$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/97DFFA2AD39E11EF9395C676C4F9AE02.roa File: 97DFFA2AD39E11EF9395C676C4F9AE02.roa (raw, json) Hash identifier: tYNZDrfG+2ivcq2p9DfNp1fhz8gxojjjQmCChm3l52M= Subject key identifier: 38:0F:B1:56:F5:E4:69:E7:70:A2:A8:88:75:0A:31:45:E4:6E:8F:F3 Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 3588 Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/97DFFA2AD39E11EF9395C676C4F9AE02.roa Signing time: Thu 16 Jan 2025 00:12:38 +0000 ROA not before: Thu 16 Jan 2025 00:12:38 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 61317 IP address blocks: 103.230.68.0/23 maxlen: 23 103.230.70.0/24 maxlen: 24 117.121.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:48:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13704 (0x3588) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90 Validity Not Before: Jan 16 00:12:38 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67884ef6-1eda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:87:46:cd:04:5d:ee:89:d0:c0:d2:87:1e:19: 78:09:67:5b:c5:7a:40:08:38:47:d0:b0:21:95:97: 21:1d:f5:bf:af:73:ef:8c:82:67:4a:95:da:b2:1c: 54:a0:5c:79:10:f7:64:de:38:1c:ca:8a:2c:0d:78: 02:76:46:42:50:35:c1:ed:f0:56:db:6b:48:a9:cb: 8a:31:79:6d:58:e8:6b:3d:fe:53:34:fa:ab:d5:4f: e8:cc:d4:e6:17:84:f6:4b:97:04:a4:49:5d:88:a3: 7a:54:f8:ac:53:f5:5c:56:7b:8d:46:1c:a3:75:e6: af:05:d9:bf:3d:cb:07:4c:0b:36:48:72:ab:0b:c4: 3a:c7:10:ff:0a:55:d8:0e:64:aa:09:3d:84:ae:d4: 01:44:e7:c5:97:e9:27:52:ba:5c:af:70:0c:91:1e: c5:26:85:16:64:d6:62:15:30:00:85:4f:57:7a:41: e2:fa:60:78:91:e7:79:10:ec:fd:41:0b:90:bb:ee: ea:34:b9:70:93:88:8e:ab:a7:56:d4:3a:ad:27:a1: 1d:fd:25:29:55:f9:2c:08:7c:4b:42:02:bb:0a:5a: 9a:f8:ad:12:38:77:f6:8d:f1:c8:88:da:24:4e:eb: 4f:fd:13:cb:cb:b4:e9:98:29:d1:63:bd:ec:1e:29: 05:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:0F:B1:56:F5:E4:69:E7:70:A2:A8:88:75:0A:31:45:E4:6E:8F:F3 X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/97DFFA2AD39E11EF9395C676C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.230.68.0-103.230.70.255 117.121.247.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:c2:91:ba:e9:bb:f6:0f:01:22:68:15:95:ec:1e:27:5e:10: bc:7a:b7:a3:75:e9:2a:bb:5f:6a:83:16:d3:0b:b2:2a:b2:f8: 66:0d:2b:b1:00:6d:4d:70:c5:53:0f:90:9c:1d:fe:6a:2b:b1: 6b:c5:84:4b:75:af:69:d1:3f:0f:db:01:f4:4e:0b:71:da:76: 9b:c4:7f:a5:c3:66:ba:57:ee:05:28:e4:5c:87:48:dd:ad:87: e6:5c:c0:7f:ad:90:67:02:e3:1b:ee:4b:42:32:ca:cf:64:b0: 73:e4:a6:6a:7e:3d:65:ce:d5:24:4e:aa:8c:a3:04:80:25:96: e4:1a:14:e1:9e:8f:0d:31:4b:91:90:1e:f0:c3:6c:2b:1c:ef: d5:3c:41:f6:80:83:81:e3:7a:2c:6d:fe:fe:6e:76:bc:a1:5a: 22:d7:3e:48:25:ee:0b:8e:ff:9c:fb:32:50:c4:a7:50:7f:73: 4e:0d:ca:dc:de:8a:b6:f2:a5:8c:48:cb:97:e1:29:14:47:82: 42:48:72:64:9a:44:0c:e0:62:9a:50:62:f1:44:f4:d7:6f:7b: cf:2d:16:ba:97:e9:98:8c:d3:40:35:c6:9f:73:42:5e:5e:38: 90:98:65:1a:6d:88:86:14:bf:86:18:99:ca:6e:38:6e:66:f8: 4d:d0:d4:54 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICNYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjUwMTE2MDAxMjM4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg4NGVmNi0xZWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArodGzQRd7onQwNKHHhl4CWdbxXpACDhH0LAhlZchHfW/r3PvjIJnSpXashxU oFx5EPdk3jgcyoosDXgCdkZCUDXB7fBW22tIqcuKMXltWOhrPf5TNPqr1U/ozNTm F4T2S5cEpEldiKN6VPisU/VcVnuNRhyjdeavBdm/PcsHTAs2SHKrC8Q6xxD/ClXY DmSqCT2ErtQBROfFl+knUrpcr3AMkR7FJoUWZNZiFTAAhU9XekHi+mB4ked5EOz9 QQuQu+7qNLlwk4iOq6dW1DqtJ6Ed/SUpVfksCHxLQgK7Clqa+K0SOHf2jfHIiNok TutP/RPLy7TpmCnRY73sHikF6QIDAQABo4ICozCCAp8wHQYDVR0OBBYEFDgPsVb1 5GnncKKoiHUKMUXkbo/zMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvOTdERkZBMkFE MzlFMTFFRjkzOTVDNjc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAmfmRAMEAGfmRgMEAHV59zANBgkqhkiG9w0BAQsFAAOC AQEAPsKRuum79g8BImgVleweJ14QvHq3o3XpKrtfaoMW0wuyKrL4Zg0rsQBtTXDF Uw+QnB3+aiuxa8WES3WvadE/D9sB9E4Lcdp2m8R/pcNmulfuBSjkXIdI3a2H5lzA f62QZwLjG+5LQjLKz2Swc+Sman49Zc7VJE6qjKMEgCWW5BoU4Z6PDTFLkZAe8MNs Kxzv1TxB9oCDgeN6LG3+/m52vKFaItc+SCXuC47/nPsyUMSnUH9zTg3K3N6KtvKl jEjLl+EpFEeCQkhyZJpEDOBimlBi8UT01297zy0WupfpmIzTQDXGn3NCXl44kJhl Gm2IhhS/hhiZym44bmb4TdDUVA== -----END CERTIFICATE-----Generated at Fri Apr 4 19:38:27 2025 by rpki-client