$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/9924B750A1AF11EC9A73D814C4F9AE02.roa File: 9924B750A1AF11EC9A73D814C4F9AE02.roa (raw, json) Hash identifier: H07H0KC74DRAPdC4SUe3j+pKIkb6uyeJtaN+ueDEin0= Subject key identifier: 5E:76:87:94:00:21:15:94:BD:37:C5:9E:82:7B:12:9C:F0:EF:44:D2 Certificate issuer: /CN=A91EA582/serialNumber=AA48D0B57E085CD940DBA1791DAA5873CC19C7FE Certificate serial: 0385 Authority key identifier: AA:48:D0:B5:7E:08:5C:D9:40:DB:A1:79:1D:AA:58:73:CC:19:C7:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkjQtX4IXNlA26F5HapYc8wZx_4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/9924B750A1AF11EC9A73D814C4F9AE02.roa Signing time: Mon 05 May 2025 00:36:30 +0000 ROA not before: Mon 05 May 2025 00:36:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132490 IP address blocks: 103.183.140.0/24 maxlen: 24 103.183.141.0/24 maxlen: 24 2001:df0:87c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.crl rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkjQtX4IXNlA26F5HapYc8wZx_4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 00:54:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 901 (0x385) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA582, serialNumber=AA48D0B57E085CD940DBA1791DAA5873CC19C7FE Validity Not Before: May 5 00:36:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6818080d-eedf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6a:be:bd:1b:4f:d5:92:1f:b5:7c:d4:eb:57: 6a:ea:f8:05:7f:0d:0c:e0:bb:d4:8c:c7:4e:03:9c: 65:52:2a:ed:98:b7:0d:2e:ac:d9:4b:f7:79:4a:09: b2:6d:36:49:fc:d9:05:2e:10:07:40:fc:7e:42:06: 0e:45:8a:3e:76:4e:f3:52:7d:b3:9a:cf:01:4d:33: 1b:23:bb:55:47:bd:50:4a:71:ff:c6:85:23:7c:ae: 85:b4:57:df:de:c4:08:26:2a:b9:2a:cf:27:65:5b: e0:bc:da:0f:3d:eb:73:e3:ce:b8:44:5a:48:05:af: 43:1b:55:87:4a:87:e7:14:f6:10:3a:f7:c0:79:fa: 1e:bc:9d:73:98:74:df:e2:bc:78:90:e8:2f:b1:dd: bd:b2:16:4e:9c:af:5b:fd:83:83:96:1f:bc:f4:4d: 9b:57:b8:df:c4:04:cd:ad:ad:da:c8:25:cf:c6:38: 58:ec:87:8a:26:7a:36:5a:01:3d:90:54:cb:15:f4: 88:4f:44:69:4b:66:6d:b4:93:ac:63:36:44:2f:7e: fb:aa:35:b7:5d:bf:87:8d:94:47:fd:ee:af:e2:02: 48:20:27:bb:a2:e8:33:fe:19:50:21:4c:b4:8e:7f: d8:2d:31:fd:2f:79:9e:29:ca:c0:36:fa:f5:eb:8a: 78:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:76:87:94:00:21:15:94:BD:37:C5:9E:82:7B:12:9C:F0:EF:44:D2 X509v3 Authority Key Identifier: keyid:AA:48:D0:B5:7E:08:5C:D9:40:DB:A1:79:1D:AA:58:73:CC:19:C7:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/qkjQtX4IXNlA26F5HapYc8wZx_4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkjQtX4IXNlA26F5HapYc8wZx_4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA582/974FCAA0A11911EC8C4FFA83C4F9AE02/9924B750A1AF11EC9A73D814C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.183.140.0/23 IPv6: 2001:df0:87c0::/48 Signature Algorithm: sha256WithRSAEncryption 42:00:52:51:d9:8b:57:06:bd:06:be:90:fb:17:47:df:5e:b3: 49:1d:59:0d:91:e5:24:42:6a:f8:dc:6a:5f:ba:b0:68:df:01: 99:af:c5:2f:7f:38:d6:34:5b:d6:28:73:23:25:77:e0:15:b6: fa:02:41:1f:1d:24:52:ed:30:90:bf:a8:8b:58:78:c8:3c:0a: 94:01:a1:13:4f:64:6f:a3:e7:9f:4d:ba:d2:1b:29:f6:27:cb: 33:6a:4b:bf:4f:6c:a0:8f:88:1e:e4:69:f4:d9:7b:36:d7:a4: 33:74:1b:ed:80:b0:05:7e:45:70:cb:f9:ca:ad:68:c6:e1:f9: f1:05:72:56:8b:36:76:09:27:8a:67:9d:a4:7d:fa:72:d4:cf: d7:1d:c8:bd:bd:80:f5:16:f8:ff:14:8c:c6:89:d1:2c:b1:45: c2:25:09:01:c6:f5:35:e0:70:3e:db:98:29:5a:75:21:f1:6f: b1:9b:94:f0:33:ff:34:06:cf:16:4e:23:2c:57:e4:b9:2a:84: f7:eb:8d:b4:d6:89:59:32:2b:cd:a6:ae:47:22:70:a0:89:fc: 84:86:a2:a5:46:5b:31:b2:c4:4f:9c:d8:e2:0b:81:9f:36:09: 28:b9:74:e7:09:2d:80:a2:7a:ca:7d:0d:12:c8:ba:a3:1a:8d: c1:a3:f3:a7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE1ODIxMTAvBgNVBAUTKEFBNDhEMEI1N0UwODVDRDk0MERCQTE3OTFEQUE1ODcz Q0MxOUM3RkUwHhcNMjUwNTA1MDAzNjMwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE4MDgwZC1lZWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWq+vRtP1ZIftXzU61dq6vgFfw0M4LvUjMdOA5xlUirtmLcNLqzZS/d5Sgmy bTZJ/NkFLhAHQPx+QgYORYo+dk7zUn2zms8BTTMbI7tVR71QSnH/xoUjfK6FtFff 3sQIJiq5Ks8nZVvgvNoPPetz4864RFpIBa9DG1WHSofnFPYQOvfAefoevJ1zmHTf 4rx4kOgvsd29shZOnK9b/YODlh+89E2bV7jfxATNra3ayCXPxjhY7IeKJno2WgE9 kFTLFfSIT0RpS2ZttJOsYzZEL377qjW3Xb+HjZRH/e6v4gJIICe7ougz/hlQIUy0 jn/YLTH9L3meKcrANvr164p4RQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFF52h5QA IRWUvTfFnoJ7Epzw70TSMB8GA1UdIwQYMBaAFKpI0LV+CFzZQNuheR2qWHPMGcf+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTU4Mi85NzRGQ0FBMEEx MTkxMUVDOEM0RkZBODNDNEY5QUUwMi9xa2pRdFg0SVhObEEyNkY1SGFwWWM4d1p4 XzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FralF0WDRJWE5sQTI2RjVIYXBZYzh3WnhfNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE1ODIvOTc0RkNBQTBBMTE5MTFFQzhDNEZGQTgzQzRGOUFFMDIvOTkyNEI3NTBB MUFGMTFFQzlBNzNEODE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnt4wwDwQCAAIwCQMHACABDfCHwDANBgkqhkiG9w0BAQsF AAOCAQEAQgBSUdmLVwa9Br6Q+xdH316zSR1ZDZHlJEJq+NxqX7qwaN8Bma/FL384 1jRb1ihzIyV34BW2+gJBHx0kUu0wkL+oi1h4yDwKlAGhE09kb6Pnn0260hsp9ifL M2pLv09soI+IHuRp9Nl7NtekM3Qb7YCwBX5FcMv5yq1oxuH58QVyVos2dgknimed pH36ctTP1x3Ivb2A9Rb4/xSMxonRLLFFwiUJAcb1NeBwPtuYKVp1IfFvsZuU8DP/ NAbPFk4jLFfkuSqE9+uNtNaJWTIrzaauRyJwoIn8hIaipUZbMbLET5zY4guBnzYJ KLl05wktgKJ6yn0NEsi6oxqNwaPzpw== -----END CERTIFICATE-----Generated at Fri May 16 09:35:40 2025 by rpki-client