$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/7A7A6AC6234311EA90D15227C4F9AE02.roa File: 7A7A6AC6234311EA90D15227C4F9AE02.roa (raw, json) Hash identifier: inLOYpzfiQRyaW4Jx9DTFdqEkju4HPJ5ZYoO4gNZ1PI= Subject key identifier: 6E:F6:1B:3D:26:44:03:7D:72:31:02:D4:08:08:56:5F:4A:7E:24:D6 Certificate issuer: /CN=A91F9B3A/serialNumber=9E15BCB9E33AEDEDAC680AC8C9816E115905CA2C Certificate serial: 16A8 Authority key identifier: 9E:15:BC:B9:E3:3A:ED:ED:AC:68:0A:C8:C9:81:6E:11:59:05:CA:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhW8ueM67e2saArIyYFuEVkFyiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/7A7A6AC6234311EA90D15227C4F9AE02.roa Signing time: Sat 08 Feb 2025 16:54:16 +0000 ROA not before: Sat 08 Feb 2025 16:54:16 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 136168 IP address blocks: 103.82.232.0/24 maxlen: 24 103.96.230.0/23 maxlen: 24 103.96.232.0/24 maxlen: 24 123.253.228.0/22 maxlen: 24 2401:8340::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.crl rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhW8ueM67e2saArIyYFuEVkFyiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5800 (0x16a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9B3A Validity Not Before: Feb 8 16:54:16 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a78c38-b3aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:9b:d2:67:3c:d7:37:72:1f:9a:81:38:92:6c: 54:f9:8e:26:01:19:08:b8:cc:15:5a:1a:79:21:22: 8a:ab:c8:47:d2:4a:6f:e2:40:dc:59:37:00:0a:f0: 74:f5:bb:05:56:6f:cb:fb:93:26:3a:fc:fa:b8:b3: b5:40:7d:55:a8:20:43:26:e4:ff:1c:e3:bf:fd:78: 17:35:75:92:7e:0f:0d:9f:1b:af:62:ee:c2:b8:98: 9b:1d:21:45:50:69:5a:86:26:29:6d:98:c2:d8:42: e3:4e:2b:a6:30:91:8c:2b:d5:b1:2e:ce:cd:5d:ce: 5d:53:7b:67:b5:6c:b0:06:9d:18:5e:bf:43:59:9c: 12:67:5c:74:e4:6f:39:54:5e:e3:a1:88:d8:e6:46: 96:7f:34:79:67:f3:86:66:55:74:38:d0:8a:6a:5e: 4e:bb:11:d7:ab:29:91:1b:86:56:13:35:f6:5b:6d: a8:db:67:88:02:13:dd:6c:5b:38:bb:26:1f:97:88: 34:16:35:b9:c9:fe:81:60:10:ac:a4:aa:62:ec:50: b5:8c:ad:8a:93:36:b9:97:49:9a:37:7c:b4:0f:48: 80:aa:23:ca:37:21:1b:af:7e:e8:10:ab:80:85:41: d8:7d:7b:e7:5a:d6:21:71:6c:0d:4c:58:af:60:cf: d3:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:F6:1B:3D:26:44:03:7D:72:31:02:D4:08:08:56:5F:4A:7E:24:D6 X509v3 Authority Key Identifier: keyid:9E:15:BC:B9:E3:3A:ED:ED:AC:68:0A:C8:C9:81:6E:11:59:05:CA:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/nhW8ueM67e2saArIyYFuEVkFyiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nhW8ueM67e2saArIyYFuEVkFyiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9B3A/7DEAE734F3A311E7B5D09C71C4F9AE02/7A7A6AC6234311EA90D15227C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.232.0/24 103.96.230.0-103.96.232.255 123.253.228.0/22 IPv6: 2401:8340::/32 Signature Algorithm: sha256WithRSAEncryption a1:5a:a1:73:ef:0c:c4:80:e9:06:61:e6:33:62:12:49:fd:f9: 6d:5e:97:44:fa:e7:56:c9:4c:34:69:e4:09:d7:8f:c5:8f:a3: 20:67:35:a6:be:39:c2:84:fa:b9:ca:0c:fd:51:55:9b:48:21: 28:9f:ca:c7:e8:c4:e2:3a:cf:fe:93:1b:16:73:ba:f1:40:31: 4c:72:37:a7:61:98:f2:23:b1:4e:49:19:37:6f:db:2a:e7:d5: 85:20:7a:ca:26:92:13:5d:ec:01:56:1d:09:7f:d0:eb:3f:2a: 03:31:a4:dc:19:d7:da:e8:35:71:4a:2f:3d:ca:e3:49:44:0a: 78:55:b6:40:96:16:6c:1c:a3:fc:43:3a:6e:1c:5c:ee:23:68: 31:69:3d:88:22:dc:3a:7a:c2:cb:28:60:31:67:d1:06:81:65: 30:ec:58:7e:2d:40:d8:19:2c:d9:00:eb:9f:68:cc:0e:bd:ee: 93:37:4e:6c:34:fb:40:78:68:f6:1e:29:8b:dd:be:e2:da:97: 3f:1a:1d:b0:29:6b:7d:8b:7f:ca:8a:32:4a:04:a3:38:95:1c: 52:cd:f4:50:3d:42:21:c7:b8:08:2b:62:9d:04:be:ea:64:75: 37:67:19:b7:67:57:75:4a:a9:74:dd:ce:21:41:ee:db:fd:2a: 97:38:12:51 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICFqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlCM0ExMTAvBgNVBAUTKDlFMTVCQ0I5RTMzQUVERURBQzY4MEFDOEM5ODE2RTEx NTkwNUNBMkMwHhcNMjUwMjA4MTY1NDE2WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E3OGMzOC1iM2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm5vSZzzXN3IfmoE4kmxU+Y4mARkIuMwVWhp5ISKKq8hH0kpv4kDcWTcACvB0 9bsFVm/L+5MmOvz6uLO1QH1VqCBDJuT/HOO//XgXNXWSfg8NnxuvYu7CuJibHSFF UGlahiYpbZjC2ELjTiumMJGMK9WxLs7NXc5dU3tntWywBp0YXr9DWZwSZ1x05G85 VF7joYjY5kaWfzR5Z/OGZlV0ONCKal5OuxHXqymRG4ZWEzX2W22o22eIAhPdbFs4 uyYfl4g0FjW5yf6BYBCspKpi7FC1jK2Kkza5l0maN3y0D0iAqiPKNyEbr37oEKuA hUHYfXvnWtYhcWwNTFivYM/TiQIDAQABo4ICuDCCArQwHQYDVR0OBBYEFG72Gz0m RAN9cjEC1AgIVl9KfiTWMB8GA1UdIwQYMBaAFJ4VvLnjOu3trGgKyMmBbhFZBcos MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUIzQS83REVBRTczNEYz QTMxMUU3QjVEMDlDNzFDNEY5QUUwMi9uaFc4dWVNNjdlMnNhQXJJeVlGdUVWa0Z5 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25oVzh1ZU02N2Uyc2FBckl5WUZ1RVZrRnlpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjlCM0EvN0RFQUU3MzRGM0EzMTFFN0I1RDA5QzcxQzRGOUFFMDIvN0E3QTZBQzYy MzQzMTFFQTkwRDE1MjI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMCAEAgABMBoDBABnUugwDAMEAWdg5gMEAGdg6AMEAnv95DANBAIAAjAHAwUA JAGDQDANBgkqhkiG9w0BAQsFAAOCAQEAoVqhc+8MxIDpBmHmM2ISSf35bV6XRPrn VslMNGnkCdePxY+jIGc1pr45woT6ucoM/VFVm0ghKJ/Kx+jE4jrP/pMbFnO68UAx THI3p2GY8iOxTkkZN2/bKufVhSB6yiaSE13sAVYdCX/Q6z8qAzGk3BnX2ug1cUov PcrjSUQKeFW2QJYWbByj/EM6bhxc7iNoMWk9iCLcOnrCyyhgMWfRBoFlMOxYfi1A 2Bks2QDrn2jMDr3ukzdObDT7QHho9h4pi92+4tqXPxodsClrfYt/yooySgSjOJUc Us30UD1CIce4CCtinQS+6mR1N2cZt2dXdUqpdN3OIUHu2/0qlzgSUQ== -----END CERTIFICATE-----Generated at Sun Apr 6 21:10:30 2025 by rpki-client