$ rpki-client -vvf rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/17894A68318411F0BC1DD041C4F9AE02.roa File: 17894A68318411F0BC1DD041C4F9AE02.roa (raw, json) Hash identifier: BtSPkMAc6JmUbVgs04DwYummrrWRw2IMsZrBj4wxrVc= Subject key identifier: 4F:80:46:98:DE:0C:F8:40:7F:FB:45:FB:DF:B8:EE:BE:FE:DA:7E:01 Certificate issuer: /CN=A91D243F/serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Certificate serial: 29 Authority key identifier: 18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/17894A68318411F0BC1DD041C4F9AE02.roa Signing time: Thu 15 May 2025 12:02:05 +0000 ROA not before: Thu 15 May 2025 12:02:05 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 35876 IP address blocks: 103.117.136.0/22 maxlen: 24 103.121.92.0/22 maxlen: 24 103.186.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 12:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D243F, serialNumber=18967DCDB724A84A71711E678AAB1D2E72215D6C Validity Not Before: May 15 12:02:05 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6825d7bd-5f02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:25:71:58:fc:59:b1:30:21:68:25:98:82:06: f1:49:78:db:13:78:39:31:a8:67:6c:3e:20:8d:7d: 7e:33:75:dd:c7:1d:87:01:a3:c9:a7:d9:91:9c:ac: 8c:d0:bc:75:0d:81:61:81:60:e6:bf:44:8f:d5:b7: fa:46:ee:e0:3b:7d:64:7e:9f:b1:52:4f:98:aa:b5: 15:df:25:36:eb:51:12:2b:2e:be:36:04:e5:88:19: 07:25:ad:37:84:88:38:db:f6:27:a9:9e:8a:5b:81: 90:e8:72:64:4d:4d:4b:09:d6:65:8b:61:00:e3:0a: 9c:9d:8d:2f:91:d4:5f:86:1e:d8:fc:83:07:b3:70: 61:96:9e:6f:3f:3d:dc:81:16:72:b7:a5:0f:35:80: 8f:93:d2:1a:e8:79:b0:ff:6d:b9:d1:cb:3a:53:35: 5a:eb:65:ec:0c:27:b6:02:61:5e:16:62:b8:53:9a: dc:1e:b5:3a:e8:7b:4f:b4:13:a4:60:b0:1e:51:ae: 92:81:d4:d1:11:2c:be:3d:75:8f:8b:af:31:18:24: 11:9f:1b:e9:10:c1:3b:95:db:ae:f7:49:35:65:33: 4d:7e:0f:9a:2a:5a:bd:54:3e:c8:cd:fb:7d:d9:7b: 7a:89:ad:a7:fa:3e:dd:bd:2b:48:2c:f0:bf:e6:c6: 2b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:80:46:98:DE:0C:F8:40:7F:FB:45:FB:DF:B8:EE:BE:FE:DA:7E:01 X509v3 Authority Key Identifier: keyid:18:96:7D:CD:B7:24:A8:4A:71:71:1E:67:8A:AB:1D:2E:72:21:5D:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/GJZ9zbckqEpxcR5niqsdLnIhXWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJZ9zbckqEpxcR5niqsdLnIhXWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D243F/D684FC2E1A8B11F09CC24535C4F9AE02/17894A68318411F0BC1DD041C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.136.0/22 103.121.92.0/22 103.186.214.0/23 Signature Algorithm: sha256WithRSAEncryption 49:65:49:f9:3e:6d:e1:86:9a:07:d0:12:1c:53:ad:18:b8:9f: 94:22:d6:5a:b4:e8:f5:61:63:32:a1:20:d2:28:68:70:ca:f4: 43:9b:e0:fc:33:77:5c:83:2d:43:b7:37:b8:f7:49:5d:7f:52: d5:28:c8:5d:18:d5:92:b4:2b:f8:c9:88:6f:da:35:83:f6:14: d9:48:dc:fc:97:bd:61:42:57:fd:ca:df:82:07:c3:8b:aa:3b: 9b:8e:ec:c7:ce:de:c2:a1:4c:77:62:3a:05:49:73:db:24:b9: 77:45:12:4c:0d:8c:b0:ee:02:ae:88:3f:4d:79:bb:41:17:fa: 5a:28:a6:98:cb:11:5c:e3:c8:0f:eb:33:21:c9:af:03:54:72: a5:a7:e9:c9:18:0a:6c:97:bc:fb:be:f3:8b:82:1d:ac:c4:79: 97:e5:7e:00:4c:4b:e0:e8:e8:50:0f:b2:62:8d:7f:f7:33:f4: 65:e8:f6:46:09:ad:cd:47:6a:89:76:7a:0c:5a:de:52:06:44: df:0b:ef:a2:08:eb:97:4d:07:25:56:dd:79:6e:e0:c2:0b:00: f1:31:90:11:60:a4:99:ce:3f:07:98:a1:bf:81:93:e3:b3:9c: f3:1e:05:1a:e2:9a:7a:ed:c0:14:98:f9:b2:e7:2c:78:e0:b8: f3:4f:ea:52 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MjQzRjExMC8GA1UEBRMoMTg5NjdEQ0RCNzI0QTg0QTcxNzExRTY3OEFBQjFEMkU3 MjIxNUQ2QzAeFw0yNTA1MTUxMjAyMDVaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MjVkN2JkLTVmMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeJXFY/FmxMCFoJZiCBvFJeNsTeDkxqGdsPiCNfX4zdd3HHYcBo8mn2ZGcrIzQ vHUNgWGBYOa/RI/Vt/pG7uA7fWR+n7FST5iqtRXfJTbrURIrLr42BOWIGQclrTeE iDjb9iepnopbgZDocmRNTUsJ1mWLYQDjCpydjS+R1F+GHtj8gwezcGGWnm8/PdyB FnK3pQ81gI+T0hroebD/bbnRyzpTNVrrZewMJ7YCYV4WYrhTmtwetTroe0+0E6Rg sB5RrpKB1NERLL49dY+LrzEYJBGfG+kQwTuV2673STVlM01+D5oqWr1UPsjN+33Z e3qJraf6Pt29K0gs8L/mxiu3AgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUT4BGmN4M +EB/+0X737juvv7afgEwHwYDVR0jBBgwFoAUGJZ9zbckqEpxcR5niqsdLnIhXWww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQyNDNGL0Q2ODRGQzJFMUE4 QjExRjA5Q0MyNDUzNUM0RjlBRTAyL0dKWjl6YmNrcUVweGNSNW5pcXNkTG5JaFhX dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0paOXpiY2txRXB4Y1I1bmlxc2RMbkloWFd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MjQzRi9ENjg0RkMyRTFBOEIxMUYwOUNDMjQ1MzVDNEY5QUUwMi8xNzg5NEE2ODMx ODQxMUYwQkMxREQwNDFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAmd1iAMEAmd5XAMEAWe61jANBgkqhkiG9w0BAQsFAAOCAQEA SWVJ+T5t4YaaB9ASHFOtGLiflCLWWrTo9WFjMqEg0ihocMr0Q5vg/DN3XIMtQ7c3 uPdJXX9S1SjIXRjVkrQr+MmIb9o1g/YU2Ujc/Je9YUJX/crfggfDi6o7m47sx87e wqFMd2I6BUlz2yS5d0USTA2MsO4Crog/TXm7QRf6WiimmMsRXOPID+szIcmvA1Ry pafpyRgKbJe8+77zi4IdrMR5l+V+AExL4OjoUA+yYo1/9zP0Zej2RgmtzUdqiXZ6 DFreUgZE3wvvogjrl00HJVbdeW7gwgsA8TGQEWCkmc4/B5ihv4GT47Oc8x4FGuKa eu3AFJj5sucseOC480/qUg== -----END CERTIFICATE-----Generated at Fri May 16 08:16:12 2025 by rpki-client