$ rpki-client -vvf rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/1879BE8A318411F0BC1DD041C4F9AE02.roa File: 1879BE8A318411F0BC1DD041C4F9AE02.roa (raw, json) Hash identifier: Z2oCf9VHu+Nlt7KaEbBkyqcl7gO+UQwxVS+M1hIhebk= Subject key identifier: CB:09:06:49:34:52:23:89:41:00:B2:74:D1:16:71:32:7B:74:E1:1A Certificate issuer: /CN=A91D243F/serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Certificate serial: 2B Authority key identifier: 18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/1879BE8A318411F0BC1DD041C4F9AE02.roa Signing time: Thu 15 May 2025 12:02:07 +0000 ROA not before: Thu 15 May 2025 12:02:06 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 40779 IP address blocks: 103.117.136.0/22 maxlen: 24 103.121.92.0/22 maxlen: 24 103.186.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:40:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D243F, serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Validity Not Before: May 15 12:02:06 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6825d7be-e490 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6c:9f:f4:1c:a2:cb:75:e0:9f:f6:a5:61:78: fc:68:b3:1e:1b:f8:cf:89:94:88:4c:db:39:aa:6f: 4b:53:07:6c:20:d9:14:b5:5c:84:bf:69:ec:d3:7b: 5f:51:40:97:7e:4a:d7:41:51:54:e6:3e:67:64:ce: d3:21:a9:bf:cd:01:c3:f5:d4:63:86:a9:26:ce:00: aa:d0:65:79:16:85:cc:3f:e6:52:d3:d0:fe:db:d4: 84:cd:b4:aa:e9:60:31:51:b2:e8:f9:f2:1c:0e:11: e3:6c:2a:10:1d:1e:11:a9:eb:3e:60:78:38:e2:01: 18:a2:98:39:83:1a:e6:d5:d6:1c:21:83:0b:86:a3: 20:5e:2d:34:76:1d:30:c5:e2:29:a6:f2:d7:15:38: 21:a0:71:e0:c4:ea:da:c7:b9:f1:f2:0b:3b:49:1f: 00:9e:de:ff:87:2c:4a:a0:c7:87:6a:27:d6:60:cc: 17:1e:8a:fe:a8:89:d3:c3:26:d3:cc:7b:eb:48:93: a9:eb:44:d0:4d:36:c0:2f:03:38:0f:be:ae:59:d9: 0d:2c:e6:9c:d0:6a:9c:dc:95:62:9a:ea:bf:49:72: 6f:eb:46:0e:62:ae:c5:55:25:5e:38:e9:a4:b4:76: e6:21:40:ec:bd:a0:57:5a:bb:75:76:97:b3:39:f8: 43:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:09:06:49:34:52:23:89:41:00:B2:74:D1:16:71:32:7B:74:E1:1A X509v3 Authority Key Identifier: keyid:18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/1879BE8A318411F0BC1DD041C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.136.0/22 103.121.92.0/22 103.186.214.0/23 Signature Algorithm: sha256WithRSAEncryption 00:18:21:6d:cc:2f:e8:93:16:47:84:b4:67:9c:cc:cd:fc:19: da:91:3e:48:e9:c1:11:7a:83:be:c8:70:50:48:9a:ba:ad:57: 5f:e5:7b:11:fd:4a:44:58:71:d1:11:08:58:13:7a:43:98:69: b2:ef:20:4f:ac:47:6c:7d:a0:fa:cd:7c:36:d6:91:99:63:5d: 40:e9:4f:6e:77:fd:b2:56:fc:6c:fc:49:5b:12:dc:4d:b7:3a: 66:1b:f6:db:b4:39:27:6a:10:b6:b5:a3:f6:0e:1f:44:d0:75: 98:2f:95:71:bb:d3:7f:3d:ed:51:da:76:a6:21:c9:02:1a:cf: e6:84:f6:7d:27:7f:78:3d:05:91:a5:de:cb:71:31:bd:0d:14: 16:f2:d8:20:f6:55:22:eb:b5:b9:0d:9f:5f:4f:22:d4:e5:32: b9:ec:94:95:59:b9:86:7c:b1:48:7d:29:63:47:3d:4b:aa:63: ec:03:f6:3a:87:cb:be:6a:0f:19:35:a2:d4:4c:7c:92:fa:77: 04:12:f2:ac:ee:c1:4d:ab:01:71:c7:24:c3:a7:7a:29:72:46: c3:88:e6:8c:c5:65:fe:91:34:32:8f:19:3c:82:d1:4b:47:08: 22:76:c7:19:4e:c1:84:16:36:38:70:3f:1c:e7:2c:d6:cd:07: e1:e7:71:6d -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MjQzRjExMC8GA1UEBRMoMTg5NjdEQ0RCNzI0QTg0QTcxNzExRTY3OEFBQjFEMkU3 MjIxNUQ2QzAeFw0yNTA1MTUxMjAyMDZaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MjVkN2JlLWU0OTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJbJ/0HKLLdeCf9qVhePxosx4b+M+JlIhM2zmqb0tTB2wg2RS1XIS/aezTe19R QJd+StdBUVTmPmdkztMhqb/NAcP11GOGqSbOAKrQZXkWhcw/5lLT0P7b1ITNtKrp YDFRsuj58hwOEeNsKhAdHhGp6z5geDjiARiimDmDGubV1hwhgwuGoyBeLTR2HTDF 4imm8tcVOCGgceDE6trHufHyCztJHwCe3v+HLEqgx4dqJ9ZgzBceiv6oidPDJtPM e+tIk6nrRNBNNsAvAzgPvq5Z2Q0s5pzQapzclWKa6r9Jcm/rRg5irsVVJV446aS0 duYhQOy9oFdau3V2l7M5+ENbAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUywkGSTRS I4lBALJ00RZxMnt04RowHwYDVR0jBBgwFoAUGJZ9zbckqEpxcR5niqsdLnIhXWww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyNDNGL0Q2ODRGQzJFMUE4 QjExRjA5Q0MyNDUzNUM0RjlBRTAyL0dKWjl6YmNrcUVweGNSNW5pcXNkTG5JaFhX dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0paOXpiY2txRXB4Y1I1bmlxc2RMbkloWFd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjQzRi9ENjg0RkMyRTFBOEIxMUYwOUNDMjQ1MzVDNEY5QUUwMi8xODc5QkU4QTMx ODQxMUYwQkMxREQwNDFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAmd1iAMEAmd5XAMEAWe61jANBgkqhkiG9w0BAQsFAAOCAQEA ABghbcwv6JMWR4S0Z5zMzfwZ2pE+SOnBEXqDvshwUEiauq1XX+V7Ef1KRFhx0REI WBN6Q5hpsu8gT6xHbH2g+s18NtaRmWNdQOlPbnf9slb8bPxJWxLcTbc6Zhv227Q5 J2oQtrWj9g4fRNB1mC+VcbvTfz3tUdp2piHJAhrP5oT2fSd/eD0FkaXey3ExvQ0U FvLYIPZVIuu1uQ2fX08i1OUyueyUlVm5hnyxSH0pY0c9S6pj7AP2OofLvmoPGTWi 1Ex8kvp3BBLyrO7BTasBccckw6d6KXJGw4jmjMVl/pE0Mo8ZPILRS0cIInbHGU7B hBY2OHA/HOcs1s0H4edxbQ== -----END CERTIFICATE-----Generated at Mon Jun 2 07:12:29 2025 by rpki-client