$ rpki-client -vvf rpki.apnic.net/member_repository/A91F98D7/8621AE62A87111EFAEA1C831C4F9AE02/D1E8FCF6A87111EF96B74932C4F9AE02.roa File: D1E8FCF6A87111EF96B74932C4F9AE02.roa (raw, json) Hash identifier: enXEkpBa0eGlKzSX90hnhUrWxqZsAsvyTyWFjRwdRIY= Subject key identifier: 0D:C4:91:D5:5A:1A:D1:AE:94:34:BC:00:E7:74:74:19:A7:DD:55:A0 Certificate issuer: /CN=A91F98D7/serialNumber=2628E6A894CDFC9373F3DB9CFCFBC5143FFA2A3E Certificate serial: 4A Authority key identifier: 26:28:E6:A8:94:CD:FC:93:73:F3:DB:9C:FC:FB:C5:14:3F:FA:2A:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JijmqJTN_JNz89uc_PvFFD_6Kj4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F98D7/8621AE62A87111EFAEA1C831C4F9AE02/D1E8FCF6A87111EF96B74932C4F9AE02.roa Signing time: Tue 25 Mar 2025 06:43:15 +0000 ROA not before: Tue 25 Mar 2025 06:43:15 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 140097 IP address blocks: 103.148.126.0/24 maxlen: 24 103.164.82.0/24 maxlen: 24 2001:df2:d480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F98D7/8621AE62A87111EFAEA1C831C4F9AE02/JijmqJTN_JNz89uc_PvFFD_6Kj4.crl rsync://rpki.apnic.net/member_repository/A91F98D7/8621AE62A87111EFAEA1C831C4F9AE02/JijmqJTN_JNz89uc_PvFFD_6Kj4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JijmqJTN_JNz89uc_PvFFD_6Kj4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:39:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F98D7 Validity Not Before: Mar 25 06:43:15 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e25083-e8c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:6f:da:69:e3:9c:5d:0e:67:2d:46:3f:08:2e: d3:b2:79:0f:09:39:7b:75:e5:b1:7a:1f:86:73:0f: 60:17:76:e7:52:2e:d3:a8:96:7e:84:c2:ea:a1:ff: 46:e5:44:6e:37:ce:21:49:b6:2b:14:20:1f:5a:76: ed:57:c5:9c:b8:6b:b4:9c:1d:1d:fc:8c:41:f9:45: b1:15:48:b5:30:61:c5:22:f3:ab:13:43:fe:9e:be: 77:df:02:75:7d:5f:0d:a2:76:2c:d8:b6:0a:ac:27: 3c:76:c6:5b:34:70:4f:96:7c:5c:0e:a0:c0:a5:28: 32:42:2b:9c:c3:fa:f8:16:1d:7d:5f:bc:e0:9a:b1: 4e:00:16:ba:da:3f:80:18:5e:bd:31:59:7c:b9:cc: fd:5c:ec:79:96:8a:79:f3:85:02:fb:fb:5e:16:37: b1:62:b4:da:d0:21:9e:cd:54:8d:0f:4d:54:22:86: a8:6f:46:46:26:f5:40:86:9f:3f:fb:ad:8e:3e:30: 69:a1:d7:57:37:3f:c7:0b:a6:86:d3:49:d9:6b:df: 9f:88:02:d6:8e:5e:5b:17:85:f2:40:b5:60:72:41: a3:22:d5:e5:64:db:cd:24:bd:97:43:29:2f:87:13: c7:27:94:e9:45:83:ab:66:6a:a3:55:89:49:20:aa: 1b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:C4:91:D5:5A:1A:D1:AE:94:34:BC:00:E7:74:74:19:A7:DD:55:A0 X509v3 Authority Key Identifier: keyid:26:28:E6:A8:94:CD:FC:93:73:F3:DB:9C:FC:FB:C5:14:3F:FA:2A:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F98D7/8621AE62A87111EFAEA1C831C4F9AE02/JijmqJTN_JNz89uc_PvFFD_6Kj4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JijmqJTN_JNz89uc_PvFFD_6Kj4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F98D7/8621AE62A87111EFAEA1C831C4F9AE02/D1E8FCF6A87111EF96B74932C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.126.0/24 103.164.82.0/24 IPv6: 2001:df2:d480::/48 Signature Algorithm: sha256WithRSAEncryption 1d:ea:82:68:ad:35:4c:c8:49:a9:fe:5f:f9:f8:b0:89:c3:66: 9d:d9:70:ca:66:b2:5c:3f:d1:fb:72:37:46:73:54:0b:9d:2d: e9:a7:ee:34:43:7d:ca:ad:eb:92:91:a1:71:2c:ce:a7:9f:80: 55:16:d6:ba:59:15:b3:18:dd:a8:e6:eb:c5:e1:37:0c:43:33: 48:66:2c:98:d4:e7:46:a6:d8:78:5e:f6:9d:10:94:52:dd:3f: d8:4d:e8:35:b7:8b:14:bc:1d:89:86:fd:0f:b0:41:b1:fb:fc: 1a:17:b6:1b:22:6b:55:42:e6:cd:a0:0c:9f:76:ca:ab:d6:82: da:06:55:63:7d:a2:0a:1c:d4:f0:23:be:0e:4e:2b:b0:0a:8f: 4b:a4:ae:bd:86:ad:17:db:35:0a:61:61:41:5d:11:66:51:17: c7:e2:3c:4e:e0:07:58:fb:14:f4:bf:bb:bb:68:5f:05:e8:18: 36:ad:09:29:f4:9d:f4:50:6a:c7:8f:f7:5a:64:b9:14:e3:c1: c3:74:8f:b1:b9:96:a3:c8:e8:52:2c:cc:a5:a3:8a:bd:41:7e: d5:18:4f:d8:e2:8f:26:22:e9:1b:b2:d5:45:2b:60:e1:11:45: e6:4f:03:12:e4:00:9e:74:72:0e:58:ff:d4:ad:be:79:65:cf: 94:4d:a3:7d -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG OThENzExMC8GA1UEBRMoMjYyOEU2QTg5NENERkM5MzczRjNEQjlDRkNGQkM1MTQz RkZBMkEzRTAeFw0yNTAzMjUwNjQzMTVaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZTI1MDgzLWU4YzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCib9pp45xdDmctRj8ILtOyeQ8JOXt15bF6H4ZzD2AXdudSLtOoln6Ewuqh/0bl RG43ziFJtisUIB9adu1XxZy4a7ScHR38jEH5RbEVSLUwYcUi86sTQ/6evnffAnV9 Xw2idizYtgqsJzx2xls0cE+WfFwOoMClKDJCK5zD+vgWHX1fvOCasU4AFrraP4AY Xr0xWXy5zP1c7HmWinnzhQL7+14WN7FitNrQIZ7NVI0PTVQihqhvRkYm9UCGnz/7 rY4+MGmh11c3P8cLpobTSdlr35+IAtaOXlsXhfJAtWByQaMi1eVk280kvZdDKS+H E8cnlOlFg6tmaqNViUkgqhuTAgMBAAGjggKsMIICqDAdBgNVHQ4EFgQUDcSR1Voa 0a6UNLwA53R0GafdVaAwHwYDVR0jBBgwFoAUJijmqJTN/JNz89uc/PvFFD/6Kj4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY5OEQ3Lzg2MjFBRTYyQTg3 MTExRUZBRUExQzgzMUM0RjlBRTAyL0ppam1xSlROX0pOejg5dWNfUHZGRkRfNktq NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSmlqbXFKVE5fSk56ODl1Y19QdkZGRF82S2o0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OThENy84NjIxQUU2MkE4NzExMUVGQUVBMUM4MzFDNEY5QUUwMi9EMUU4RkNGNkE4 NzExMUVGOTZCNzQ5MzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA2BggrBgEFBQcBBwEB/wQn MCUwEgQCAAEwDAMEAGeUfgMEAGekUjAPBAIAAjAJAwcAIAEN8tSAMA0GCSqGSIb3 DQEBCwUAA4IBAQAd6oJorTVMyEmp/l/5+LCJw2ad2XDKZrJcP9H7cjdGc1QLnS3p p+40Q33KreuSkaFxLM6nn4BVFta6WRWzGN2o5uvF4TcMQzNIZiyY1OdGpth4Xvad EJRS3T/YTeg1t4sUvB2Jhv0PsEGx+/waF7YbImtVQubNoAyfdsqr1oLaBlVjfaIK HNTwI74OTiuwCo9LpK69hq0X2zUKYWFBXRFmURfH4jxO4AdY+xT0v7u7aF8F6Bg2 rQkp9J30UGrHj/daZLkU48HDdI+xuZajyOhSLMylo4q9QX7VGE/Y4o8mIukbstVF K2DhEUXmTwMS5ACedHIOWP/Urb55Zc+UTaN9 -----END CERTIFICATE-----Generated at Sun Apr 6 15:23:07 2025 by rpki-client