$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/97F937E440BC11EAA2B89432C4F9AE02.roa File: 97F937E440BC11EAA2B89432C4F9AE02.roa (raw, json) Hash identifier: YvhnTG1A1W5kz0Vch4cPsIzgbILMaDioP1ySIyj5aeE= Subject key identifier: 57:6F:4B:EB:F3:BA:BA:F1:5B:A2:96:EE:86:FE:CD:C5:51:F1:24:6D Certificate issuer: /CN=A91FF634/serialNumber=E3D3B4788273CE45929B09983ABF64B5D44D1F08 Certificate serial: 10FD Authority key identifier: E3:D3:B4:78:82:73:CE:45:92:9B:09:98:3A:BF:64:B5:D4:4D:1F:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/97F937E440BC11EAA2B89432C4F9AE02.roa Signing time: Fri 28 Feb 2025 18:26:50 +0000 ROA not before: Fri 28 Feb 2025 18:26:50 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138536 IP address blocks: 103.132.92.0/22 maxlen: 24 180.210.160.0/20 maxlen: 24 180.210.176.0/20 maxlen: 24 2404:34c0::/32 maxlen: 32 2404:34c0::/48 maxlen: 48 2404:34c0:1::/48 maxlen: 48 2404:34c0:2::/48 maxlen: 48 2404:34c0:3::/48 maxlen: 48 2404:34c0:100::/48 maxlen: 48 2404:34c0:101::/48 maxlen: 48 2404:34c0:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.crl rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:23:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4349 (0x10fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF634 Validity Not Before: Feb 28 18:26:50 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c1ffe9-5b13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:66:b8:c3:b0:a2:74:11:2e:e8:ab:c4:81:9a: 3f:03:37:88:1b:60:e4:52:5b:03:95:d2:03:c3:eb: 77:3a:51:56:60:80:f6:1f:40:e3:19:ef:84:68:02: 66:24:2e:d7:9e:82:2c:94:61:66:b2:6a:62:de:da: f1:c3:73:b1:42:67:7f:13:95:62:f8:56:1a:ce:9f: 7d:ff:f4:b0:a1:06:57:73:d8:1e:fe:b3:54:87:15: 88:ad:9f:e1:45:1e:49:00:ee:a9:18:f0:13:fb:b5: 5e:7c:a2:2f:48:f7:0b:9d:4e:46:08:0b:ca:3f:ad: 96:9f:da:ef:72:db:2d:9e:22:c7:42:d1:00:54:97: 9e:c1:89:f0:e4:23:5d:55:2e:ee:4a:90:ac:8b:7a: 29:d1:2b:1e:39:fe:63:df:8d:84:47:af:b7:82:3d: 41:68:bc:20:3f:49:cc:9d:8a:a9:eb:f3:71:37:5f: 7f:65:61:5a:93:b3:4e:56:bb:fe:e0:77:52:c5:d1: b2:31:02:59:a4:9d:f4:7d:f5:11:f6:45:3b:4a:72: 3e:f1:36:c5:8e:9a:20:f4:68:74:07:91:ef:d0:74: f6:54:e5:d8:b7:8e:6e:48:74:a5:71:9d:24:65:72: da:6c:44:84:19:f0:a5:22:c5:23:a3:70:70:0c:00: 64:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:6F:4B:EB:F3:BA:BA:F1:5B:A2:96:EE:86:FE:CD:C5:51:F1:24:6D X509v3 Authority Key Identifier: keyid:E3:D3:B4:78:82:73:CE:45:92:9B:09:98:3A:BF:64:B5:D4:4D:1F:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/97F937E440BC11EAA2B89432C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.132.92.0/22 180.210.160.0/19 IPv6: 2404:34c0::/32 Signature Algorithm: sha256WithRSAEncryption 7f:66:c3:e8:3c:18:e7:1f:3c:44:5f:a3:5e:96:85:28:35:9a: 56:11:2b:ae:6b:af:db:21:09:99:22:d3:c8:e7:08:a1:98:1a: 91:43:42:27:ad:11:9c:f1:f3:66:c6:b3:47:08:bd:de:d3:23: 6b:a8:c6:85:52:89:66:93:c2:98:65:9d:c8:a5:91:ab:ce:fb: dd:6c:c6:7a:8e:2b:99:75:09:4e:28:9b:b3:76:70:14:d3:93: ea:39:74:36:36:48:a1:4d:cb:0c:c7:a2:53:61:1e:df:65:0f: 00:6e:74:3c:47:60:06:b7:e6:9d:d0:5e:0e:8d:c7:51:7b:84: 44:5d:4c:71:8e:1e:1d:c7:50:d5:59:7e:5b:be:58:16:3a:b6: 98:97:0d:47:7c:33:07:a0:5f:31:1d:5f:c6:a2:eb:dc:d2:a1: 3d:c3:ef:22:2b:87:2e:a2:a8:fb:d5:60:f9:bf:69:cb:fc:f3: a9:ea:f5:a5:9e:11:a4:f8:bc:29:3f:3e:87:31:bb:9e:74:d8: 51:a7:bd:90:6b:3b:ad:cf:d6:80:19:4c:7e:ca:7b:53:56:78: 7a:e8:f8:83:60:f7:dc:4d:42:38:db:f5:7f:99:e0:1c:a1:01: 2b:60:3d:d1:de:58:6e:d0:bb:e4:74:23:ff:38:67:90:8d:c4: fa:73:f2:de -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICEP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY2MzQxMTAvBgNVBAUTKEUzRDNCNDc4ODI3M0NFNDU5MjlCMDk5ODNBQkY2NEI1 RDQ0RDFGMDgwHhcNMjUwMjI4MTgyNjUwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MxZmZlOS01YjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2a4w7CidBEu6KvEgZo/AzeIG2DkUlsDldIDw+t3OlFWYID2H0DjGe+EaAJm JC7XnoIslGFmsmpi3trxw3OxQmd/E5Vi+FYazp99//SwoQZXc9ge/rNUhxWIrZ/h RR5JAO6pGPAT+7VefKIvSPcLnU5GCAvKP62Wn9rvctstniLHQtEAVJeewYnw5CNd VS7uSpCsi3op0SseOf5j342ER6+3gj1BaLwgP0nMnYqp6/NxN19/ZWFak7NOVrv+ 4HdSxdGyMQJZpJ30ffUR9kU7SnI+8TbFjpog9Gh0B5Hv0HT2VOXYt45uSHSlcZ0k ZXLabESEGfClIsUjo3BwDABkvwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFFdvS+vz urrxW6KW7ob+zcVR8SRtMB8GA1UdIwQYMBaAFOPTtHiCc85FkpsJmDq/ZLXUTR8I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjYzNC8xMzI3QTczRTE3 MjkxMUU5OEREMThFMjNDNEY5QUUwMi80OU8wZUlKenprV1Ntd21ZT3I5a3RkUk5I d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ5TzBlSUp6emtXU213bVlPcjlrdGRSTkh3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkY2MzQvMTMyN0E3M0UxNzI5MTFFOThERDE4RTIzQzRGOUFFMDIvOTdGOTM3RTQ0 MEJDMTFFQUEyQjg5NDMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnhFwDBAW00qAwDQQCAAIwBwMFACQENMAwDQYJKoZIhvcN AQELBQADggEBAH9mw+g8GOcfPERfo16WhSg1mlYRK65rr9shCZki08jnCKGYGpFD QietEZzx82bGs0cIvd7TI2uoxoVSiWaTwphlncilkavO+91sxnqOK5l1CU4om7N2 cBTTk+o5dDY2SKFNywzHolNhHt9lDwBudDxHYAa35p3QXg6Nx1F7hERdTHGOHh3H UNVZflu+WBY6tpiXDUd8MwegXzEdX8ai69zSoT3D7yIrhy6iqPvVYPm/acv886nq 9aWeEaT4vCk/Pocxu5502FGnvZBrO63P1oAZTH7Ke1NWeHro+INg99xNQjjb9X+Z 4ByhAStgPdHeWG7Qu+R0I/84Z5CNxPpz8t4= -----END CERTIFICATE-----Generated at Sat Apr 5 07:19:13 2025 by rpki-client