$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE179/5C2004E09FDB11EA8462BD5DC4F9AE02/805149989FDE11EAB02CF366C4F9AE02.roa File: 805149989FDE11EAB02CF366C4F9AE02.roa (raw, json) Hash identifier: F/lUPKZHFm1sIOo7h73Lh8+bzw8LraoeACifeBa4ogU= Subject key identifier: DC:CE:81:8F:6F:AB:49:DE:4E:7C:17:60:08:F6:5B:FF:B0:84:61:A1 Certificate issuer: /CN=A91FE179/serialNumber=CA165734C11CD70BB789A1D2C3A0E94EDB942D4A Certificate serial: 091C Authority key identifier: CA:16:57:34:C1:1C:D7:0B:B7:89:A1:D2:C3:A0:E9:4E:DB:94:2D:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhZXNMEc1wu3iaHSw6DpTtuULUo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE179/5C2004E09FDB11EA8462BD5DC4F9AE02/805149989FDE11EAB02CF366C4F9AE02.roa Signing time: Mon 28 Apr 2025 21:00:13 +0000 ROA not before: Mon 28 Apr 2025 21:00:13 +0000 ROA not after: Thu 28 Aug 2025 00:00:00 +0000 asID: 140094 IP address blocks: 103.148.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE179/5C2004E09FDB11EA8462BD5DC4F9AE02/yhZXNMEc1wu3iaHSw6DpTtuULUo.crl rsync://rpki.apnic.net/member_repository/A91FE179/5C2004E09FDB11EA8462BD5DC4F9AE02/yhZXNMEc1wu3iaHSw6DpTtuULUo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhZXNMEc1wu3iaHSw6DpTtuULUo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 20:07:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2332 (0x91c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE179, serialNumber=CA165734C11CD70BB789A1D2C3A0E94EDB942D4A Validity Not Before: Apr 28 21:00:13 2025 GMT Not After : Aug 28 00:00:00 2025 GMT Subject: CN=680fec5d-3303 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d3:a3:19:30:c7:d3:36:c4:4a:b4:55:11:cf: e2:46:cf:16:77:9d:61:d7:7a:34:97:4c:76:51:73: 95:a4:fe:42:70:0d:f5:7d:3e:07:76:ac:8b:04:31: d9:c8:8d:33:46:ab:6f:d5:cb:20:17:84:df:4a:f3: be:db:8c:10:64:eb:b3:19:78:3c:0e:96:7c:8e:c7: b5:3c:e8:e7:f0:3e:f5:91:d6:a7:cf:30:60:75:54: 09:49:47:de:5c:af:02:7a:16:9a:43:21:b5:be:7a: 8c:b1:a6:3c:24:3b:68:14:54:0f:f5:ed:6d:db:be: e0:a6:8c:dd:8d:9c:4f:22:04:18:46:c8:a3:21:bd: bf:d5:fa:58:64:dd:ab:9c:56:bd:d4:42:96:f7:fc: d9:81:94:5b:d1:80:91:81:57:d9:c5:7c:6f:b6:33: ee:80:75:96:fb:4a:44:35:2e:b2:b7:3b:ce:27:77: 28:d5:84:98:5f:9d:59:0c:97:dd:2f:50:96:55:9f: c7:a8:c9:b3:18:ad:bf:64:e5:48:41:fc:7b:b3:16: 45:2b:28:0c:c6:d7:44:b6:74:1c:fb:14:c0:f8:92: f2:91:85:3c:4a:94:4f:ab:d2:ca:d8:28:8f:f0:a6: 10:77:8c:0a:25:00:c8:e5:8b:ae:d0:f9:c5:a0:5e: 40:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:CE:81:8F:6F:AB:49:DE:4E:7C:17:60:08:F6:5B:FF:B0:84:61:A1 X509v3 Authority Key Identifier: keyid:CA:16:57:34:C1:1C:D7:0B:B7:89:A1:D2:C3:A0:E9:4E:DB:94:2D:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE179/5C2004E09FDB11EA8462BD5DC4F9AE02/yhZXNMEc1wu3iaHSw6DpTtuULUo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yhZXNMEc1wu3iaHSw6DpTtuULUo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE179/5C2004E09FDB11EA8462BD5DC4F9AE02/805149989FDE11EAB02CF366C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.109.0/24 Signature Algorithm: sha256WithRSAEncryption b6:77:21:57:a6:63:42:e8:d3:b8:fe:69:cb:da:ed:0a:4d:22: 3d:36:5e:27:e3:0b:00:61:f2:f8:9c:2d:8f:cb:19:ca:a7:21: 1d:e3:75:10:da:38:ea:25:c9:f0:1f:40:1f:0b:57:2b:18:b9: 7a:d0:b7:93:e0:42:ee:94:3c:04:b3:36:d4:11:b8:f9:4f:1e: b8:87:0e:18:0a:93:36:76:f6:29:a7:b8:52:a3:6d:c8:62:53: be:1a:14:ff:31:65:27:79:ef:73:32:3d:db:22:20:78:f3:ae: ca:b4:be:d6:07:a9:96:4b:2a:01:b3:e7:96:44:e2:a7:1a:7d: 51:a9:5a:1b:bf:cc:98:03:56:2d:87:d5:75:1d:e4:d5:dc:0a: a4:55:d8:cb:f6:5a:85:84:9f:f1:57:7f:c8:37:08:78:4d:8f: 30:1c:68:ea:12:03:d1:c6:76:10:12:af:5a:3f:90:85:74:3e: ea:4b:b7:e0:45:4e:b0:e9:1a:b3:4c:03:9a:c7:7e:70:bd:cf: 93:58:75:ff:19:3b:bd:00:e9:2a:a7:2f:9e:6a:96:b0:6b:d0: 09:29:7c:94:c9:35:ef:06:26:53:7a:78:2a:e4:95:81:5a:28: 43:1e:e9:55:43:d9:54:7a:a4:a6:92:b0:3a:fc:3a:71:98:d0: c4:4b:cd:c5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCRwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUxNzkxMTAvBgNVBAUTKENBMTY1NzM0QzExQ0Q3MEJCNzg5QTFEMkMzQTBFOTRF REI5NDJENEEwHhcNMjUwNDI4MjEwMDEzWhcNMjUwODI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODBmZWM1ZC0zMzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoNOjGTDH0zbESrRVEc/iRs8Wd51h13o0l0x2UXOVpP5CcA31fT4HdqyLBDHZ yI0zRqtv1csgF4TfSvO+24wQZOuzGXg8DpZ8jse1POjn8D71kdanzzBgdVQJSUfe XK8CehaaQyG1vnqMsaY8JDtoFFQP9e1t277gpozdjZxPIgQYRsijIb2/1fpYZN2r nFa91EKW9/zZgZRb0YCRgVfZxXxvtjPugHWW+0pENS6ytzvOJ3co1YSYX51ZDJfd L1CWVZ/HqMmzGK2/ZOVIQfx7sxZFKygMxtdEtnQc+xTA+JLykYU8SpRPq9LK2CiP 8KYQd4wKJQDI5Yuu0PnFoF5A4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFNzOgY9v q0neTnwXYAj2W/+whGGhMB8GA1UdIwQYMBaAFMoWVzTBHNcLt4mh0sOg6U7blC1K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTE3OS81QzIwMDRFMDlG REIxMUVBODQ2MkJENURDNEY5QUUwMi95aFpYTk1FYzF3dTNpYUhTdzZEcFR0dVVM VW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3loWlhOTUVjMXd1M2lhSFN3NkRwVHR1VUxVby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkUxNzkvNUMyMDA0RTA5RkRCMTFFQTg0NjJCRDVEQzRGOUFFMDIvODA1MTQ5OTg5 RkRFMTFFQUIwMkNGMzY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlG0wDQYJKoZIhvcNAQELBQADggEBALZ3IVemY0Lo07j+ acva7QpNIj02XifjCwBh8vicLY/LGcqnIR3jdRDaOOolyfAfQB8LVysYuXrQt5Pg Qu6UPASzNtQRuPlPHriHDhgKkzZ29imnuFKjbchiU74aFP8xZSd573MyPdsiIHjz rsq0vtYHqZZLKgGz55ZE4qcafVGpWhu/zJgDVi2H1XUd5NXcCqRV2Mv2WoWEn/FX f8g3CHhNjzAcaOoSA9HGdhASr1o/kIV0PupLt+BFTrDpGrNMA5rHfnC9z5NYdf8Z O70A6SqnL55qlrBr0AkpfJTJNe8GJlN6eCrklYFaKEMe6VVD2VR6pKaSsDr8OnGY 0MRLzcU= -----END CERTIFICATE-----Generated at Wed May 14 19:52:10 2025 by rpki-client