$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/05A2A4008FE811EEACB1296AC4F9AE02.roa File: 05A2A4008FE811EEACB1296AC4F9AE02.roa (raw, json) Hash identifier: OvWek+7GoTr0MOzRQOUQXIl3oHCUTRccIlCGDYFLUR0= Subject key identifier: 29:EB:8B:B0:AE:A7:F8:2D:5C:18:AA:9E:AC:46:19:12:B5:0D:48:AE Certificate issuer: /CN=A91CFFBE/serialNumber=D70E594B81A1658C2ADDF4A3268EF9CF08F9650F Certificate serial: 057B Authority key identifier: D7:0E:59:4B:81:A1:65:8C:2A:DD:F4:A3:26:8E:F9:CF:08:F9:65:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/05A2A4008FE811EEACB1296AC4F9AE02.roa Signing time: Fri 16 May 2025 23:34:13 +0000 ROA not before: Fri 16 May 2025 23:34:13 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 7545 IP address blocks: 103.166.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.crl rsync://rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 23:29:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1403 (0x57b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFBE, serialNumber=D70E594B81A1658C2ADDF4A3268EF9CF08F9650F Validity Not Before: May 16 23:34:13 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6827cb74-07a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e6:f0:6b:fa:4f:10:da:2a:21:cb:e1:4e:ac: 91:c6:56:c8:c5:7f:e4:93:97:1d:44:65:8c:ca:66: e9:79:c2:1e:9e:cb:4a:dc:59:6e:45:64:a5:d8:cc: 0c:6f:0a:b2:01:ae:5a:52:36:9e:17:4d:41:93:eb: e6:f0:9e:75:9c:25:e6:c2:b3:fd:12:d7:9f:76:48: 6e:d7:33:a2:70:52:e4:a4:a2:7f:98:f9:e0:5f:8e: d5:26:a4:ac:f9:03:97:ef:72:8d:f0:f6:fa:59:b6: 14:dd:21:97:25:f8:0c:58:70:85:82:c4:93:29:e2: 4c:07:20:50:6d:46:0a:cf:cd:fd:ae:56:51:4d:db: 39:91:66:ba:fc:09:e4:dc:97:af:75:9a:f5:4e:b9: 73:07:4c:8e:9f:9e:41:bd:7e:27:39:9c:f5:60:76: e6:0d:f6:27:86:b4:c1:cd:f7:28:0b:0a:59:db:59: 81:ab:bb:02:5f:4c:d0:9b:64:1a:0a:2d:1e:e5:75: ed:67:95:b7:56:9e:e0:b5:e1:fc:d8:d6:a0:38:7d: f6:2c:05:49:69:55:4d:ad:63:1b:64:42:b7:f1:4d: 94:c0:c2:16:26:29:c6:2f:bf:40:7d:0e:c9:1d:c0: 22:37:60:34:fd:69:27:4e:e3:05:aa:91:de:e7:a9: f7:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:EB:8B:B0:AE:A7:F8:2D:5C:18:AA:9E:AC:46:19:12:B5:0D:48:AE X509v3 Authority Key Identifier: keyid:D7:0E:59:4B:81:A1:65:8C:2A:DD:F4:A3:26:8E:F9:CF:08:F9:65:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w5ZS4GhZYwq3fSjJo75zwj5ZQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFBE/74223706DAFA11EB82FE3162C4F9AE02/05A2A4008FE811EEACB1296AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.146.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:32:16:82:3b:bf:e6:82:34:08:6a:cc:be:44:66:86:38:ee: de:96:27:c4:32:5c:a0:85:07:c8:ca:83:a8:1f:c8:21:66:20: c5:c4:58:de:2b:9a:5c:87:ad:05:cd:30:d4:08:09:25:03:19: 9b:91:72:5c:37:a8:7f:c9:07:95:25:0c:9f:b9:c8:81:55:db: 1f:7a:03:32:de:5b:f7:ea:04:76:87:46:22:c3:2a:06:be:b2: 99:b8:01:82:f8:69:68:8c:ec:e5:08:c2:cb:5b:1b:d2:f3:4d: 5f:e8:55:97:42:cc:02:5a:73:e3:2b:c0:ea:cb:80:18:2f:a8: 42:81:25:9d:c9:a5:d5:2c:2c:11:df:6f:82:38:11:65:f6:5d: 6b:bf:01:e4:4e:51:b1:96:1f:f1:15:c8:94:78:4e:6e:e1:52: d2:0d:d6:0e:cc:57:65:83:2d:73:18:48:10:0b:77:00:74:23: 79:c4:9e:92:02:6f:41:fa:fd:f9:e1:14:44:09:0b:d8:5e:4e: 89:69:8b:6a:c5:7b:ca:ec:96:11:14:00:62:ca:1b:04:b6:5b: b3:9f:e1:bb:0b:ab:64:ac:60:a9:4f:0c:6b:33:f2:6f:c4:e1: 1f:84:a3:f9:d1:a5:e5:23:a9:1b:c6:4f:f3:98:fe:98:f1:71: 6c:8f:72:a1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQkUxMTAvBgNVBAUTKEQ3MEU1OTRCODFBMTY1OEMyQURERjRBMzI2OEVGOUNG MDhGOTY1MEYwHhcNMjUwNTE2MjMzNDEzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3Y2I3NC0wN2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwebwa/pPENoqIcvhTqyRxlbIxX/kk5cdRGWMymbpecIenstK3FluRWSl2MwM bwqyAa5aUjaeF01Bk+vm8J51nCXmwrP9Etefdkhu1zOicFLkpKJ/mPngX47VJqSs +QOX73KN8Pb6WbYU3SGXJfgMWHCFgsSTKeJMByBQbUYKz839rlZRTds5kWa6/Ank 3JevdZr1TrlzB0yOn55BvX4nOZz1YHbmDfYnhrTBzfcoCwpZ21mBq7sCX0zQm2Qa Ci0e5XXtZ5W3Vp7gteH82NagOH32LAVJaVVNrWMbZEK38U2UwMIWJinGL79AfQ7J HcAiN2A0/WknTuMFqpHe56n3QQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCnri7Cu p/gtXBiqnqxGGRK1DUiuMB8GA1UdIwQYMBaAFNcOWUuBoWWMKt30oyaO+c8I+WUP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZCRS83NDIyMzcwNkRB RkExMUVCODJGRTMxNjJDNEY5QUUwMi8xdzVaUzRHaFpZd3EzZlNqSm83NXp3ajVa UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF3NVpTNEdoWll3cTNmU2pKbzc1endqNVpROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQkUvNzQyMjM3MDZEQUZBMTFFQjgyRkUzMTYyQzRGOUFFMDIvMDVBMkE0MDA4 RkU4MTFFRUFDQjEyOTZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnppIwDQYJKoZIhvcNAQELBQADggEBAGoyFoI7v+aCNAhq zL5EZoY47t6WJ8QyXKCFB8jKg6gfyCFmIMXEWN4rmlyHrQXNMNQICSUDGZuRclw3 qH/JB5UlDJ+5yIFV2x96AzLeW/fqBHaHRiLDKga+spm4AYL4aWiM7OUIwstbG9Lz TV/oVZdCzAJac+MrwOrLgBgvqEKBJZ3JpdUsLBHfb4I4EWX2XWu/AeROUbGWH/EV yJR4Tm7hUtIN1g7MV2WDLXMYSBALdwB0I3nEnpICb0H6/fnhFEQJC9heTolpi2rF e8rslhEUAGLKGwS2W7Of4bsLq2SsYKlPDGsz8m/E4R+Eo/nRpeUjqRvGT/OY/pjx cWyPcqE= -----END CERTIFICATE-----Generated at Tue Jun 3 23:59:18 2025 by rpki-client