$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/69B0C410EC2411EFBE58C381C4F9AE02.roa File: 69B0C410EC2411EFBE58C381C4F9AE02.roa (raw, json) Hash identifier: 9wsSWlTIkEvdY3EgDoQza7/AJrOesuO9qQzI1IZGf8w= Subject key identifier: E6:AD:12:31:8D:4A:FA:7C:F7:23:2E:02:F8:1B:F0:7E:2E:65:E4:1A Certificate issuer: /CN=A91F1446/serialNumber=B5D33A7A32A5082D336B6B05B7965F307470A276 Certificate serial: 0311 Authority key identifier: B5:D3:3A:7A:32:A5:08:2D:33:6B:6B:05:B7:96:5F:30:74:70:A2:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdM6ejKlCC0za2sFt5ZfMHRwonY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/69B0C410EC2411EFBE58C381C4F9AE02.roa Signing time: Sun 16 Feb 2025 05:11:01 +0000 ROA not before: Sun 16 Feb 2025 05:11:01 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 36352 IP address blocks: 103.21.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/tdM6ejKlCC0za2sFt5ZfMHRwonY.crl rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/tdM6ejKlCC0za2sFt5ZfMHRwonY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdM6ejKlCC0za2sFt5ZfMHRwonY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:18:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 785 (0x311) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1446 Validity Not Before: Feb 16 05:11:01 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67b17365-0d2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c4:19:23:d7:75:13:80:be:82:2a:85:97:5d: e6:60:bd:a0:52:cf:f5:61:10:94:7a:2d:bd:e1:e6: e2:66:00:06:cb:e6:d2:0d:19:cd:2c:f1:b5:43:3c: e0:cd:18:8e:94:e8:d2:e4:6c:1a:93:ef:79:8a:2f: 5a:ae:12:de:6b:89:05:d6:11:c3:d6:1c:f4:d2:03: 96:12:d0:88:27:44:d1:69:54:92:30:79:06:75:0d: 73:d4:bb:bf:26:41:2e:17:8b:75:77:7a:18:9c:f0: 65:de:ef:bb:b6:3f:48:77:c0:79:78:13:68:61:86: ba:5d:9b:4b:b6:ef:68:1f:95:3b:4c:ba:f0:62:3d: bd:fe:71:ff:c9:64:23:be:9a:a4:c7:33:ac:52:27: fb:82:66:04:71:35:7e:68:ce:cd:d9:95:24:8f:27: c2:c5:a6:ff:30:95:d9:1b:8d:e2:8b:dd:13:08:60: 51:f9:69:b7:c4:03:92:33:46:fc:77:fa:69:69:e1: 11:3f:be:0d:48:b0:3b:91:ca:b5:28:39:84:fe:21: b3:f4:00:38:bf:fb:88:68:18:85:c2:b7:04:06:7f: ae:75:00:ec:1a:76:57:d2:5e:07:8c:23:3d:6a:7a: 99:a5:e4:22:da:cc:1d:42:2a:6a:7e:ab:11:d1:38: 8f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:AD:12:31:8D:4A:FA:7C:F7:23:2E:02:F8:1B:F0:7E:2E:65:E4:1A X509v3 Authority Key Identifier: keyid:B5:D3:3A:7A:32:A5:08:2D:33:6B:6B:05:B7:96:5F:30:74:70:A2:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/tdM6ejKlCC0za2sFt5ZfMHRwonY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdM6ejKlCC0za2sFt5ZfMHRwonY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/69B0C410EC2411EFBE58C381C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.208.0/22 Signature Algorithm: sha256WithRSAEncryption 94:8d:63:f7:62:fa:f7:94:c8:6b:43:92:c4:d3:63:54:8b:3a: 01:31:a9:65:54:a7:c9:9b:bd:b3:6b:13:32:29:d8:83:1d:2c: c8:9c:76:9e:f9:9a:7a:27:81:b8:f7:fd:fb:a1:95:97:dd:f8: 0e:23:c0:cf:77:1b:db:8b:0b:c6:b8:ea:6f:27:8d:4f:7e:3e: 1a:a5:f6:91:9e:e3:2d:a2:a5:2c:8a:0c:47:11:73:43:cb:30: a5:95:67:d6:7d:e9:d2:7c:a7:29:b3:1e:69:9e:6b:fc:09:37: 57:b8:04:80:06:f9:b3:49:f5:08:f2:c3:05:3f:02:df:cf:59: 6a:8b:ea:ea:23:22:3f:04:34:97:f0:a2:15:4f:34:d6:a6:1c: 23:b3:8d:5f:3f:79:bb:e2:bf:a2:ec:f2:12:5d:1d:11:27:3e: 12:f5:35:1d:cd:e3:92:de:ee:ea:d3:00:b3:a2:cc:7f:3d:0d: 80:37:08:4e:88:85:5f:10:83:c7:52:20:b2:3f:7e:9d:b6:2d: 78:49:2f:36:c9:8e:2c:cf:9a:b9:46:25:ad:6b:84:db:5d:28: ac:81:35:d9:2e:64:96:8e:27:f4:fd:ee:e4:84:1a:32:0d:75: a6:dc:b7:19:01:d9:8e:f8:7a:70:5a:c4:0f:91:fc:71:92:ed: b3:91:2a:bf -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE0NDYxMTAvBgNVBAUTKEI1RDMzQTdBMzJBNTA4MkQzMzZCNkIwNUI3OTY1RjMw NzQ3MEEyNzYwHhcNMjUwMjE2MDUxMTAxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2IxNzM2NS0wZDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8QZI9d1E4C+giqFl13mYL2gUs/1YRCUei294ebiZgAGy+bSDRnNLPG1Qzzg zRiOlOjS5Gwak+95ii9arhLea4kF1hHD1hz00gOWEtCIJ0TRaVSSMHkGdQ1z1Lu/ JkEuF4t1d3oYnPBl3u+7tj9Id8B5eBNoYYa6XZtLtu9oH5U7TLrwYj29/nH/yWQj vpqkxzOsUif7gmYEcTV+aM7N2ZUkjyfCxab/MJXZG43ii90TCGBR+Wm3xAOSM0b8 d/ppaeERP74NSLA7kcq1KDmE/iGz9AA4v/uIaBiFwrcEBn+udQDsGnZX0l4HjCM9 anqZpeQi2swdQipqfqsR0TiPVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOatEjGN Svp89yMuAvgb8H4uZeQaMB8GA1UdIwQYMBaAFLXTOnoypQgtM2trBbeWXzB0cKJ2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTQ0Ni8yQTFGRjU2RUM1 MzUxMUVDOEU1QTAzMTNDNEY5QUUwMi90ZE02ZWpLbENDMHphMnNGdDVaZk1IUndv blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RkTTZlaktsQ0MwemEyc0Z0NVpmTUhSd29uWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE0NDYvMkExRkY1NkVDNTM1MTFFQzhFNUEwMzEzQzRGOUFFMDIvNjlCMEM0MTBF QzI0MTFFRkJFNThDMzgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnFdAwDQYJKoZIhvcNAQELBQADggEBAJSNY/di+veUyGtD ksTTY1SLOgExqWVUp8mbvbNrEzIp2IMdLMicdp75mnongbj3/fuhlZfd+A4jwM93 G9uLC8a46m8njU9+Phql9pGe4y2ipSyKDEcRc0PLMKWVZ9Z96dJ8pymzHmmea/wJ N1e4BIAG+bNJ9QjywwU/At/PWWqL6uojIj8ENJfwohVPNNamHCOzjV8/ebviv6Ls 8hJdHREnPhL1NR3N45Le7urTALOizH89DYA3CE6IhV8Qg8dSILI/fp22LXhJLzbJ jizPmrlGJa1rhNtdKKyBNdkuZJaOJ/T97uSEGjINdabctxkB2Y74enBaxA+R/HGS 7bORKr8= -----END CERTIFICATE-----Generated at Sat Apr 5 10:46:39 2025 by rpki-client