$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/08ADD496B19E11EC86ADF246C4F9AE02.roa File: 08ADD496B19E11EC86ADF246C4F9AE02.roa (raw, json) Hash identifier: 6mQI7tPzFyvqQ3noJg2+jNlZObqFlofmOKhY46d73Xo= Subject key identifier: 00:EB:04:1C:FA:E5:8D:76:36:29:2A:C2:6C:E9:F7:C3:B6:23:FB:AD Certificate issuer: /CN=A91EEA4D/serialNumber=281E953DAE717280A16E4BC56E41352E84763CBC Certificate serial: 080F Authority key identifier: 28:1E:95:3D:AE:71:72:80:A1:6E:4B:C5:6E:41:35:2E:84:76:3C:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB6VPa5xcoChbkvFbkE1LoR2PLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/08ADD496B19E11EC86ADF246C4F9AE02.roa Signing time: Mon 31 Mar 2025 19:49:20 +0000 ROA not before: Mon 31 Mar 2025 19:49:20 +0000 ROA not after: Fri 01 Aug 2025 00:00:00 +0000 asID: 138561 IP address blocks: 103.133.4.0/22 maxlen: 22 103.133.4.0/23 maxlen: 23 103.133.4.0/24 maxlen: 24 103.133.5.0/24 maxlen: 24 103.133.6.0/23 maxlen: 23 103.133.6.0/24 maxlen: 24 103.133.7.0/24 maxlen: 24 2404:44c0::/32 maxlen: 32 2404:44c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/KB6VPa5xcoChbkvFbkE1LoR2PLw.crl rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/KB6VPa5xcoChbkvFbkE1LoR2PLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB6VPa5xcoChbkvFbkE1LoR2PLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:34:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2063 (0x80f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEA4D Validity Not Before: Mar 31 19:49:20 2025 GMT Not After : Aug 1 00:00:00 2025 GMT Subject: CN=67eaf1bf-1fff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5b:23:7b:a6:90:91:87:c3:e3:7d:38:e9:1f: 96:f6:f0:2b:f0:6d:54:c0:5c:e9:cf:fe:e1:4c:ff: df:ec:21:aa:2c:1f:b5:45:43:8d:97:91:15:e5:c9: 61:61:25:ac:12:2c:ef:45:35:7f:5d:f2:4d:a0:78: fd:ff:81:c8:2c:de:4a:09:81:72:16:52:cb:6e:9f: 4f:0f:21:8d:77:0a:6d:02:36:a8:69:40:17:5a:85: d4:0d:38:1b:2a:ef:de:65:e6:27:9d:dc:4c:91:30: 48:56:3d:8d:48:8c:fc:8e:da:fd:51:4f:bc:09:18: 5c:42:5c:93:a2:e9:e1:38:a7:80:61:68:a0:32:f3: e6:9f:2b:80:f7:8e:88:40:3b:e0:f6:53:27:f2:66: f5:6f:a3:ff:bd:ae:a4:3d:b5:11:2d:18:4f:a4:2d: 4a:75:44:a8:95:94:3c:d1:a0:fa:53:ed:cc:7f:61: c1:c9:99:6b:1f:2c:e1:4f:1c:54:b2:55:19:7d:cc: bf:91:49:f1:a6:ef:ee:aa:86:3a:3f:e8:8a:3b:42: 48:7b:60:f6:40:ff:c7:9a:ab:59:d5:80:ae:e2:cc: bc:66:58:94:10:78:6a:03:74:a5:ec:a3:7b:e5:30: a2:e9:6e:0e:ac:17:72:93:31:0c:ab:50:36:74:e6: 6b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:EB:04:1C:FA:E5:8D:76:36:29:2A:C2:6C:E9:F7:C3:B6:23:FB:AD X509v3 Authority Key Identifier: keyid:28:1E:95:3D:AE:71:72:80:A1:6E:4B:C5:6E:41:35:2E:84:76:3C:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/KB6VPa5xcoChbkvFbkE1LoR2PLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB6VPa5xcoChbkvFbkE1LoR2PLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEA4D/661F73EC473711EAAB16BB50C4F9AE02/08ADD496B19E11EC86ADF246C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.4.0/22 IPv6: 2404:44c0::/32 Signature Algorithm: sha256WithRSAEncryption 1c:5f:0a:73:c6:01:ba:97:72:1b:be:65:66:1a:d0:2e:be:c8: 9f:98:c5:36:5d:50:c8:a2:da:f7:7e:8f:ea:40:8c:f5:e0:8c: e3:8e:b9:aa:e0:8f:93:9a:ad:97:a6:2b:03:56:a1:7c:2b:8d: 19:89:76:ef:98:80:48:13:5e:89:c2:de:bd:3e:42:c5:e8:c3: f4:7e:0a:0e:43:4d:0e:32:f9:26:85:0a:62:20:73:b1:3c:d9: 6f:93:32:94:2e:55:af:85:2f:ad:f4:ea:51:7b:87:25:e7:1c: c5:e5:ce:75:97:7f:fa:41:cd:69:26:80:73:1e:ca:53:7d:f5: d7:42:0d:ee:1a:3c:b5:2f:2c:a1:a3:26:56:4b:7a:7c:3f:b4: f5:65:04:80:de:fb:2e:b4:72:13:ea:62:48:89:03:13:c3:00: 2c:07:e1:c3:da:61:68:79:92:3a:d3:0e:ec:67:9f:fb:f0:4f: 34:0f:ad:48:eb:c5:08:35:f4:e9:c3:b9:ef:2b:8a:63:57:53: 10:72:04:0e:fa:4c:57:fd:53:12:1e:cd:08:7b:cc:1c:59:92: 1c:95:03:64:77:95:f0:44:6a:ae:1b:04:a6:28:67:6c:8f:51: 8b:4e:ec:d4:f0:1a:bd:94:fb:bd:e7:16:0d:dc:4d:6c:09:ab: 90:e2:32:eb -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVBNEQxMTAvBgNVBAUTKDI4MUU5NTNEQUU3MTcyODBBMTZFNEJDNTZFNDEzNTJF ODQ3NjNDQkMwHhcNMjUwMzMxMTk0OTIwWhcNMjUwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VhZjFiZi0xZmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA21sje6aQkYfD43046R+W9vAr8G1UwFzpz/7hTP/f7CGqLB+1RUONl5EV5clh YSWsEizvRTV/XfJNoHj9/4HILN5KCYFyFlLLbp9PDyGNdwptAjaoaUAXWoXUDTgb Ku/eZeYnndxMkTBIVj2NSIz8jtr9UU+8CRhcQlyTounhOKeAYWigMvPmnyuA946I QDvg9lMn8mb1b6P/va6kPbURLRhPpC1KdUSolZQ80aD6U+3Mf2HByZlrHyzhTxxU slUZfcy/kUnxpu/uqoY6P+iKO0JIe2D2QP/HmqtZ1YCu4sy8ZliUEHhqA3Sl7KN7 5TCi6W4OrBdykzEMq1A2dOZrgwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFADrBBz6 5Y12Nikqwmzp98O2I/utMB8GA1UdIwQYMBaAFCgelT2ucXKAoW5LxW5BNS6Edjy8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUE0RC82NjFGNzNFQzQ3 MzcxMUVBQUIxNkJCNTBDNEY5QUUwMi9LQjZWUGE1eGNvQ2hia3ZGYmtFMUxvUjJQ THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCNlZQYTV4Y29DaGJrdkZia0UxTG9SMlBMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVBNEQvNjYxRjczRUM0NzM3MTFFQUFCMTZCQjUwQzRGOUFFMDIvMDhBREQ0OTZC MTlFMTFFQzg2QURGMjQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnhQQwDQQCAAIwBwMFACQERMAwDQYJKoZIhvcNAQELBQAD ggEBABxfCnPGAbqXchu+ZWYa0C6+yJ+YxTZdUMii2vd+j+pAjPXgjOOOuargj5Oa rZemKwNWoXwrjRmJdu+YgEgTXonC3r0+QsXow/R+Cg5DTQ4y+SaFCmIgc7E82W+T MpQuVa+FL6306lF7hyXnHMXlznWXf/pBzWkmgHMeylN99ddCDe4aPLUvLKGjJlZL enw/tPVlBIDe+y60chPqYkiJAxPDACwH4cPaYWh5kjrTDuxnn/vwTzQPrUjrxQg1 9OnDue8rimNXUxByBA76TFf9UxIezQh7zBxZkhyVA2R3lfBEaq4bBKYoZ2yPUYtO 7NTwGr2U+73nFg3cTWwJq5DiMus= -----END CERTIFICATE-----Generated at Sat Apr 5 01:57:51 2025 by rpki-client