$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/AD88248C1FBE11EE97342E64C4F9AE02.roa File: AD88248C1FBE11EE97342E64C4F9AE02.roa (raw, json) Hash identifier: GPafla64VUamN9CnaYJ2F+XELitJmP/fVhbH40kAovU= Subject key identifier: 01:23:83:9C:4E:81:EF:91:B7:FE:FA:47:02:18:F7:91:9F:D5:98:18 Certificate issuer: /CN=A91AF2CD/serialNumber=5874520DA781F780DBD710D42C841C13A7AD1757 Certificate serial: 0162 Authority key identifier: 58:74:52:0D:A7:81:F7:80:DB:D7:10:D4:2C:84:1C:13:A7:AD:17:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/AD88248C1FBE11EE97342E64C4F9AE02.roa Signing time: Fri 03 Jan 2025 02:46:38 +0000 ROA not before: Fri 03 Jan 2025 02:46:38 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 398478 IP address blocks: 103.88.188.0/22 maxlen: 22 116.204.236.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.crl rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:12:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF2CD Validity Not Before: Jan 3 02:46:38 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67774f8e-1c47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:1e:31:97:15:58:15:92:2d:38:af:9f:9b:42: 4b:92:50:f6:d0:33:1c:5c:31:6e:d4:20:50:2c:b8: ad:ca:da:57:ce:b6:0c:d7:6b:96:aa:64:67:2e:0f: 8d:7b:ae:c8:a0:70:fc:f1:e5:6d:22:f0:be:1b:6e: 5f:3a:75:f6:74:b7:71:d4:11:19:42:97:bb:bf:22: 2e:84:1d:ed:c4:8d:40:0c:15:c6:7d:9d:b0:63:23: 8a:8e:2c:fd:e4:fc:15:4e:4f:2b:66:70:16:22:4f: 15:7e:d4:f5:60:36:5d:32:fb:15:52:4e:4d:e8:e3: 26:d5:e2:6c:2a:f2:b4:06:34:a6:21:a0:17:dd:55: 90:b5:32:8f:ba:e5:47:5d:30:f5:6e:cc:49:00:a5: 2e:a3:24:11:ed:ce:f4:b2:18:31:4f:8f:a3:53:96: 47:9a:b5:46:5c:ca:0c:3a:fb:56:bc:e1:d9:27:0a: 9d:b9:ec:6f:3d:68:5c:42:88:b1:e7:66:c2:11:04: 34:1d:0e:62:18:4a:76:52:03:af:6c:c7:56:bd:e7: 26:33:aa:c4:49:e5:c8:09:13:51:ac:eb:ba:b4:42: 62:2c:c5:d8:6a:e8:8c:37:d2:8e:95:7c:e1:79:8a: 8c:e1:da:79:c5:f6:00:ca:c0:ec:64:35:d1:37:89: a7:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:23:83:9C:4E:81:EF:91:B7:FE:FA:47:02:18:F7:91:9F:D5:98:18 X509v3 Authority Key Identifier: keyid:58:74:52:0D:A7:81:F7:80:DB:D7:10:D4:2C:84:1C:13:A7:AD:17:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/AD88248C1FBE11EE97342E64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.188.0/22 116.204.236.0/22 Signature Algorithm: sha256WithRSAEncryption 41:ab:4d:e3:ae:47:a5:30:9b:4f:bd:5a:c7:15:f5:b0:46:10: 88:c6:cc:37:79:c8:94:c8:49:3d:4a:82:b4:b1:e7:e3:c7:44: 7d:bb:8e:7c:7d:05:d4:4e:db:bf:a1:63:23:b6:68:d4:5b:c1: 8a:ed:2d:da:31:7c:57:28:6a:ed:71:96:51:1b:6d:60:de:89: 22:d4:30:6d:2d:50:3a:6b:42:0e:ad:3d:6d:48:89:b8:36:72: fa:2e:55:53:6a:30:d2:ea:e5:c1:64:7e:fa:fe:71:30:58:e3: a4:3a:e2:80:33:96:3f:a8:86:ab:a3:cb:35:28:3b:80:42:c1: 89:cb:39:e9:90:c1:fa:6c:4a:6c:15:d3:2c:96:8b:d0:d6:3f: ed:74:f3:d5:a7:3a:8e:a3:3c:f7:e6:53:e4:7c:b2:57:72:57: 4f:5f:99:72:a6:7a:64:ee:d3:82:64:76:d7:48:ae:e9:cb:89: 37:0a:e4:e4:f7:94:b3:88:6e:94:15:0e:bf:ea:b7:38:65:99: 7e:d2:69:be:cb:65:bc:8b:60:bb:e2:4f:7f:f8:fe:dd:41:05: 5d:49:c0:5d:b7:71:76:b9:70:84:8b:5d:24:5c:29:0e:a4:22: 49:88:97:99:9d:de:6d:55:62:fc:bb:8f:0a:f3:5e:f7:39:c4: 67:68:ec:59 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYyQ0QxMTAvBgNVBAUTKDU4NzQ1MjBEQTc4MUY3ODBEQkQ3MTBENDJDODQxQzEz QTdBRDE3NTcwHhcNMjUwMTAzMDI0NjM4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc3NGY4ZS0xYzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6R4xlxVYFZItOK+fm0JLklD20DMcXDFu1CBQLLitytpXzrYM12uWqmRnLg+N e67IoHD88eVtIvC+G25fOnX2dLdx1BEZQpe7vyIuhB3txI1ADBXGfZ2wYyOKjiz9 5PwVTk8rZnAWIk8VftT1YDZdMvsVUk5N6OMm1eJsKvK0BjSmIaAX3VWQtTKPuuVH XTD1bsxJAKUuoyQR7c70shgxT4+jU5ZHmrVGXMoMOvtWvOHZJwqduexvPWhcQoix 52bCEQQ0HQ5iGEp2UgOvbMdWvecmM6rESeXICRNRrOu6tEJiLMXYauiMN9KOlXzh eYqM4dp5xfYAysDsZDXRN4mnfQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAEjg5xO ge+Rt/76RwIY95Gf1ZgYMB8GA1UdIwQYMBaAFFh0Ug2ngfeA29cQ1CyEHBOnrRdX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjJDRC80RkNCQUMwMEQ0 NEMxMUVEODYyNzE1ODJDNEY5QUUwMi9XSFJTRGFlQjk0RGIxeERVTElRY0U2ZXRG MWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dIUlNEYWVCOTREYjF4RFVMSVFjRTZldEYxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUYyQ0QvNEZDQkFDMDBENDRDMTFFRDg2MjcxNTgyQzRGOUFFMDIvQUQ4ODI0OEMx RkJFMTFFRTk3MzQyRTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnWLwDBAJ0zOwwDQYJKoZIhvcNAQELBQADggEBAEGrTeOu R6Uwm0+9WscV9bBGEIjGzDd5yJTIST1KgrSx5+PHRH27jnx9BdRO27+hYyO2aNRb wYrtLdoxfFcoau1xllEbbWDeiSLUMG0tUDprQg6tPW1Iibg2cvouVVNqMNLq5cFk fvr+cTBY46Q64oAzlj+ohqujyzUoO4BCwYnLOemQwfpsSmwV0yyWi9DWP+1089Wn Oo6jPPfmU+R8sldyV09fmXKmemTu04JkdtdIrunLiTcK5OT3lLOIbpQVDr/qtzhl mX7Sab7LZbyLYLviT3/4/t1BBV1JwF23cXa5cISLXSRcKQ6kIkmIl5md3m1VYvy7 jwrzXvc5xGdo7Fk= -----END CERTIFICATE-----Generated at Sun Apr 6 12:59:43 2025 by rpki-client