$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/BC72661A972911ED8CBCA476C4F9AE02.roa File: BC72661A972911ED8CBCA476C4F9AE02.roa (raw, json) Hash identifier: 50hi2vNUebBRUz8ceA03XMTbcW3zeli1X+BmJSriA30= Subject key identifier: 8A:DA:53:8E:97:64:50:43:93:78:6F:AD:2F:4A:2C:45:7E:34:5C:D3 Certificate issuer: /CN=A91A7C68/serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Certificate serial: 01C8 Authority key identifier: 0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/BC72661A972911ED8CBCA476C4F9AE02.roa Signing time: Wed 07 May 2025 02:40:06 +0000 ROA not before: Wed 07 May 2025 02:40:06 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137406 IP address blocks: 103.57.227.0/24 maxlen: 24 103.117.118.0/24 maxlen: 24 103.117.119.0/24 maxlen: 24 103.117.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C68, serialNumber=0F626A3264D6FECCCBFEB2D99B1DBF8AFFEC3B34 Validity Not Before: May 7 02:40:06 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681ac806-6037 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:55:fe:ed:0a:e4:30:78:fd:d0:b6:aa:a5:3d: 25:7a:4e:84:69:88:83:e1:c5:66:83:12:e9:cd:74: f0:ca:c8:d4:8e:b4:b4:57:05:89:3d:00:d3:6b:c4: 1c:14:a9:54:9a:06:f3:06:51:d6:b1:aa:06:13:fc: 55:31:b6:96:77:17:ad:83:c5:69:66:37:59:c6:cd: 17:c2:a7:e7:6d:af:5a:09:78:0a:5e:c3:c3:f5:f3: 21:82:e9:6b:fe:3f:c0:fa:30:68:1d:70:53:a2:a0: 84:75:84:f5:78:9f:d9:64:28:91:84:15:94:27:c4: be:84:4c:c3:cd:5f:98:e6:2a:e0:7d:63:e4:81:63: 68:2d:8a:d4:d9:64:23:5e:0a:ef:56:ff:f2:8d:3e: 2f:d6:32:c9:71:06:2e:7e:cc:be:3e:e5:4f:f0:d2: 83:75:57:da:dc:fc:63:76:54:6b:83:0b:cd:19:30: 3e:6b:71:a4:65:18:32:9b:40:a9:8a:2c:5c:fd:e5: 5c:02:e8:b5:ab:50:af:bd:5d:17:ce:a5:05:08:fb: 0e:68:6d:80:47:86:e8:4f:d9:83:2e:35:6b:2a:db: 5e:66:a9:87:d9:0c:cb:07:1e:f7:08:37:06:89:07: b3:d5:77:78:98:9e:0d:35:4e:06:f7:84:4a:f8:0f: f3:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:DA:53:8E:97:64:50:43:93:78:6F:AD:2F:4A:2C:45:7E:34:5C:D3 X509v3 Authority Key Identifier: keyid:0F:62:6A:32:64:D6:FE:CC:CB:FE:B2:D9:9B:1D:BF:8A:FF:EC:3B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/D2JqMmTW_szL_rLZmx2_iv_sOzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2JqMmTW_szL_rLZmx2_iv_sOzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C68/423986F6972111EDA2E02251C4F9AE02/BC72661A972911ED8CBCA476C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.57.227.0/24 103.117.118.0/23 103.117.140.0/24 Signature Algorithm: sha256WithRSAEncryption 76:b3:32:63:5d:a3:d6:e3:8b:a9:82:e4:af:91:90:aa:a8:c1: ee:12:b0:d0:9f:cd:e4:3f:05:eb:97:20:ef:9d:24:e4:37:61: 3c:d7:ad:7a:ee:06:16:83:36:75:1c:49:83:bd:96:84:42:52: 93:5f:7a:01:ae:1c:f1:8f:2b:87:d5:54:cc:1f:44:e7:de:e9: 10:e8:c2:37:4f:72:c7:bc:7d:37:b5:e8:13:f4:11:9f:60:4a: 54:08:11:36:67:fe:ad:a6:ab:28:f5:9c:d1:1b:a4:c6:f9:5d: 07:21:cf:2f:33:db:ed:e0:5b:82:68:9c:f8:5c:67:c2:90:43: 1c:8a:9b:0f:65:52:6e:c8:b1:62:81:d4:d6:4b:33:b3:28:5d: 12:c4:24:e8:0a:23:27:c9:31:16:dd:d8:9b:3f:fe:b3:c4:f4: 63:e0:b0:65:31:fd:3c:80:3b:1f:d1:87:21:43:4c:b5:56:3c: 2c:bb:c5:7a:64:b3:f8:cf:91:ff:ff:2a:22:c4:b4:3b:12:47: 03:7e:2d:36:39:38:19:68:22:6c:ae:a6:da:81:e4:72:65:1b: 02:f0:c7:d7:79:df:69:a7:43:e3:79:1f:ea:99:91:b6:ac:16: ec:44:af:e7:23:e6:8d:ec:72:a8:27:18:e3:30:17:8c:bf:d4: da:4e:fc:1c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNjgxMTAvBgNVBAUTKDBGNjI2QTMyNjRENkZFQ0NDQkZFQjJEOTlCMURCRjhB RkZFQzNCMzQwHhcNMjUwNTA3MDI0MDA2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhYzgwNi02MDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlX+7QrkMHj90LaqpT0lek6EaYiD4cVmgxLpzXTwysjUjrS0VwWJPQDTa8Qc FKlUmgbzBlHWsaoGE/xVMbaWdxetg8VpZjdZxs0Xwqfnba9aCXgKXsPD9fMhgulr /j/A+jBoHXBToqCEdYT1eJ/ZZCiRhBWUJ8S+hEzDzV+Y5irgfWPkgWNoLYrU2WQj XgrvVv/yjT4v1jLJcQYufsy+PuVP8NKDdVfa3PxjdlRrgwvNGTA+a3GkZRgym0Cp iixc/eVcAui1q1CvvV0XzqUFCPsOaG2AR4boT9mDLjVrKtteZqmH2QzLBx73CDcG iQez1Xd4mJ4NNU4G94RK+A/z3wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFIraU46X ZFBDk3hvrS9KLEV+NFzTMB8GA1UdIwQYMBaAFA9iajJk1v7My/6y2Zsdv4r/7Ds0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M2OC80MjM5ODZGNjk3 MjExMUVEQTJFMDIyNTFDNEY5QUUwMi9EMkpxTW1UV19zekxfckxabXgyX2l2X3NP elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QySnFNbVRXX3N6TF9yTFpteDJfaXZfc096US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTdDNjgvNDIzOTg2RjY5NzIxMTFFREEyRTAyMjUxQzRGOUFFMDIvQkM3MjY2MUE5 NzI5MTFFRDhDQkNBNDc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnOeMDBAFndXYDBABndYwwDQYJKoZIhvcNAQELBQADggEB AHazMmNdo9bji6mC5K+RkKqowe4SsNCfzeQ/BeuXIO+dJOQ3YTzXrXruBhaDNnUc SYO9loRCUpNfegGuHPGPK4fVVMwfROfe6RDowjdPcse8fTe16BP0EZ9gSlQIETZn /q2mqyj1nNEbpMb5XQchzy8z2+3gW4JonPhcZ8KQQxyKmw9lUm7IsWKB1NZLM7Mo XRLEJOgKIyfJMRbd2Js//rPE9GPgsGUx/TyAOx/RhyFDTLVWPCy7xXpks/jPkf// KiLEtDsSRwN+LTY5OBloImyuptqB5HJlGwLwx9d532mnQ+N5H+qZkbasFuxEr+cj 5o3scqgnGOMwF4y/1NpO/Bw= -----END CERTIFICATE-----Generated at Wed May 14 01:08:00 2025 by rpki-client