$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF0A8/05C927E2D76F11ED889E3812C4F9AE02/D831B39ED77311ED949D8419C4F9AE02.roa File: D831B39ED77311ED949D8419C4F9AE02.roa (raw, json) Hash identifier: wYBYO6Jcla4SoILvK2NaVJIBHB4Ha52WP5v+I/ZxS8M= Subject key identifier: 3E:59:26:D2:95:A2:90:A8:71:4D:1C:94:08:FE:A7:CE:C4:24:53:F9 Certificate issuer: /CN=A91DF0A8/serialNumber=4A6CD6731315A234B0F496C573C90E123C9F94AE Certificate serial: 0186 Authority key identifier: 4A:6C:D6:73:13:15:A2:34:B0:F4:96:C5:73:C9:0E:12:3C:9F:94:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SmzWcxMVojSw9JbFc8kOEjyflK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF0A8/05C927E2D76F11ED889E3812C4F9AE02/D831B39ED77311ED949D8419C4F9AE02.roa Signing time: Thu 01 May 2025 03:09:34 +0000 ROA not before: Thu 01 May 2025 03:09:34 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151057 IP address blocks: 103.122.206.0/23 maxlen: 23 103.122.206.0/24 maxlen: 24 103.122.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF0A8/05C927E2D76F11ED889E3812C4F9AE02/SmzWcxMVojSw9JbFc8kOEjyflK4.crl rsync://rpki.apnic.net/member_repository/A91DF0A8/05C927E2D76F11ED889E3812C4F9AE02/SmzWcxMVojSw9JbFc8kOEjyflK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SmzWcxMVojSw9JbFc8kOEjyflK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:32:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF0A8, serialNumber=4A6CD6731315A234B0F496C573C90E123C9F94AE Validity Not Before: May 1 03:09:34 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6812e5ee-7439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e0:16:88:a8:9f:73:1d:b1:37:47:c5:43:0c: 12:73:23:2f:e6:7b:80:b3:17:3e:bf:b1:d5:a2:df: d4:6d:29:9e:e0:c7:f9:9d:eb:f1:5e:3c:60:c7:8b: 96:27:c7:8e:cb:8f:b6:8b:6c:d5:ed:27:8a:27:f2: de:9e:a7:fc:10:fb:70:db:79:ce:7d:5e:b0:9e:d7: e6:c2:55:eb:68:99:47:23:a4:2e:70:b7:49:a4:15: 0f:38:77:29:c7:05:27:cf:a2:68:20:e8:7c:a9:56: 3c:27:3f:b0:cd:b2:aa:7e:12:81:c7:ee:f4:a3:49: 74:19:93:27:08:f8:71:b2:13:3a:91:1f:b3:01:de: 9e:95:2d:df:0a:c2:34:c0:df:f0:99:e6:e6:fc:b5: 56:0f:20:6a:59:48:0b:60:2b:16:8b:12:6d:4d:a2: 02:93:19:55:c6:92:b5:3e:58:b0:b7:39:dc:b6:30: 52:6b:b5:08:64:af:30:9c:2d:19:c2:20:aa:1c:f8: 2d:e5:94:52:cd:22:8d:5e:3b:b7:4c:f1:d3:7a:e4: d8:37:d1:2e:a9:ce:89:04:09:e9:7a:a0:de:d6:23: 1b:aa:71:6f:53:f2:18:b2:ab:5a:40:fa:e8:d5:de: 08:0a:05:8a:8d:ea:f7:8f:b5:78:36:ca:93:d6:2a: b0:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:59:26:D2:95:A2:90:A8:71:4D:1C:94:08:FE:A7:CE:C4:24:53:F9 X509v3 Authority Key Identifier: keyid:4A:6C:D6:73:13:15:A2:34:B0:F4:96:C5:73:C9:0E:12:3C:9F:94:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF0A8/05C927E2D76F11ED889E3812C4F9AE02/SmzWcxMVojSw9JbFc8kOEjyflK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SmzWcxMVojSw9JbFc8kOEjyflK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF0A8/05C927E2D76F11ED889E3812C4F9AE02/D831B39ED77311ED949D8419C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.206.0/23 Signature Algorithm: sha256WithRSAEncryption 52:8f:d0:67:94:c4:9b:55:32:ba:88:67:0a:62:5c:d1:d3:77: fd:dd:19:29:ae:1d:2b:0e:e1:50:ac:13:b2:f3:85:40:57:be: 97:3e:d9:32:26:70:23:41:56:6d:ec:99:1d:33:bf:d6:87:f0: d6:92:09:25:4c:a1:af:c5:64:0e:89:d8:5a:c1:ff:d5:60:bb: 36:32:28:80:4f:a3:c7:62:52:bc:71:95:46:30:35:44:46:52: 4c:52:da:30:f6:a5:84:e7:46:cb:72:66:ff:c1:5e:0c:04:f3: db:1c:b0:39:ca:14:81:bb:74:95:eb:34:16:b7:f4:01:bd:ce: 75:93:0d:0c:27:1c:6d:a7:d3:ab:92:20:38:ee:3d:bd:a3:31: 53:d9:fd:31:10:a5:79:14:3f:6c:01:15:dc:47:d3:78:64:ef: 50:42:f2:95:c1:73:aa:a2:38:3d:73:bd:5d:5e:2a:bb:2a:6c: 1a:7a:cb:43:27:ee:45:93:54:f9:e7:f8:29:ea:36:d2:6b:0f: 52:8a:b0:65:ce:be:40:f7:d4:c7:f8:d3:08:64:e5:77:77:cd: 7f:53:63:0f:00:51:c8:69:a7:b2:ba:44:98:70:1e:27:a7:c0: 80:95:80:a7:f1:bb:64:ee:80:12:55:13:ab:c5:26:77:c3:b2: d8:b6:c9:f6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwQTgxMTAvBgNVBAUTKDRBNkNENjczMTMxNUEyMzRCMEY0OTZDNTczQzkwRTEy M0M5Rjk0QUUwHhcNMjUwNTAxMDMwOTM0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyZTVlZS03NDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAreAWiKifcx2xN0fFQwwScyMv5nuAsxc+v7HVot/UbSme4Mf5nevxXjxgx4uW J8eOy4+2i2zV7SeKJ/Lenqf8EPtw23nOfV6wntfmwlXraJlHI6QucLdJpBUPOHcp xwUnz6JoIOh8qVY8Jz+wzbKqfhKBx+70o0l0GZMnCPhxshM6kR+zAd6elS3fCsI0 wN/wmebm/LVWDyBqWUgLYCsWixJtTaICkxlVxpK1PliwtznctjBSa7UIZK8wnC0Z wiCqHPgt5ZRSzSKNXju3TPHTeuTYN9Euqc6JBAnpeqDe1iMbqnFvU/IYsqtaQPro 1d4ICgWKjer3j7V4NsqT1iqwYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFD5ZJtKV opCocU0clAj+p87EJFP5MB8GA1UdIwQYMBaAFEps1nMTFaI0sPSWxXPJDhI8n5Su MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjBBOC8wNUM5MjdFMkQ3 NkYxMUVEODg5RTM4MTJDNEY5QUUwMi9TbXpXY3hNVm9qU3c5SmJGYzhrT0VqeWZs SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NteldjeE1Wb2pTdzlKYkZjOGtPRWp5ZmxLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REYwQTgvMDVDOTI3RTJENzZGMTFFRDg4OUUzODEyQzRGOUFFMDIvRDgzMUIzOUVE NzczMTFFRDk0OUQ4NDE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnes4wDQYJKoZIhvcNAQELBQADggEBAFKP0GeUxJtVMrqI ZwpiXNHTd/3dGSmuHSsO4VCsE7LzhUBXvpc+2TImcCNBVm3smR0zv9aH8NaSCSVM oa/FZA6J2FrB/9VguzYyKIBPo8diUrxxlUYwNURGUkxS2jD2pYTnRstyZv/BXgwE 89scsDnKFIG7dJXrNBa39AG9znWTDQwnHG2n06uSIDjuPb2jMVPZ/TEQpXkUP2wB FdxH03hk71BC8pXBc6qiOD1zvV1eKrsqbBp6y0Mn7kWTVPnn+CnqNtJrD1KKsGXO vkD31Mf40whk5Xd3zX9TYw8AUchpp7K6RJhwHienwICVgKfxu2TugBJVE6vFJnfD sti2yfY= -----END CERTIFICATE-----Generated at Mon May 12 16:55:03 2025 by rpki-client