$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/E64F585A060111F0BCBC7237C4F9AE02.roa File: E64F585A060111F0BCBC7237C4F9AE02.roa (raw, json) Hash identifier: 4p0L4amdSdbYZXHNhTEHyTVpgE1An8KXOESZWhCLlbQ= Subject key identifier: 30:4C:3C:B3:5F:67:E6:58:3D:BD:31:B7:75:F6:4F:BC:EA:4B:6E:CF Certificate issuer: /CN=A91EBB5B/serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Certificate serial: 0B07 Authority key identifier: 95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/E64F585A060111F0BCBC7237C4F9AE02.roa Signing time: Wed 02 Apr 2025 05:43:28 +0000 ROA not before: Wed 02 Apr 2025 05:43:28 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 5065 IP address blocks: 103.18.228.0/24 maxlen: 24 103.18.229.0/24 maxlen: 24 103.18.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:27:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2823 (0xb07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB5B Validity Not Before: Apr 2 05:43:28 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67ecce7f-dd82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:92:12:d4:6f:d5:b9:6c:3d:ef:2e:70:19:e9: a0:32:6f:b5:7a:8d:85:69:75:8c:2d:0a:ca:ac:ac: 6c:ae:4f:f8:31:fa:ce:de:e9:1f:40:5b:0a:93:35: 7b:cc:ff:a9:65:6b:d5:de:b0:6f:24:77:bb:72:56: 63:b5:1f:1b:5a:01:17:c7:00:67:24:2d:43:0e:a6: d8:1e:7e:de:84:a4:33:c0:fe:8a:93:27:dc:d9:03: a4:e2:be:e9:4a:77:75:34:67:e5:d6:7a:4f:4c:dd: 01:76:33:76:e4:5a:83:f5:6b:84:10:c2:0c:81:c9: bf:b0:5f:4d:bd:27:cc:75:ff:87:56:5f:07:b5:3c: e1:ae:7f:c7:a0:39:b3:e1:12:aa:91:e3:bc:78:ea: d9:b2:c7:16:08:66:bd:e4:43:e0:34:42:97:0e:9c: ac:15:b1:6c:78:f9:27:6f:51:4f:65:3b:d6:d6:1c: 7a:47:c3:5e:4e:b9:1d:6d:13:87:82:4d:10:bc:3c: 24:7d:9f:e9:0e:6a:08:0f:31:83:57:8b:e3:6a:a8: 5d:ec:4a:17:d5:30:1e:f3:31:6e:18:eb:45:81:5e: fb:f6:43:03:b8:fe:46:7a:16:bf:c5:aa:0f:22:a5: 08:7c:bd:53:5a:14:42:4a:5c:52:29:66:00:fe:13: 59:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:4C:3C:B3:5F:67:E6:58:3D:BD:31:B7:75:F6:4F:BC:EA:4B:6E:CF X509v3 Authority Key Identifier: keyid:95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/E64F585A060111F0BCBC7237C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.18.228.0-103.18.230.255 Signature Algorithm: sha256WithRSAEncryption 9c:f5:08:5b:6b:1a:80:36:b4:81:2e:51:89:2f:f4:f2:df:38: 7d:53:70:ad:db:0e:75:f6:9f:b1:aa:3f:60:02:d7:9e:58:a9: 6f:d2:98:4b:31:b1:9f:f7:1b:7d:cb:e6:34:f4:fd:8a:2e:d5: 59:c6:41:4c:96:9d:37:16:af:eb:59:c2:da:5f:34:a9:f9:48: 2c:75:5c:5e:76:dd:1e:d8:bd:85:5a:4e:62:e4:85:47:fe:72: fd:ad:84:09:f3:0d:d5:75:9d:12:51:e1:74:56:78:e5:b2:b1: a4:d9:32:c6:fc:bb:93:19:11:56:28:42:9d:8f:be:a9:78:4e: 7a:d4:76:c8:ab:98:86:86:d8:1d:ca:2c:a2:3b:25:d6:9a:d4: c3:1b:d5:49:75:94:7c:b6:5d:26:67:49:e4:dd:29:84:94:3c: 17:67:24:6f:0d:a1:7f:e8:6d:81:23:a8:51:ed:65:39:80:9e: ef:b6:08:58:58:b5:1f:f3:bb:b0:31:10:93:d8:50:cb:75:6c: 48:a8:74:a7:0b:fe:02:7a:96:e9:60:e6:c4:f1:2c:67:56:00: af:8e:15:5c:92:74:ea:a0:40:58:4a:92:5c:b8:3d:86:89:58: 17:f9:4d:e6:77:3c:0a:15:e4:a8:69:5f:38:c5:2b:49:7d:4d: b3:92:3f:c9 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICCwcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCNUIxMTAvBgNVBAUTKDk1QzEzQTNDQzdFQzI3MEI3RTVGMTlGM0NENEYzQjUw REZERjYyRTQwHhcNMjUwNDAyMDU0MzI4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VjY2U3Zi1kZDgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy5IS1G/VuWw97y5wGemgMm+1eo2FaXWMLQrKrKxsrk/4MfrO3ukfQFsKkzV7 zP+pZWvV3rBvJHe7clZjtR8bWgEXxwBnJC1DDqbYHn7ehKQzwP6Kkyfc2QOk4r7p Snd1NGfl1npPTN0BdjN25FqD9WuEEMIMgcm/sF9NvSfMdf+HVl8HtTzhrn/HoDmz 4RKqkeO8eOrZsscWCGa95EPgNEKXDpysFbFsePknb1FPZTvW1hx6R8NeTrkdbROH gk0QvDwkfZ/pDmoIDzGDV4vjaqhd7EoX1TAe8zFuGOtFgV779kMDuP5Geha/xaoP IqUIfL1TWhRCSlxSKWYA/hNZ3QIDAQABo4ICnTCCApkwHQYDVR0OBBYEFDBMPLNf Z+ZYPb0xt3X2T7zqS27PMB8GA1UdIwQYMBaAFJXBOjzH7CcLfl8Z881PO1Df32Lk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkI1Qi8yOURFNzQ4QTQx OUUxMUVBQjg2NkU3N0FDNEY5QUUwMi9sY0U2UE1mc0p3dC1YeG56elU4N1VOX2ZZ dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xjRTZQTWZzSnd0LVh4bnp6VTg3VU5fZll1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJCNUIvMjlERTc0OEE0MTlFMTFFQUI4NjZFNzdBQzRGOUFFMDIvRTY0RjU4NUEw NjAxMTFGMEJDQkM3MjM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAmcS5AMEAGcS5jANBgkqhkiG9w0BAQsFAAOCAQEAnPUI W2sagDa0gS5RiS/08t84fVNwrdsOdfafsao/YALXnlipb9KYSzGxn/cbfcvmNPT9 ii7VWcZBTJadNxav61nC2l80qflILHVcXnbdHti9hVpOYuSFR/5y/a2ECfMN1XWd ElHhdFZ45bKxpNkyxvy7kxkRVihCnY++qXhOetR2yKuYhobYHcosojsl1prUwxvV SXWUfLZdJmdJ5N0phJQ8F2ckbw2hf+htgSOoUe1lOYCe77YIWFi1H/O7sDEQk9hQ y3VsSKh0pwv+AnqW6WDmxPEsZ1YAr44VXJJ06qBAWEqSXLg9holYF/lN5nc8ChXk qGlfOMUrSX1Ns5I/yQ== -----END CERTIFICATE-----Generated at Sun Apr 6 04:00:10 2025 by rpki-client