$ rpki-client -vvf rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/90C5BDF013F011EBA31BF948C4F9AE02.roa File: 90C5BDF013F011EBA31BF948C4F9AE02.roa (raw, json) Hash identifier: FhTvhFcDB/Ph+v5y3Equ71wPhAapTXjRpqoScSQoREg= Subject key identifier: A8:8C:3B:2D:1B:79:7A:4C:F0:63:5B:E2:9F:E3:15:16:C5:FE:8A:E0 Certificate issuer: /CN=A91C731A/serialNumber=0DB4D3F9D5E20D85BEB7F9CB1B07C315AA46099F Certificate serial: 0771 Authority key identifier: 0D:B4:D3:F9:D5:E2:0D:85:BE:B7:F9:CB:1B:07:C3:15:AA:46:09:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DbTT-dXiDYW-t_nLGwfDFapGCZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/90C5BDF013F011EBA31BF948C4F9AE02.roa Signing time: Wed 02 Apr 2025 21:53:08 +0000 ROA not before: Wed 02 Apr 2025 21:53:08 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 55720 IP address blocks: 103.85.108.0/24 maxlen: 24 103.85.109.0/24 maxlen: 24 103.85.110.0/24 maxlen: 24 103.85.111.0/24 maxlen: 24 119.160.232.0/24 maxlen: 24 119.160.233.0/24 maxlen: 24 119.160.234.0/24 maxlen: 24 119.160.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.crl rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DbTT-dXiDYW-t_nLGwfDFapGCZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:38:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1905 (0x771) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C731A Validity Not Before: Apr 2 21:53:08 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67edb1c4-136e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:67:8e:e2:38:15:6a:86:92:82:3b:05:d9:86: 91:df:3a:bd:ca:71:64:e7:f1:77:b7:bf:37:c3:95: fa:8f:f8:9d:e6:fc:f7:80:af:bb:33:96:fa:91:04: 02:5f:5f:f5:d9:f4:ef:e4:51:b7:8d:7c:f3:3f:0b: 09:b1:4c:b1:0d:e3:53:58:46:9d:bd:08:01:04:39: 7c:7d:42:47:22:1c:a6:63:19:18:2b:f2:32:fb:c7: 1f:99:8f:28:76:bc:cc:65:b5:5e:70:a1:17:59:32: 82:34:1b:2e:8f:aa:10:f7:d3:b9:ca:38:2f:c2:1a: 9e:90:34:a6:54:b5:8a:56:bb:02:30:b4:1e:6d:d5: 16:36:73:cb:1b:01:1f:e0:a9:6d:39:b8:0a:0c:59: 96:29:e0:1e:97:3a:e1:b8:0c:3f:bd:5b:db:f6:9a: 26:ef:92:95:e3:50:91:e5:3c:31:a4:29:bf:17:61: 00:98:f6:a7:b7:bf:23:69:59:fc:77:2a:f0:ce:f2: d9:97:69:33:89:a1:ab:5d:a1:d5:9b:40:3e:4b:90: 3a:5b:77:a8:ad:e4:ea:3b:f0:b3:d5:4b:c7:a9:b7: 71:30:de:6a:96:57:7a:d5:9b:9c:af:d1:e1:81:6c: 94:60:3e:b3:c1:5e:31:fd:57:7a:4a:94:28:68:7b: ee:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:8C:3B:2D:1B:79:7A:4C:F0:63:5B:E2:9F:E3:15:16:C5:FE:8A:E0 X509v3 Authority Key Identifier: keyid:0D:B4:D3:F9:D5:E2:0D:85:BE:B7:F9:CB:1B:07:C3:15:AA:46:09:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/DbTT-dXiDYW-t_nLGwfDFapGCZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DbTT-dXiDYW-t_nLGwfDFapGCZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C731A/C9F83AEE0EC311EBAC979118C4F9AE02/90C5BDF013F011EBA31BF948C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.108.0/22 119.160.232.0/22 Signature Algorithm: sha256WithRSAEncryption 72:00:dd:56:ae:94:d1:30:4e:19:c4:5a:b0:ca:ff:89:eb:60: 54:45:ab:f8:ff:92:18:31:ba:ac:f7:46:c9:68:6f:80:d6:63: ad:90:51:ff:25:e1:84:3e:fa:67:a0:28:86:24:2a:2a:8e:51: 16:96:7d:09:07:fd:3c:ba:7e:40:6e:ea:89:6e:9a:67:f1:73: e3:0f:af:79:8e:ca:5d:03:84:ef:d6:6d:bc:6d:2e:66:f1:d7: fd:c4:e9:7e:1c:c7:7c:f9:6d:5d:25:21:71:e9:c0:40:42:59: 64:7a:74:7f:25:f0:f3:dd:d3:f3:ab:d4:f5:35:3f:db:8f:60: 6b:d4:9c:a3:7e:38:ec:45:1d:27:82:00:6f:78:ac:dc:87:c4: 78:ee:06:05:5d:97:fe:27:f3:b1:fa:48:12:b9:da:47:39:fc: f6:79:b8:c3:6b:44:3a:e7:ac:c8:86:72:33:9d:40:5b:72:4f: 00:e8:35:5d:c2:19:01:cd:0e:ab:c5:77:30:e6:d9:6a:87:48: d0:0c:54:c1:12:d9:8e:72:73:5b:33:96:43:09:ea:64:ac:e4: ad:f0:63:7a:1f:37:a4:79:2c:d3:d7:01:4e:c1:7c:5f:b8:95: 56:04:6e:00:07:18:7a:3d:4e:51:18:78:ed:c1:1f:40:57:6a: 24:f2:f5:96 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzczMUExMTAvBgNVBAUTKDBEQjREM0Y5RDVFMjBEODVCRUI3RjlDQjFCMDdDMzE1 QUE0NjA5OUYwHhcNMjUwNDAyMjE1MzA4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkYjFjNC0xMzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumeO4jgVaoaSgjsF2YaR3zq9ynFk5/F3t783w5X6j/id5vz3gK+7M5b6kQQC X1/12fTv5FG3jXzzPwsJsUyxDeNTWEadvQgBBDl8fUJHIhymYxkYK/Iy+8cfmY8o drzMZbVecKEXWTKCNBsuj6oQ99O5yjgvwhqekDSmVLWKVrsCMLQebdUWNnPLGwEf 4KltObgKDFmWKeAelzrhuAw/vVvb9pom75KV41CR5TwxpCm/F2EAmPant78jaVn8 dyrwzvLZl2kziaGrXaHVm0A+S5A6W3eoreTqO/Cz1UvHqbdxMN5qlld61Zucr9Hh gWyUYD6zwV4x/Vd6SpQoaHvuOQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKiMOy0b eXpM8GNb4p/jFRbF/orgMB8GA1UdIwQYMBaAFA200/nV4g2Fvrf5yxsHwxWqRgmf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzMxQS9DOUY4M0FFRTBF QzMxMUVCQUM5NzkxMThDNEY5QUUwMi9EYlRULWRYaURZVy10X25MR3dmREZhcEdD WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RiVFQtZFhpRFlXLXRfbkxHd2ZERmFwR0NaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzczMUEvQzlGODNBRUUwRUMzMTFFQkFDOTc5MTE4QzRGOUFFMDIvOTBDNUJERjAx M0YwMTFFQkEzMUJGOTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnVWwDBAJ3oOgwDQYJKoZIhvcNAQELBQADggEBAHIA3Vau lNEwThnEWrDK/4nrYFRFq/j/khgxuqz3Rslob4DWY62QUf8l4YQ++megKIYkKiqO URaWfQkH/Ty6fkBu6olummfxc+MPr3mOyl0DhO/WbbxtLmbx1/3E6X4cx3z5bV0l IXHpwEBCWWR6dH8l8PPd0/Or1PU1P9uPYGvUnKN+OOxFHSeCAG94rNyHxHjuBgVd l/4n87H6SBK52kc5/PZ5uMNrRDrnrMiGcjOdQFtyTwDoNV3CGQHNDqvFdzDm2WqH SNAMVMES2Y5yc1szlkMJ6mSs5K3wY3ofN6R5LNPXAU7BfF+4lVYEbgAHGHo9TlEY eO3BH0BXaiTy9ZY= -----END CERTIFICATE-----Generated at Sun Apr 6 01:12:02 2025 by rpki-client