$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/2D478AFED02011ECB021972BC4F9AE02.roa File: 2D478AFED02011ECB021972BC4F9AE02.roa (raw, json) Hash identifier: /uILdUZ7kShm+RnYwG/kKYiO9gYuOhp2LdX1pGS+VDA= Subject key identifier: 67:F3:E9:D1:7B:80:24:C2:E8:DC:30:99:46:ED:3F:A2:F0:43:51:6F Certificate issuer: /CN=A91AE108/serialNumber=02BB97FD8B1F620E02A1E2CADB59D656F01ADA45 Certificate serial: 0316 Authority key identifier: 02:BB:97:FD:8B:1F:62:0E:02:A1:E2:CA:DB:59:D6:56:F0:1A:DA:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AruX_YsfYg4CoeLK21nWVvAa2kU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/2D478AFED02011ECB021972BC4F9AE02.roa Signing time: Wed 07 May 2025 01:08:07 +0000 ROA not before: Wed 07 May 2025 01:08:07 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 38549 IP address blocks: 203.21.76.0/24 maxlen: 24 203.21.77.0/24 maxlen: 24 2001:df0:20b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/AruX_YsfYg4CoeLK21nWVvAa2kU.crl rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/AruX_YsfYg4CoeLK21nWVvAa2kU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AruX_YsfYg4CoeLK21nWVvAa2kU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 790 (0x316) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE108, serialNumber=02BB97FD8B1F620E02A1E2CADB59D656F01ADA45 Validity Not Before: May 7 01:08:07 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681ab277-caa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:aa:98:ee:70:f5:dd:83:e0:72:ed:69:35:b5: 5e:cc:82:ad:8b:cf:87:1d:ba:59:be:81:0e:ec:e4: 63:a6:06:d4:dc:d9:bf:bd:ff:b6:b5:8d:7b:11:b7: fc:3a:2d:0f:26:e8:b2:68:38:f3:0b:bd:97:20:0d: 2f:4b:49:7b:7c:0e:de:c3:cb:fc:b1:4b:6e:44:2e: 30:8b:d9:27:01:4e:ea:70:02:09:55:1a:a2:3e:c6: fa:07:1a:24:e3:97:1e:38:92:f0:97:1c:83:55:1e: cf:8d:eb:a3:94:b1:fe:57:a8:89:42:9e:70:71:b7: c0:17:89:08:8d:61:74:49:5e:c8:fd:b6:3e:a3:54: 1c:f4:97:cd:06:7d:fc:f6:41:67:a4:80:d8:15:10: 83:72:98:07:87:d7:8f:94:bb:ba:c5:cb:c9:9a:b1: 85:5d:b4:21:e3:46:29:6f:b6:30:ea:65:f2:00:b2: c4:f9:5b:77:3b:f5:ea:35:d3:c5:15:93:d6:1d:ba: 7c:71:f2:45:5f:b6:da:88:6b:44:3d:45:be:24:c1: e3:71:95:0c:28:66:e3:18:89:f1:18:ca:1c:60:2a: 65:1d:96:24:ab:ee:99:53:cf:80:c0:da:ec:28:fe: fb:60:0f:09:a5:98:a9:c3:1d:14:b0:15:61:0e:36: c0:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:F3:E9:D1:7B:80:24:C2:E8:DC:30:99:46:ED:3F:A2:F0:43:51:6F X509v3 Authority Key Identifier: keyid:02:BB:97:FD:8B:1F:62:0E:02:A1:E2:CA:DB:59:D6:56:F0:1A:DA:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/AruX_YsfYg4CoeLK21nWVvAa2kU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AruX_YsfYg4CoeLK21nWVvAa2kU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/2D478AFED02011ECB021972BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.21.76.0/23 IPv6: 2001:df0:20b::/48 Signature Algorithm: sha256WithRSAEncryption 96:3b:30:a6:a2:d0:7b:d1:42:fd:a6:8f:19:2b:d4:cf:90:66: d0:d7:b6:24:9c:dc:51:b2:c2:26:76:52:77:87:05:42:ac:1b: 18:f1:b2:dd:30:78:c1:45:f1:5e:9a:b9:27:25:c2:0e:26:f4: 98:1d:6b:d3:26:d6:f8:41:71:3d:09:a3:7e:ab:00:7f:f7:74: 23:f8:4f:fa:33:ce:36:11:18:a9:79:d1:5c:9f:d4:9e:a3:7a: a8:b1:a7:e0:05:81:59:6d:c5:5a:87:4e:20:2d:45:f6:1c:05: 86:d5:65:0a:77:47:9f:c8:5b:f6:39:66:be:2e:9e:ab:bf:ee: 62:17:cf:4e:7e:17:e7:6d:f6:7d:b1:8d:e8:d7:1b:91:db:95: aa:8b:a9:26:c6:42:66:f0:51:ad:c1:2d:4b:14:43:b6:26:8e: a6:3f:d8:74:9c:9c:a5:82:b6:65:53:be:55:a0:41:41:e1:2a: c5:4f:df:f6:d0:c2:fb:43:2e:b1:1b:b7:a7:91:08:0c:a0:77: cb:b0:7a:51:08:98:a2:24:e1:a3:9f:e6:0c:45:3b:e7:ae:7a: 9a:13:0b:67:49:27:4f:b9:33:f8:ad:d1:0c:8b:98:57:6c:9a: cc:4b:a5:d9:8f:15:e5:4e:1f:a5:d6:34:5a:6c:25:b0:47:6a: c3:1d:67:51 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUxMDgxMTAvBgNVBAUTKDAyQkI5N0ZEOEIxRjYyMEUwMkExRTJDQURCNTlENjU2 RjAxQURBNDUwHhcNMjUwNTA3MDEwODA3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhYjI3Ny1jYWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0aqY7nD13YPgcu1pNbVezIKti8+HHbpZvoEO7ORjpgbU3Nm/vf+2tY17Ebf8 Oi0PJuiyaDjzC72XIA0vS0l7fA7ew8v8sUtuRC4wi9knAU7qcAIJVRqiPsb6Bxok 45ceOJLwlxyDVR7PjeujlLH+V6iJQp5wcbfAF4kIjWF0SV7I/bY+o1Qc9JfNBn38 9kFnpIDYFRCDcpgHh9ePlLu6xcvJmrGFXbQh40Ypb7Yw6mXyALLE+Vt3O/XqNdPF FZPWHbp8cfJFX7baiGtEPUW+JMHjcZUMKGbjGInxGMocYCplHZYkq+6ZU8+AwNrs KP77YA8JpZipwx0UsBVhDjbAzwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGfz6dF7 gCTC6NwwmUbtP6LwQ1FvMB8GA1UdIwQYMBaAFAK7l/2LH2IOAqHiyttZ1lbwGtpF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTEwOC9FM0IwNDZDQ0Qw MUMxMUVDQjM1NEFGMjRDNEY5QUUwMi9BcnVYX1lzZllnNENvZUxLMjFuV1Z2QWEy a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FydVhfWXNmWWc0Q29lTEsyMW5XVnZBYTJrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUUxMDgvRTNCMDQ2Q0NEMDFDMTFFQ0IzNTRBRjI0QzRGOUFFMDIvMkQ0NzhBRkVE MDIwMTFFQ0IwMjE5NzJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAHLFUwwDwQCAAIwCQMHACABDfACCzANBgkqhkiG9w0BAQsF AAOCAQEAljswpqLQe9FC/aaPGSvUz5Bm0Ne2JJzcUbLCJnZSd4cFQqwbGPGy3TB4 wUXxXpq5JyXCDib0mB1r0ybW+EFxPQmjfqsAf/d0I/hP+jPONhEYqXnRXJ/UnqN6 qLGn4AWBWW3FWodOIC1F9hwFhtVlCndHn8hb9jlmvi6eq7/uYhfPTn4X5232fbGN 6NcbkduVqoupJsZCZvBRrcEtSxRDtiaOpj/YdJycpYK2ZVO+VaBBQeEqxU/f9tDC +0MusRu3p5EIDKB3y7B6UQiYoiTho5/mDEU75656mhMLZ0knT7kz+K3RDIuYV2ya zEul2Y8V5U4fpdY0WmwlsEdqwx1nUQ== -----END CERTIFICATE-----Generated at Wed May 14 02:46:10 2025 by rpki-client