$ rpki-client -vvf rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/872698A8041B11F0A98AFA39C4F9AE02.roa File: 872698A8041B11F0A98AFA39C4F9AE02.roa (raw, json) Hash identifier: KRihtjgc09Z77Kl0lz0K09YLnot4iNb77HfA1M9eF18= Subject key identifier: 03:21:EF:21:9D:F3:D6:DF:BB:1B:7C:5D:53:DF:A0:1E:EA:CB:86:A3 Certificate issuer: /CN=A91809AD/serialNumber=6D7C226A7DCB85F2F49216B7EBB00D5F03A605C3 Certificate serial: 1360 Authority key identifier: 6D:7C:22:6A:7D:CB:85:F2:F4:92:16:B7:EB:B0:0D:5F:03:A6:05:C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bXwian3LhfL0kha367ANXwOmBcM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/872698A8041B11F0A98AFA39C4F9AE02.roa Signing time: Tue 18 Mar 2025 17:07:53 +0000 ROA not before: Tue 18 Mar 2025 17:07:53 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 58895 IP address blocks: 103.120.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/bXwian3LhfL0kha367ANXwOmBcM.crl rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/bXwian3LhfL0kha367ANXwOmBcM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bXwian3LhfL0kha367ANXwOmBcM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4960 (0x1360) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91809AD Validity Not Before: Mar 18 17:07:53 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67d9a868-4009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0e:0b:42:fa:90:09:a0:51:a6:41:aa:7b:05: ed:91:f3:d4:f4:60:ce:e9:d7:06:e2:de:d1:85:98: c8:9d:ff:2c:7c:e4:e7:72:91:c5:e5:4b:3f:24:0f: 79:57:90:bb:17:a5:d0:41:2a:b4:84:bf:30:f5:7a: a6:84:ce:c1:c8:74:6d:ef:f6:1c:c3:0c:51:b8:ef: d8:3d:ee:dd:22:73:db:70:54:0e:2c:63:21:2e:0c: 47:6b:4d:96:82:cd:8b:76:12:5c:ad:09:1f:3a:86: ad:af:1f:f0:e7:01:5e:7d:8b:5e:74:e9:6b:9e:87: 43:81:e6:6f:f7:b5:a4:f6:a5:15:54:e0:2b:5c:78: 94:92:6b:fd:15:19:f0:b8:9b:99:99:07:82:73:d3: 97:54:62:3c:8d:d7:29:6f:e9:cc:26:65:16:56:75: 98:47:74:96:25:e9:aa:75:ae:5c:af:fd:d2:fc:db: 03:bb:a6:56:9e:20:9e:39:96:5e:bb:c2:9f:9e:1b: 50:bc:28:70:89:ea:73:43:94:83:6a:d7:b5:bf:2c: 56:f0:03:31:09:6f:d5:38:d7:53:ce:36:aa:43:52: c8:87:9c:8a:45:94:6b:8e:0a:fc:d8:e2:9d:a9:69: 5f:b1:0b:60:de:a7:9f:9b:70:33:c5:9b:25:65:08: 72:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:21:EF:21:9D:F3:D6:DF:BB:1B:7C:5D:53:DF:A0:1E:EA:CB:86:A3 X509v3 Authority Key Identifier: keyid:6D:7C:22:6A:7D:CB:85:F2:F4:92:16:B7:EB:B0:0D:5F:03:A6:05:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/bXwian3LhfL0kha367ANXwOmBcM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bXwian3LhfL0kha367ANXwOmBcM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91809AD/656DD26AA76811E89333C725C4F9AE02/872698A8041B11F0A98AFA39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.117.0/24 Signature Algorithm: sha256WithRSAEncryption a5:1f:e2:f4:cc:64:4c:ad:33:4d:f9:7e:7b:74:f3:d8:b4:3f: fc:96:4f:d0:12:db:92:bf:28:fc:1b:49:f0:42:c9:72:ab:de: 49:0d:87:fd:3a:8e:80:c7:d7:1c:39:2e:e2:54:36:05:8b:09: 24:70:23:2a:17:1a:63:0a:9c:2e:96:30:26:ec:27:fd:5f:34: 57:a0:bb:01:f5:3e:4b:43:eb:3e:8c:72:d4:4a:a8:34:b4:0c: a7:50:ee:f7:f7:28:d1:44:02:89:ee:7a:73:23:27:03:90:48: 6b:e0:63:2f:15:76:e2:ee:09:af:65:35:d7:e4:b5:a3:ce:42: 11:ad:3f:fa:6f:2f:44:b0:80:ef:c8:b5:d9:c2:ce:f1:61:1b: 6b:7b:f2:97:35:cb:47:2d:db:f5:16:26:36:fb:81:d7:37:be: ec:e3:ed:e7:05:de:ad:a7:8d:b0:e3:ee:95:32:2e:16:6e:d5: 57:52:17:14:d5:95:c0:a0:18:c3:6b:02:fa:29:1c:d8:c2:6d: 57:2b:c1:8f:96:29:72:38:67:ea:62:d3:8c:a5:41:1f:e7:e0: ff:f4:70:55:54:87:24:a2:52:e8:77:ae:e6:01:29:2a:93:f3: 79:d4:47:7f:61:fc:aa:07:2b:51:65:e3:70:f5:26:93:de:6f: d5:c6:71:0c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICE2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA5QUQxMTAvBgNVBAUTKDZEN0MyMjZBN0RDQjg1RjJGNDkyMTZCN0VCQjAwRDVG MDNBNjA1QzMwHhcNMjUwMzE4MTcwNzUzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q5YTg2OC00MDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvg4LQvqQCaBRpkGqewXtkfPU9GDO6dcG4t7RhZjInf8sfOTncpHF5Us/JA95 V5C7F6XQQSq0hL8w9XqmhM7ByHRt7/YcwwxRuO/YPe7dInPbcFQOLGMhLgxHa02W gs2LdhJcrQkfOoatrx/w5wFefYtedOlrnodDgeZv97Wk9qUVVOArXHiUkmv9FRnw uJuZmQeCc9OXVGI8jdcpb+nMJmUWVnWYR3SWJemqda5cr/3S/NsDu6ZWniCeOZZe u8KfnhtQvChwiepzQ5SDate1vyxW8AMxCW/VONdTzjaqQ1LIh5yKRZRrjgr82OKd qWlfsQtg3qefm3AzxZslZQhysQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAMh7yGd 89bfuxt8XVPfoB7qy4ajMB8GA1UdIwQYMBaAFG18Imp9y4Xy9JIWt+uwDV8DpgXD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDlBRC82NTZERDI2QUE3 NjgxMUU4OTMzM0M3MjVDNEY5QUUwMi9iWHdpYW4zTGhmTDBraGEzNjdBTlh3T21C Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JYd2lhbjNMaGZMMGtoYTM2N0FOWHdPbUJjTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODA5QUQvNjU2REQyNkFBNzY4MTFFODkzMzNDNzI1QzRGOUFFMDIvODcyNjk4QTgw NDFCMTFGMEE5OEFGQTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABneHUwDQYJKoZIhvcNAQELBQADggEBAKUf4vTMZEytM035 fnt089i0P/yWT9AS25K/KPwbSfBCyXKr3kkNh/06joDH1xw5LuJUNgWLCSRwIyoX GmMKnC6WMCbsJ/1fNFeguwH1PktD6z6MctRKqDS0DKdQ7vf3KNFEAonuenMjJwOQ SGvgYy8VduLuCa9lNdfktaPOQhGtP/pvL0SwgO/ItdnCzvFhG2t78pc1y0ct2/UW Jjb7gdc3vuzj7ecF3q2njbDj7pUyLhZu1VdSFxTVlcCgGMNrAvopHNjCbVcrwY+W KXI4Z+pi04ylQR/n4P/0cFVUhySiUuh3ruYBKSqT83nUR39h/KoHK1Fl43D1JpPe b9XGcQw= -----END CERTIFICATE-----Generated at Sun Apr 6 22:15:09 2025 by rpki-client