$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/10800248E9C711EFA1589312C4F9AE02.roa File: 10800248E9C711EFA1589312C4F9AE02.roa (raw, json) Hash identifier: MTqILFa0C+24gi6qk+nzk7lo5NR6f5WiYqHQ/SbCX2c= Subject key identifier: EB:78:BA:B6:21:E3:9E:98:47:67:82:FB:74:10:2D:39:65:26:97:9E Certificate issuer: /CN=A91FEF3B/serialNumber=A38D487BD5D9A8A89480274FE6F7C061C624BCC0 Certificate serial: 02 Authority key identifier: A3:8D:48:7B:D5:D9:A8:A8:94:80:27:4F:E6:F7:C0:61:C6:24:BC:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/10800248E9C711EFA1589312C4F9AE02.roa Signing time: Thu 13 Feb 2025 04:57:46 +0000 ROA not before: Thu 13 Feb 2025 04:57:46 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 139221 IP address blocks: 103.139.249.0/24 maxlen: 24 2001:df0:9d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:09:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEF3B Validity Not Before: Feb 13 04:57:46 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67ad7bc9-fa32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:89:b1:06:33:4e:d1:8c:e1:5f:99:1e:28:36: c1:f2:6f:cc:f9:ac:6a:1c:47:df:80:a2:a2:cc:a4: ed:09:62:e7:64:e7:f6:d9:5e:2f:a5:23:ea:03:2c: e1:e7:0f:6f:0f:07:37:d6:87:5d:f9:d3:f4:0e:98: e3:f4:c1:01:90:d6:51:3d:0c:4f:ea:ee:07:7a:02: 84:b9:38:5a:6b:f2:08:1e:58:bb:30:d2:3b:ed:8b: 7f:6f:d1:c1:6e:49:98:a8:bc:58:60:a9:85:c7:0d: 1a:da:c2:24:c7:0b:6f:7c:b5:98:43:98:6c:18:ac: 7c:bd:44:8d:e3:e1:25:e2:a5:f2:10:28:6b:4c:dc: 1e:93:f7:45:97:61:1f:ee:05:92:61:5b:eb:7f:33: 59:9c:88:7b:88:3d:07:db:05:93:c6:2d:f8:38:3f: e8:c1:e8:c3:e8:45:33:ad:eb:ca:79:56:3d:2a:39: 31:86:17:4e:3c:de:a2:65:97:c2:3b:de:db:81:a4: d4:77:aa:5a:a1:a2:db:19:0a:f3:08:af:ab:5c:d4: 66:7f:bb:67:69:0d:47:33:63:a5:b6:6b:0d:2b:d8: 13:a4:3e:38:b2:fc:d3:42:22:1d:d5:b4:3f:bd:90: e6:aa:b2:e3:71:cc:4b:1e:29:a1:f8:01:f2:55:da: 69:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:78:BA:B6:21:E3:9E:98:47:67:82:FB:74:10:2D:39:65:26:97:9E X509v3 Authority Key Identifier: keyid:A3:8D:48:7B:D5:D9:A8:A8:94:80:27:4F:E6:F7:C0:61:C6:24:BC:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/o41Ie9XZqKiUgCdP5vfAYcYkvMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o41Ie9XZqKiUgCdP5vfAYcYkvMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEF3B/AC762200E9C611EF9FA17711C4F9AE02/10800248E9C711EFA1589312C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.249.0/24 IPv6: 2001:df0:9d80::/48 Signature Algorithm: sha256WithRSAEncryption a4:e6:df:3b:0f:cc:44:1a:83:2e:37:54:52:4c:91:84:9d:62: 80:cd:09:9f:94:d1:17:86:37:37:98:18:a4:ef:67:a0:b4:cd: af:ea:e4:64:ca:32:c5:54:13:b7:e5:de:5e:eb:e3:41:18:97: a6:a6:6b:06:1c:d7:18:57:92:ee:eb:e5:73:5b:c8:c2:e5:25: 52:5f:4e:75:c9:ca:d7:4d:38:b2:74:cc:94:b2:0b:53:fd:1b: 34:97:a8:6c:ce:e9:df:c0:2b:72:4f:a8:9b:9d:b9:32:ff:d8: 6c:76:14:1f:9a:95:1a:c3:49:84:55:ff:06:47:16:87:17:a4: 15:b8:80:d5:57:25:db:5e:5e:ba:48:88:4f:49:fa:67:a9:84: 74:a0:6b:db:5f:90:53:65:88:34:08:01:35:8c:61:63:36:cb: 50:47:04:63:a8:29:e1:2b:8e:99:8a:43:de:e0:d7:af:b7:2c: 21:bb:4f:0e:cc:0a:cc:3c:4f:98:b7:75:d6:35:2f:36:08:85: 4e:a6:3c:7e:e9:f8:64:e5:0f:81:dd:38:6b:45:df:ad:cb:40: fe:49:20:b8:6c:94:cf:e4:f8:72:5b:8a:b7:15:63:1b:49:29: 7a:8d:c9:18:3a:6b:fd:1b:f2:c3:18:c4:34:4f:4d:3e:40:15: 2f:3b:ad:ac -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RUYzQjExMC8GA1UEBRMoQTM4RDQ4N0JENUQ5QThBODk0ODAyNzRGRTZGN0MwNjFD NjI0QkNDMDAeFw0yNTAyMTMwNDU3NDZaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YWQ3YmM5LWZhMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCribEGM07RjOFfmR4oNsHyb8z5rGocR9+AoqLMpO0JYudk5/bZXi+lI+oDLOHn D28PBzfWh1350/QOmOP0wQGQ1lE9DE/q7gd6AoS5OFpr8ggeWLsw0jvti39v0cFu SZiovFhgqYXHDRrawiTHC298tZhDmGwYrHy9RI3j4SXipfIQKGtM3B6T90WXYR/u BZJhW+t/M1mciHuIPQfbBZPGLfg4P+jB6MPoRTOt68p5Vj0qOTGGF0483qJll8I7 3tuBpNR3qlqhotsZCvMIr6tc1GZ/u2dpDUczY6W2aw0r2BOkPjiy/NNCIh3VtD+9 kOaqsuNxzEseKaH4AfJV2mktAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU63i6tiHj nphHZ4L7dBAtOWUml54wHwYDVR0jBBgwFoAUo41Ie9XZqKiUgCdP5vfAYcYkvMAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZFRjNCL0FDNzYyMjAwRTlD NjExRUY5RkExNzcxMUM0RjlBRTAyL280MUllOVhacUtpVWdDZFA1dmZBWWNZa3ZN QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbzQxSWU5WFpxS2lVZ0NkUDV2ZkFZY1lrdk1BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RUYzQi9BQzc2MjIwMEU5QzYxMUVGOUZBMTc3MTFDNEY5QUUwMi8xMDgwMDI0OEU5 QzcxMUVGQTE1ODkzMTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGeL+TAPBAIAAjAJAwcAIAEN8J2AMA0GCSqGSIb3DQEBCwUA A4IBAQCk5t87D8xEGoMuN1RSTJGEnWKAzQmflNEXhjc3mBik72egtM2v6uRkyjLF VBO35d5e6+NBGJempmsGHNcYV5Lu6+VzW8jC5SVSX051ycrXTTiydMyUsgtT/Rs0 l6hszunfwCtyT6ibnbky/9hsdhQfmpUaw0mEVf8GRxaHF6QVuIDVVyXbXl66SIhP SfpnqYR0oGvbX5BTZYg0CAE1jGFjNstQRwRjqCnhK46ZikPe4Nevtywhu08OzArM PE+Yt3XWNS82CIVOpjx+6fhk5Q+B3ThrRd+ty0D+SSC4bJTP5PhyW4q3FWMbSSl6 jckYOmv9G/LDGMQ0T00+QBUvO62s -----END CERTIFICATE-----Generated at Sat Apr 5 02:20:28 2025 by rpki-client