$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/599F65C652C011EEAAE0CD34C4F9AE02.roa File: 599F65C652C011EEAAE0CD34C4F9AE02.roa (raw, json) Hash identifier: RkTUA678ggeVul1y+nwQF7cmzTi/KyCvH3jL9UTL73c= Subject key identifier: 88:4C:46:22:DF:18:C3:34:D4:53:E3:2B:99:B4:DC:FC:74:61:7A:F2 Certificate issuer: /CN=A91F5804/serialNumber=A0FA66F6934AA2813E1A1F00739590C6357D40DA Certificate serial: 011B Authority key identifier: A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/599F65C652C011EEAAE0CD34C4F9AE02.roa Signing time: Sat 01 Mar 2025 06:47:10 +0000 ROA not before: Sat 01 Mar 2025 06:47:10 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 58610 IP address blocks: 103.76.205.0/24 maxlen: 24 103.76.247.0/24 maxlen: 24 103.77.4.0/23 maxlen: 23 116.12.56.0/21 maxlen: 21 116.12.56.0/24 maxlen: 24 116.12.57.0/24 maxlen: 24 116.12.58.0/24 maxlen: 24 116.12.59.0/24 maxlen: 24 116.12.60.0/24 maxlen: 24 116.12.61.0/24 maxlen: 24 116.12.62.0/24 maxlen: 24 116.12.63.0/24 maxlen: 24 116.206.160.0/22 maxlen: 22 116.206.160.0/23 maxlen: 23 116.206.162.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5804 Validity Not Before: Mar 1 06:47:10 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c2ad6e-1aeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:42:47:61:24:db:c6:6e:71:3a:94:cd:db:79: 6c:ed:dc:b6:5b:a5:38:b4:5d:3c:2c:95:7f:e9:46: d0:a2:db:6d:56:67:e2:bc:75:5b:14:c4:e6:42:6c: 6b:9b:f7:89:03:86:37:7c:83:b8:6d:5e:6f:76:bc: dd:5d:0f:a3:ae:ed:f6:70:1d:b3:59:bc:e7:c0:49: 25:4a:8c:41:df:9c:05:1f:2d:a2:0a:bd:db:b8:f4: 7e:ed:c3:8f:1e:f9:84:2a:cd:e7:91:f0:11:2a:6c: 10:24:09:a4:90:9d:4c:1f:3a:ff:48:a0:90:9c:b8: 32:54:c5:cb:86:02:6c:61:13:79:87:7f:dd:14:ee: b6:ab:2c:b0:02:e5:54:49:bd:0e:8e:7e:50:95:1f: 7e:0f:41:8e:59:d9:f7:76:41:89:bc:8d:60:83:7a: fe:4d:83:86:bd:24:aa:bd:3b:86:12:a7:d6:08:dc: 38:df:c1:80:8c:68:26:ea:26:5c:25:a9:95:9d:27: 0a:1b:1f:bb:27:27:c1:da:1d:48:c7:8d:2a:20:17: bc:33:02:99:40:fe:27:aa:c7:5f:5c:cc:2b:b9:da: 20:b6:5c:c3:f4:9a:7e:58:de:8a:5e:6d:ff:0f:16: ef:c8:5e:ef:4b:15:36:4e:e6:55:a9:90:7a:68:e6: 6c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:4C:46:22:DF:18:C3:34:D4:53:E3:2B:99:B4:DC:FC:74:61:7A:F2 X509v3 Authority Key Identifier: keyid:A0:FA:66:F6:93:4A:A2:81:3E:1A:1F:00:73:95:90:C6:35:7D:40:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oPpm9pNKooE-Gh8Ac5WQxjV9QNo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5804/C2138D4052BF11EE8E44AA1BC4F9AE02/599F65C652C011EEAAE0CD34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.76.205.0/24 103.76.247.0/24 103.77.4.0/23 116.12.56.0/21 116.206.160.0/22 Signature Algorithm: sha256WithRSAEncryption c1:a2:09:ac:5a:ab:f5:14:8e:93:76:72:e0:b8:78:51:29:69: c2:71:ca:f7:00:eb:07:d8:e9:a7:90:34:fe:7f:21:40:49:dc: 75:ec:87:ab:94:35:34:66:e6:ef:69:e1:e6:a1:c1:4b:11:e1: b4:c1:b9:3b:01:10:71:45:3b:7b:e6:03:ee:f5:51:99:65:38: 45:2c:e7:34:25:db:97:29:f8:17:25:51:e3:15:ac:21:26:00: c1:67:4d:17:4d:7b:02:f0:7e:0b:2f:0a:5f:0e:da:45:9b:df: ce:20:3a:5d:e3:53:81:67:00:3e:33:40:65:f7:9a:b0:5f:dd: 86:d9:a2:b6:9b:07:c5:12:5c:b5:b9:9f:a3:c9:b1:a4:e6:95: 46:2a:45:11:36:8c:84:f8:2e:85:55:ef:64:54:ee:d4:17:70: d5:f7:dd:7c:d6:b6:43:ac:64:d5:de:77:b7:87:8c:0d:8f:17: 77:8d:79:af:7b:2f:62:05:90:69:36:10:09:a7:22:6f:b0:fb: 03:a7:8b:c9:cf:3d:ab:60:cd:3d:73:f0:2c:6a:c6:79:c7:81: d7:b2:61:0d:28:92:12:12:2f:56:33:fc:93:07:3c:0d:4b:e4: bf:90:54:f9:17:f0:8e:36:2e:48:70:bc:0f:01:d9:0f:79:c2: 7b:1b:9e:02 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4MDQxMTAvBgNVBAUTKEEwRkE2NkY2OTM0QUEyODEzRTFBMUYwMDczOTU5MEM2 MzU3RDQwREEwHhcNMjUwMzAxMDY0NzEwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MyYWQ2ZS0xYWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4kJHYSTbxm5xOpTN23ls7dy2W6U4tF08LJV/6UbQotttVmfivHVbFMTmQmxr m/eJA4Y3fIO4bV5vdrzdXQ+jru32cB2zWbznwEklSoxB35wFHy2iCr3buPR+7cOP HvmEKs3nkfARKmwQJAmkkJ1MHzr/SKCQnLgyVMXLhgJsYRN5h3/dFO62qyywAuVU Sb0Ojn5QlR9+D0GOWdn3dkGJvI1gg3r+TYOGvSSqvTuGEqfWCNw438GAjGgm6iZc JamVnScKGx+7JyfB2h1Ix40qIBe8MwKZQP4nqsdfXMwrudogtlzD9Jp+WN6KXm3/ DxbvyF7vSxU2TuZVqZB6aOZsGQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFIhMRiLf GMM01FPjK5m03Px0YXryMB8GA1UdIwQYMBaAFKD6ZvaTSqKBPhofAHOVkMY1fUDa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTgwNC9DMjEzOEQ0MDUy QkYxMUVFOEU0NEFBMUJDNEY5QUUwMi9vUHBtOXBOS29vRS1HaDhBYzVXUXhqVjlR Tm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29QcG05cE5Lb29FLUdoOEFjNVdReGpWOVFOby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjU4MDQvQzIxMzhENDA1MkJGMTFFRThFNDRBQTFCQzRGOUFFMDIvNTk5RjY1QzY1 MkMwMTFFRUFBRTBDRDM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBABnTM0DBABnTPcDBAFnTQQDBAN0DDgDBAJ0zqAwDQYJKoZI hvcNAQELBQADggEBAMGiCaxaq/UUjpN2cuC4eFEpacJxyvcA6wfY6aeQNP5/IUBJ 3HXsh6uUNTRm5u9p4eahwUsR4bTBuTsBEHFFO3vmA+71UZllOEUs5zQl25cp+Bcl UeMVrCEmAMFnTRdNewLwfgsvCl8O2kWb384gOl3jU4FnAD4zQGX3mrBf3YbZorab B8USXLW5n6PJsaTmlUYqRRE2jIT4LoVV72RU7tQXcNX33XzWtkOsZNXed7eHjA2P F3eNea97L2IFkGk2EAmnIm+w+wOni8nPPatgzT1z8CxqxnnHgdeyYQ0okhISL1Yz /JMHPA1L5L+QVPkX8I42LkhwvA8B2Q95wnsbngI= -----END CERTIFICATE-----Generated at Sat Apr 5 07:21:11 2025 by rpki-client