLYetZiNh5jv_2R4EBzM.crl rsync://rpki.apnic.net/member_repository/A91E8103/93DC754EDE0111EF93335F0BC4F9AE02/YDHQYB1cLYetZiNh5jv_2R4EBzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDHQYB1cLYetZiNh5jv_2R4EBzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:34:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8103 Validity Not Before: Apr 3 07:34:57 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ee3a21-d52f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:37:0c:52:f1:37:6f:0b:4c:92:ec:3b:50:3d: 1e:aa:1b:f3:9a:04:32:bd:c6:e6:3d:7e:02:b6:7d: 3f:4a:03:55:57:2a:46:47:e6:88:30:ba:d6:2c:8d: e3:55:23:0b:da:57:c9:13:fa:c8:61:87:ae:1d:50: 11:7f:6d:ed:a5:4e:4a:12:cb:4d:80:1f:99:a7:e6: 16:56:4b:c3:d7:47:5a:a8:af:18:07:57:3f:b1:f5: 3b:c3:70:64:09:aa:b6:21:9a:e6:8f:ed:ec:9e:9b: 9d:32:25:2d:2c:02:08:30:1c:07:7f:7f:b9:fd:41: 05:ae:30:c5:37:a4:80:8f:18:50:b6:ec:39:29:df: 67:2d:d9:bb:c0:84:38:9b:51:ee:1c:8b:1a:4b:96: b8:65:90:a8:20:94:eb:76:55:3f:cf:c4:8d:3f:ed: d2:f3:2e:76:8d:76:20:f8:ad:a1:39:da:e7:05:63: e2:8a:cb:28:66:c6:18:dc:df:61:7c:65:32:14:de: c5:17:6a:b2:9b:ab:8f:25:54:e3:86:5f:8a:f2:48: 85:36:f6:05:04:45:36:81:a9:30:15:02:6f:73:6d: 4e:98:47:11:a5:d2:5b:67:e6:be:2f:c3:c3:9c:99: 22:1e:1c:c0:d8:e6:0e:d8:9d:f7:3b:60:c4:dd:ec: 42:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:9F:47:E0:71:F2:BC:1E:C8:97:96:A7:8B:A7:BD:0A:90:80:F4:50 X509v3 Authority Key Identifier: keyid:60:31:D0:60:1D:5C:2D:87:AD:66:23:61:E6:3B:FF:D9:1E:04:07:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8103/93DC754EDE0111EF93335F0BC4F9AE02/YDHQYB1cLYetZiNh5jv_2R4EBzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YDHQYB1cLYetZiNh5jv_2R4EBzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8103/93DC754EDE0111EF93335F0BC4F9AE02/9A616002DE0411EFA80D3B34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.17.16.0/23 103.249.66.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:8e:22:d1:99:7c:a6:17:08:44:77:bb:bf:6e:1d:ed:59:37: 0b:e5:64:3d:7d:d3:1f:25:29:8a:cd:ac:6d:aa:6a:e6:26:aa: ce:55:90:c9:aa:8f:bd:1f:bd:cf:af:c0:dc:9c:44:66:b9:f8: 0f:b1:ae:74:f3:ef:1e:6a:a0:79:04:0b:d1:0e:4f:72:ad:c0: 2b:9a:5a:eb:82:7a:e8:52:66:d1:78:49:2f:97:c9:6d:c8:5a: 4a:d9:70:5b:68:10:83:af:b8:c1:4d:69:2e:92:9c:0e:84:14: ce:a5:e5:70:25:69:80:10:34:33:85:9b:7d:46:5e:e1:2e:17: 2a:d1:2d:48:e8:12:d9:9a:9e:e5:0c:2b:07:93:19:78:e1:17: 82:9e:13:a9:89:46:5a:ca:ca:f2:b1:3c:d7:aa:10:80:07:6f: e4:ae:f0:9b:5b:d9:08:4f:e5:cf:e3:75:5f:8f:8b:07:1b:47: 3c:7d:d8:77:93:19:e9:36:2d:12:47:1e:de:79:4e:cd:32:46: e0:79:a3:df:82:53:72:c5:35:a5:e1:3f:e3:c9:09:8d:22:c3: 8f:57:7c:34:1b:c1:16:e6:43:e1:62:97:39:e0:5a:ea:fb:70: 2e:7c:1a:87:3e:3b:91:b9:ec:28:a7:78:4d:3a:73:b3:de:e7: 64:18:ee:fe -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODEwMzExMC8GA1UEBRMoNjAzMUQwNjAxRDVDMkQ4N0FENjYyMzYxRTYzQkZGRDkx RTA0MDczMzAeFw0yNTA0MDMwNzM0NTdaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZWUzYTIxLWQ1MmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5NwxS8TdvC0yS7DtQPR6qG/OaBDK9xuY9fgK2fT9KA1VXKkZH5ogwutYsjeNV IwvaV8kT+shhh64dUBF/be2lTkoSy02AH5mn5hZWS8PXR1qorxgHVz+x9TvDcGQJ qrYhmuaP7eyem50yJS0sAggwHAd/f7n9QQWuMMU3pICPGFC27Dkp32ct2bvAhDib Ue4cixpLlrhlkKgglOt2VT/PxI0/7dLzLnaNdiD4raE52ucFY+KKyyhmxhjc32F8 ZTIU3sUXarKbq48lVOOGX4rySIU29gUERTaBqTAVAm9zbU6YRxGl0ltn5r4vw8Oc mSIeHMDY5g7Ynfc7YMTd7ELtAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUn59H4HHy vB7Il5ani6e9CpCA9FAwHwYDVR0jBBgwFoAUYDHQYB1cLYetZiNh5jv/2R4EBzMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4MTAzLzkzREM3NTRFREUw MTExRUY5MzMzNUYwQkM0RjlBRTAyL1lESFFZQjFjTFlldFppTmg1anZfMlI0RUJ6 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWURIUVlCMWNMWWV0WmlOaDVqdl8yUjRFQnpNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODEwMy85M0RDNzU0RURFMDExMUVGOTMzMzVGMEJDNEY5QUUwMi85QTYxNjAwMkRF MDQxMUVGQTgwRDNCMzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAWcREAMEAWf5QjANBgkqhkiG9w0BAQsFAAOCAQEAio4i0Zl8 phcIRHe7v24d7Vk3C+VkPX3THyUpis2sbapq5iaqzlWQyaqPvR+9z6/A3JxEZrn4 D7GudPPvHmqgeQQL0Q5Pcq3AK5pa64J66FJm0XhJL5fJbchaStlwW2gQg6+4wU1p LpKcDoQUzqXlcCVpgBA0M4WbfUZe4S4XKtEtSOgS2Zqe5QwrB5MZeOEXgp4TqYlG WsrK8rE816oQgAdv5K7wm1vZCE/lz+N1X4+LBxtHPH3Yd5MZ6TYtEkce3nlOzTJG 4Hmj34JTcsU1peE/48kJjSLDj1d8NBvBFuZD4WKXOeBa6vtwLnwahz47kbnsKKd4 TTpzs97nZBju/g== -----END CERTIFICATE-----Generated at Sat Apr 5 02:18:03 2025 by rpki-client