$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/60B707FA1AEA11EE92BEA24CC4F9AE02.roa File: 60B707FA1AEA11EE92BEA24CC4F9AE02.roa (raw, json) Hash identifier: kXqagkJo/A0eBKA6rzsFPrgkBqXmX4C+r5kQGo8fciw= Subject key identifier: 26:B3:2E:5C:6C:28:45:CA:94:21:5E:A1:CB:AF:73:28:83:9E:89:81 Certificate issuer: /CN=A91F4957/serialNumber=BF2D1B39D3C2E9AE0AA8FAB94BAC540CC526524F Certificate serial: 014C Authority key identifier: BF:2D:1B:39:D3:C2:E9:AE:0A:A8:FA:B9:4B:AC:54:0C:C5:26:52:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vy0bOdPC6a4KqPq5S6xUDMUmUk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/60B707FA1AEA11EE92BEA24CC4F9AE02.roa Signing time: Tue 25 Mar 2025 03:39:39 +0000 ROA not before: Tue 25 Mar 2025 03:39:39 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 132342 IP address blocks: 103.13.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/vy0bOdPC6a4KqPq5S6xUDMUmUk8.crl rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/vy0bOdPC6a4KqPq5S6xUDMUmUk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vy0bOdPC6a4KqPq5S6xUDMUmUk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 03:10:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4957 Validity Not Before: Mar 25 03:39:39 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67e2257b-ee8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:39:c4:e5:dd:5b:50:9f:bd:7a:37:34:10:69: 47:3e:85:5a:32:df:a7:d8:83:75:49:70:13:ba:50: 1a:cd:57:c3:c6:0e:88:09:62:05:60:fc:74:db:1b: 58:54:db:34:a6:d4:5f:74:9d:38:b7:f9:13:f1:17: af:18:3b:af:26:fe:82:9e:25:b6:1e:bc:62:d1:4a: 4e:38:6b:e9:8b:26:6f:97:54:ea:ff:56:a2:3a:c3: 90:07:8f:f3:e6:0a:78:49:10:39:0a:83:e5:b0:76: 43:62:c5:be:34:40:bd:4e:43:43:bf:06:8c:e5:83: 53:f7:b9:b8:5b:ab:47:c6:13:63:f5:4c:8f:cf:87: ae:39:b3:1c:46:9a:0a:1e:13:e0:38:ec:22:18:a2: 9c:ce:ca:74:de:ba:4e:59:79:0d:60:3c:24:ea:74: 2a:a3:ab:28:a7:a1:76:8c:af:15:b9:94:da:25:6a: 96:b1:c5:9d:27:28:d5:90:67:e9:ae:fd:33:d6:a5: 49:af:74:57:ec:1d:1e:19:c9:f4:8b:04:55:22:3e: 99:82:0f:da:8b:54:89:b3:fb:cb:4f:ee:09:8b:bf: 2f:a9:a3:57:73:6b:68:c6:5a:8c:30:01:bd:da:ec: e8:ef:f5:b6:32:d7:72:ae:8e:74:35:9e:a8:58:15: bd:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:B3:2E:5C:6C:28:45:CA:94:21:5E:A1:CB:AF:73:28:83:9E:89:81 X509v3 Authority Key Identifier: keyid:BF:2D:1B:39:D3:C2:E9:AE:0A:A8:FA:B9:4B:AC:54:0C:C5:26:52:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/vy0bOdPC6a4KqPq5S6xUDMUmUk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vy0bOdPC6a4KqPq5S6xUDMUmUk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/60B707FA1AEA11EE92BEA24CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.13.176.0/23 Signature Algorithm: sha256WithRSAEncryption 87:48:ec:95:b8:2a:39:d5:85:b2:e9:13:ba:b4:a8:b0:49:23: a2:a3:3e:0e:ba:78:ad:c6:9e:a5:f3:39:05:2a:42:1d:09:9f: c8:81:0e:43:be:ca:3c:64:85:98:77:24:7e:ad:4e:9b:c7:51: c0:58:59:03:e4:9e:a5:a1:9b:0b:95:05:70:b6:03:6a:5c:c0: 98:89:a0:1f:b5:c6:30:3a:18:c2:5e:e1:47:6e:51:1d:b1:eb: 4b:fe:e5:99:7d:aa:8b:e6:d4:85:09:a1:9e:90:87:9c:72:87: 4f:b8:5d:38:00:6c:86:89:04:c0:cc:5c:b2:56:1a:cd:7b:bf: bb:95:b7:6d:52:87:9e:40:8d:c3:3d:99:e5:e3:93:2e:b2:e7: 4d:60:58:3a:57:fc:6b:5f:d3:75:e6:ca:36:0a:a5:e7:eb:d5: 29:ae:9e:4b:40:c6:f8:ac:39:9c:08:a9:87:5e:bf:b9:2a:8b: 41:e3:23:04:3c:fa:2d:af:24:4e:44:f6:25:42:9b:bd:41:95: 0b:98:6f:ee:e4:0b:b9:72:e3:2c:56:b5:e1:5c:59:25:3f:4a: c9:dc:37:7c:37:83:24:0d:e2:5b:7c:5c:bb:4d:19:19:3e:8f: 6e:c0:b8:a6:98:71:80:14:da:f8:a5:cf:ad:8e:ba:cc:75:d8: d0:df:87:7d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ5NTcxMTAvBgNVBAUTKEJGMkQxQjM5RDNDMkU5QUUwQUE4RkFCOTRCQUM1NDBD QzUyNjUyNEYwHhcNMjUwMzI1MDMzOTM5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2UyMjU3Yi1lZThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1znE5d1bUJ+9ejc0EGlHPoVaMt+n2IN1SXATulAazVfDxg6ICWIFYPx02xtY VNs0ptRfdJ04t/kT8RevGDuvJv6CniW2Hrxi0UpOOGvpiyZvl1Tq/1aiOsOQB4/z 5gp4SRA5CoPlsHZDYsW+NEC9TkNDvwaM5YNT97m4W6tHxhNj9UyPz4euObMcRpoK HhPgOOwiGKKczsp03rpOWXkNYDwk6nQqo6sop6F2jK8VuZTaJWqWscWdJyjVkGfp rv0z1qVJr3RX7B0eGcn0iwRVIj6Zgg/ai1SJs/vLT+4Ji78vqaNXc2toxlqMMAG9 2uzo7/W2Mtdyro50NZ6oWBW9WQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCazLlxs KEXKlCFeocuvcyiDnomBMB8GA1UdIwQYMBaAFL8tGznTwumuCqj6uUusVAzFJlJP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDk1Ny81NzFCMjIxMDFB RTcxMUVFOERENEI5NDlDNEY5QUUwMi92eTBiT2RQQzZhNEtxUHE1UzZ4VURNVW1V azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Z5MGJPZFBDNmE0S3FQcTVTNnhVRE1VbVVrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQ5NTcvNTcxQjIyMTAxQUU3MTFFRThERDRCOTQ5QzRGOUFFMDIvNjBCNzA3RkEx QUVBMTFFRTkyQkVBMjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnDbAwDQYJKoZIhvcNAQELBQADggEBAIdI7JW4KjnVhbLp E7q0qLBJI6KjPg66eK3GnqXzOQUqQh0Jn8iBDkO+yjxkhZh3JH6tTpvHUcBYWQPk nqWhmwuVBXC2A2pcwJiJoB+1xjA6GMJe4UduUR2x60v+5Zl9qovm1IUJoZ6Qh5xy h0+4XTgAbIaJBMDMXLJWGs17v7uVt21Sh55AjcM9meXjky6y501gWDpX/Gtf03Xm yjYKpefr1SmunktAxvisOZwIqYdev7kqi0HjIwQ8+i2vJE5E9iVCm71BlQuYb+7k C7ly4yxWteFcWSU/SsncN3w3gyQN4lt8XLtNGRk+j27AuKaYcYAU2vilz62Ousx1 2NDfh30= -----END CERTIFICATE-----Generated at Fri Apr 11 23:34:33 2025 by rpki-client