$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/A5D573E4305A11EB921D6332C4F9AE02.roa File: A5D573E4305A11EB921D6332C4F9AE02.roa (raw, json) Hash identifier: YBEc7X7y2zLa5OdEGOrRlwoEuxYs7fU2wrxzm81YklQ= Subject key identifier: 21:C5:EB:ED:12:67:8D:4A:59:87:7D:3A:04:80:D2:59:C3:16:FE:90 Certificate issuer: /CN=A91F4CFA/serialNumber=5E8CDC01FC09B453749A01EE5239B35EDE24BE6C Certificate serial: 070D Authority key identifier: 5E:8C:DC:01:FC:09:B4:53:74:9A:01:EE:52:39:B3:5E:DE:24:BE:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/A5D573E4305A11EB921D6332C4F9AE02.roa Signing time: Tue 04 Mar 2025 23:10:53 +0000 ROA not before: Tue 04 Mar 2025 23:10:53 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136388 IP address blocks: 103.86.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.crl rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 21:51:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1805 (0x70d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4CFA, serialNumber=5E8CDC01FC09B453749A01EE5239B35EDE24BE6C Validity Not Before: Mar 4 23:10:53 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c7887d-dc38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:e9:7d:cb:8a:0b:5e:57:1b:0a:a4:26:ab:4f: 9c:68:07:1f:33:31:6f:69:c2:13:9a:ec:26:b1:86: ac:c9:15:d0:0f:69:fe:f0:d2:f4:cd:b4:63:89:be: 30:cb:23:f5:c7:b6:f6:35:5d:bb:9e:20:e0:0d:d1: 05:bf:65:18:c4:eb:a4:3d:9e:40:9c:cc:ee:82:7e: 3b:9d:6e:74:4a:4f:3c:dc:b9:df:ec:67:b3:83:84: a6:c6:5c:54:99:d9:20:9c:cd:66:73:a6:a0:cd:01: 40:ff:4e:43:25:27:3f:ba:49:7c:86:65:64:2e:86: 61:e9:2c:cd:49:8f:8b:e6:0f:30:2c:8a:a4:4f:bd: c4:f5:5f:9f:fd:b4:ce:bd:0f:aa:fc:a4:bf:81:39: e8:25:3a:e4:83:36:14:5c:6a:3d:c1:d0:b8:51:a0: 6e:1e:f2:89:3c:7c:10:98:aa:6e:9a:dd:37:4a:6c: 1e:20:7e:d6:16:50:f6:9e:d9:b9:39:3c:e8:5f:38: d6:2f:ed:3b:01:8a:73:3a:e9:ba:18:f9:c7:59:73: 23:0a:a3:39:cc:1c:65:73:38:00:38:b1:0c:2b:cc: ee:56:d0:45:ae:90:81:75:d2:c0:ff:ee:3c:49:56: 81:ca:49:53:ba:0d:b2:7a:fe:c9:9c:86:e0:bf:69: 45:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:C5:EB:ED:12:67:8D:4A:59:87:7D:3A:04:80:D2:59:C3:16:FE:90 X509v3 Authority Key Identifier: keyid:5E:8C:DC:01:FC:09:B4:53:74:9A:01:EE:52:39:B3:5E:DE:24:BE:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/XozcAfwJtFN0mgHuUjmzXt4kvmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XozcAfwJtFN0mgHuUjmzXt4kvmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4CFA/1C2FAB2E305911EBB835C130C4F9AE02/A5D573E4305A11EB921D6332C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.86.92.0/24 Signature Algorithm: sha256WithRSAEncryption 85:0c:73:84:69:86:d3:9d:c6:01:28:21:e9:7c:cd:29:0d:f1: ab:b9:83:7d:4d:1a:41:0d:50:76:93:41:e9:c6:b4:24:ef:61: ba:4c:4b:95:7d:9a:fe:8b:31:fb:35:9b:d2:fa:df:06:d9:b7: f6:2c:ae:11:2d:64:29:18:15:9a:df:53:a8:a7:c6:ea:54:c0: e6:9d:38:c3:73:a4:38:f3:c2:a1:f7:24:49:ad:f2:20:c3:bb: 72:a3:c2:f6:22:23:e6:99:94:7f:fc:e6:29:97:da:ce:29:4c: 59:fa:b0:91:a0:1b:d3:3f:64:5f:89:ae:8e:08:90:49:22:0d: a1:6c:71:4c:b5:2e:d7:b4:6e:b3:87:a9:0a:2c:0a:ed:09:88: ff:b4:d6:ec:82:b3:78:67:46:41:a6:19:3b:55:65:5b:b0:03: 61:0b:74:be:13:4f:21:52:b2:6e:23:e2:fb:a9:98:0a:3b:88: 97:28:af:cb:00:1a:e0:b9:5b:d4:27:62:f7:26:0d:ac:c5:9f: f6:19:80:bd:22:2e:52:1c:06:56:0f:6e:01:d9:76:4b:ba:be: fc:16:36:f3:84:22:59:a4:42:5f:f8:43:d3:a1:40:b8:0c:93: 2f:7c:b5:36:7e:fa:f6:21:5e:d2:9c:bf:94:8f:79:62:04:f2: df:36:f4:14 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRDRkExMTAvBgNVBAUTKDVFOENEQzAxRkMwOUI0NTM3NDlBMDFFRTUyMzlCMzVF REUyNEJFNkMwHhcNMjUwMzA0MjMxMDUzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2M3ODg3ZC1kYzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA++l9y4oLXlcbCqQmq0+caAcfMzFvacITmuwmsYasyRXQD2n+8NL0zbRjib4w yyP1x7b2NV27niDgDdEFv2UYxOukPZ5AnMzugn47nW50Sk883Lnf7Gezg4SmxlxU mdkgnM1mc6agzQFA/05DJSc/ukl8hmVkLoZh6SzNSY+L5g8wLIqkT73E9V+f/bTO vQ+q/KS/gTnoJTrkgzYUXGo9wdC4UaBuHvKJPHwQmKpumt03SmweIH7WFlD2ntm5 OTzoXzjWL+07AYpzOum6GPnHWXMjCqM5zBxlczgAOLEMK8zuVtBFrpCBddLA/+48 SVaByklTug2yev7JnIbgv2lFWQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCHF6+0S Z41KWYd9OgSA0lnDFv6QMB8GA1UdIwQYMBaAFF6M3AH8CbRTdJoB7lI5s17eJL5s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNENGQS8xQzJGQUIyRTMw NTkxMUVCQjgzNUMxMzBDNEY5QUUwMi9Yb3pjQWZ3SnRGTjBtZ0h1VWptelh0NGt2 bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hvemNBZndKdEZOMG1nSHVVam16WHQ0a3Ztdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjRDRkEvMUMyRkFCMkUzMDU5MTFFQkI4MzVDMTMwQzRGOUFFMDIvQTVENTczRTQz MDVBMTFFQjkyMUQ2MzMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnVlwwDQYJKoZIhvcNAQELBQADggEBAIUMc4RphtOdxgEo Iel8zSkN8au5g31NGkENUHaTQenGtCTvYbpMS5V9mv6LMfs1m9L63wbZt/YsrhEt ZCkYFZrfU6inxupUwOadOMNzpDjzwqH3JEmt8iDDu3KjwvYiI+aZlH/85imX2s4p TFn6sJGgG9M/ZF+Jro4IkEkiDaFscUy1Lte0brOHqQosCu0JiP+01uyCs3hnRkGm GTtVZVuwA2ELdL4TTyFSsm4j4vupmAo7iJcor8sAGuC5W9QnYvcmDazFn/YZgL0i LlIcBlYPbgHZdku6vvwWNvOEIlmkQl/4Q9OhQLgMky98tTZ++vYhXtKcv5SPeWIE 8t829BQ= -----END CERTIFICATE-----Generated at Fri May 16 22:31:10 2025 by rpki-client