$ rpki-client -vvf rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/DED77BB2FA2F11EF98728875C4F9AE02.roa File: DED77BB2FA2F11EF98728875C4F9AE02.roa (raw, json) Hash identifier: mlWu4QI6RV3Fazg24ou9fVsCNac8uNLMWZTkxYffaU4= Subject key identifier: 2E:77:8E:80:A9:9B:B8:44:C4:C0:C2:44:09:57:F7:26:62:E7:0F:EA Certificate issuer: /CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Certificate serial: 0E80 Authority key identifier: 28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/DED77BB2FA2F11EF98728875C4F9AE02.roa Signing time: Mon 07 Apr 2025 06:15:13 +0000 ROA not before: Mon 07 Apr 2025 06:15:13 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 132021 IP address blocks: 103.5.0.0/22 maxlen: 22 103.5.0.0/23 maxlen: 23 103.5.0.0/24 maxlen: 24 103.5.1.0/24 maxlen: 24 103.5.2.0/23 maxlen: 23 103.5.2.0/24 maxlen: 24 103.5.3.0/24 maxlen: 24 126.209.88.0/22 maxlen: 22 126.209.88.0/23 maxlen: 23 126.209.88.0/24 maxlen: 24 126.209.89.0/24 maxlen: 24 126.209.90.0/24 maxlen: 24 126.209.91.0/24 maxlen: 24 2403:cd00::/32 maxlen: 32 2403:cd00::/40 maxlen: 40 2403:cd00::/48 maxlen: 48 2403:cd00:1::/48 maxlen: 48 2403:cd00:2::/48 maxlen: 48 2403:cd00:100::/40 maxlen: 40 2403:cd00:100::/48 maxlen: 48 2403:cd00:101::/48 maxlen: 48 2403:cd00:102::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:57:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3712 (0xe80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E868C, serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Validity Not Before: Apr 7 06:15:13 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=67f36d71-84c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8c:c6:1f:e0:a7:a2:f7:e2:a7:fb:1a:2f:f4: b1:80:e1:98:0e:ea:c3:db:37:f9:99:29:0f:a2:01: 6e:a5:b6:fa:0a:99:0d:f6:66:85:0d:f0:31:31:2c: 3a:c9:27:8d:a5:3b:db:4a:61:e4:cf:92:2d:a8:96: c7:c7:fe:d1:fd:88:16:b6:2a:3f:16:c1:97:cb:d1: 92:3d:ad:d1:c0:c6:72:2c:ff:32:22:95:41:7d:65: a0:f1:e8:d7:ce:f7:30:8b:cb:b2:e6:35:31:8c:c0: 1d:7d:7d:94:8b:4e:c8:f6:0c:08:81:01:a3:69:e4: f6:b1:37:eb:89:47:23:68:f2:5a:8b:da:f6:be:30: dc:a6:49:14:c8:1d:03:44:7d:f3:91:7b:86:ec:78: 91:23:86:ea:b7:83:8f:81:23:d3:8e:cd:fe:c6:9c: ce:7a:07:52:c4:48:fb:31:1d:22:6d:14:30:23:76: 62:73:3b:37:0e:6a:57:5f:89:72:6a:de:2c:c8:a0: f7:2a:20:b6:c7:ba:b6:fd:61:85:62:cd:df:4a:69: 36:ef:da:3e:3b:bb:b2:58:ca:46:8e:8e:8a:13:03: 5d:78:b6:5b:0d:b7:40:7f:4d:ac:98:5f:fc:50:98: 06:60:dc:cb:c5:95:ac:4d:41:71:23:a8:ab:8c:64: 92:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:77:8E:80:A9:9B:B8:44:C4:C0:C2:44:09:57:F7:26:62:E7:0F:EA X509v3 Authority Key Identifier: keyid:28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/DED77BB2FA2F11EF98728875C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.0.0/22 126.209.88.0/22 IPv6: 2403:cd00::/32 Signature Algorithm: sha256WithRSAEncryption 39:53:d7:73:4c:c5:dd:92:f5:9d:bf:74:93:ca:46:3f:68:bf: 03:09:6b:68:d5:08:5b:36:25:82:d4:a2:6b:a3:2d:c7:c1:21: fd:78:f8:b1:c9:77:dc:16:c8:f5:d2:f1:5c:4c:44:47:c7:6a: 37:c8:3e:c4:a2:85:bc:dc:c3:6f:fa:a7:c6:43:c9:51:40:4d: 3f:91:63:39:9f:47:0d:62:f0:5b:2f:a7:47:65:31:5a:96:8a: df:54:95:4b:d5:87:68:40:b6:e2:23:bc:a0:db:fb:90:ac:8a: 9a:fc:4f:25:6d:57:e7:25:6c:27:48:33:b1:a4:c4:8a:30:ba: 45:56:44:f1:85:90:5d:aa:59:a1:f9:9d:1b:1f:26:29:f5:39: 37:34:c3:e5:03:7f:ec:48:85:c8:09:65:39:bc:6c:b3:6e:59: b6:ca:53:b0:ef:80:cb:d3:05:ce:20:ea:4e:31:a3:27:39:7a: c6:a2:7c:c5:46:43:35:84:54:d6:3b:2e:a4:d2:22:39:d0:c8: 76:f6:86:2d:3b:b8:25:03:29:f3:75:85:01:76:ca:a4:f5:d1: b6:ad:b8:d3:30:71:c9:3c:79:53:c7:84:7b:fc:b2:b7:b9:e6: 17:a1:e4:5f:cb:18:59:9f:15:4a:87:b4:95:fd:47:10:54:31: eb:68:58:49 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2OEMxMTAvBgNVBAUTKDI4RTY3MEMyRTM3MDEyRjA1QzYzQkI1NjZFMjAzQzUx REM0NUUyQjIwHhcNMjUwNDA3MDYxNTEzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YzNmQ3MS04NGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4zGH+Cnovfip/saL/SxgOGYDurD2zf5mSkPogFupbb6CpkN9maFDfAxMSw6 ySeNpTvbSmHkz5ItqJbHx/7R/YgWtio/FsGXy9GSPa3RwMZyLP8yIpVBfWWg8ejX zvcwi8uy5jUxjMAdfX2Ui07I9gwIgQGjaeT2sTfriUcjaPJai9r2vjDcpkkUyB0D RH3zkXuG7HiRI4bqt4OPgSPTjs3+xpzOegdSxEj7MR0ibRQwI3Ziczs3DmpXX4ly at4syKD3KiC2x7q2/WGFYs3fSmk279o+O7uyWMpGjo6KEwNdeLZbDbdAf02smF/8 UJgGYNzLxZWsTUFxI6irjGSSKQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFC53joCp m7hExMDCRAlX9yZi5w/qMB8GA1UdIwQYMBaAFCjmcMLjcBLwXGO7Vm4gPFHcReKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODY4Qy8zRkI5MzM2OEE5 REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2QmNZN3RXYmlBOFVkeEY0 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPWnd3dU53RXZCY1k3dFdiaUE4VWR4RjRySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg2OEMvM0ZCOTMzNjhBOURCMTFFOTg0Mjg1Mjg2QzRGOUFFMDIvREVENzdCQjJG QTJGMTFFRjk4NzI4ODc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnBQADBAJ+0VgwDQQCAAIwBwMFACQDzQAwDQYJKoZIhvcN AQELBQADggEBADlT13NMxd2S9Z2/dJPKRj9ovwMJa2jVCFs2JYLUomujLcfBIf14 +LHJd9wWyPXS8VxMREfHajfIPsSihbzcw2/6p8ZDyVFATT+RYzmfRw1i8Fsvp0dl MVqWit9UlUvVh2hAtuIjvKDb+5Csipr8TyVtV+clbCdIM7GkxIowukVWRPGFkF2q WaH5nRsfJin1OTc0w+UDf+xIhcgJZTm8bLNuWbbKU7DvgMvTBc4g6k4xoyc5esai fMVGQzWEVNY7LqTSIjnQyHb2hi07uCUDKfN1hQF2yqT10batuNMwcck8eVPHhHv8 sre55heh5F/LGFmfFUqHtJX9RxBUMetoWEk= -----END CERTIFICATE-----Generated at Thu May 15 22:28:53 2025 by rpki-client