$ rpki-client -vvf rpki.apnic.net/member_repository/A91C798A/CF5FD6B8C0A111EC8AE24528C4F9AE02/2173FE4EC0A611ECB6A6996CC4F9AE02.roa File: 2173FE4EC0A611ECB6A6996CC4F9AE02.roa (raw, json) Hash identifier: AvM4EHFc35a+/i0JOm+PYVnypM/t1zc/v7lGdHSDzQQ= Subject key identifier: 9F:0D:D4:70:CD:97:C2:7A:5E:73:C7:3D:52:84:A4:45:23:64:BE:FB Certificate issuer: /CN=A91C798A/serialNumber=F634C0B12C1978AF3E890C528FC72C8F747DB980 Certificate serial: 0333 Authority key identifier: F6:34:C0:B1:2C:19:78:AF:3E:89:0C:52:8F:C7:2C:8F:74:7D:B9:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9jTAsSwZeK8-iQxSj8csj3R9uYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C798A/CF5FD6B8C0A111EC8AE24528C4F9AE02/2173FE4EC0A611ECB6A6996CC4F9AE02.roa Signing time: Sat 03 May 2025 01:37:15 +0000 ROA not before: Sat 03 May 2025 01:37:15 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139846 IP address blocks: 103.186.144.0/23 maxlen: 23 103.186.144.0/24 maxlen: 24 103.186.145.0/24 maxlen: 24 2400:71e0::/32 maxlen: 32 2400:71e0::/36 maxlen: 36 2400:71e0:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C798A/CF5FD6B8C0A111EC8AE24528C4F9AE02/9jTAsSwZeK8-iQxSj8csj3R9uYA.crl rsync://rpki.apnic.net/member_repository/A91C798A/CF5FD6B8C0A111EC8AE24528C4F9AE02/9jTAsSwZeK8-iQxSj8csj3R9uYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9jTAsSwZeK8-iQxSj8csj3R9uYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 00:52:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 819 (0x333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C798A, serialNumber=F634C0B12C1978AF3E890C528FC72C8F747DB980 Validity Not Before: May 3 01:37:15 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6815734b-9368 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:82:f4:36:71:b4:d0:00:3d:a3:28:55:28:73: 59:44:68:16:6f:83:4a:dd:55:2f:b2:5b:ba:8d:b1: 40:13:ab:15:84:f6:d2:b0:0b:df:c9:20:19:05:78: dd:77:b1:1c:9d:61:3d:09:bf:73:1d:6c:20:4e:c8: 77:8c:9d:49:f3:30:24:35:17:e8:b6:52:76:fe:86: 59:a1:9e:17:78:8e:94:3a:64:ec:05:cd:d0:3a:2a: fc:75:e8:5c:cc:7e:02:06:ba:84:50:86:e9:3d:85: 1b:5f:da:a5:64:f0:d4:d3:4d:fa:ac:a5:bd:32:5c: 1e:96:51:fe:ba:90:e6:40:1e:1d:56:7c:90:7c:f6: 5c:5d:72:90:80:e7:ae:e8:9c:e0:bf:6e:2d:ee:43: bd:1b:3d:ff:50:37:1e:67:48:9f:3e:e2:05:27:d8: 26:b5:b5:13:5a:47:40:49:30:e4:be:27:8a:8c:25: 81:2d:b3:d7:4e:15:a3:6b:27:57:9d:bd:8b:16:83: 1f:58:51:2d:b5:10:98:76:08:db:4e:c2:17:7b:e1: f1:6e:90:a4:c7:f7:09:2b:70:49:bc:36:e4:14:d2: c6:9c:05:fd:f1:00:c3:d6:89:62:ce:18:e2:9c:76: 8c:9f:9a:a3:ed:c7:b4:67:9f:7e:59:dd:68:0c:c0: 4c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:0D:D4:70:CD:97:C2:7A:5E:73:C7:3D:52:84:A4:45:23:64:BE:FB X509v3 Authority Key Identifier: keyid:F6:34:C0:B1:2C:19:78:AF:3E:89:0C:52:8F:C7:2C:8F:74:7D:B9:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C798A/CF5FD6B8C0A111EC8AE24528C4F9AE02/9jTAsSwZeK8-iQxSj8csj3R9uYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9jTAsSwZeK8-iQxSj8csj3R9uYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C798A/CF5FD6B8C0A111EC8AE24528C4F9AE02/2173FE4EC0A611ECB6A6996CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.144.0/23 IPv6: 2400:71e0::/32 Signature Algorithm: sha256WithRSAEncryption 7e:73:19:ca:78:77:6d:63:a4:43:ec:45:28:93:c6:9a:61:75: 39:ab:1b:e7:be:20:05:ab:9c:f4:46:00:ae:42:7d:c0:de:87: 40:97:dd:e8:2b:f2:b7:55:3b:25:f1:3a:b2:a8:53:5c:dc:16: 56:7b:fc:fd:ae:67:32:54:08:ad:d9:1f:bb:6f:76:e9:73:b1: 49:f3:e4:2a:25:32:ec:ec:51:ba:d1:e1:7e:42:9f:3a:7a:b8: f2:90:4b:46:10:5d:0d:1c:d1:57:fd:dc:92:07:eb:54:70:5b: 63:e6:1e:c1:31:73:d4:a3:04:59:20:6c:5c:85:19:db:ee:89: 9c:4c:af:6f:a5:8a:b4:66:28:ae:1d:95:94:63:ec:0a:45:d2: 68:8d:65:5c:78:5a:5c:86:d2:bc:56:df:48:67:aa:24:61:87: f1:81:3e:6b:c7:76:48:75:44:c6:84:8c:15:99:98:17:fa:f5: ab:e2:33:ae:9b:20:64:71:60:d3:0a:1e:ed:90:54:46:2d:55: a4:d4:e2:0d:36:dd:a3:a5:06:26:35:50:35:92:6f:b4:bb:8d: 92:9d:fb:af:2e:cc:3d:b2:e6:e4:66:9b:bc:d6:5f:05:cd:c8: 3f:9e:b9:9b:f6:41:8d:6b:d3:e2:3a:c1:9a:7d:0e:d0:5e:63: 1e:43:38:ae -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5OEExMTAvBgNVBAUTKEY2MzRDMEIxMkMxOTc4QUYzRTg5MEM1MjhGQzcyQzhG NzQ3REI5ODAwHhcNMjUwNTAzMDEzNzE1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1NzM0Yi05MzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApIL0NnG00AA9oyhVKHNZRGgWb4NK3VUvslu6jbFAE6sVhPbSsAvfySAZBXjd d7EcnWE9Cb9zHWwgTsh3jJ1J8zAkNRfotlJ2/oZZoZ4XeI6UOmTsBc3QOir8dehc zH4CBrqEUIbpPYUbX9qlZPDU0036rKW9MlwellH+upDmQB4dVnyQfPZcXXKQgOeu 6Jzgv24t7kO9Gz3/UDceZ0ifPuIFJ9gmtbUTWkdASTDkvieKjCWBLbPXThWjaydX nb2LFoMfWFEttRCYdgjbTsIXe+HxbpCkx/cJK3BJvDbkFNLGnAX98QDD1olizhji nHaMn5qj7ce0Z59+Wd1oDMBMmwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJ8N1HDN l8J6XnPHPVKEpEUjZL77MB8GA1UdIwQYMBaAFPY0wLEsGXivPokMUo/HLI90fbmA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzk4QS9DRjVGRDZCOEMw QTExMUVDOEFFMjQ1MjhDNEY5QUUwMi85alRBc1N3WmVLOC1pUXhTajhjc2ozUjl1 WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlqVEFzU3daZUs4LWlReFNqOGNzajNSOXVZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzc5OEEvQ0Y1RkQ2QjhDMEExMTFFQzhBRTI0NTI4QzRGOUFFMDIvMjE3M0ZFNEVD MEE2MTFFQ0I2QTY5OTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnupAwDQQCAAIwBwMFACQAceAwDQYJKoZIhvcNAQELBQAD ggEBAH5zGcp4d21jpEPsRSiTxpphdTmrG+e+IAWrnPRGAK5CfcDeh0CX3egr8rdV OyXxOrKoU1zcFlZ7/P2uZzJUCK3ZH7tvdulzsUnz5ColMuzsUbrR4X5Cnzp6uPKQ S0YQXQ0c0Vf93JIH61RwW2PmHsExc9SjBFkgbFyFGdvuiZxMr2+lirRmKK4dlZRj 7ApF0miNZVx4WlyG0rxW30hnqiRhh/GBPmvHdkh1RMaEjBWZmBf69aviM66bIGRx YNMKHu2QVEYtVaTU4g023aOlBiY1UDWSb7S7jZKd+68uzD2y5uRmm7zWXwXNyD+e uZv2QY1r0+I6wZp9DtBeYx5DOK4= -----END CERTIFICATE-----Generated at Sat May 10 14:57:49 2025 by rpki-client