$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/6CAE0142092E11F094B4703FC4F9AE02.roa File: 6CAE0142092E11F094B4703FC4F9AE02.roa (raw, json) Hash identifier: byY9F3PbnJNIoimN7egEeNickEL3qCj6OzKlPrHLyWI= Subject key identifier: 92:2E:73:58:A7:DC:36:BE:72:C2:97:3F:9A:6F:D4:B4:90:CE:6B:7A Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0BC9 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/6CAE0142092E11F094B4703FC4F9AE02.roa Signing time: Wed 07 May 2025 07:24:15 +0000 ROA not before: Wed 07 May 2025 07:24:15 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 142622 IP address blocks: 103.7.116.0/24 maxlen: 24 103.12.53.0/24 maxlen: 24 103.12.54.0/24 maxlen: 24 103.13.16.0/24 maxlen: 24 103.13.17.0/24 maxlen: 24 103.13.18.0/24 maxlen: 24 103.24.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 19:04:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3017 (0xbc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: May 7 07:24:15 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=681b0a9f-b70c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:99:1b:c2:08:fc:81:fa:5a:21:b1:99:d6:c5: 97:c1:c7:37:31:1e:5f:43:ca:1a:66:bb:c2:1e:92: 5f:c1:93:5a:29:5d:0f:0f:d8:cf:d8:48:4b:00:10: 80:ed:1b:44:5b:a1:2a:89:e7:73:d1:bd:ae:10:e9: 08:57:ba:69:c2:15:b8:09:77:02:23:d9:7a:f2:98: bb:26:46:87:0a:86:ce:e8:2f:d4:d5:09:d5:a7:52: bc:a6:5b:a5:b7:fc:74:43:7c:ca:c7:bb:37:64:cd: 90:23:5a:4b:bd:9f:40:0c:8f:c8:db:ef:de:ce:bb: bb:03:a4:a1:43:21:c5:06:fb:3d:04:02:78:a2:3d: 6b:52:8d:14:85:f4:46:2b:46:3b:08:19:77:ef:57: e1:81:0d:ac:c7:fd:99:c6:9d:89:c7:a5:b3:b4:cf: e8:2b:f3:6b:77:9e:2e:db:52:24:11:e4:50:61:99: de:78:06:73:6a:1b:85:e8:1d:d9:c5:f2:cc:dd:82: 73:4e:b9:be:0c:61:7b:88:c4:8c:90:99:9d:7f:5a: 9a:5b:1c:27:62:44:2f:5e:fe:02:1f:20:1e:d1:26: 9b:0f:40:16:4d:51:88:96:33:88:21:77:ad:90:98: 9a:83:19:64:91:d3:25:37:c9:f1:b9:32:48:b1:b7: eb:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:2E:73:58:A7:DC:36:BE:72:C2:97:3F:9A:6F:D4:B4:90:CE:6B:7A X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/6CAE0142092E11F094B4703FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.7.116.0/24 103.12.53.0-103.12.54.255 103.13.16.0-103.13.18.255 103.24.160.0/24 Signature Algorithm: sha256WithRSAEncryption 45:52:19:41:97:ad:97:bf:54:1b:d2:fc:b5:68:01:63:6f:28: 93:c6:e7:f6:70:6d:28:0a:e9:32:97:b8:73:8f:60:da:87:b0: 98:f9:db:13:cb:0c:9c:5f:73:24:d7:df:b4:13:4b:16:a0:9e: db:ab:16:ab:c7:62:19:8b:b7:1d:d9:9f:4d:0c:86:c2:72:81: 5d:5e:b1:73:fa:23:79:58:3f:de:7f:42:26:c5:f5:99:1f:0a: a1:45:9e:74:34:46:38:b6:54:c8:95:02:dc:7f:c0:6d:62:e2: d7:0e:b2:96:3e:a8:10:b1:b3:6c:e6:bd:24:ee:a6:49:b8:2c: d9:5f:f7:69:ca:b3:67:1a:0e:d4:78:7c:9c:fe:5a:25:42:9b: 67:14:62:f2:ad:3e:70:8f:05:3c:ad:e4:5e:44:d9:05:a4:15: 4b:e1:ef:92:fa:bd:2a:b9:25:11:09:3a:0a:34:de:64:d9:5a: 8a:db:ae:19:51:c1:ee:8c:a8:2f:8f:fb:71:5d:42:19:16:80: a0:b9:a1:c8:33:5c:f8:64:3b:df:36:fc:2b:54:19:c0:39:4c: 94:88:2d:23:73:fb:d2:06:36:69:34:ee:66:29:72:47:83:ac: 28:55:4d:9b:cf:5d:63:e8:0e:04:25:30:48:8f:ce:4e:49:84: 1d:1e:3b:59 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICC8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUwNTA3MDcyNDE1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODFiMGE5Zi1iNzBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJkbwgj8gfpaIbGZ1sWXwcc3MR5fQ8oaZrvCHpJfwZNaKV0PD9jP2EhLABCA 7RtEW6Eqiedz0b2uEOkIV7ppwhW4CXcCI9l68pi7JkaHCobO6C/U1QnVp1K8plul t/x0Q3zKx7s3ZM2QI1pLvZ9ADI/I2+/ezru7A6ShQyHFBvs9BAJ4oj1rUo0UhfRG K0Y7CBl371fhgQ2sx/2Zxp2Jx6WztM/oK/Nrd54u21IkEeRQYZneeAZzahuF6B3Z xfLM3YJzTrm+DGF7iMSMkJmdf1qaWxwnYkQvXv4CHyAe0SabD0AWTVGIljOIIXet kJiagxlkkdMlN8nxuTJIsbfr+QIDAQABo4ICtzCCArMwHQYDVR0OBBYEFJIuc1in 3Da+csKXP5pv1LSQzmt6MB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ0MDIvRkRCRkQwMjAzRDk2MTFFQThFQTA3MDJGQzRGOUFFMDIvNkNBRTAxNDIw OTJFMTFGMDk0QjQ3MDNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMC4EAgABMCgDBABnB3QwDAMEAGcMNQMEAGcMNjAMAwQEZw0QAwQAZw0SAwQA ZxigMA0GCSqGSIb3DQEBCwUAA4IBAQBFUhlBl62Xv1Qb0vy1aAFjbyiTxuf2cG0o Cukyl7hzj2Dah7CY+dsTywycX3Mk19+0E0sWoJ7bqxarx2IZi7cd2Z9NDIbCcoFd XrFz+iN5WD/ef0ImxfWZHwqhRZ50NEY4tlTIlQLcf8BtYuLXDrKWPqgQsbNs5r0k 7qZJuCzZX/dpyrNnGg7UeHyc/lolQptnFGLyrT5wjwU8reReRNkFpBVL4e+S+r0q uSURCToKNN5k2VqK264ZUcHujKgvj/txXUIZFoCguaHIM1z4ZDvfNvwrVBnAOUyU iC0jc/vSBjZpNO5mKXJHg6woVU2bz11j6A4EJTBIj85OSYQdHjtZ -----END CERTIFICATE-----Generated at Wed May 14 13:04:53 2025 by rpki-client