$ rpki-client -vvf rpki.apnic.net/member_repository/A91F692A/489E0F0C229C11ED9A213568C4F9AE02/11AA6C3E22A111ED848DF584C4F9AE02.roa File: 11AA6C3E22A111ED848DF584C4F9AE02.roa (raw, json) Hash identifier: uqzxT9Bkkkw/d9KeeEuTKcCxRKlVwtLIu+mRX+pqh+g= Subject key identifier: 23:77:D3:58:7A:55:FA:77:64:0C:B2:76:CD:24:D9:F6:35:FF:8C:32 Certificate issuer: /CN=A91F692A/serialNumber=C2B605BDB4F2B6ED2B051DC42B2E803FB6078E4D Certificate serial: 0228 Authority key identifier: C2:B6:05:BD:B4:F2:B6:ED:2B:05:1D:C4:2B:2E:80:3F:B6:07:8E:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrYFvbTytu0rBR3EKy6AP7YHjk0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F692A/489E0F0C229C11ED9A213568C4F9AE02/11AA6C3E22A111ED848DF584C4F9AE02.roa Signing time: Thu 03 Apr 2025 01:57:30 +0000 ROA not before: Thu 03 Apr 2025 01:57:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 56135 IP address blocks: 101.234.72.0/22 maxlen: 22 103.29.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F692A/489E0F0C229C11ED9A213568C4F9AE02/wrYFvbTytu0rBR3EKy6AP7YHjk0.crl rsync://rpki.apnic.net/member_repository/A91F692A/489E0F0C229C11ED9A213568C4F9AE02/wrYFvbTytu0rBR3EKy6AP7YHjk0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrYFvbTytu0rBR3EKy6AP7YHjk0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:04:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 552 (0x228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F692A Validity Not Before: Apr 3 01:57:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67edeb09-5d32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d2:bf:10:74:42:be:53:ac:75:84:ec:ec:4b: ef:a6:36:60:93:58:23:b7:7e:a0:e4:b1:4e:78:01: 4f:ca:7a:9b:93:64:d6:65:a8:7b:55:20:d1:b3:b0: 7d:6e:95:d6:41:2d:fa:a8:3e:ce:c2:e5:69:c3:a7: 35:63:5e:30:42:83:64:1a:c0:32:47:f9:ba:b8:0b: fa:1a:11:51:ba:15:63:f8:17:cb:2b:9d:a4:79:bb: 45:6a:43:e0:fc:b5:4d:1c:82:ed:ca:b7:06:f8:70: a6:0a:12:bc:d3:98:1a:8b:9a:04:4a:51:af:29:5b: 2c:6a:57:6c:f6:2a:2b:5c:11:7a:4d:14:a4:38:60: 9e:92:5f:95:2c:88:c3:7e:34:4b:13:d3:47:a7:47: d2:e6:07:5f:77:b5:c0:0d:a6:2e:34:0e:39:68:d3: ca:3d:43:1c:12:ec:2c:77:4d:7a:c5:7a:09:d5:6c: 5e:49:79:01:f1:0f:86:d9:9d:65:06:70:fb:ca:74: 83:3e:9d:60:c5:d4:50:4f:4d:18:00:15:5e:57:02: 92:e2:66:33:02:5d:bb:ce:16:9b:da:4f:22:29:8e: df:78:49:94:6a:e6:4e:3e:85:1b:f6:5b:2b:87:2d: 8f:3b:cf:48:54:9f:45:68:85:51:ab:13:47:df:76: 15:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:77:D3:58:7A:55:FA:77:64:0C:B2:76:CD:24:D9:F6:35:FF:8C:32 X509v3 Authority Key Identifier: keyid:C2:B6:05:BD:B4:F2:B6:ED:2B:05:1D:C4:2B:2E:80:3F:B6:07:8E:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F692A/489E0F0C229C11ED9A213568C4F9AE02/wrYFvbTytu0rBR3EKy6AP7YHjk0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrYFvbTytu0rBR3EKy6AP7YHjk0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F692A/489E0F0C229C11ED9A213568C4F9AE02/11AA6C3E22A111ED848DF584C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.234.72.0/22 103.29.192.0/22 Signature Algorithm: sha256WithRSAEncryption 11:3e:73:96:e2:3b:d0:fc:0a:5b:bc:bb:4e:76:13:bc:3f:ed: f4:5f:05:6d:93:e8:c2:f5:c3:50:8a:19:df:78:6c:84:41:c2: b8:55:d0:2b:74:b5:21:68:0c:fd:56:18:db:1d:14:d8:81:05: 18:77:7a:b2:cb:23:25:0b:cb:2a:f2:cb:5f:08:3f:e2:29:67: 84:80:f3:ae:d2:6d:2d:69:43:8a:cc:99:1b:28:90:ca:b5:60: 02:36:c2:ca:db:df:55:e8:e5:b0:3b:ad:d6:21:8b:f4:c9:bd: 3e:14:f4:b3:76:07:0b:3b:ce:5c:03:e3:52:f9:f1:a6:2a:4e: e2:bb:f0:46:74:8d:60:f4:36:97:6a:73:58:8d:c3:9c:53:6d: 45:0e:49:dd:5f:a5:9d:22:2c:38:23:a8:75:c0:fd:58:7c:f0: 7b:a1:7c:9a:4a:15:2c:b4:16:a3:c5:c3:47:f9:19:e8:36:9a: 9a:36:f4:61:85:fe:8d:35:2b:ec:c3:84:2a:d4:cd:4b:51:b5: a8:0a:19:7e:b8:65:12:e8:58:59:fb:54:65:16:2b:9f:d0:1e: de:17:51:2e:2a:d6:5f:a0:03:08:08:f4:65:64:fd:80:12:2a: 56:91:63:9f:85:b6:6d:1d:16:78:5b:0c:bd:f2:99:51:66:a3: f1:1a:64:b4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY5MkExMTAvBgNVBAUTKEMyQjYwNUJEQjRGMkI2RUQyQjA1MURDNDJCMkU4MDNG QjYwNzhFNEQwHhcNMjUwNDAzMDE1NzMwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkZWIwOS01ZDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdK/EHRCvlOsdYTs7EvvpjZgk1gjt36g5LFOeAFPynqbk2TWZah7VSDRs7B9 bpXWQS36qD7OwuVpw6c1Y14wQoNkGsAyR/m6uAv6GhFRuhVj+BfLK52kebtFakPg /LVNHILtyrcG+HCmChK805gai5oESlGvKVssalds9iorXBF6TRSkOGCekl+VLIjD fjRLE9NHp0fS5gdfd7XADaYuNA45aNPKPUMcEuwsd016xXoJ1WxeSXkB8Q+G2Z1l BnD7ynSDPp1gxdRQT00YABVeVwKS4mYzAl27zhab2k8iKY7feEmUauZOPoUb9lsr hy2PO89IVJ9FaIVRqxNH33YViQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCN301h6 Vfp3ZAyyds0k2fY1/4wyMB8GA1UdIwQYMBaAFMK2Bb208rbtKwUdxCsugD+2B45N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjkyQS80ODlFMEYwQzIy OUMxMUVEOUEyMTM1NjhDNEY5QUUwMi93cllGdmJUeXR1MHJCUjNFS3k2QVA3WUhq azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dyWUZ2YlR5dHUwckJSM0VLeTZBUDdZSGprMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY5MkEvNDg5RTBGMEMyMjlDMTFFRDlBMjEzNTY4QzRGOUFFMDIvMTFBQTZDM0Uy MkExMTFFRDg0OERGNTg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJl6kgDBAJnHcAwDQYJKoZIhvcNAQELBQADggEBABE+c5bi O9D8Clu8u052E7w/7fRfBW2T6ML1w1CKGd94bIRBwrhV0Ct0tSFoDP1WGNsdFNiB BRh3erLLIyULyyryy18IP+IpZ4SA867SbS1pQ4rMmRsokMq1YAI2wsrb31Xo5bA7 rdYhi/TJvT4U9LN2Bws7zlwD41L58aYqTuK78EZ0jWD0Npdqc1iNw5xTbUUOSd1f pZ0iLDgjqHXA/Vh88HuhfJpKFSy0FqPFw0f5Geg2mpo29GGF/o01K+zDhCrUzUtR tagKGX64ZRLoWFn7VGUWK5/QHt4XUS4q1l+gAwgI9GVk/YASKlaRY5+Ftm0dFnhb DL3ymVFmo/EaZLQ= -----END CERTIFICATE-----Generated at Sun Apr 6 13:02:38 2025 by rpki-client