$ rpki-client -vvf rpki.apnic.net/member_repository/A91881D5/665DB7C6A7C011EF98BA5E2AC4F9AE02/0C8BE222C89F11EF972B8B0FC4F9AE02.roa File: 0C8BE222C89F11EF972B8B0FC4F9AE02.roa (raw, json) Hash identifier: R1ZRqn0ylt//iP3Dpq4PDjSTmlLC/ZvrxfTWyncyjuk= Subject key identifier: 0E:66:EA:32:6A:F0:91:62:78:BD:81:32:3B:92:B7:65:2D:3B:6A:7B Certificate issuer: /CN=A91881D5/serialNumber=5344D6BB37EA0CC391D124207AD995FCD77B9E95 Certificate serial: 3D Authority key identifier: 53:44:D6:BB:37:EA:0C:C3:91:D1:24:20:7A:D9:95:FC:D7:7B:9E:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U0TWuzfqDMOR0SQgetmV_Nd7npU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91881D5/665DB7C6A7C011EF98BA5E2AC4F9AE02/0C8BE222C89F11EF972B8B0FC4F9AE02.roa Signing time: Thu 27 Feb 2025 09:01:27 +0000 ROA not before: Thu 27 Feb 2025 09:01:27 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 135326 IP address blocks: 103.209.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91881D5/665DB7C6A7C011EF98BA5E2AC4F9AE02/U0TWuzfqDMOR0SQgetmV_Nd7npU.crl rsync://rpki.apnic.net/member_repository/A91881D5/665DB7C6A7C011EF98BA5E2AC4F9AE02/U0TWuzfqDMOR0SQgetmV_Nd7npU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U0TWuzfqDMOR0SQgetmV_Nd7npU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91881D5 Validity Not Before: Feb 27 09:01:27 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c029e7-eb5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:5c:5d:d4:f2:a6:ed:2f:a6:ab:71:37:11:71: 1d:41:0e:88:0b:3b:a5:f5:7e:76:40:cb:ef:1f:75: 24:b3:e7:48:79:ce:52:69:d1:33:31:b0:1e:c6:34: 47:a0:e4:d0:98:63:3b:b7:e8:e1:e8:9c:d6:bd:ee: f7:29:50:83:f9:53:9c:94:71:cb:72:e8:cb:39:83: f6:53:d5:8b:43:30:c2:29:c3:ec:01:57:17:bb:d9: fb:6d:cd:a9:35:db:23:e2:85:6a:b1:96:33:7a:55: 42:9d:54:64:05:2a:ea:8f:98:6b:fc:9e:60:70:d8: c3:c5:3d:2a:dd:f7:51:fe:56:54:5d:8b:68:fe:56: de:d6:7f:fa:28:bc:6a:31:41:3d:ea:2c:b9:bd:32: 66:c5:c7:30:94:ea:44:38:9c:62:80:9d:10:fb:5c: 25:94:11:ab:49:47:d0:64:81:60:67:ca:7b:26:e0: 53:2d:64:8e:61:bf:d8:6b:79:2a:c5:c0:83:f6:39: cb:4b:eb:6e:e1:60:bb:f5:95:3b:f7:7a:5e:3b:22: 38:68:ec:42:7e:31:e2:40:63:5b:a7:e8:0c:13:fa: 66:a8:4e:d4:f9:76:38:a4:38:e8:4c:1f:12:65:42: 44:60:fc:d1:6a:8d:7c:2b:69:4b:54:91:c9:fa:05: 8e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:66:EA:32:6A:F0:91:62:78:BD:81:32:3B:92:B7:65:2D:3B:6A:7B X509v3 Authority Key Identifier: keyid:53:44:D6:BB:37:EA:0C:C3:91:D1:24:20:7A:D9:95:FC:D7:7B:9E:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91881D5/665DB7C6A7C011EF98BA5E2AC4F9AE02/U0TWuzfqDMOR0SQgetmV_Nd7npU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U0TWuzfqDMOR0SQgetmV_Nd7npU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91881D5/665DB7C6A7C011EF98BA5E2AC4F9AE02/0C8BE222C89F11EF972B8B0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.2.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:c3:26:69:af:7a:8c:8d:4e:75:b8:c7:2f:d0:52:98:3c:79: 60:96:71:d4:52:3e:24:e8:dc:21:05:1e:b8:25:fb:5e:b6:c2: 46:7c:0c:5d:67:04:b6:8a:26:03:c8:9e:45:d6:12:86:6c:1a: 6f:34:11:61:6e:24:3f:52:80:c0:cd:3c:0c:60:29:93:ed:72: 0c:e9:93:f1:d9:80:d7:93:a4:63:d6:09:59:b7:1a:0c:b0:7d: 07:5b:40:71:b6:c6:7e:56:14:91:6d:6a:4b:b1:80:02:7b:35: d2:29:5c:63:1d:33:fa:c8:c9:52:e0:af:d3:ac:e4:0a:08:d9: b9:4e:b2:96:7f:c1:7a:1d:99:23:f1:68:7e:b2:ef:dc:30:23: 3e:38:a2:95:c1:a2:3c:e2:0c:d1:c8:6e:4b:5e:15:d9:27:44: fa:50:f6:2d:e7:4c:3e:ac:2f:08:a5:a7:a3:0f:8b:47:d4:f6: c5:4d:c4:33:3c:6a:be:3e:c5:97:91:7e:c3:e8:20:d9:ef:48: 78:d0:12:66:78:93:4c:bd:a3:9a:9e:8c:f5:2b:1d:19:a1:d0: 48:5f:e7:64:66:68:f3:a8:57:06:be:4e:a8:9a:07:6c:83:97: 36:23:fa:17:8c:97:6b:bf:d5:3b:b8:d4:bd:ed:69:9b:ef:40: 2d:e9:b8:48 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBPTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 ODFENTExMC8GA1UEBRMoNTM0NEQ2QkIzN0VBMENDMzkxRDEyNDIwN0FEOTk1RkNE NzdCOUU5NTAeFw0yNTAyMjcwOTAxMjdaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YzAyOWU3LWViNWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsXF3U8qbtL6arcTcRcR1BDogLO6X1fnZAy+8fdSSz50h5zlJp0TMxsB7GNEeg 5NCYYzu36OHonNa97vcpUIP5U5yUccty6Ms5g/ZT1YtDMMIpw+wBVxe72fttzak1 2yPihWqxljN6VUKdVGQFKuqPmGv8nmBw2MPFPSrd91H+VlRdi2j+Vt7Wf/oovGox QT3qLLm9MmbFxzCU6kQ4nGKAnRD7XCWUEatJR9BkgWBnynsm4FMtZI5hv9hreSrF wIP2OctL627hYLv1lTv3el47Ijho7EJ+MeJAY1un6AwT+maoTtT5djikOOhMHxJl QkRg/NFqjXwraUtUkcn6BY51AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUDmbqMmrw kWJ4vYEyO5K3ZS07answHwYDVR0jBBgwFoAUU0TWuzfqDMOR0SQgetmV/Nd7npUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4MUQ1LzY2NURCN0M2QTdD MDExRUY5OEJBNUUyQUM0RjlBRTAyL1UwVFd1emZxRE1PUjBTUWdldG1WX05kN25w VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVTBUV3V6ZnFETU9SMFNRZ2V0bVZfTmQ3bnBVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 ODFENS82NjVEQjdDNkE3QzAxMUVGOThCQTVFMkFDNEY5QUUwMi8wQzhCRTIyMkM4 OUYxMUVGOTcyQjhCMEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGfRAjANBgkqhkiG9w0BAQsFAAOCAQEAD8Mmaa96jI1OdbjH L9BSmDx5YJZx1FI+JOjcIQUeuCX7XrbCRnwMXWcEtoomA8ieRdYShmwabzQRYW4k P1KAwM08DGApk+1yDOmT8dmA15OkY9YJWbcaDLB9B1tAcbbGflYUkW1qS7GAAns1 0ilcYx0z+sjJUuCv06zkCgjZuU6yln/Beh2ZI/FofrLv3DAjPjiilcGiPOIM0chu S14V2SdE+lD2LedMPqwvCKWnow+LR9T2xU3EMzxqvj7Fl5F+w+gg2e9IeNASZniT TL2jmp6M9SsdGaHQSF/nZGZo86hXBr5OqJoHbIOXNiP6F4yXa7/VO7jUve1pm+9A Lem4SA== -----END CERTIFICATE-----Generated at Sat Apr 5 02:13:28 2025 by rpki-client