$ rpki-client -vvf rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/494B4070419C11EAAE836772C4F9AE02.roa File: 494B4070419C11EAAE836772C4F9AE02.roa (raw, json) Hash identifier: Y3JTz6x7Gh76YU/+03lkuBO3MY94CeW1sP7iPG9gZfk= Subject key identifier: AE:38:B5:34:40:25:5B:29:77:25:70:D4:53:D8:B9:3C:4E:EF:83:7F Certificate issuer: /CN=A91D425A/serialNumber=048AA98F3EC54A9060E5BC30059D5C4220D7C2F7 Certificate serial: 0AD8 Authority key identifier: 04:8A:A9:8F:3E:C5:4A:90:60:E5:BC:30:05:9D:5C:42:20:D7:C2:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/494B4070419C11EAAE836772C4F9AE02.roa Signing time: Sun 02 Feb 2025 19:28:34 +0000 ROA not before: Sun 02 Feb 2025 19:28:34 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 17408 IP address blocks: 103.247.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:26:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2776 (0xad8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D425A Validity Not Before: Feb 2 19:28:34 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=679fc762-b80b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:26:28:ee:5b:cf:85:55:54:26:47:6e:66:33: 61:17:77:15:ea:fd:10:65:1f:e4:56:af:c3:6b:27: f9:a5:5f:f2:bb:2e:c4:55:09:5c:4b:f5:26:1c:d1: 96:4c:fa:e0:28:5f:f1:35:21:9d:28:dd:47:2b:03: ee:2c:d6:d7:65:52:d4:8a:cb:b1:13:f2:71:24:94: e0:3a:0c:06:d3:10:1f:57:f3:7a:68:21:e0:b2:37: ad:e9:14:f0:87:c6:e3:62:2f:80:1b:6b:69:5f:a9: 9e:6f:9a:df:9f:89:1d:64:be:e7:1b:40:2f:cc:37: cb:e9:79:61:d5:15:d6:68:b1:80:8c:14:45:1b:da: 2a:9d:79:b3:37:b0:a3:8b:1f:73:e7:b5:15:e3:8f: 12:24:7a:a4:d1:c6:13:aa:11:3d:2b:9d:53:d3:18: 73:70:db:da:7f:73:eb:88:61:9f:f5:03:d2:19:a7: d1:cc:1e:17:d3:a5:c4:00:11:df:a0:75:af:b3:9c: 95:be:c7:67:63:b4:bd:8f:bf:4e:8a:01:d0:ba:4e: 34:20:86:aa:cc:d0:69:1d:4a:81:62:ce:2a:95:b3: dd:57:be:a7:ea:45:da:90:e6:e0:5e:56:5d:65:b7: e0:da:0f:86:2e:77:fe:90:01:82:e8:eb:0e:b7:49: 0d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:38:B5:34:40:25:5B:29:77:25:70:D4:53:D8:B9:3C:4E:EF:83:7F X509v3 Authority Key Identifier: keyid:04:8A:A9:8F:3E:C5:4A:90:60:E5:BC:30:05:9D:5C:42:20:D7:C2:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BIqpjz7FSpBg5bwwBZ1cQiDXwvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D425A/024C24F8416C11EA83C3EF5AC4F9AE02/494B4070419C11EAAE836772C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.247.68.0/22 Signature Algorithm: sha256WithRSAEncryption 56:9c:7b:ae:86:c2:6f:2c:e8:67:42:b4:14:df:f3:07:9c:a2: c7:87:3b:dc:a0:c6:61:3e:9e:9e:6e:a9:b9:39:4e:de:3b:43: 46:99:53:79:f8:58:9e:aa:95:33:60:ec:39:97:25:83:e0:db: 3d:ae:d5:d8:1c:09:ba:1a:04:17:2a:f0:16:18:9b:1c:5f:9c: 64:fa:3d:a1:d0:f4:80:03:45:fc:c9:b0:64:1d:ab:50:7e:b9: 44:44:74:c5:2b:94:db:ce:d5:7d:27:37:9e:10:09:b8:ee:cf: 70:56:55:61:13:eb:2b:93:dd:c1:5a:34:d2:44:75:a4:0b:25: e6:73:49:b4:ce:d6:fc:d7:f9:6d:97:26:e8:7b:9f:48:22:d5: bd:e3:6b:12:16:b5:e9:61:7c:2b:fe:e9:71:36:95:5c:e8:48: c3:be:9d:73:22:9c:4b:82:94:d7:8e:a7:97:4c:aa:0c:87:60: 17:45:33:1f:81:32:50:68:31:5c:2b:8b:74:f8:8d:8d:d9:a8: 3b:4b:fb:03:ff:5c:98:1b:53:dd:6f:03:2f:ef:6a:ce:0e:0a: 52:04:01:36:55:2b:de:c0:f9:b3:35:d6:1b:e9:99:3f:80:39: 65:d0:c7:ac:3a:36:b5:09:2f:61:70:91:52:75:53:a0:85:70: eb:cf:1d:ff -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQyNUExMTAvBgNVBAUTKDA0OEFBOThGM0VDNTRBOTA2MEU1QkMzMDA1OUQ1QzQy MjBEN0MyRjcwHhcNMjUwMjAyMTkyODM0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzlmYzc2Mi1iODBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0SYo7lvPhVVUJkduZjNhF3cV6v0QZR/kVq/Dayf5pV/yuy7EVQlcS/UmHNGW TPrgKF/xNSGdKN1HKwPuLNbXZVLUisuxE/JxJJTgOgwG0xAfV/N6aCHgsjet6RTw h8bjYi+AG2tpX6meb5rfn4kdZL7nG0AvzDfL6Xlh1RXWaLGAjBRFG9oqnXmzN7Cj ix9z57UV448SJHqk0cYTqhE9K51T0xhzcNvaf3PriGGf9QPSGafRzB4X06XEABHf oHWvs5yVvsdnY7S9j79OigHQuk40IIaqzNBpHUqBYs4qlbPdV76n6kXakObgXlZd Zbfg2g+GLnf+kAGC6OsOt0kNrwIDAQABo4IClTCCApEwHQYDVR0OBBYEFK44tTRA JVspdyVw1FPYuTxO74N/MB8GA1UdIwQYMBaAFASKqY8+xUqQYOW8MAWdXEIg18L3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDI1QS8wMjRDMjRGODQx NkMxMUVBODNDM0VGNUFDNEY5QUUwMi9CSXFwano3RlNwQmc1Ynd3QloxY1FpRFh3 dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JJcXBqejdGU3BCZzVid3dCWjFjUWlEWHd2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQyNUEvMDI0QzI0Rjg0MTZDMTFFQTgzQzNFRjVBQzRGOUFFMDIvNDk0QjQwNzA0 MTlDMTFFQUFFODM2NzcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn90QwDQYJKoZIhvcNAQELBQADggEBAFace66Gwm8s6GdC tBTf8wecoseHO9ygxmE+np5uqbk5Tt47Q0aZU3n4WJ6qlTNg7DmXJYPg2z2u1dgc CboaBBcq8BYYmxxfnGT6PaHQ9IADRfzJsGQdq1B+uUREdMUrlNvO1X0nN54QCbju z3BWVWET6yuT3cFaNNJEdaQLJeZzSbTO1vzX+W2XJuh7n0gi1b3jaxIWtelhfCv+ 6XE2lVzoSMO+nXMinEuClNeOp5dMqgyHYBdFMx+BMlBoMVwri3T4jY3ZqDtL+wP/ XJgbU91vAy/vas4OClIEATZVK97A+bM11hvpmT+AOWXQx6w6NrUJL2FwkVJ1U6CF cOvPHf8= -----END CERTIFICATE-----Generated at Sat Apr 5 22:57:25 2025 by rpki-client