$ rpki-client -vvf rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/43272DE249AA11EABABC8610C4F9AE02.roa File: 43272DE249AA11EABABC8610C4F9AE02.roa (raw, json) Hash identifier: ArNuSAGS500F2Au8BkBemb4Fqw5PMgC4H5tbUjnLNK4= Subject key identifier: 36:E9:DA:59:2D:B4:DF:7A:A4:69:17:D8:41:FB:20:1F:C1:97:57:25 Certificate issuer: /CN=A91A467D/serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Certificate serial: 0AB5 Authority key identifier: 5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/43272DE249AA11EABABC8610C4F9AE02.roa Signing time: Sun 16 Feb 2025 20:27:50 +0000 ROA not before: Sun 16 Feb 2025 20:27:50 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 140084 IP address blocks: 103.148.74.0/23 maxlen: 23 103.148.74.0/24 maxlen: 24 103.148.75.0/24 maxlen: 24 2001:df2:c180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:33:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2741 (0xab5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A467D, serialNumber=5F1C534AEEFF4E380CE5A09A1084BF8F5709ED08 Validity Not Before: Feb 16 20:27:50 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67b24a45-1173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:39:39:62:26:2c:d4:e6:06:af:72:5f:c5:59: 33:3c:1a:69:48:c2:dd:4d:0c:17:33:45:48:0e:03: 3c:1d:7a:1a:44:28:42:78:18:97:26:f0:1f:b3:09: 5f:52:b8:85:50:b7:95:bd:0a:07:bc:72:95:09:c7: 72:d2:7f:57:cf:f5:71:64:6c:40:c8:c4:5a:12:96: c1:63:55:1d:d6:2c:73:db:f0:0f:f8:7b:8f:f9:1c: 2e:c7:c0:ec:d5:b0:f5:8d:9f:63:2d:a0:d6:c2:29: bf:f8:32:45:e6:9c:8e:cc:b9:99:cb:7b:eb:b1:84: 4e:84:20:f6:10:07:4c:65:e2:6b:6c:ce:83:5e:f1: c8:a7:7b:2d:2b:54:1c:51:f9:bf:8c:c7:26:09:92: 82:ef:3b:48:37:ed:48:a7:bf:80:7d:8d:b9:e0:af: 92:9c:a0:5d:6d:3f:e1:91:74:e8:e1:0b:2b:af:95: ff:ca:35:a3:30:cd:fe:fe:71:4f:66:d8:66:ba:60: 49:26:8f:71:38:b4:f6:29:82:49:e9:df:41:07:b3: 4c:07:83:23:d2:df:4f:8f:22:a5:6c:5b:34:23:00: 3a:ec:b7:a4:f8:82:8e:7b:b2:81:1e:f5:9e:a1:bc: 41:40:2c:17:3e:0e:61:b4:26:9a:1b:3e:c7:6a:9d: 6c:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:E9:DA:59:2D:B4:DF:7A:A4:69:17:D8:41:FB:20:1F:C1:97:57:25 X509v3 Authority Key Identifier: keyid:5F:1C:53:4A:EE:FF:4E:38:0C:E5:A0:9A:10:84:BF:8F:57:09:ED:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XxxTSu7_TjgM5aCaEIS_j1cJ7Qg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A467D/848E7D1849A911EAA6FDD30FC4F9AE02/43272DE249AA11EABABC8610C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.74.0/23 IPv6: 2001:df2:c180::/48 Signature Algorithm: sha256WithRSAEncryption 33:6e:ea:7c:d9:b4:49:34:df:78:2e:9a:48:dc:0d:c5:e4:d2: c1:24:9f:ce:68:ce:76:2d:6c:14:3e:ae:2a:73:6f:dc:a8:ab: 40:2f:70:ec:18:62:1f:a5:9c:d0:72:0b:2d:cb:d9:95:2e:08: b7:bd:f8:60:b4:b8:89:2d:6f:61:42:ad:1a:8f:c8:72:87:02: d9:d3:62:77:00:f4:23:7f:08:f7:00:b9:21:76:28:30:1e:ee: aa:13:56:f2:8e:6e:00:1d:5e:e1:06:b2:cc:4a:eb:3d:a5:31: a0:2f:a3:6f:57:b5:0b:5c:30:36:b2:fc:5c:dc:b8:ef:5b:c0: ee:ec:16:60:ed:ae:8c:b7:2b:a4:79:c3:4f:c5:54:88:35:8a: 20:00:ca:71:f0:44:74:a8:07:1e:73:40:9d:52:e2:f8:e3:97: 63:78:6e:ca:82:72:04:97:79:84:70:c6:b2:69:9e:2d:1c:a4: 6c:ab:31:7c:9f:f8:10:68:d7:79:9b:0b:90:f3:7d:db:e0:27: 54:01:ed:6e:c5:1c:8e:93:2f:f7:cd:62:a1:ee:57:b7:47:fc: 99:5d:a0:82:9d:2e:48:d1:f5:b2:95:92:49:b8:14:a7:1e:c4: ab:07:f4:40:c3:30:31:6b:b9:6b:7b:b1:c8:07:ff:4e:bb:a8: 58:84:c5:9c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCrUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ2N0QxMTAvBgNVBAUTKDVGMUM1MzRBRUVGRjRFMzgwQ0U1QTA5QTEwODRCRjhG NTcwOUVEMDgwHhcNMjUwMjE2MjAyNzUwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2IyNGE0NS0xMTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTk5YiYs1OYGr3JfxVkzPBppSMLdTQwXM0VIDgM8HXoaRChCeBiXJvAfswlf UriFULeVvQoHvHKVCcdy0n9Xz/VxZGxAyMRaEpbBY1Ud1ixz2/AP+HuP+Rwux8Ds 1bD1jZ9jLaDWwim/+DJF5pyOzLmZy3vrsYROhCD2EAdMZeJrbM6DXvHIp3stK1Qc Ufm/jMcmCZKC7ztIN+1Ip7+AfY254K+SnKBdbT/hkXTo4Qsrr5X/yjWjMM3+/nFP ZthmumBJJo9xOLT2KYJJ6d9BB7NMB4Mj0t9PjyKlbFs0IwA67Lek+IKOe7KBHvWe obxBQCwXPg5htCaaGz7Hap1s6wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDbp2lkt tN96pGkX2EH7IB/Bl1clMB8GA1UdIwQYMBaAFF8cU0ru/044DOWgmhCEv49XCe0I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDY3RC84NDhFN0QxODQ5 QTkxMUVBQTZGREQzMEZDNEY5QUUwMi9YeHhUU3U3X1RqZ001YUNhRUlTX2oxY0o3 UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h4eFRTdTdfVGpnTTVhQ2FFSVNfajFjSjdRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ2N0QvODQ4RTdEMTg0OUE5MTFFQUE2RkREMzBGQzRGOUFFMDIvNDMyNzJERTI0 OUFBMTFFQUJBQkM4NjEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlEowDwQCAAIwCQMHACABDfLBgDANBgkqhkiG9w0BAQsF AAOCAQEAM27qfNm0STTfeC6aSNwNxeTSwSSfzmjOdi1sFD6uKnNv3KirQC9w7Bhi H6Wc0HILLcvZlS4It734YLS4iS1vYUKtGo/IcocC2dNidwD0I38I9wC5IXYoMB7u qhNW8o5uAB1e4QayzErrPaUxoC+jb1e1C1wwNrL8XNy471vA7uwWYO2ujLcrpHnD T8VUiDWKIADKcfBEdKgHHnNAnVLi+OOXY3huyoJyBJd5hHDGsmmeLRykbKsxfJ/4 EGjXeZsLkPN92+AnVAHtbsUcjpMv981ioe5Xt0f8mV2ggp0uSNH1spWSSbgUpx7E qwf0QMMwMWu5a3uxyAf/TruoWITFnA== -----END CERTIFICATE-----Generated at Fri May 16 14:51:45 2025 by rpki-client