$ rpki-client -vvf rpki.apnic.net/member_repository/A91F96DB/A864D0EA8E3D11ECA87ABF16C4F9AE02/F91B41A40C5811EFB9F63337C4F9AE02.roa File: F91B41A40C5811EFB9F63337C4F9AE02.roa (raw, json) Hash identifier: qOMt8gV+qKOqfr/cX53ygmFqRFWIxLXDn07p9oOee54= Subject key identifier: 61:1F:4C:49:A0:CE:20:39:4F:F8:D2:81:5A:91:4E:9D:19:63:E7:8E Certificate issuer: /CN=A91F96DB/serialNumber=4001F0CD19DDB9942CB5A39567EC3693BE25C6A0 Certificate serial: 03A2 Authority key identifier: 40:01:F0:CD:19:DD:B9:94:2C:B5:A3:95:67:EC:36:93:BE:25:C6:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QAHwzRnduZQstaOVZ-w2k74lxqA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F96DB/A864D0EA8E3D11ECA87ABF16C4F9AE02/F91B41A40C5811EFB9F63337C4F9AE02.roa Signing time: Thu 27 Mar 2025 01:06:50 +0000 ROA not before: Thu 27 Mar 2025 01:06:50 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 132601 IP address blocks: 103.181.180.0/24 maxlen: 24 2001:df0:7140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F96DB/A864D0EA8E3D11ECA87ABF16C4F9AE02/QAHwzRnduZQstaOVZ-w2k74lxqA.crl rsync://rpki.apnic.net/member_repository/A91F96DB/A864D0EA8E3D11ECA87ABF16C4F9AE02/QAHwzRnduZQstaOVZ-w2k74lxqA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QAHwzRnduZQstaOVZ-w2k74lxqA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 00:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 930 (0x3a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F96DB Validity Not Before: Mar 27 01:06:50 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67e4a4aa-55f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:3a:92:f2:12:66:7e:94:9f:be:95:27:8c:27: 96:cb:01:16:c4:83:ee:01:1f:28:40:a3:2b:76:46: 9b:a7:e7:68:08:ad:f0:b5:0c:25:f9:bf:2c:87:44: 6f:f8:f3:56:3b:32:37:2f:50:c1:19:8c:c2:42:e3: 5a:b2:bd:e8:e7:6a:35:df:d7:7a:54:41:f0:17:92: c3:f8:59:2e:e0:c6:5c:d5:39:90:a8:3b:32:44:fa: ad:60:2b:49:d2:c0:24:ba:d1:e2:55:2d:66:f9:74: 57:2f:1c:92:67:23:7e:d0:fc:f3:2a:7d:37:e9:79: 29:36:cf:68:a8:29:38:91:c5:f5:90:ec:a1:5c:19: ae:41:50:c5:c0:c5:5f:17:3c:74:c8:61:f2:71:c8: 52:c7:9e:c0:16:60:50:0a:15:d6:ff:36:33:c9:4d: 3b:da:2d:c8:33:86:9c:af:e4:5a:1c:a0:c6:b8:4a: 22:60:e6:a5:db:60:7c:8e:fa:50:a0:30:08:76:19: 42:c5:aa:b1:c9:ad:66:c3:97:1b:eb:de:e9:64:4b: 21:4a:de:c1:6a:6d:a1:50:5b:da:34:0f:06:61:2b: c6:ed:8f:8d:e7:ec:cb:27:d4:8d:5b:72:4e:54:7e: c4:bf:4e:b5:a2:89:2a:12:4b:67:f1:45:c2:ef:52: ea:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:1F:4C:49:A0:CE:20:39:4F:F8:D2:81:5A:91:4E:9D:19:63:E7:8E X509v3 Authority Key Identifier: keyid:40:01:F0:CD:19:DD:B9:94:2C:B5:A3:95:67:EC:36:93:BE:25:C6:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F96DB/A864D0EA8E3D11ECA87ABF16C4F9AE02/QAHwzRnduZQstaOVZ-w2k74lxqA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QAHwzRnduZQstaOVZ-w2k74lxqA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F96DB/A864D0EA8E3D11ECA87ABF16C4F9AE02/F91B41A40C5811EFB9F63337C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.180.0/24 IPv6: 2001:df0:7140::/48 Signature Algorithm: sha256WithRSAEncryption d1:74:be:ec:e0:64:43:27:c1:87:91:e2:a4:9e:b7:fa:83:de: e4:9b:32:2a:77:f3:27:70:4c:b5:77:9b:f5:e7:81:a1:8a:15: 0e:d6:31:e0:6c:73:18:b9:fc:88:8a:ed:3a:94:26:74:89:02: 28:42:f6:1d:dc:59:fe:13:4f:44:98:2c:78:4b:bb:7f:db:82: bb:92:78:93:4c:d1:c4:14:99:dd:d5:e6:1c:33:01:69:1b:99: 7a:e3:bb:84:0e:8b:ed:f7:c9:6d:2b:5d:19:89:98:87:7e:f6: 1c:a9:c8:f0:4b:83:21:2a:e8:42:7b:4c:37:89:ed:97:55:e3: d0:e9:39:20:d5:ab:71:6a:0c:07:b0:56:95:d7:7f:2b:59:d4: c7:3f:fb:7c:ad:43:23:6a:d8:e4:50:98:2b:bc:5d:28:d1:f5: cf:51:3d:cc:84:2a:83:81:48:97:89:86:b1:b6:ac:a6:a4:af: fc:0d:71:56:56:75:ea:a7:08:f7:94:9d:f4:e1:6f:55:aa:76: 10:71:24:6f:74:ff:7d:0d:a1:e0:e5:f1:91:3c:09:f1:87:68: 23:dc:bb:d1:22:cc:0f:62:ea:ec:12:1c:75:e0:dc:78:56:cb: 0f:92:c5:58:cc:07:e3:86:e9:cb:2a:96:8d:c8:15:ad:6f:b9: b2:03:41:f4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjk2REIxMTAvBgNVBAUTKDQwMDFGMENEMTlEREI5OTQyQ0I1QTM5NTY3RUMzNjkz QkUyNUM2QTAwHhcNMjUwMzI3MDEwNjUwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0YTRhYS01NWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5DqS8hJmfpSfvpUnjCeWywEWxIPuAR8oQKMrdkabp+doCK3wtQwl+b8sh0Rv +PNWOzI3L1DBGYzCQuNasr3o52o139d6VEHwF5LD+Fku4MZc1TmQqDsyRPqtYCtJ 0sAkutHiVS1m+XRXLxySZyN+0PzzKn036XkpNs9oqCk4kcX1kOyhXBmuQVDFwMVf Fzx0yGHycchSx57AFmBQChXW/zYzyU072i3IM4acr+RaHKDGuEoiYOal22B8jvpQ oDAIdhlCxaqxya1mw5cb697pZEshSt7Bam2hUFvaNA8GYSvG7Y+N5+zLJ9SNW3JO VH7Ev061ookqEktn8UXC71LqkQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGEfTEmg ziA5T/jSgVqRTp0ZY+eOMB8GA1UdIwQYMBaAFEAB8M0Z3bmULLWjlWfsNpO+Jcag MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOTZEQi9BODY0RDBFQThF M0QxMUVDQTg3QUJGMTZDNEY5QUUwMi9RQUh3elJuZHVaUXN0YU9WWi13Mms3NGx4 cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FBSHd6Um5kdVpRc3RhT1ZaLXcyazc0bHhxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjk2REIvQTg2NEQwRUE4RTNEMTFFQ0E4N0FCRjE2QzRGOUFFMDIvRjkxQjQxQTQw QzU4MTFFRkI5RjYzMzM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABntbQwDwQCAAIwCQMHACABDfBxQDANBgkqhkiG9w0BAQsF AAOCAQEA0XS+7OBkQyfBh5HipJ63+oPe5JsyKnfzJ3BMtXeb9eeBoYoVDtYx4Gxz GLn8iIrtOpQmdIkCKEL2HdxZ/hNPRJgseEu7f9uCu5J4k0zRxBSZ3dXmHDMBaRuZ euO7hA6L7ffJbStdGYmYh372HKnI8EuDISroQntMN4ntl1Xj0Ok5INWrcWoMB7BW ldd/K1nUxz/7fK1DI2rY5FCYK7xdKNH1z1E9zIQqg4FIl4mGsbaspqSv/A1xVlZ1 6qcI95Sd9OFvVap2EHEkb3T/fQ2h4OXxkTwJ8YdoI9y70SLMD2Lq7BIcdeDceFbL D5LFWMwH44bpyyqWjcgVrW+5sgNB9A== -----END CERTIFICATE-----Generated at Tue Apr 8 20:30:43 2025 by rpki-client