$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/CE65A4E4A57E11EFA1B6E428C4F9AE02.roa File: CE65A4E4A57E11EFA1B6E428C4F9AE02.roa (raw, json) Hash identifier: 1SKbx2XsDMYzA80POo6zzafuauDwKbPNh6n7Ob5AjVA= Subject key identifier: 72:12:EF:0F:BE:21:3F:41:29:51:A5:F7:64:71:18:84:A1:B1:E5:BF Certificate issuer: /CN=A91FAA91/serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657 Certificate serial: 017D Authority key identifier: A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/CE65A4E4A57E11EFA1B6E428C4F9AE02.roa Signing time: Thu 27 Feb 2025 05:27:25 +0000 ROA not before: Thu 27 Feb 2025 05:27:25 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 395793 IP address blocks: 103.83.40.0/24 maxlen: 24 103.83.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:31:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAA91 Validity Not Before: Feb 27 05:27:25 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67bff7bd-3c0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:08:dc:ec:81:60:3f:25:49:97:ee:2d:c9:5c: 78:d2:8e:22:5e:0b:e2:09:44:df:45:61:1f:f8:29: d5:10:c4:8f:2e:69:d0:5f:32:67:4d:31:b4:6c:f4: 67:b9:08:dd:79:95:ce:b1:67:a5:e4:72:29:0a:95: 90:9d:73:cb:91:7e:86:b0:01:15:be:62:12:69:03: 39:bc:0f:73:61:c1:10:97:12:6a:46:5a:30:e2:05: 69:7d:2d:17:82:cc:9c:8b:23:90:2f:71:20:cc:7b: fc:be:f1:85:f2:41:31:3d:f5:bb:e9:79:48:37:b3: e9:a4:09:59:ee:c7:24:89:04:3d:c0:1a:0c:5d:05: c5:99:79:cb:8d:f3:8d:4c:ee:a2:6f:e5:d9:10:1f: 34:5a:9b:ae:ae:fa:1b:35:0b:27:2d:7c:93:19:21: 26:8f:41:6a:2f:2c:c2:d2:3a:8e:f7:55:98:f8:d3: b5:3b:b6:44:d2:0b:12:0f:92:e0:87:ad:d3:51:28: f4:80:17:69:cd:67:79:ad:64:9d:c7:96:91:dc:0f: 0b:eb:d4:80:24:03:16:03:0c:d3:be:d5:37:d8:32: 5b:ea:8f:e9:13:82:78:9f:33:b4:fd:bf:41:c6:29: 39:89:e5:59:a5:bb:a4:aa:84:3b:c0:fa:eb:de:7a: 77:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:12:EF:0F:BE:21:3F:41:29:51:A5:F7:64:71:18:84:A1:B1:E5:BF X509v3 Authority Key Identifier: keyid:A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/CE65A4E4A57E11EFA1B6E428C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.83.40.0/23 Signature Algorithm: sha256WithRSAEncryption 90:7b:98:1e:df:d5:fc:8b:b2:d1:79:78:0f:1e:be:74:f7:79: 97:45:8e:f9:6b:32:3c:0a:2b:07:59:21:36:e9:ef:60:84:c2: 80:3a:6d:e2:f7:92:4b:71:1f:54:e0:5e:14:79:e3:72:f8:fb: 38:68:51:5e:6a:e8:fe:2a:58:c6:e5:b0:4f:bf:30:7f:0e:4b: a2:94:0c:73:cb:b5:ae:2d:af:66:2f:34:e9:bc:e1:80:44:ac: a4:e4:4d:7b:d2:87:c1:d2:73:d2:62:37:ac:8b:c6:ac:fd:ed: b7:6b:3f:ba:16:ac:69:cd:80:fb:4c:52:9e:12:00:2b:fb:fc: fb:b3:51:23:fc:14:77:68:e4:01:91:60:fe:d4:c0:37:45:55: b1:f7:4f:2e:a2:73:5b:d9:e4:da:25:ed:62:db:d4:9d:da:2c: 97:ea:7e:bc:6e:61:d9:5a:ce:0a:1b:1e:f0:76:24:7a:60:23: d3:99:86:6f:9e:42:72:72:e0:1a:7c:3d:02:d7:f8:e9:b8:54: 1d:8a:f8:41:e4:c8:de:fb:b4:39:d4:ea:ff:f5:b1:ab:86:5f: 8c:f6:5c:c2:98:c5:38:8f:54:b5:93:07:52:77:74:51:c2:0c: 94:cb:fb:d5:1c:6d:d3:db:5c:33:9d:e5:12:47:13:fb:ca:ff: 86:d3:91:14 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFBOTExMTAvBgNVBAUTKEEwQzgwQ0VFMDYzQzlDQzgyQ0RDQjBCQzc0NUM0RkU0 NkREMDI2NTcwHhcNMjUwMjI3MDUyNzI1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JmZjdiZC0zYzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnQjc7IFgPyVJl+4tyVx40o4iXgviCUTfRWEf+CnVEMSPLmnQXzJnTTG0bPRn uQjdeZXOsWel5HIpCpWQnXPLkX6GsAEVvmISaQM5vA9zYcEQlxJqRlow4gVpfS0X gsyciyOQL3EgzHv8vvGF8kExPfW76XlIN7PppAlZ7sckiQQ9wBoMXQXFmXnLjfON TO6ib+XZEB80WpuurvobNQsnLXyTGSEmj0FqLyzC0jqO91WY+NO1O7ZE0gsSD5Lg h63TUSj0gBdpzWd5rWSdx5aR3A8L69SAJAMWAwzTvtU32DJb6o/pE4J4nzO0/b9B xik5ieVZpbukqoQ7wPrr3np3FQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHIS7w++ IT9BKVGl92RxGIShseW/MB8GA1UdIwQYMBaAFKDIDO4GPJzILNywvHRcT+Rt0CZX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUE5MS85NDIwRDIxMDBB NUExMUVFQTNGNUI0NDFDNEY5QUUwMi9vTWdNN2dZOG5NZ3MzTEM4ZEZ4UDVHM1FK bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29NZ003Z1k4bk1nczNMQzhkRnhQNUczUUpsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkFBOTEvOTQyMEQyMTAwQTVBMTFFRUEzRjVCNDQxQzRGOUFFMDIvQ0U2NUE0RTRB NTdFMTFFRkExQjZFNDI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnUygwDQYJKoZIhvcNAQELBQADggEBAJB7mB7f1fyLstF5 eA8evnT3eZdFjvlrMjwKKwdZITbp72CEwoA6beL3kktxH1TgXhR543L4+zhoUV5q 6P4qWMblsE+/MH8OS6KUDHPLta4tr2YvNOm84YBErKTkTXvSh8HSc9JiN6yLxqz9 7bdrP7oWrGnNgPtMUp4SACv7/PuzUSP8FHdo5AGRYP7UwDdFVbH3Ty6ic1vZ5Nol 7WLb1J3aLJfqfrxuYdlazgobHvB2JHpgI9OZhm+eQnJy4Bp8PQLX+Om4VB2K+EHk yN77tDnU6v/1sauGX4z2XMKYxTiPVLWTB1J3dFHCDJTL+9UcbdPbXDOd5RJHE/vK /4bTkRQ= -----END CERTIFICATE-----Generated at Sun Apr 6 01:58:39 2025 by rpki-client