$ rpki-client -vvf rpki.apnic.net/member_repository/A91128AE/53EE318EEDAD11ED9166FA53C4F9AE02/12671028EDB211EDBD7A5059C4F9AE02.roa File: 12671028EDB211EDBD7A5059C4F9AE02.roa (raw, json) Hash identifier: FKUHaqZZEJBrBkK8hpIMOv/N2yBjIEErQmwC89po6oc= Subject key identifier: FC:C3:05:2C:0F:00:BA:1A:06:AF:99:FA:34:12:79:09:2D:38:7C:80 Certificate issuer: /CN=A91128AE/serialNumber=7E3B9BDDA50E8DA7D50FF3A7C3329CF483D517E9 Certificate serial: 0171 Authority key identifier: 7E:3B:9B:DD:A5:0E:8D:A7:D5:0F:F3:A7:C3:32:9C:F4:83:D5:17:E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjub3aUOjafVD_OnwzKc9IPVF-k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91128AE/53EE318EEDAD11ED9166FA53C4F9AE02/12671028EDB211EDBD7A5059C4F9AE02.roa Signing time: Thu 03 Apr 2025 03:31:01 +0000 ROA not before: Thu 03 Apr 2025 03:31:01 +0000 ROA not after: Fri 01 Aug 2025 00:00:00 +0000 asID: 137498 IP address blocks: 103.82.200.0/23 maxlen: 23 103.82.200.0/24 maxlen: 24 103.82.201.0/24 maxlen: 24 2001:df1:ebc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91128AE/53EE318EEDAD11ED9166FA53C4F9AE02/fjub3aUOjafVD_OnwzKc9IPVF-k.crl rsync://rpki.apnic.net/member_repository/A91128AE/53EE318EEDAD11ED9166FA53C4F9AE02/fjub3aUOjafVD_OnwzKc9IPVF-k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjub3aUOjafVD_OnwzKc9IPVF-k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 02:51:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91128AE Validity Not Before: Apr 3 03:31:01 2025 GMT Not After : Aug 1 00:00:00 2025 GMT Subject: CN=67ee00f4-395b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:65:74:ac:e1:60:55:33:f2:ea:4d:fa:bf:2c: 2a:75:b0:77:75:ad:99:1c:79:b3:68:de:8f:3d:09: 34:ee:b8:03:7e:c0:b0:24:46:29:6a:c9:c2:22:ab: b3:82:06:3c:9d:1c:18:0c:12:78:de:62:ca:13:e8: 2c:aa:b5:dd:e8:3f:b3:02:cc:85:ff:67:13:e5:ad: ad:14:62:61:55:bb:e1:04:94:66:95:77:b9:00:80: cc:04:51:3c:da:ba:e4:62:ea:da:db:57:45:64:e2: 97:4b:9b:a5:73:69:58:73:d5:38:4f:cb:db:74:d5: 12:13:dc:27:4e:9c:67:a4:22:0b:3e:7f:42:0d:58: fe:93:2d:d2:d4:81:73:6b:02:c7:eb:33:fc:5e:6f: 9f:a5:46:62:74:0e:b6:08:08:36:16:75:ce:80:7c: 06:30:3f:b4:54:6b:e0:9c:bd:9e:ec:76:84:b1:3d: 1b:af:1b:f2:ee:74:57:1e:f0:c2:db:3a:ec:51:cb: 4a:59:fe:f0:e8:9d:71:17:e7:ad:f6:69:5b:d1:0c: 8e:62:e4:08:a4:74:b1:f2:a9:b5:51:36:fb:bd:ed: 07:e0:3b:3b:22:f7:7b:9d:b8:1e:51:73:f8:2b:93: 82:6f:10:3e:cb:6b:b9:6d:5c:f3:cc:2d:b6:3f:4c: 2d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:C3:05:2C:0F:00:BA:1A:06:AF:99:FA:34:12:79:09:2D:38:7C:80 X509v3 Authority Key Identifier: keyid:7E:3B:9B:DD:A5:0E:8D:A7:D5:0F:F3:A7:C3:32:9C:F4:83:D5:17:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91128AE/53EE318EEDAD11ED9166FA53C4F9AE02/fjub3aUOjafVD_OnwzKc9IPVF-k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjub3aUOjafVD_OnwzKc9IPVF-k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91128AE/53EE318EEDAD11ED9166FA53C4F9AE02/12671028EDB211EDBD7A5059C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.200.0/23 IPv6: 2001:df1:ebc0::/48 Signature Algorithm: sha256WithRSAEncryption 79:54:fd:9b:29:ca:3e:b0:d1:13:fa:24:98:2f:84:63:0b:18: 79:78:c9:af:5f:85:ea:eb:e6:9e:f6:0b:bb:cc:75:50:86:22: 35:96:31:2c:c4:5a:e0:86:d1:e5:be:8b:25:fb:c3:d7:4a:54: b3:04:91:7f:c4:e6:91:55:1c:d9:b5:e3:e9:50:35:72:db:b0: ab:7c:5d:08:5a:a6:53:a3:b1:7b:50:1d:ae:8e:29:dd:a0:af: 50:38:56:39:47:99:1f:cf:00:10:88:ec:85:b7:62:fe:06:55: 32:bb:4d:37:97:08:87:3c:40:9d:ec:00:fd:e1:6c:9f:68:03: 54:3d:ab:87:81:76:c5:2e:56:ad:6c:e1:4e:99:f4:1f:fe:05: a9:6a:b6:f8:18:93:93:e2:fe:25:81:3e:40:34:a6:e2:be:2c: 73:b3:cb:54:2e:55:bd:cc:79:75:05:2c:ea:41:41:b6:a9:69: dd:5e:03:15:55:5b:22:6a:e2:92:a7:6b:5e:4c:62:d6:6a:ce: 44:92:82:2e:17:7e:1b:44:5c:e4:86:e0:72:96:cd:eb:8b:58: 62:6f:3e:32:fa:97:1a:74:fb:59:1d:92:66:d0:ca:55:b7:8f: f8:dd:d3:70:6f:cd:61:04:f1:5f:7b:35:d3:4e:a3:03:50:bb: 6c:0e:05:a6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4QUUxMTAvBgNVBAUTKDdFM0I5QkREQTUwRThEQTdENTBGRjNBN0MzMzI5Q0Y0 ODNENTE3RTkwHhcNMjUwNDAzMDMzMTAxWhcNMjUwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VlMDBmNC0zOTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWV0rOFgVTPy6k36vywqdbB3da2ZHHmzaN6PPQk07rgDfsCwJEYpasnCIquz ggY8nRwYDBJ43mLKE+gsqrXd6D+zAsyF/2cT5a2tFGJhVbvhBJRmlXe5AIDMBFE8 2rrkYura21dFZOKXS5ulc2lYc9U4T8vbdNUSE9wnTpxnpCILPn9CDVj+ky3S1IFz awLH6zP8Xm+fpUZidA62CAg2FnXOgHwGMD+0VGvgnL2e7HaEsT0brxvy7nRXHvDC 2zrsUctKWf7w6J1xF+et9mlb0QyOYuQIpHSx8qm1UTb7ve0H4Ds7Ivd7nbgeUXP4 K5OCbxA+y2u5bVzzzC22P0wtOQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPzDBSwP ALoaBq+Z+jQSeQktOHyAMB8GA1UdIwQYMBaAFH47m92lDo2n1Q/zp8MynPSD1Rfp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjhBRS81M0VFMzE4RUVE QUQxMUVEOTE2NkZBNTNDNEY5QUUwMi9manViM2FVT2phZlZEX09ud3pLYzlJUFZG LWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZqdWIzYVVPamFmVkRfT253ektjOUlQVkYtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI4QUUvNTNFRTMxOEVFREFEMTFFRDkxNjZGQTUzQzRGOUFFMDIvMTI2NzEwMjhF REIyMTFFREJEN0E1MDU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnUsgwDwQCAAIwCQMHACABDfHrwDANBgkqhkiG9w0BAQsF AAOCAQEAeVT9mynKPrDRE/okmC+EYwsYeXjJr1+F6uvmnvYLu8x1UIYiNZYxLMRa 4IbR5b6LJfvD10pUswSRf8TmkVUc2bXj6VA1ctuwq3xdCFqmU6Oxe1Adro4p3aCv UDhWOUeZH88AEIjshbdi/gZVMrtNN5cIhzxAnewA/eFsn2gDVD2rh4F2xS5WrWzh Tpn0H/4FqWq2+BiTk+L+JYE+QDSm4r4sc7PLVC5Vvcx5dQUs6kFBtqlp3V4DFVVb ImrikqdrXkxi1mrORJKCLhd+G0Rc5IbgcpbN64tYYm8+MvqXGnT7WR2SZtDKVbeP +N3TcG/NYQTxX3s1006jA1C7bA4Fpg== -----END CERTIFICATE-----Generated at Fri Apr 11 23:34:35 2025 by rpki-client