$ rpki-client -vvf rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/D8F27C903AD811EF960D9329C4F9AE02.roa File: D8F27C903AD811EF960D9329C4F9AE02.roa (raw, json) Hash identifier: g1Yxh4X4gr9QP8BwAN2yJktOsO1m01aHRbfwGJbCyik= Subject key identifier: 67:5F:F5:F8:DC:A3:DE:77:36:42:B4:C5:72:DB:FE:34:99:7C:DB:7F Certificate issuer: /CN=A91215B3/serialNumber=914850C4B8A513B2F8E4EDC4B5578707776372AE Certificate serial: 0141 Authority key identifier: 91:48:50:C4:B8:A5:13:B2:F8:E4:ED:C4:B5:57:87:07:77:63:72:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kUhQxLilE7L45O3EtVeHB3djcq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/D8F27C903AD811EF960D9329C4F9AE02.roa Signing time: Fri 03 Jan 2025 03:06:32 +0000 ROA not before: Fri 03 Jan 2025 03:06:32 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 133551 IP address blocks: 103.48.0.0/24 maxlen: 24 103.48.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/kUhQxLilE7L45O3EtVeHB3djcq4.crl rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/kUhQxLilE7L45O3EtVeHB3djcq4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kUhQxLilE7L45O3EtVeHB3djcq4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:32:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 321 (0x141) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91215B3 Validity Not Before: Jan 3 03:06:32 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67775438-8494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ab:6c:15:db:93:eb:10:8a:93:9a:11:2d:87: c7:e6:37:e3:27:5b:aa:ef:7f:26:e4:7e:b1:4b:da: 32:ee:30:1e:d4:80:26:e0:0e:d2:17:ca:87:d0:ec: 56:7a:01:6d:f0:1c:1a:53:70:88:b5:11:38:17:af: 45:89:85:e8:82:b9:c8:b5:8d:13:85:7d:42:fa:f7: 35:d2:6f:95:12:0f:cc:fa:96:ae:16:9f:14:a8:de: f4:56:a3:52:47:32:c2:83:96:94:e4:79:86:12:73: 14:ca:74:e2:85:2c:5c:b8:dc:8c:0a:0c:a3:18:c2: 75:df:ba:c2:15:1f:61:49:c1:43:c3:ee:05:ce:20: 11:89:81:ea:f1:5a:05:5a:34:0d:1a:1e:ca:95:df: b3:3f:e2:9f:de:53:22:ff:53:f4:62:15:4f:c3:13: 4c:95:e1:22:ea:68:61:ad:30:d2:9e:9e:26:3b:bb: 41:d0:cb:92:b8:fd:59:0d:c0:6d:22:01:d2:ac:f0: 9a:93:46:ae:ec:d4:9f:26:b5:1a:e2:c9:88:7f:58: 97:f5:d0:6d:31:56:62:70:8e:0b:f8:33:aa:03:4c: 4e:6f:d3:24:0b:61:00:ad:52:fb:c2:dc:a0:1b:96: c7:d0:13:bb:9d:3e:2d:a9:c2:76:b0:f8:64:8a:be: df:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:5F:F5:F8:DC:A3:DE:77:36:42:B4:C5:72:DB:FE:34:99:7C:DB:7F X509v3 Authority Key Identifier: keyid:91:48:50:C4:B8:A5:13:B2:F8:E4:ED:C4:B5:57:87:07:77:63:72:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/kUhQxLilE7L45O3EtVeHB3djcq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kUhQxLilE7L45O3EtVeHB3djcq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91215B3/E6F68F060B4B11EEAB9AAD79C4F9AE02/D8F27C903AD811EF960D9329C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.48.0.0/23 Signature Algorithm: sha256WithRSAEncryption 58:b2:18:18:cb:50:02:8b:80:2e:98:cf:12:e9:ab:cd:4b:3c: 65:d7:f3:2c:7d:e5:43:f5:88:49:5a:93:b4:80:b6:1f:cb:91: 42:18:71:d9:36:f3:7f:c7:17:df:a5:b1:58:f3:56:43:7a:6d: f9:5d:97:44:78:54:5e:02:e1:d2:d0:f6:fa:4d:1b:aa:76:b4: df:39:47:63:a7:77:65:f2:8e:48:94:c6:94:d1:84:e3:01:b6: 3c:86:39:d9:47:23:04:e7:a2:a9:db:82:37:d7:84:7c:43:f4: 96:16:7e:f3:e0:c1:62:cb:8d:19:fe:fb:3f:30:d3:ff:b9:92: e6:37:b3:c6:3b:51:29:cf:9e:e8:70:69:c9:13:d6:03:32:4c: 71:e5:98:32:03:35:0a:4f:dc:6c:fc:72:96:15:bb:bb:d5:39: 54:1d:85:37:18:82:17:55:78:e1:d1:85:ca:66:87:d1:9e:14: 5d:65:c8:67:f9:67:cf:5d:eb:aa:a2:5f:ae:eb:6a:2b:c0:e8: a6:a9:f0:f2:13:54:d8:74:3f:35:92:a7:b2:22:65:89:52:48: 05:3b:8a:a8:c2:3f:e6:6b:e3:f5:85:13:67:25:fe:43:4f:55: ad:ab:98:15:28:1e:de:03:aa:2b:f7:4a:2b:b6:ff:73:c6:1a: 43:99:d4:7d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE1QjMxMTAvBgNVBAUTKDkxNDg1MEM0QjhBNTEzQjJGOEU0RURDNEI1NTc4NzA3 Nzc2MzcyQUUwHhcNMjUwMTAzMDMwNjMyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc3NTQzOC04NDk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn6tsFduT6xCKk5oRLYfH5jfjJ1uq738m5H6xS9oy7jAe1IAm4A7SF8qH0OxW egFt8BwaU3CItRE4F69FiYXogrnItY0ThX1C+vc10m+VEg/M+pauFp8UqN70VqNS RzLCg5aU5HmGEnMUynTihSxcuNyMCgyjGMJ137rCFR9hScFDw+4FziARiYHq8VoF WjQNGh7Kld+zP+Kf3lMi/1P0YhVPwxNMleEi6mhhrTDSnp4mO7tB0MuSuP1ZDcBt IgHSrPCak0au7NSfJrUa4smIf1iX9dBtMVZicI4L+DOqA0xOb9MkC2EArVL7wtyg G5bH0BO7nT4tqcJ2sPhkir7fMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGdf9fjc o953NkK0xXLb/jSZfNt/MB8GA1UdIwQYMBaAFJFIUMS4pROy+OTtxLVXhwd3Y3Ku MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTVCMy9FNkY2OEYwNjBC NEIxMUVFQUI5QUFENzlDNEY5QUUwMi9rVWhReExpbEU3TDQ1TzNFdFZlSEIzZGpj cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tVaFF4TGlsRTdMNDVPM0V0VmVIQjNkamNxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE1QjMvRTZGNjhGMDYwQjRCMTFFRUFCOUFBRDc5QzRGOUFFMDIvRDhGMjdDOTAz QUQ4MTFFRjk2MEQ5MzI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnMAAwDQYJKoZIhvcNAQELBQADggEBAFiyGBjLUAKLgC6Y zxLpq81LPGXX8yx95UP1iElak7SAth/LkUIYcdk283/HF9+lsVjzVkN6bfldl0R4 VF4C4dLQ9vpNG6p2tN85R2Ond2XyjkiUxpTRhOMBtjyGOdlHIwTnoqnbgjfXhHxD 9JYWfvPgwWLLjRn++z8w0/+5kuY3s8Y7USnPnuhwackT1gMyTHHlmDIDNQpP3Gz8 cpYVu7vVOVQdhTcYghdVeOHRhcpmh9GeFF1lyGf5Z89d66qiX67raivA6Kap8PIT VNh0PzWSp7IiZYlSSAU7iqjCP+Zr4/WFE2cl/kNPVa2rmBUoHt4Dqiv3Siu2/3PG GkOZ1H0= -----END CERTIFICATE-----Generated at Sat Apr 5 08:16:27 2025 by rpki-client