$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/86BBD3DE994C11EC82BA3978C4F9AE02.roa File: 86BBD3DE994C11EC82BA3978C4F9AE02.roa (raw, json) Hash identifier: 8Wwh2LGsfMleJz4kPXncR947wixaVvdi2YpWJ6WAnNA= Subject key identifier: 2C:BE:C6:DE:BD:7B:69:CD:E2:BF:92:B5:ED:D5:9A:46:D0:01:3B:62 Certificate issuer: /CN=A91B1185/serialNumber=FE3CD37CEC0E382307B4F9D5FFD57E97F121F053 Certificate serial: 1636 Authority key identifier: FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/86BBD3DE994C11EC82BA3978C4F9AE02.roa Signing time: Tue 18 Feb 2025 17:34:46 +0000 ROA not before: Tue 18 Feb 2025 17:34:46 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 206283 IP address blocks: 103.27.20.0/24 maxlen: 24 175.111.6.0/24 maxlen: 24 2001:fe8:8f00::/40 maxlen: 40 2001:fe8:8f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:49:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5686 (0x1636) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1185 Validity Not Before: Feb 18 17:34:46 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67b4c4b6-53fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3d:57:d6:7f:29:5e:b3:3e:e9:e1:fb:02:b7: 35:2b:fa:f6:d6:2e:fc:d7:44:48:31:6e:4c:17:12: ec:83:03:55:05:bc:01:e5:15:72:1f:a7:fa:f4:56: c4:8c:09:8f:cf:21:6a:5f:f8:c1:08:a4:55:ab:52: 7a:02:70:b3:88:29:26:72:c9:02:26:7d:30:fe:5a: 63:e2:3c:46:74:2f:96:6a:b6:22:f2:7d:11:ec:e1: 68:7b:f2:57:40:cf:da:3d:11:da:09:8d:0a:6e:80: 8d:d1:0e:70:88:00:74:47:8b:e4:3c:dd:bf:ec:aa: 60:91:5d:5f:ac:ae:01:34:e0:f0:20:07:55:17:26: c8:9c:69:c9:65:e2:fc:c1:0a:73:5f:df:31:9a:f7: 28:e1:a8:28:d3:88:13:a2:d8:59:13:70:6b:d9:36: 79:df:4f:97:d7:05:86:38:10:12:88:0b:9a:26:ed: 44:ac:6f:1d:68:28:0f:d3:6e:1b:89:7f:45:c3:5a: b6:48:d1:cb:33:8f:1d:0f:ee:32:45:2a:b4:fa:d3: 9d:db:96:1d:dd:9a:34:18:12:19:7f:5e:c7:e8:94: 8a:5f:62:fa:f6:60:8d:c4:1f:be:74:93:67:b9:97: dd:d3:c3:61:11:16:fc:b6:b9:4b:cc:7d:f3:9f:22: 7c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:BE:C6:DE:BD:7B:69:CD:E2:BF:92:B5:ED:D5:9A:46:D0:01:3B:62 X509v3 Authority Key Identifier: keyid:FE:3C:D3:7C:EC:0E:38:23:07:B4:F9:D5:FF:D5:7E:97:F1:21:F0:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_jzTfOwOOCMHtPnV_9V-l_Eh8FM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1185/3EA9DD3A162311E892C4A940C4F9AE02/86BBD3DE994C11EC82BA3978C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.27.20.0/24 175.111.6.0/24 IPv6: 2001:fe8:8f00::/40 Signature Algorithm: sha256WithRSAEncryption 7a:4b:d1:9b:0c:e4:25:d4:5a:d8:7a:36:d0:d5:c7:db:9f:ac: 94:12:33:bf:77:65:fe:9f:fd:c4:80:96:0b:62:e5:fa:75:cb: 60:ac:5d:35:42:91:64:88:02:86:d1:92:06:fa:99:31:7e:4a: 50:79:ce:7a:6b:cf:0c:bd:16:28:e9:a7:ff:98:95:9e:7a:b3: 52:84:28:75:b5:06:92:0d:fb:d9:d2:c4:e8:1a:8e:3e:c2:9c: 5c:02:67:2e:6a:20:7d:05:bd:60:15:a0:e9:1a:0b:df:00:c7: 2d:50:d0:83:33:8a:e3:6b:78:14:c0:db:b2:31:13:fa:d2:aa: fc:c1:d6:50:b3:6d:91:e3:50:f4:0c:62:3e:96:fb:f1:27:6b: da:d6:a6:e1:dd:a0:3a:1d:65:5e:33:47:94:05:ef:12:36:2b: 01:51:8f:e6:8e:89:89:46:50:bb:b1:9f:a4:05:b1:d0:31:47: c8:cb:2b:8b:f7:69:05:c9:27:94:be:85:95:60:a0:9b:0a:4c: 65:ca:62:0e:48:a5:6c:c9:bb:76:d6:f4:d8:6b:27:ee:b0:a6: a7:8f:d3:5f:4b:07:1d:cf:ec:df:84:e4:53:75:59:2a:4a:38: 1c:a9:25:34:0f:d0:bc:f7:97:f2:13:38:f0:22:c9:3c:de:9d: f7:25:75:ce -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICFjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjExODUxMTAvBgNVBAUTKEZFM0NEMzdDRUMwRTM4MjMwN0I0RjlENUZGRDU3RTk3 RjEyMUYwNTMwHhcNMjUwMjE4MTczNDQ2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I0YzRiNi01M2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwD1X1n8pXrM+6eH7Arc1K/r21i7810RIMW5MFxLsgwNVBbwB5RVyH6f69FbE jAmPzyFqX/jBCKRVq1J6AnCziCkmcskCJn0w/lpj4jxGdC+WarYi8n0R7OFoe/JX QM/aPRHaCY0KboCN0Q5wiAB0R4vkPN2/7KpgkV1frK4BNODwIAdVFybInGnJZeL8 wQpzX98xmvco4ago04gTothZE3Br2TZ530+X1wWGOBASiAuaJu1ErG8daCgP024b iX9Fw1q2SNHLM48dD+4yRSq0+tOd25Yd3Zo0GBIZf17H6JSKX2L69mCNxB++dJNn uZfd08NhERb8trlLzH3znyJ8BwIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFCy+xt69 e2nN4r+Ste3VmkbQATtiMB8GA1UdIwQYMBaAFP4803zsDjgjB7T51f/VfpfxIfBT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTE4NS8zRUE5REQzQTE2 MjMxMUU4OTJDNEE5NDBDNEY5QUUwMi9fanpUZk93T09DTUh0UG5WXzlWLWxfRWg4 Rk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19qelRmT3dPT0NNSHRQblZfOVYtbF9FaDhGTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjExODUvM0VBOUREM0ExNjIzMTFFODkyQzRBOTQwQzRGOUFFMDIvODZCQkQzREU5 OTRDMTFFQzgyQkEzOTc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMBIEAgABMAwDBABnGxQDBACvbwYwDgQCAAIwCAMGACABD+iPMA0GCSqGSIb3 DQEBCwUAA4IBAQB6S9GbDOQl1FrYejbQ1cfbn6yUEjO/d2X+n/3EgJYLYuX6dctg rF01QpFkiAKG0ZIG+pkxfkpQec56a88MvRYo6af/mJWeerNShCh1tQaSDfvZ0sTo Go4+wpxcAmcuaiB9Bb1gFaDpGgvfAMctUNCDM4rja3gUwNuyMRP60qr8wdZQs22R 41D0DGI+lvvxJ2va1qbh3aA6HWVeM0eUBe8SNisBUY/mjomJRlC7sZ+kBbHQMUfI yyuL92kFySeUvoWVYKCbCkxlymIOSKVsybt21vTYayfusKanj9NfSwcdz+zfhORT dVkqSjgcqSU0D9C895fyEzjwIsk83p33JXXO -----END CERTIFICATE-----Generated at Sat Apr 5 11:23:45 2025 by rpki-client