$ rpki-client -vvf rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/EA18D5547D8F11EC8E894A1DC4F9AE02.roa File: EA18D5547D8F11EC8E894A1DC4F9AE02.roa (raw, json) Hash identifier: Anh2GximFPk7REReNBXULcTH3P6lLG5IbasX9kKM4Fs= Subject key identifier: 0C:8C:08:F1:32:2F:7B:93:5C:7E:26:1F:FF:0F:28:23:94:92:87:5D Certificate issuer: /CN=A91F61DA/serialNumber=A1564A6BD6B90A0FA17BF57D8BEAC9E29259BDEB Certificate serial: 0C62 Authority key identifier: A1:56:4A:6B:D6:B9:0A:0F:A1:7B:F5:7D:8B:EA:C9:E2:92:59:BD:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/EA18D5547D8F11EC8E894A1DC4F9AE02.roa Signing time: Sat 18 Jan 2025 18:06:58 +0000 ROA not before: Sat 18 Jan 2025 18:06:58 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 58795 IP address blocks: 103.244.246.0/24 maxlen: 24 2001:df0:44f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.crl rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3170 (0xc62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F61DA Validity Not Before: Jan 18 18:06:58 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=678bedc1-2513 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:4a:c7:08:84:9c:ab:80:60:d2:85:6f:29:1f: af:82:8e:47:b3:1b:3a:11:45:e4:cb:b1:6b:f8:b3: 4d:13:3e:f8:12:26:d5:c7:2d:53:26:3d:55:b2:4b: f8:21:f0:5c:7d:90:08:e6:72:2f:66:1a:45:89:99: 3e:f5:ea:c0:1c:76:a3:77:20:1b:58:de:99:81:4f: 33:e1:c9:65:e1:ed:da:ad:38:70:56:ca:6a:98:0f: 7d:3a:0f:df:5d:57:cd:6a:bd:37:82:5b:e2:5e:81: 19:c4:da:77:c7:ba:db:b7:4c:fe:3f:06:19:76:de: 3e:0b:46:75:d5:d8:2f:cf:2c:f9:99:77:4c:41:09: 84:ac:53:37:c9:dc:1e:5d:9e:03:d3:0f:2f:3e:cf: 2a:3b:ca:60:1a:79:06:ef:6c:e4:f1:38:af:b2:bf: dd:15:30:93:3c:34:02:2a:2d:4c:e2:e6:64:dd:d6: b4:aa:ea:95:a2:fe:5d:7c:19:c7:c2:88:f7:d9:ee: 3f:1d:22:37:77:de:3a:5a:14:20:92:56:dc:57:df: c2:6a:27:a6:6c:6c:a0:0b:03:d4:08:93:fe:75:f8: fb:58:31:28:92:1a:71:3e:a8:f6:4f:cb:6d:fe:ce: 70:56:50:44:7c:b9:3e:e5:5d:dd:4b:79:06:7d:cd: bb:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:8C:08:F1:32:2F:7B:93:5C:7E:26:1F:FF:0F:28:23:94:92:87:5D X509v3 Authority Key Identifier: keyid:A1:56:4A:6B:D6:B9:0A:0F:A1:7B:F5:7D:8B:EA:C9:E2:92:59:BD:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/oVZKa9a5Cg-he_V9i-rJ4pJZves.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oVZKa9a5Cg-he_V9i-rJ4pJZves.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F61DA/17C81FD0F41E11E9A8343A74C4F9AE02/EA18D5547D8F11EC8E894A1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.244.246.0/24 IPv6: 2001:df0:44f::/48 Signature Algorithm: sha256WithRSAEncryption b0:b7:0a:6d:43:ec:b0:f8:00:a1:28:71:1a:49:8f:01:41:10: 70:32:78:02:3b:77:0c:e7:be:4e:57:0c:c8:5b:fc:7c:5b:81: f4:f1:e4:e9:94:87:02:e5:3d:96:ae:46:c4:cd:22:4b:27:0e: 96:b7:d7:0f:4f:8f:64:61:29:99:57:06:f9:dc:7c:f3:bd:11: 97:c4:81:41:f2:04:db:a2:4c:2d:2d:66:4c:71:1f:e3:62:24: f4:7c:d5:65:3e:49:73:04:08:e8:a3:91:d8:46:eb:45:4e:4c: b1:eb:99:b0:09:d4:5f:83:ac:3b:6e:ef:d5:bb:03:0f:07:06: 2c:34:6b:51:c8:dc:b9:7e:61:ea:37:b3:66:86:73:33:2e:c7: 2f:59:af:9a:2c:b2:a4:51:24:5f:8e:aa:03:6b:d9:c6:e1:b1: 38:00:cf:31:f1:64:f8:15:88:e3:c1:9b:5a:6a:b4:32:48:e8: a2:d6:30:ba:6e:d7:65:9c:a2:6c:3e:85:f4:07:61:cf:4e:ee: 6a:2a:95:f5:38:c2:4b:cc:cb:26:d9:e7:01:ad:ba:d7:5c:70: e6:d2:97:ce:a7:a8:7d:79:60:51:4f:f2:67:c6:e2:66:47:18: 92:fe:7e:b7:90:74:f0:fa:08:18:e8:28:5e:ec:86:02:e5:0e: ed:0e:fb:6b -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYxREExMTAvBgNVBAUTKEExNTY0QTZCRDZCOTBBMEZBMTdCRjU3RDhCRUFDOUUy OTI1OUJERUIwHhcNMjUwMTE4MTgwNjU4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzhiZWRjMS0yNTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA40rHCIScq4Bg0oVvKR+vgo5Hsxs6EUXky7Fr+LNNEz74EibVxy1TJj1Vskv4 IfBcfZAI5nIvZhpFiZk+9erAHHajdyAbWN6ZgU8z4cll4e3arThwVspqmA99Og/f XVfNar03glviXoEZxNp3x7rbt0z+PwYZdt4+C0Z11dgvzyz5mXdMQQmErFM3ydwe XZ4D0w8vPs8qO8pgGnkG72zk8Tivsr/dFTCTPDQCKi1M4uZk3da0quqVov5dfBnH woj32e4/HSI3d946WhQgklbcV9/CaiembGygCwPUCJP+dfj7WDEokhpxPqj2T8tt /s5wVlBEfLk+5V3dS3kGfc27CwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAyMCPEy L3uTXH4mH/8PKCOUkoddMB8GA1UdIwQYMBaAFKFWSmvWuQoPoXv1fYvqyeKSWb3r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjFEQS8xN0M4MUZEMEY0 MUUxMUU5QTgzNDNBNzRDNEY5QUUwMi9vVlpLYTlhNUNnLWhlX1Y5aS1ySjRwSlp2 ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29WWkthOWE1Q2ctaGVfVjlpLXJKNHBKWnZlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjYxREEvMTdDODFGRDBGNDFFMTFFOUE4MzQzQTc0QzRGOUFFMDIvRUExOEQ1NTQ3 RDhGMTFFQzhFODk0QTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn9PYwDwQCAAIwCQMHACABDfAETzANBgkqhkiG9w0BAQsF AAOCAQEAsLcKbUPssPgAoShxGkmPAUEQcDJ4Ajt3DOe+TlcMyFv8fFuB9PHk6ZSH AuU9lq5GxM0iSycOlrfXD0+PZGEpmVcG+dx8870Rl8SBQfIE26JMLS1mTHEf42Ik 9HzVZT5JcwQI6KOR2EbrRU5MseuZsAnUX4OsO27v1bsDDwcGLDRrUcjcuX5h6jez ZoZzMy7HL1mvmiyypFEkX46qA2vZxuGxOADPMfFk+BWI48GbWmq0MkjootYwum7X ZZyibD6F9Adhz07uaiqV9TjCS8zLJtnnAa2611xw5tKXzqeofXlgUU/yZ8biZkcY kv5+t5B08PoIGOgoXuyGAuUO7Q77aw== -----END CERTIFICATE-----Generated at Sat Apr 5 02:02:57 2025 by rpki-client