$ rpki-client -vvf rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/4D03B06C83FA11EF9E6EC075C4F9AE02.roa File: 4D03B06C83FA11EF9E6EC075C4F9AE02.roa (raw, json) Hash identifier: hpv7gHEkBMfI8IhiYswhvBmYC+76f/Bx92ErHlGJsZw= Subject key identifier: 1A:AE:CA:FF:A0:85:B6:E1:E5:61:3C:BC:FA:18:CC:1E:11:B6:FA:32 Certificate issuer: /CN=A91676E2/serialNumber=3344A43960DC4A4773BB1DF0FF038DF4160F357A Certificate serial: 0324 Authority key identifier: 33:44:A4:39:60:DC:4A:47:73:BB:1D:F0:FF:03:8D:F4:16:0F:35:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M0SkOWDcSkdzux3w_wON9BYPNXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/4D03B06C83FA11EF9E6EC075C4F9AE02.roa Signing time: Wed 07 May 2025 01:08:19 +0000 ROA not before: Wed 07 May 2025 01:08:19 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 149806 IP address blocks: 103.186.216.0/23 maxlen: 23 103.186.216.0/24 maxlen: 24 103.186.217.0/24 maxlen: 24 2400:7520::/32 maxlen: 32 2400:7520::/48 maxlen: 48 2400:7520:1::/48 maxlen: 48 2400:7520:2::/48 maxlen: 48 2400:7520:3::/48 maxlen: 48 2400:7520:4::/48 maxlen: 48 2400:7520:5::/48 maxlen: 48 2400:7520:6::/48 maxlen: 48 2400:7520:7::/48 maxlen: 48 2400:7520:8::/48 maxlen: 48 2400:7520:9::/48 maxlen: 48 2400:7520:a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/M0SkOWDcSkdzux3w_wON9BYPNXo.crl rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/M0SkOWDcSkdzux3w_wON9BYPNXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M0SkOWDcSkdzux3w_wON9BYPNXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:04:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 804 (0x324) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91676E2, serialNumber=3344A43960DC4A4773BB1DF0FF038DF4160F357A Validity Not Before: May 7 01:08:19 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681ab283-54fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:7a:da:14:8c:36:ab:de:a1:77:93:b0:3c:36: 91:a6:2e:38:64:32:28:00:40:62:07:b9:91:87:89: a9:95:10:d3:f1:67:20:1d:fd:54:c3:6f:69:5f:4a: 11:e4:39:40:5e:84:00:1d:31:b7:c1:e8:fe:c8:4f: 40:af:73:e5:95:f6:41:48:83:fd:1d:f4:85:df:b4: 4c:03:d7:4f:72:a8:4c:5a:34:18:74:5d:24:8f:6c: 8b:f6:6e:61:0a:09:23:ab:6c:3c:7b:df:eb:f0:98: 47:e7:b1:52:21:6b:57:58:80:5b:12:ff:3b:1d:b0: 7c:6f:5a:2d:a2:f3:e0:e4:71:69:94:0b:86:66:16: 15:df:77:a5:b4:61:d4:b4:d6:cf:92:cb:8c:5d:a4: d5:31:a0:91:90:4a:8c:3c:e9:34:4c:f5:6b:7b:64: d8:86:dd:69:99:d2:dc:39:b4:af:c8:be:a0:9c:a0: 21:94:06:af:93:36:c5:36:9f:7d:c8:08:80:ab:e9: 13:be:e1:f9:d8:c8:82:df:1a:9e:da:6f:14:46:1c: be:10:02:a5:c4:8d:07:6a:02:f1:f3:0e:ff:5d:d8: 85:3b:9f:ef:b2:74:2b:47:96:ff:c2:3e:d2:66:95: 85:9f:29:62:3e:18:36:3e:ad:22:85:f7:9d:9d:76: d9:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:AE:CA:FF:A0:85:B6:E1:E5:61:3C:BC:FA:18:CC:1E:11:B6:FA:32 X509v3 Authority Key Identifier: keyid:33:44:A4:39:60:DC:4A:47:73:BB:1D:F0:FF:03:8D:F4:16:0F:35:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/M0SkOWDcSkdzux3w_wON9BYPNXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M0SkOWDcSkdzux3w_wON9BYPNXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91676E2/2259A186D85411ECB9E1E486C4F9AE02/4D03B06C83FA11EF9E6EC075C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.216.0/23 IPv6: 2400:7520::/32 Signature Algorithm: sha256WithRSAEncryption 48:ee:fd:4c:5a:f9:97:97:df:f6:c2:8e:08:84:c0:be:f1:2e: d7:bb:31:21:cd:67:34:b3:08:08:ca:5e:14:f0:29:41:84:8a: 56:ad:33:56:43:f0:0c:91:96:f2:c7:00:16:a1:3a:c8:5e:0a: 33:3c:c6:c2:28:ba:f2:cb:ce:cd:2a:05:9b:41:60:93:94:f9: 25:75:ce:5d:41:76:51:af:97:b6:f1:81:7b:1b:4c:e0:11:f1: 49:d7:71:36:11:ac:86:87:e7:1d:6f:d4:be:3b:dd:34:3f:fa: 05:0a:fb:48:26:a6:86:8c:6e:d4:40:73:95:cc:b7:3f:92:97: ad:74:2c:ae:2b:a3:73:ce:b6:ab:2f:49:be:d3:9f:a3:64:a8: e9:c8:57:18:79:7e:07:69:4e:a5:a0:b3:0a:1c:49:b5:ba:53: 47:2c:dd:7b:98:a3:f9:b5:db:33:f6:21:54:eb:bf:99:2e:d2: 2e:cb:e1:09:3a:51:24:95:67:36:20:73:d1:8e:a4:8a:8d:b9: 4f:9d:75:7a:7a:23:1e:55:ca:55:15:77:ef:55:f0:5e:cc:bf: 21:56:2c:41:76:fe:8e:bf:03:08:62:3b:78:98:d4:1f:a6:39: 28:87:57:fe:1d:aa:af:8d:3b:38:48:4c:81:af:36:6b:79:ab: e1:b8:e5:99 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAyQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njc2RTIxMTAvBgNVBAUTKDMzNDRBNDM5NjBEQzRBNDc3M0JCMURGMEZGMDM4REY0 MTYwRjM1N0EwHhcNMjUwNTA3MDEwODE5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhYjI4My01NGZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnHraFIw2q96hd5OwPDaRpi44ZDIoAEBiB7mRh4mplRDT8WcgHf1Uw29pX0oR 5DlAXoQAHTG3wej+yE9Ar3PllfZBSIP9HfSF37RMA9dPcqhMWjQYdF0kj2yL9m5h Cgkjq2w8e9/r8JhH57FSIWtXWIBbEv87HbB8b1otovPg5HFplAuGZhYV33eltGHU tNbPksuMXaTVMaCRkEqMPOk0TPVre2TYht1pmdLcObSvyL6gnKAhlAavkzbFNp99 yAiAq+kTvuH52MiC3xqe2m8URhy+EAKlxI0HagLx8w7/XdiFO5/vsnQrR5b/wj7S ZpWFnyliPhg2Pq0ihfednXbZkwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBquyv+g hbbh5WE8vPoYzB4RtvoyMB8GA1UdIwQYMBaAFDNEpDlg3EpHc7sd8P8DjfQWDzV6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzZFMi8yMjU5QTE4NkQ4 NTQxMUVDQjlFMUU0ODZDNEY5QUUwMi9NMFNrT1dEY1NrZHp1eDN3X3dPTjlCWVBO WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00wU2tPV0RjU2tkenV4M3dfd09OOUJZUE5Yby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njc2RTIvMjI1OUExODZEODU0MTFFQ0I5RTFFNDg2QzRGOUFFMDIvNEQwM0IwNkM4 M0ZBMTFFRjlFNkVDMDc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnutgwDQQCAAIwBwMFACQAdSAwDQYJKoZIhvcNAQELBQAD ggEBAEju/Uxa+ZeX3/bCjgiEwL7xLte7MSHNZzSzCAjKXhTwKUGEilatM1ZD8AyR lvLHABahOsheCjM8xsIouvLLzs0qBZtBYJOU+SV1zl1BdlGvl7bxgXsbTOAR8UnX cTYRrIaH5x1v1L473TQ/+gUK+0gmpoaMbtRAc5XMtz+Sl610LK4ro3POtqsvSb7T n6NkqOnIVxh5fgdpTqWgswocSbW6U0cs3XuYo/m12zP2IVTrv5ku0i7L4Qk6USSV ZzYgc9GOpIqNuU+ddXp6Ix5VylUVd+9V8F7MvyFWLEF2/o6/AwhiO3iY1B+mOSiH V/4dqq+NOzhITIGvNmt5q+G45Zk= -----END CERTIFICATE-----Generated at Wed May 14 12:45:14 2025 by rpki-client