$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCF44/94110604602C11EF97D73C5FC4F9AE02/FDECD5AAC11411EF8CFEEF70C4F9AE02.roa File: FDECD5AAC11411EF8CFEEF70C4F9AE02.roa (raw, json) Hash identifier: NeIBC63WiyWwec0yw5jIlRtM5Kp5DxXNrkCheKMTUqo= Subject key identifier: 5B:CC:3B:4F:0C:FF:77:CC:74:AD:34:E5:34:68:29:56:72:0D:F9:42 Certificate issuer: /CN=A91FCF44/serialNumber=6998D9B5327BBF894ED56197C47EC896FAE59E34 Certificate serial: 7D Authority key identifier: 69:98:D9:B5:32:7B:BF:89:4E:D5:61:97:C4:7E:C8:96:FA:E5:9E:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZjZtTJ7v4lO1WGXxH7IlvrlnjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCF44/94110604602C11EF97D73C5FC4F9AE02/FDECD5AAC11411EF8CFEEF70C4F9AE02.roa Signing time: Mon 03 Mar 2025 08:58:25 +0000 ROA not before: Mon 03 Mar 2025 08:58:25 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138645 IP address blocks: 103.135.143.0/24 maxlen: 24 2404:7f40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCF44/94110604602C11EF97D73C5FC4F9AE02/aZjZtTJ7v4lO1WGXxH7IlvrlnjQ.crl rsync://rpki.apnic.net/member_repository/A91FCF44/94110604602C11EF97D73C5FC4F9AE02/aZjZtTJ7v4lO1WGXxH7IlvrlnjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZjZtTJ7v4lO1WGXxH7IlvrlnjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCF44 Validity Not Before: Mar 3 08:58:25 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c56f30-46a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:31:ec:ee:dc:a6:71:e4:b9:36:6b:57:d4:95: 6a:09:79:17:c9:7c:04:e1:29:fd:b4:e2:67:59:6d: 3d:53:86:2a:00:4f:c1:bc:81:4f:37:00:4f:19:b0: 9e:b3:86:b0:f1:01:fd:48:d9:7e:dc:74:27:21:51: cb:66:39:e7:30:b7:c8:ad:08:a6:1f:95:63:50:e5: 5e:cc:de:a8:e4:4d:29:1d:13:03:4e:6d:fa:61:29: 74:f5:52:4f:22:82:24:b5:0b:64:b6:41:f1:67:8d: d1:d4:38:8c:fb:4b:e0:0d:41:a8:a5:47:12:e3:e4: f2:e3:95:d1:0c:e2:94:20:6f:0e:1a:1e:6a:67:e2: 99:82:1c:f8:b5:91:18:36:e9:4b:1b:25:d8:e3:bf: 3b:5d:f1:20:c8:c6:5c:3c:b3:e9:55:f0:28:a0:fe: b8:98:e3:72:79:28:00:d4:fe:c6:20:aa:49:0d:d5: bf:be:6d:1d:b6:67:2f:16:82:62:45:35:eb:b9:9b: 38:5e:e8:52:05:5f:35:d9:04:cb:3a:09:83:35:60: b7:0e:50:88:32:7e:b7:e1:0d:48:85:ec:e4:78:c3: 3a:94:18:6d:94:c9:28:8c:91:65:06:3f:46:e1:70: cc:52:ff:0c:cb:94:40:7c:08:73:48:76:0c:d3:bc: 0d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:CC:3B:4F:0C:FF:77:CC:74:AD:34:E5:34:68:29:56:72:0D:F9:42 X509v3 Authority Key Identifier: keyid:69:98:D9:B5:32:7B:BF:89:4E:D5:61:97:C4:7E:C8:96:FA:E5:9E:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCF44/94110604602C11EF97D73C5FC4F9AE02/aZjZtTJ7v4lO1WGXxH7IlvrlnjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZjZtTJ7v4lO1WGXxH7IlvrlnjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCF44/94110604602C11EF97D73C5FC4F9AE02/FDECD5AAC11411EF8CFEEF70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.143.0/24 IPv6: 2404:7f40::/32 Signature Algorithm: sha256WithRSAEncryption 21:b2:30:13:6c:a5:2e:c3:3b:b7:a1:5d:64:ad:b2:ba:1c:21: c5:fe:3f:01:7f:76:fa:2b:f9:3d:2e:7f:30:8e:7f:c2:bf:4d: 81:66:b6:49:57:9d:86:44:32:a7:3e:ba:69:6c:87:20:fb:7f: f0:6e:41:26:4c:27:a3:d2:b7:0e:14:cf:08:3d:f5:8f:5d:65: ea:f6:49:fc:7c:a8:6b:94:f8:10:7a:c4:2f:e8:4d:e0:5c:c0: 51:43:ff:2f:5f:e5:ca:5d:20:d8:ac:f1:75:74:3e:66:83:43: d0:12:07:84:9d:79:42:3d:16:ce:11:12:a4:0b:af:f7:8a:30: 79:1f:03:10:d3:30:2a:6e:3a:e0:9f:a9:7f:68:cb:09:b7:1b: 87:17:41:2c:2d:f4:34:61:66:70:45:99:fb:7e:06:97:55:86: bd:ce:68:28:7c:b5:b1:fe:b7:8a:c8:d3:03:1f:42:2a:33:40: 1a:42:60:ce:ce:ec:e6:da:4e:b6:13:69:89:49:33:f9:f6:87: 76:2f:c4:89:94:36:08:d5:3b:9c:9e:4b:82:f5:92:d7:ed:ed: 55:4c:39:78:1d:52:28:88:53:0a:ac:4f:7a:a7:0a:87:97:bd: 68:f7:fe:fd:9f:14:70:12:e4:b8:f2:34:9d:f9:6b:b0:87:d5: 2b:f8:56:67 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG Q0Y0NDExMC8GA1UEBRMoNjk5OEQ5QjUzMjdCQkY4OTRFRDU2MTk3QzQ3RUM4OTZG QUU1OUUzNDAeFw0yNTAzMDMwODU4MjVaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YzU2ZjMwLTQ2YTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4Mezu3KZx5Lk2a1fUlWoJeRfJfAThKf204mdZbT1ThioAT8G8gU83AE8ZsJ6z hrDxAf1I2X7cdCchUctmOecwt8itCKYflWNQ5V7M3qjkTSkdEwNObfphKXT1Uk8i giS1C2S2QfFnjdHUOIz7S+ANQailRxLj5PLjldEM4pQgbw4aHmpn4pmCHPi1kRg2 6UsbJdjjvztd8SDIxlw8s+lV8Cig/riY43J5KADU/sYgqkkN1b++bR22Zy8WgmJF Neu5mzhe6FIFXzXZBMs6CYM1YLcOUIgyfrfhDUiF7OR4wzqUGG2UySiMkWUGP0bh cMxS/wzLlEB8CHNIdgzTvA1lAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUW8w7Twz/ d8x0rTTlNGgpVnIN+UIwHwYDVR0jBBgwFoAUaZjZtTJ7v4lO1WGXxH7IlvrlnjQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZDRjQ0Lzk0MTEwNjA0NjAy QzExRUY5N0Q3M0M1RkM0RjlBRTAyL2Faalp0VEo3djRsTzFXR1h4SDdJbHZybG5q US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYVpqWnRUSjd2NGxPMVdHWHhIN0lsdnJsbmpRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0Y0NC85NDExMDYwNDYwMkMxMUVGOTdENzNDNUZDNEY5QUUwMi9GREVDRDVBQUMx MTQxMUVGOENGRUVGNzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAGeHjzANBAIAAjAHAwUAJAR/QDANBgkqhkiG9w0BAQsFAAOC AQEAIbIwE2ylLsM7t6FdZK2yuhwhxf4/AX92+iv5PS5/MI5/wr9NgWa2SVedhkQy pz66aWyHIPt/8G5BJkwno9K3DhTPCD31j11l6vZJ/Hyoa5T4EHrEL+hN4FzAUUP/ L1/lyl0g2KzxdXQ+ZoND0BIHhJ15Qj0WzhESpAuv94oweR8DENMwKm464J+pf2jL CbcbhxdBLC30NGFmcEWZ+34Gl1WGvc5oKHy1sf63isjTAx9CKjNAGkJgzs7s5tpO thNpiUkz+faHdi/EiZQ2CNU7nJ5LgvWS1+3tVUw5eB1SKIhTCqxPeqcKh5e9aPf+ /Z8UcBLkuPI0nflrsIfVK/hWZw== -----END CERTIFICATE-----Generated at Sat Apr 5 01:57:58 2025 by rpki-client