$ rpki-client -vvf rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/2789A9EEE38B11EBB246E13FC4F9AE02.roa File: 2789A9EEE38B11EBB246E13FC4F9AE02.roa (raw, json) Hash identifier: cVw4oQcu4jILJ7GW153O1ZXHHSwLOkKZrLSzT1rC+6w= Subject key identifier: EF:CD:FE:AA:FF:24:FB:E8:19:21:AF:FD:E4:88:FE:52:34:07:6B:E7 Certificate issuer: /CN=A91A92FE/serialNumber=3D43EDFE64F614E11306A87F1EF24F282E7E3714 Certificate serial: 133F Authority key identifier: 3D:43:ED:FE:64:F6:14:E1:13:06:A8:7F:1E:F2:4F:28:2E:7E:37:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUPt_mT2FOETBqh_HvJPKC5-NxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/2789A9EEE38B11EBB246E13FC4F9AE02.roa Signing time: Wed 30 Apr 2025 17:25:40 +0000 ROA not before: Wed 30 Apr 2025 17:25:40 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 58868 IP address blocks: 103.17.250.0/23 maxlen: 24 103.17.252.0/23 maxlen: 24 202.155.180.0/22 maxlen: 24 203.27.248.0/24 maxlen: 24 2406:6700::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/PUPt_mT2FOETBqh_HvJPKC5-NxQ.crl rsync://rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/PUPt_mT2FOETBqh_HvJPKC5-NxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUPt_mT2FOETBqh_HvJPKC5-NxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 17:14:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4927 (0x133f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A92FE, serialNumber=3D43EDFE64F614E11306A87F1EF24F282E7E3714 Validity Not Before: Apr 30 17:25:40 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68125d14-5b3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:6c:83:d2:be:54:1f:c4:61:a9:9c:5f:26:fa: 82:2f:fc:ad:76:5b:b1:3a:bf:73:85:ba:b9:68:d9: e7:67:a1:12:66:d5:2d:7c:f7:4c:e9:22:49:37:7d: 02:40:b0:ea:0c:68:6e:7e:5a:0a:6b:0e:82:e6:d5: 06:14:89:1b:db:51:75:7b:73:ab:fb:04:f8:aa:af: f3:02:77:c3:0d:9a:22:a8:43:6b:a8:b6:90:1c:29: ea:12:69:5f:e4:2f:93:4b:95:c1:7a:c9:c1:66:b0: 3d:86:7f:fd:a1:2a:77:53:ef:e3:9a:02:e9:23:f5: e2:40:d2:32:a8:4c:0a:9b:01:d7:a8:a7:93:21:0a: 0b:33:49:51:b6:25:b8:33:82:79:f3:30:f5:74:cf: d7:c4:76:84:88:a3:24:0c:ad:5b:38:b3:e9:80:6e: 98:51:06:14:aa:df:21:b7:14:5a:74:99:72:ce:7c: 94:e1:5c:83:4f:d4:3a:2e:0a:ff:6a:23:b3:ae:08: d5:ba:1d:d5:a5:42:bb:50:91:d1:40:c6:9e:12:9d: b4:a0:c2:aa:1c:38:c6:1c:43:49:f0:97:f9:c0:9d: 16:9a:83:ee:57:75:8c:5f:1e:34:03:e1:4e:bf:40: d3:a2:74:0f:4d:ab:4d:b5:04:6c:b3:a0:d5:ad:19: 5b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:CD:FE:AA:FF:24:FB:E8:19:21:AF:FD:E4:88:FE:52:34:07:6B:E7 X509v3 Authority Key Identifier: keyid:3D:43:ED:FE:64:F6:14:E1:13:06:A8:7F:1E:F2:4F:28:2E:7E:37:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/PUPt_mT2FOETBqh_HvJPKC5-NxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUPt_mT2FOETBqh_HvJPKC5-NxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A92FE/71817F6CA5BE11E8A40C6F1EC4F9AE02/2789A9EEE38B11EBB246E13FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.17.250.0-103.17.253.255 202.155.180.0/22 203.27.248.0/24 IPv6: 2406:6700::/32 Signature Algorithm: sha256WithRSAEncryption 9a:73:9b:10:43:ee:ce:ac:94:28:53:57:dc:fd:2a:fe:20:9f: 36:e9:3b:77:8a:26:1c:8b:82:68:9f:0b:c1:0e:2a:f3:a4:f0: 9a:5a:09:81:78:f5:14:10:3a:a5:3f:28:f8:9e:f9:95:7f:6d: 0e:b3:74:1c:88:ed:49:3c:1d:f1:b4:19:73:7c:dd:6c:e1:d9: 9c:19:75:cc:94:ba:e3:9a:91:43:e3:64:5e:d0:a4:03:be:ed: de:72:b5:b0:63:5e:62:b9:ab:41:24:88:bd:b9:0e:b9:f7:58: 1a:72:30:f0:bf:44:e4:aa:49:83:d0:48:b2:e3:0e:a9:1c:2f: cf:74:91:e7:fd:20:fd:10:bf:06:cb:9a:91:3b:b1:dc:f3:0c: 01:4c:74:45:cb:67:69:49:d9:fa:65:2d:cb:bc:f7:21:0d:51: d5:e8:63:24:01:57:02:27:e0:48:a3:ee:f2:33:d5:56:19:15: 30:a0:36:ba:ac:ad:2e:fb:5f:4f:e7:7e:27:e8:1c:59:38:e3: 7f:0e:99:38:59:ed:fa:17:ac:00:e7:2f:d8:7b:a3:79:6c:30: c9:b5:71:4a:ab:64:83:26:47:3a:6a:4f:15:77:75:76:42:ef: 02:75:0f:37:f4:63:b2:1b:79:92:76:79:18:2a:98:bb:9b:28: 47:7d:c8:39 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICEz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkyRkUxMTAvBgNVBAUTKDNENDNFREZFNjRGNjE0RTExMzA2QTg3RjFFRjI0RjI4 MkU3RTM3MTQwHhcNMjUwNDMwMTcyNTQwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyNWQxNC01YjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4myD0r5UH8RhqZxfJvqCL/ytdluxOr9zhbq5aNnnZ6ESZtUtfPdM6SJJN30C QLDqDGhufloKaw6C5tUGFIkb21F1e3Or+wT4qq/zAnfDDZoiqENrqLaQHCnqEmlf 5C+TS5XBesnBZrA9hn/9oSp3U+/jmgLpI/XiQNIyqEwKmwHXqKeTIQoLM0lRtiW4 M4J58zD1dM/XxHaEiKMkDK1bOLPpgG6YUQYUqt8htxRadJlyznyU4VyDT9Q6Lgr/ aiOzrgjVuh3VpUK7UJHRQMaeEp20oMKqHDjGHENJ8Jf5wJ0WmoPuV3WMXx40A+FO v0DTonQPTatNtQRss6DVrRlbgQIDAQABo4ICuDCCArQwHQYDVR0OBBYEFO/N/qr/ JPvoGSGv/eSI/lI0B2vnMB8GA1UdIwQYMBaAFD1D7f5k9hThEwaofx7yTygufjcU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTJGRS83MTgxN0Y2Q0E1 QkUxMUU4QTQwQzZGMUVDNEY5QUUwMi9QVVB0X21UMkZPRVRCcWhfSHZKUEtDNS1O eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVUHRfbVQyRk9FVEJxaF9IdkpQS0M1LU54US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTkyRkUvNzE4MTdGNkNBNUJFMTFFOEE0MEM2RjFFQzRGOUFFMDIvMjc4OUE5RUVF MzhCMTFFQkIyNDZFMTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMCAEAgABMBowDAMEAWcR+gMEAWcR/AMEAsqbtAMEAMsb+DANBAIAAjAHAwUA JAZnADANBgkqhkiG9w0BAQsFAAOCAQEAmnObEEPuzqyUKFNX3P0q/iCfNuk7d4om HIuCaJ8LwQ4q86TwmloJgXj1FBA6pT8o+J75lX9tDrN0HIjtSTwd8bQZc3zdbOHZ nBl1zJS645qRQ+NkXtCkA77t3nK1sGNeYrmrQSSIvbkOufdYGnIw8L9E5KpJg9BI suMOqRwvz3SR5/0g/RC/BsuakTux3PMMAUx0RctnaUnZ+mUty7z3IQ1R1ehjJAFX AifgSKPu8jPVVhkVMKA2uqytLvtfT+d+J+gcWTjjfw6ZOFnt+hesAOcv2HujeWww ybVxSqtkgyZHOmpPFXd1dkLvAnUPN/Rjsht5knZ5GCqYu5soR33IOQ== -----END CERTIFICATE-----Generated at Sat May 17 04:39:45 2025 by rpki-client