$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE91/2E921636A41511ECBE900A7BC4F9AE02/23F9CE72A41911ECBDBED829C4F9AE02.roa File: 23F9CE72A41911ECBDBED829C4F9AE02.roa (raw, json) Hash identifier: vZ/WaADoEuy2hBBHTZfwXR0fuTeB5hZjwEti8AL2NUM= Subject key identifier: A6:9E:9F:28:58:E1:74:4A:90:37:E4:01:48:45:35:76:D4:1D:4F:1A Certificate issuer: /CN=A913AE91/serialNumber=DCCBCC9893809099ED02B7178184365416B31E1C Certificate serial: 037D Authority key identifier: DC:CB:CC:98:93:80:90:99:ED:02:B7:17:81:84:36:54:16:B3:1E:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MvMmJOAkJntArcXgYQ2VBazHhw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE91/2E921636A41511ECBE900A7BC4F9AE02/23F9CE72A41911ECBDBED829C4F9AE02.roa Signing time: Sat 03 May 2025 01:06:51 +0000 ROA not before: Sat 03 May 2025 01:06:51 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 136523 IP address blocks: 103.91.188.0/22 maxlen: 22 103.91.188.0/24 maxlen: 24 103.91.189.0/24 maxlen: 24 103.91.190.0/24 maxlen: 24 103.91.191.0/24 maxlen: 24 123.253.60.0/22 maxlen: 22 123.253.60.0/24 maxlen: 24 123.253.61.0/24 maxlen: 24 123.253.62.0/24 maxlen: 24 123.253.63.0/24 maxlen: 24 2401:fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE91/2E921636A41511ECBE900A7BC4F9AE02/3MvMmJOAkJntArcXgYQ2VBazHhw.crl rsync://rpki.apnic.net/member_repository/A913AE91/2E921636A41511ECBE900A7BC4F9AE02/3MvMmJOAkJntArcXgYQ2VBazHhw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MvMmJOAkJntArcXgYQ2VBazHhw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 00:41:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 893 (0x37d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE91, serialNumber=DCCBCC9893809099ED02B7178184365416B31E1C Validity Not Before: May 3 01:06:51 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68156c2b-65cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fc:a7:94:af:a8:25:56:83:6d:46:d2:8f:a5: 8f:1f:01:3d:df:94:bf:73:76:31:91:75:20:93:cd: 61:7c:e0:02:0d:5e:13:d7:87:3e:26:4e:55:22:a0: 4d:a3:74:22:8c:4c:b7:13:cd:ef:7b:8a:ed:cc:99: 60:f5:6b:43:4e:14:55:88:63:d0:0a:b6:3f:cb:71: 24:0f:ff:f1:52:fa:f8:b2:07:eb:e9:56:82:c1:ef: cc:9e:2c:89:36:d6:44:b0:e6:f5:9b:04:60:3d:d2: 9e:6c:4f:9a:01:71:ea:26:7e:6c:ab:07:ef:a9:89: d5:92:62:2d:f6:08:b3:e6:ac:d3:bc:de:06:bd:2f: af:e0:b3:b1:bf:06:58:b2:9e:cc:10:84:30:37:e4: 15:c7:18:42:8d:b6:a7:19:b7:55:9c:ac:00:1e:56: 5d:d9:ac:d6:16:1a:ec:13:56:2f:0b:85:4a:54:39: 4b:ed:81:e0:c4:93:70:f3:ac:6a:2b:1c:0e:25:37: c2:88:fa:13:6c:33:9c:e3:78:a6:10:ee:91:f9:ed: 8e:be:0a:05:a0:4d:85:ed:ba:2f:aa:29:32:92:1b: 9a:0e:f2:b4:42:0f:77:54:72:36:29:55:58:55:89: 79:28:a8:c0:58:48:78:e7:75:3f:2d:12:37:7f:26: 9f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:9E:9F:28:58:E1:74:4A:90:37:E4:01:48:45:35:76:D4:1D:4F:1A X509v3 Authority Key Identifier: keyid:DC:CB:CC:98:93:80:90:99:ED:02:B7:17:81:84:36:54:16:B3:1E:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE91/2E921636A41511ECBE900A7BC4F9AE02/3MvMmJOAkJntArcXgYQ2VBazHhw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3MvMmJOAkJntArcXgYQ2VBazHhw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE91/2E921636A41511ECBE900A7BC4F9AE02/23F9CE72A41911ECBDBED829C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.188.0/22 123.253.60.0/22 IPv6: 2401:fc0::/32 Signature Algorithm: sha256WithRSAEncryption 14:f3:95:46:ef:7f:8e:66:99:7a:af:43:04:1c:84:0e:a5:77: e9:4a:06:78:ac:44:40:51:6d:14:bd:47:01:f0:89:53:b4:90: 51:8f:c4:63:d1:25:97:12:d4:68:fe:e0:ed:17:52:a6:58:74: dc:2b:f9:aa:76:d4:33:96:76:f0:05:37:0d:be:ba:4c:9d:f7: f8:34:7b:48:fd:ec:8f:00:8e:15:c6:cf:65:58:82:e5:3d:14: 82:3f:c6:b8:52:a4:54:75:66:30:e1:9b:5c:a8:fa:5a:52:3b: b3:16:7e:6e:16:f3:60:7f:48:1a:64:49:13:92:9a:12:59:e1: 40:dd:fa:29:d8:2f:96:3e:6a:c6:cd:7e:47:7d:e2:7d:ad:d0: c2:ba:0b:0d:80:30:a8:95:d1:ff:6a:74:99:47:02:94:e1:2d: 19:bf:a2:80:f0:ff:09:26:32:7d:79:d7:86:11:b1:2e:dd:4c: 05:7d:d6:fa:d0:6c:bc:d2:1d:da:37:0d:48:de:c2:49:ff:75: b9:56:bf:05:3e:b0:21:06:ab:63:a1:08:65:06:a6:c4:94:cc: 0a:b5:db:b8:9a:c0:de:c5:2f:31:d0:16:6c:64:0b:29:80:84: 55:2a:14:b9:59:dc:99:c4:7a:53:f5:0d:a1:ac:e3:bb:83:c3: 68:97:89:35 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICA30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFOTExMTAvBgNVBAUTKERDQ0JDQzk4OTM4MDkwOTlFRDAyQjcxNzgxODQzNjU0 MTZCMzFFMUMwHhcNMjUwNTAzMDEwNjUxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1NmMyYi02NWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/ynlK+oJVaDbUbSj6WPHwE935S/c3YxkXUgk81hfOACDV4T14c+Jk5VIqBN o3QijEy3E83ve4rtzJlg9WtDThRViGPQCrY/y3EkD//xUvr4sgfr6VaCwe/MniyJ NtZEsOb1mwRgPdKebE+aAXHqJn5sqwfvqYnVkmIt9giz5qzTvN4GvS+v4LOxvwZY sp7MEIQwN+QVxxhCjbanGbdVnKwAHlZd2azWFhrsE1YvC4VKVDlL7YHgxJNw86xq KxwOJTfCiPoTbDOc43imEO6R+e2OvgoFoE2F7bovqikykhuaDvK0Qg93VHI2KVVY VYl5KKjAWEh453U/LRI3fyaf6wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFKaenyhY 4XRKkDfkAUhFNXbUHU8aMB8GA1UdIwQYMBaAFNzLzJiTgJCZ7QK3F4GENlQWsx4c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUU5MS8yRTkyMTYzNkE0 MTUxMUVDQkU5MDBBN0JDNEY5QUUwMi8zTXZNbUpPQWtKbnRBcmNYZ1lRMlZCYXpI aHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNNdk1tSk9Ba0pudEFyY1hnWVEyVkJhekhody5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0FFOTEvMkU5MjE2MzZBNDE1MTFFQ0JFOTAwQTdCQzRGOUFFMDIvMjNGOUNFNzJB NDE5MTFFQ0JEQkVEODI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnW7wDBAJ7/TwwDQQCAAIwBwMFACQBD8AwDQYJKoZIhvcN AQELBQADggEBABTzlUbvf45mmXqvQwQchA6ld+lKBnisREBRbRS9RwHwiVO0kFGP xGPRJZcS1Gj+4O0XUqZYdNwr+ap21DOWdvAFNw2+ukyd9/g0e0j97I8AjhXGz2VY guU9FII/xrhSpFR1ZjDhm1yo+lpSO7MWfm4W82B/SBpkSROSmhJZ4UDd+inYL5Y+ asbNfkd94n2t0MK6Cw2AMKiV0f9qdJlHApThLRm/ooDw/wkmMn1514YRsS7dTAV9 1vrQbLzSHdo3DUjewkn/dblWvwU+sCEGq2OhCGUGpsSUzAq127iawN7FLzHQFmxk CymAhFUqFLlZ3JnEelP1DaGs47uDw2iXiTU= -----END CERTIFICATE-----Generated at Wed May 14 18:24:29 2025 by rpki-client