$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/6D20C69805F811F0833EAC2FC4F9AE02.roa File: 6D20C69805F811F0833EAC2FC4F9AE02.roa (raw, json) Hash identifier: mqegBy9CQXgjEaVSay/tvLxEyahjajLb/MPs8C1oBxs= Subject key identifier: 12:82:F3:20:A0:B1:29:D0:F2:2A:47:34:93:66:BC:68:E7:08:87:3E Certificate issuer: /CN=A91EBB5B/serialNumber=95C13A3CC7EC270B7E5F19F3CD4F3B50DFDF62E4 Certificate serial: 0AF8 Authority key identifier: 95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/6D20C69805F811F0833EAC2FC4F9AE02.roa Signing time: Fri 21 Mar 2025 02:01:39 +0000 ROA not before: Fri 21 Mar 2025 02:01:39 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 17408 IP address blocks: 103.231.36.0/24 maxlen: 24 103.231.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:27:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2808 (0xaf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB5B Validity Not Before: Mar 21 02:01:39 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67dcc883-6fc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:47:b4:1b:0d:2e:50:cf:6a:a8:f6:54:73:77: ba:ba:f5:6f:91:2a:03:d6:d8:15:d8:bb:7d:95:11: e8:c0:09:e0:f5:cb:21:dd:f5:8f:bf:bc:21:55:36: 13:79:1b:1c:01:76:59:c4:24:3b:03:ca:bb:df:b0: 8c:26:1a:75:d9:c9:f7:8c:e2:cc:23:63:97:7a:47: 4a:4a:11:4c:9d:f4:3d:34:b2:6f:03:40:d3:31:14: 90:d9:54:3b:ed:95:d1:bb:26:70:6c:0b:c3:9b:63: bb:3e:6c:cb:89:a0:5b:29:69:0a:16:3f:8e:ab:18: a4:67:78:79:a8:97:fb:18:05:45:83:48:88:b9:2b: 1d:e0:2d:2e:2c:21:c9:36:fe:08:a5:01:d0:ee:49: d3:55:46:cc:e2:89:3c:53:c6:ef:85:31:8c:d5:64: 21:72:66:78:56:8f:53:b9:08:66:b8:3c:95:8c:84: f5:2b:b0:cd:b6:b7:56:36:9b:15:60:c1:44:67:9b: 5c:5f:e9:34:22:f0:53:08:98:55:70:31:9b:c6:a3: 0f:65:0d:56:31:da:32:73:2e:14:17:b6:16:62:6e: cc:9e:c9:ab:52:34:2f:2e:9b:e8:fd:e5:0f:3a:62: 23:e2:41:57:ec:5d:a2:cb:d6:d4:c7:72:cb:9a:34: 13:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:82:F3:20:A0:B1:29:D0:F2:2A:47:34:93:66:BC:68:E7:08:87:3E X509v3 Authority Key Identifier: keyid:95:C1:3A:3C:C7:EC:27:0B:7E:5F:19:F3:CD:4F:3B:50:DF:DF:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/lcE6PMfsJwt-XxnzzU87UN_fYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lcE6PMfsJwt-XxnzzU87UN_fYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB5B/29DE748A419E11EAB866E77AC4F9AE02/6D20C69805F811F0833EAC2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.36.0/24 103.231.38.0/24 Signature Algorithm: sha256WithRSAEncryption 62:f6:5e:d4:28:7f:e5:69:a4:9a:a2:23:02:bb:96:c8:5e:4c: 2a:2c:b8:a2:b8:56:44:e7:56:43:70:7e:a4:cd:10:73:b6:1f: ee:96:a3:27:c1:0b:4d:b9:da:28:43:3f:fb:c9:39:b1:4b:d6: ee:d4:b1:5b:b8:b5:70:ff:b0:f1:56:1f:33:a8:d7:ca:a2:2e: 5f:db:66:3f:e8:34:3e:61:2d:35:9b:09:3a:95:6f:27:72:c9: 0b:b6:04:ff:05:19:01:b5:04:94:79:76:0b:7a:3c:f6:da:b0: e5:8b:85:b1:85:ed:a1:3e:a1:64:11:83:26:7e:90:f7:10:f9: 30:c6:9c:e0:e8:74:2c:2b:3e:df:52:f5:5c:4e:54:78:ff:20: 38:0e:99:83:4c:7c:25:75:a8:b5:64:b5:96:ef:fb:7c:e5:52: 56:cf:33:c2:c0:d5:24:fb:11:e2:ce:7e:08:8f:01:59:bd:fe: c6:ec:9a:aa:18:45:a9:a7:cc:38:31:47:14:8a:8b:ec:ab:b1: fb:52:9a:a8:61:db:d6:d0:85:bc:9f:0a:21:53:81:ca:0e:ff: cc:3a:5e:c6:79:cc:8d:1e:9c:c2:9b:95:54:c0:0f:41:79:7b: 4d:93:44:63:17:f7:f7:4a:10:7e:2b:2f:96:9b:b1:5f:15:5f: 3e:4d:07:a2 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCNUIxMTAvBgNVBAUTKDk1QzEzQTNDQzdFQzI3MEI3RTVGMTlGM0NENEYzQjUw REZERjYyRTQwHhcNMjUwMzIxMDIwMTM5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RjYzg4My02ZmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0e0Gw0uUM9qqPZUc3e6uvVvkSoD1tgV2Lt9lRHowAng9csh3fWPv7whVTYT eRscAXZZxCQ7A8q737CMJhp12cn3jOLMI2OXekdKShFMnfQ9NLJvA0DTMRSQ2VQ7 7ZXRuyZwbAvDm2O7PmzLiaBbKWkKFj+OqxikZ3h5qJf7GAVFg0iIuSsd4C0uLCHJ Nv4IpQHQ7knTVUbM4ok8U8bvhTGM1WQhcmZ4Vo9TuQhmuDyVjIT1K7DNtrdWNpsV YMFEZ5tcX+k0IvBTCJhVcDGbxqMPZQ1WMdoycy4UF7YWYm7MnsmrUjQvLpvo/eUP OmIj4kFX7F2iy9bUx3LLmjQTCwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBKC8yCg sSnQ8ipHNJNmvGjnCIc+MB8GA1UdIwQYMBaAFJXBOjzH7CcLfl8Z881PO1Df32Lk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkI1Qi8yOURFNzQ4QTQx OUUxMUVBQjg2NkU3N0FDNEY5QUUwMi9sY0U2UE1mc0p3dC1YeG56elU4N1VOX2ZZ dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xjRTZQTWZzSnd0LVh4bnp6VTg3VU5fZll1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJCNUIvMjlERTc0OEE0MTlFMTFFQUI4NjZFNzdBQzRGOUFFMDIvNkQyMEM2OTgw NUY4MTFGMDgzM0VBQzJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABn5yQDBABn5yYwDQYJKoZIhvcNAQELBQADggEBAGL2XtQo f+VppJqiIwK7lsheTCosuKK4VkTnVkNwfqTNEHO2H+6WoyfBC0252ihDP/vJObFL 1u7UsVu4tXD/sPFWHzOo18qiLl/bZj/oND5hLTWbCTqVbydyyQu2BP8FGQG1BJR5 dgt6PPbasOWLhbGF7aE+oWQRgyZ+kPcQ+TDGnODodCwrPt9S9VxOVHj/IDgOmYNM fCV1qLVktZbv+3zlUlbPM8LA1ST7EeLOfgiPAVm9/sbsmqoYRamnzDgxRxSKi+yr sftSmqhh29bQhbyfCiFTgcoO/8w6XsZ5zI0enMKblVTAD0F5e02TRGMX9/dKEH4r L5absV8VXz5NB6I= -----END CERTIFICATE-----Generated at Sat Apr 5 13:49:43 2025 by rpki-client