$ rpki-client -vvf rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/F6CE4EEC56F911E997D5B40AC4F9AE02.roa File: F6CE4EEC56F911E997D5B40AC4F9AE02.roa (raw, json) Hash identifier: jy3Wft/F/5UxXAXx08sOlZkwBarb1srk+Xi5m/F+Ac0= Subject key identifier: 32:98:88:D1:B3:3A:1C:7E:24:B5:23:F8:48:CC:F5:6F:EA:A1:74:BA Certificate issuer: /CN=A91F44EA/serialNumber=69E701B1F334292380E7ABB901C3426332C6AA5A Certificate serial: 15AE Authority key identifier: 69:E7:01:B1:F3:34:29:23:80:E7:AB:B9:01:C3:42:63:32:C6:AA:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/F6CE4EEC56F911E997D5B40AC4F9AE02.roa Signing time: Wed 02 Apr 2025 17:15:24 +0000 ROA not before: Wed 02 Apr 2025 17:15:24 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137521 IP address blocks: 103.111.79.0/24 maxlen: 24 103.123.84.0/24 maxlen: 24 2001:df3:e0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.crl rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:52:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5550 (0x15ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F44EA Validity Not Before: Apr 2 17:15:24 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ed70ab-70c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:35:eb:4c:f7:12:48:eb:e1:4c:8c:21:dd:3c: 1f:1c:64:8f:7e:e8:be:06:1e:b0:aa:1d:ce:10:92: 7c:a2:32:0d:20:2a:1f:25:32:97:88:2a:70:22:71: 3e:36:63:b3:24:1d:e6:3e:c0:3f:0c:ae:a7:0a:3f: e3:64:3e:18:37:7e:2a:4d:c7:b6:af:01:29:40:4a: 33:91:61:04:f7:10:ef:3d:c4:88:fe:c0:80:f6:c4: d2:f1:7e:f3:f7:68:42:fc:c7:cf:8e:3f:43:7d:ad: 0e:1c:fc:ed:af:d4:2c:d0:73:ad:83:e0:eb:0a:af: d4:c6:94:c4:a4:84:7d:57:59:60:a9:de:fa:d1:40: 45:1d:10:d2:28:54:3c:d7:4e:a4:16:1f:5f:45:c9: 85:28:72:1f:28:4f:be:bd:09:9c:7c:ba:80:95:b0: 85:0a:89:64:75:e8:ea:f3:6e:02:47:08:bc:3d:f3: 88:cc:44:1e:1c:36:87:97:aa:a4:52:5f:72:ec:1d: f8:0a:c8:2b:87:29:73:da:3d:ae:d2:1a:c4:23:60: 4f:97:5e:1c:9e:b4:d5:e4:6b:1b:e0:c9:ac:f5:d8: bb:ec:73:94:7d:8c:5f:8a:99:37:90:55:21:f5:d4: 0f:fa:f8:5a:01:0a:83:6a:3e:ae:01:65:db:c8:31: f4:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:98:88:D1:B3:3A:1C:7E:24:B5:23:F8:48:CC:F5:6F:EA:A1:74:BA X509v3 Authority Key Identifier: keyid:69:E7:01:B1:F3:34:29:23:80:E7:AB:B9:01:C3:42:63:32:C6:AA:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/aecBsfM0KSOA56u5AcNCYzLGqlo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aecBsfM0KSOA56u5AcNCYzLGqlo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F44EA/689033962B4111E884579387C4F9AE02/F6CE4EEC56F911E997D5B40AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.111.79.0/24 103.123.84.0/24 IPv6: 2001:df3:e0c0::/48 Signature Algorithm: sha256WithRSAEncryption a0:ca:ae:85:c5:0d:44:49:2d:ae:77:23:07:ce:64:a9:d9:ef: 02:d2:2c:e8:95:c0:1e:9e:ed:cb:61:bc:2d:ae:84:01:69:d2: 0b:f6:c9:45:a1:d2:e0:0b:94:94:f5:06:92:e2:59:5f:76:28: a5:d1:56:97:65:e0:8b:f2:ea:35:bd:dd:f7:ba:5f:44:c5:41: b2:7f:77:f5:68:ba:9b:e9:68:67:be:4d:45:5d:14:22:2a:53: 1a:23:3f:b8:fc:58:18:c0:6b:cc:c5:21:93:a3:4a:b7:91:df: e0:81:1e:30:4b:11:d1:f2:d6:f1:44:ce:e7:7c:17:f3:92:1d: 29:67:80:05:c5:6b:ab:ee:70:ca:26:88:4c:52:b7:e0:e1:aa: 7a:b4:2a:59:b9:5c:81:36:eb:25:23:48:46:fd:e9:64:7a:52: 0f:a7:e0:8a:f0:a3:b7:5d:94:64:f5:33:b9:2b:d8:12:f3:fe: dc:5f:49:63:0c:d4:fe:13:07:bb:a1:11:c0:e4:90:08:df:89: 45:0e:e3:0d:50:fe:0a:97:4e:9c:fa:cd:75:e5:8e:a5:2a:ba: 92:98:f2:e1:1c:6d:89:de:ee:aa:9b:7b:dc:c4:17:08:1a:e1: de:1a:07:5f:13:97:52:9e:d1:91:ad:27:0c:89:40:19:20:1e: 40:ee:19:4a -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICFa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ0RUExMTAvBgNVBAUTKDY5RTcwMUIxRjMzNDI5MjM4MEU3QUJCOTAxQzM0MjYz MzJDNkFBNUEwHhcNMjUwNDAyMTcxNTI0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkNzBhYi03MGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjXrTPcSSOvhTIwh3TwfHGSPfui+Bh6wqh3OEJJ8ojINICofJTKXiCpwInE+ NmOzJB3mPsA/DK6nCj/jZD4YN34qTce2rwEpQEozkWEE9xDvPcSI/sCA9sTS8X7z 92hC/MfPjj9Dfa0OHPztr9Qs0HOtg+DrCq/UxpTEpIR9V1lgqd760UBFHRDSKFQ8 106kFh9fRcmFKHIfKE++vQmcfLqAlbCFColkdejq824CRwi8PfOIzEQeHDaHl6qk Ul9y7B34Csgrhylz2j2u0hrEI2BPl14cnrTV5Gsb4Mms9di77HOUfYxfipk3kFUh 9dQP+vhaAQqDaj6uAWXbyDH0xwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFDKYiNGz Ohx+JLUj+EjM9W/qoXS6MB8GA1UdIwQYMBaAFGnnAbHzNCkjgOeruQHDQmMyxqpa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDRFQS82ODkwMzM5NjJC NDExMUU4ODQ1NzkzODdDNEY5QUUwMi9hZWNCc2ZNMEtTT0E1NnU1QWNOQ1l6TEdx bG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FlY0JzZk0wS1NPQTU2dTVBY05DWXpMR3Fsby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQ0RUEvNjg5MDMzOTYyQjQxMTFFODg0NTc5Mzg3QzRGOUFFMDIvRjZDRTRFRUM1 NkY5MTFFOTk3RDVCNDBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnb08DBABne1QwDwQCAAIwCQMHACABDfPgwDANBgkqhkiG 9w0BAQsFAAOCAQEAoMquhcUNREktrncjB85kqdnvAtIs6JXAHp7ty2G8La6EAWnS C/bJRaHS4AuUlPUGkuJZX3YopdFWl2Xgi/LqNb3d97pfRMVBsn939Wi6m+loZ75N RV0UIipTGiM/uPxYGMBrzMUhk6NKt5Hf4IEeMEsR0fLW8UTO53wX85IdKWeABcVr q+5wyiaITFK34OGqerQqWblcgTbrJSNIRv3pZHpSD6fgivCjt12UZPUzuSvYEvP+ 3F9JYwzU/hMHu6ERwOSQCN+JRQ7jDVD+CpdOnPrNdeWOpSq6kpjy4Rxtid7uqpt7 3MQXCBrh3hoHXxOXUp7Rka0nDIlAGSAeQO4ZSg== -----END CERTIFICATE-----Generated at Sat Apr 5 06:14:01 2025 by rpki-client