$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8AEA8D3CDFFC11ECAE7CE631C4F9AE02.roa File: 8AEA8D3CDFFC11ECAE7CE631C4F9AE02.roa (raw, json) Hash identifier: RQNvm2Daq7NOrWn9843fSELT4Ky45fow1Fi3bnRRBrM= Subject key identifier: BD:D1:B8:72:33:30:05:C6:AC:19:6F:74:62:19:EC:7C:9F:BE:45:D5 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4AAE Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8AEA8D3CDFFC11ECAE7CE631C4F9AE02.roa Signing time: Tue 06 May 2025 10:37:14 +0000 ROA not before: Tue 06 May 2025 10:37:14 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 63741 IP address blocks: 103.51.120.0/23 maxlen: 24 103.216.72.0/22 maxlen: 24 103.245.244.0/22 maxlen: 24 163.227.120.0/24 maxlen: 24 163.227.121.0/24 maxlen: 24 203.167.8.0/22 maxlen: 24 2001:df5:66c0::/48 maxlen: 48 2404:ee80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 14:32:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19118 (0x4aae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: May 6 10:37:14 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6819e65a-2284 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:d5:9b:bc:31:3c:2e:f5:e9:70:97:70:7e:f8: be:0a:59:89:c0:fc:64:18:3e:4d:0f:cd:9d:67:2d: e1:66:a0:11:a6:a0:95:3b:46:9e:ed:a7:82:91:ae: bc:ee:ed:82:dc:73:53:42:02:0d:e3:a4:1a:f0:42: 4f:61:d2:de:53:f6:47:46:3b:71:9f:e0:67:8f:5c: 77:93:49:76:f2:8e:9f:06:a6:ae:ea:30:6c:6c:99: 6c:00:53:16:1d:94:55:f0:c3:3e:a9:da:77:ae:a8: df:4b:68:73:b5:63:a4:63:3c:e4:c5:1f:13:5c:b6: 24:a8:15:8e:aa:10:33:32:bd:0f:51:7a:38:99:e5: b9:b7:49:fd:86:1c:55:64:f7:21:b9:ec:ea:e6:af: f0:4e:24:df:94:48:a8:a8:38:ad:28:19:84:fc:49: f9:dd:b8:ca:02:76:5e:be:d6:b1:e2:61:8c:fb:a0: f6:4f:16:40:72:67:af:a7:ae:62:d9:7a:e9:b7:31: e1:aa:d3:8e:aa:d8:93:fb:95:c2:1d:d8:4f:86:67: 3c:1c:ed:cf:c9:7f:57:41:2b:e6:a6:88:dc:2b:13: 0d:83:2f:55:12:6b:9f:d1:60:cb:da:6f:98:61:7d: c9:a2:f5:5c:9a:fd:81:15:49:a0:77:89:b1:9a:8a: db:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:D1:B8:72:33:30:05:C6:AC:19:6F:74:62:19:EC:7C:9F:BE:45:D5 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8AEA8D3CDFFC11ECAE7CE631C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.51.120.0/23 103.216.72.0/22 103.245.244.0/22 163.227.120.0/23 203.167.8.0/22 IPv6: 2001:df5:66c0::/48 2404:ee80::/48 Signature Algorithm: sha256WithRSAEncryption bd:44:8a:96:7a:4d:ca:1f:df:ce:05:ef:4b:5a:93:91:58:15: bf:c5:e0:97:86:b9:42:ef:34:36:7e:fd:77:93:03:cf:0b:9e: 49:fb:28:9d:fe:fa:d6:be:81:91:43:7f:1e:b4:12:b5:51:15: 0d:a8:7d:1d:59:d0:b3:5d:5a:10:34:5a:cf:c9:0d:1e:d7:cd: 2c:3d:bf:b6:83:38:a7:b9:bd:9d:48:c2:a2:71:30:44:c8:73: 85:83:ea:99:4d:c1:0a:7a:79:d7:f9:3f:0a:3c:59:ee:0a:09: 4f:e2:1a:1e:4c:df:bb:ca:2b:b1:2f:14:fc:25:5c:c4:81:01: 9c:58:87:4f:86:04:9f:da:c8:a4:5e:4e:fc:47:9d:83:dc:19: a6:e3:18:b1:e7:dc:36:75:23:5e:d2:68:14:3b:52:8e:99:0f: 91:8f:b2:5f:f2:07:70:d8:ab:0f:30:57:7d:da:f9:68:5c:5b: 71:ba:e7:0b:2e:6f:ff:f3:e0:4a:5c:d9:e6:68:2c:65:b1:5b: aa:68:98:b2:80:75:4b:74:53:83:4f:d2:45:e1:6d:f2:e8:7f: 7a:29:05:eb:88:1f:9a:87:b7:ed:94:0f:c8:6f:52:16:fc:74: 96:d4:93:40:77:14:f6:c3:51:67:f8:49:94:8f:69:ce:27:d1: 40:be:14:59 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgICSq4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwNTA2MTAzNzE0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE5ZTY1YS0yMjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+NWbvDE8LvXpcJdwfvi+ClmJwPxkGD5ND82dZy3hZqARpqCVO0ae7aeCka68 7u2C3HNTQgIN46Qa8EJPYdLeU/ZHRjtxn+Bnj1x3k0l28o6fBqau6jBsbJlsAFMW HZRV8MM+qdp3rqjfS2hztWOkYzzkxR8TXLYkqBWOqhAzMr0PUXo4meW5t0n9hhxV ZPchuezq5q/wTiTflEioqDitKBmE/En53bjKAnZevtax4mGM+6D2TxZAcmevp65i 2XrptzHhqtOOqtiT+5XCHdhPhmc8HO3PyX9XQSvmpojcKxMNgy9VEmuf0WDL2m+Y YX3JovVcmv2BFUmgd4mxmorbjQIDAQABo4ICxzCCAsMwHQYDVR0OBBYEFL3RuHIz MAXGrBlvdGIZ7HyfvkXVMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOEFFQThEM0NE RkZDMTFFQ0FFN0NFNjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUQYIKwYBBQUHAQcBAf8E QjBAMCQEAgABMB4DBAFnM3gDBAJn2EgDBAJn9fQDBAGj43gDBALLpwgwGAQCAAIw EgMHACABDfVmwAMHACQE7oAAADANBgkqhkiG9w0BAQsFAAOCAQEAvUSKlnpNyh/f zgXvS1qTkVgVv8Xgl4a5Qu80Nn79d5MDzwueSfsonf761r6BkUN/HrQStVEVDah9 HVnQs11aEDRaz8kNHtfNLD2/toM4p7m9nUjConEwRMhzhYPqmU3BCnp51/k/CjxZ 7goJT+IaHkzfu8orsS8U/CVcxIEBnFiHT4YEn9rIpF5O/Eedg9wZpuMYsefcNnUj XtJoFDtSjpkPkY+yX/IHcNirDzBXfdr5aFxbcbrnCy5v//PgSlzZ5mgsZbFbqmiY soB1S3RTg0/SReFt8uh/eikF64gfmoe37ZQPyG9SFvx0ltSTQHcU9sNRZ/hJlI9p zifRQL4UWQ== -----END CERTIFICATE-----Generated at Sat May 10 20:02:04 2025 by rpki-client