$ rpki-client -vvf rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/80F75824FAAD11EDB0C98683C4F9AE02.roa File: 80F75824FAAD11EDB0C98683C4F9AE02.roa (raw, json) Hash identifier: SO9SbWUjXyJ9Yb5w7Q+6mTlLwT6ktJsJ2PGUdf4nf50= Subject key identifier: C2:5E:47:8A:84:75:0E:42:EB:CA:FD:92:70:F4:15:63:61:4B:AA:3D Certificate issuer: /CN=A91923A9/serialNumber=5C17AF2E0AAF490CEAA84E2AAA71483D0395F1E4 Certificate serial: 0172 Authority key identifier: 5C:17:AF:2E:0A:AF:49:0C:EA:A8:4E:2A:AA:71:48:3D:03:95:F1:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/80F75824FAAD11EDB0C98683C4F9AE02.roa Signing time: Tue 29 Apr 2025 04:10:16 +0000 ROA not before: Tue 29 Apr 2025 04:10:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 133929 IP address blocks: 103.91.156.0/22 maxlen: 24 123.253.44.0/22 maxlen: 22 123.253.44.0/23 maxlen: 23 123.253.44.0/24 maxlen: 24 123.253.45.0/24 maxlen: 24 123.253.46.0/23 maxlen: 23 123.253.46.0/24 maxlen: 24 123.253.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 03:12:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91923A9, serialNumber=5C17AF2E0AAF490CEAA84E2AAA71483D0395F1E4 Validity Not Before: Apr 29 04:10:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68105128-7762 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:21:0d:ea:c4:f2:eb:c6:07:92:d9:eb:a0:df: f5:c7:21:c5:bc:31:32:d2:7d:be:a3:7d:18:b9:84: 00:cd:60:f5:80:c9:25:bb:e1:b3:4f:b7:5a:8c:3d: a2:a5:e7:b3:98:c8:03:07:d6:6d:1a:60:4d:52:8c: 75:4b:68:8f:dd:2e:ae:62:47:5c:c1:9b:7b:42:c3: eb:0b:3a:85:9b:e6:a3:ab:5b:1f:cf:17:c7:e9:da: 70:3d:92:77:78:93:91:c1:e7:19:ab:ad:c3:8d:50: c7:37:35:20:2e:d4:22:3c:23:7d:48:7f:4a:cf:f1: a1:6a:9b:cc:28:3f:f1:0b:1e:a8:29:63:7a:90:a6: 40:94:5b:0e:43:cd:b4:01:5c:7b:84:14:27:42:40: 6d:20:60:37:e9:b9:21:fd:36:d5:b2:d7:18:96:b2: d0:2b:b1:1b:90:16:55:4d:29:b8:99:0a:72:05:7f: c7:ba:06:64:32:ec:b6:a6:73:07:fa:5d:04:18:99: 54:80:e5:d8:51:bc:db:ee:b5:3f:ef:8b:ec:e2:41: 61:7b:62:bc:d7:00:08:b0:75:08:9c:91:5d:bb:c3: f9:75:a5:82:b6:81:d1:34:28:c7:b8:7b:20:c5:a0: 93:b1:7a:6b:4d:44:57:ad:33:f7:f2:db:ac:4e:ce: f4:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:5E:47:8A:84:75:0E:42:EB:CA:FD:92:70:F4:15:63:61:4B:AA:3D X509v3 Authority Key Identifier: keyid:5C:17:AF:2E:0A:AF:49:0C:EA:A8:4E:2A:AA:71:48:3D:03:95:F1:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/XBevLgqvSQzqqE4qqnFIPQOV8eQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBevLgqvSQzqqE4qqnFIPQOV8eQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91923A9/A6387684FAA511EDB2B2957FC4F9AE02/80F75824FAAD11EDB0C98683C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.156.0/22 123.253.44.0/22 Signature Algorithm: sha256WithRSAEncryption 2e:3a:46:f5:1c:62:be:1a:62:a4:0f:5b:d6:ab:ba:5d:5d:b1: c4:43:5b:ba:64:82:f6:ca:11:72:bd:eb:d6:8f:02:88:02:05: 82:63:1a:81:25:53:36:c5:5f:75:8d:42:a8:1c:48:38:09:82: 26:cb:3a:35:bc:53:6e:fb:74:91:5b:87:8e:0a:ed:12:c4:64: db:38:a2:a5:ac:4f:8b:d3:46:07:80:5b:b9:92:45:aa:77:3f: f3:c1:29:62:c1:72:f4:cb:b6:39:b9:ec:2e:f4:94:12:91:27: 0f:00:9f:0d:7e:8b:96:6f:29:13:9a:db:6c:0d:2f:1a:a9:08: 1a:e3:3c:66:59:a7:fa:e4:66:c8:53:d6:69:f4:e2:ce:ff:13: b1:b3:3a:21:d3:e9:80:e4:be:4e:24:50:e9:3d:4c:39:45:78: 47:70:cd:a0:8c:48:59:d2:ef:28:30:22:52:9c:bf:62:ef:7b: cb:43:f0:16:65:2a:6e:6e:55:f5:79:8a:a0:f7:f8:62:21:f9: 1b:d9:f5:77:ca:2d:f2:67:bc:0c:e9:a4:49:2d:4d:41:6b:55: 7c:59:4c:3a:ba:bb:aa:d4:05:5c:25:20:dd:b9:0a:1b:d8:e6: 0e:c6:a8:ad:81:bb:07:ae:43:3f:6a:7e:f8:7a:c1:44:b1:d3: 1a:38:f5:88 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTIzQTkxMTAvBgNVBAUTKDVDMTdBRjJFMEFBRjQ5MENFQUE4NEUyQUFBNzE0ODNE MDM5NUYxRTQwHhcNMjUwNDI5MDQxMDE2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwNTEyOC03NzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoiEN6sTy68YHktnroN/1xyHFvDEy0n2+o30YuYQAzWD1gMklu+GzT7dajD2i peezmMgDB9ZtGmBNUox1S2iP3S6uYkdcwZt7QsPrCzqFm+ajq1sfzxfH6dpwPZJ3 eJORwecZq63DjVDHNzUgLtQiPCN9SH9Kz/GhapvMKD/xCx6oKWN6kKZAlFsOQ820 AVx7hBQnQkBtIGA36bkh/TbVstcYlrLQK7EbkBZVTSm4mQpyBX/HugZkMuy2pnMH +l0EGJlUgOXYUbzb7rU/74vs4kFhe2K81wAIsHUInJFdu8P5daWCtoHRNCjHuHsg xaCTsXprTURXrTP38tusTs70MQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMJeR4qE dQ5C68r9knD0FWNhS6o9MB8GA1UdIwQYMBaAFFwXry4Kr0kM6qhOKqpxSD0DlfHk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MjNBOS9BNjM4NzY4NEZB QTUxMUVEQjJCMjk1N0ZDNEY5QUUwMi9YQmV2TGdxdlNRenFxRTRxcW5GSVBRT1Y4 ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hCZXZMZ3F2U1F6cXFFNHFxbkZJUFFPVjhlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTIzQTkvQTYzODc2ODRGQUE1MTFFREIyQjI5NTdGQzRGOUFFMDIvODBGNzU4MjRG QUFEMTFFREIwQzk4NjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnW5wDBAJ7/SwwDQYJKoZIhvcNAQELBQADggEBAC46RvUc Yr4aYqQPW9arul1dscRDW7pkgvbKEXK969aPAogCBYJjGoElUzbFX3WNQqgcSDgJ gibLOjW8U277dJFbh44K7RLEZNs4oqWsT4vTRgeAW7mSRap3P/PBKWLBcvTLtjm5 7C70lBKRJw8Anw1+i5ZvKROa22wNLxqpCBrjPGZZp/rkZshT1mn04s7/E7GzOiHT 6YDkvk4kUOk9TDlFeEdwzaCMSFnS7ygwIlKcv2Lve8tD8BZlKm5uVfV5iqD3+GIh +RvZ9XfKLfJnvAzppEktTUFrVXxZTDq6u6rUBVwlIN25ChvY5g7GqK2BuweuQz9q fvh6wUSx0xo49Yg= -----END CERTIFICATE-----Generated at Fri May 16 17:04:51 2025 by rpki-client