$ rpki-client -vvf rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/E3D745E4049C11F0A6EDC22CC4F9AE02.roa File: E3D745E4049C11F0A6EDC22CC4F9AE02.roa (raw, json) Hash identifier: nsBjNc1I4U9F/2q4LQa6FHFw5tY5ObhXTfA8ANwdKOU= Subject key identifier: 27:F8:70:E2:65:8F:A8:DC:AC:64:6C:26:B7:46:92:48:C4:C9:A8:AB Certificate issuer: /CN=A91897B3/serialNumber=9BE292E7D16D4E8E816169C3B502EBE4EF45C163 Certificate serial: 057F Authority key identifier: 9B:E2:92:E7:D1:6D:4E:8E:81:61:69:C3:B5:02:EB:E4:EF:45:C1:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m-KS59FtTo6BYWnDtQLr5O9FwWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/E3D745E4049C11F0A6EDC22CC4F9AE02.roa Signing time: Wed 19 Mar 2025 08:33:53 +0000 ROA not before: Wed 19 Mar 2025 08:33:53 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 133929 IP address blocks: 103.165.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.crl rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m-KS59FtTo6BYWnDtQLr5O9FwWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:23:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1407 (0x57f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91897B3 Validity Not Before: Mar 19 08:33:53 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67da8171-9316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:d0:03:74:51:86:ea:d6:94:87:50:d9:5d:fb: 91:9b:6a:29:e7:06:5f:57:16:e5:bb:b2:82:51:43: e4:da:b1:fa:2a:d6:b6:ed:00:8a:2d:75:6d:3a:e8: 81:7a:2e:5e:18:b9:09:7c:83:9b:98:2a:78:88:75: 71:a1:f1:e3:5a:88:23:8d:d1:36:f9:f8:92:3d:fa: 7e:de:73:90:39:a9:4c:e4:47:92:a3:9e:00:89:bc: 25:79:ab:ca:ad:05:49:aa:78:3a:ba:f6:45:be:45: a9:08:1d:95:55:02:fa:23:e4:71:43:b2:9b:11:76: 29:7b:d8:d8:ba:e3:b6:57:60:58:03:95:04:54:35: 76:9b:31:be:6a:c0:7c:3b:c7:99:9b:df:60:24:29: e8:75:9e:74:8a:49:88:ae:0d:1d:aa:1a:89:25:76: ac:95:3b:30:b4:52:51:78:42:89:6a:dd:8d:15:86: a3:07:a5:8d:8c:84:be:57:57:47:a1:6a:df:3b:b5: 9d:90:41:e9:0b:f5:37:74:12:aa:0e:6e:ed:60:a2: 64:05:b3:49:f3:85:1f:cb:03:e3:78:f4:fc:9a:2a: 25:4d:08:a4:7f:6a:75:ec:2a:67:1a:bc:de:09:c5: 4f:f7:50:d9:16:13:ed:5d:f1:75:69:76:94:6a:22: 25:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:F8:70:E2:65:8F:A8:DC:AC:64:6C:26:B7:46:92:48:C4:C9:A8:AB X509v3 Authority Key Identifier: keyid:9B:E2:92:E7:D1:6D:4E:8E:81:61:69:C3:B5:02:EB:E4:EF:45:C1:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m-KS59FtTo6BYWnDtQLr5O9FwWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/E3D745E4049C11F0A6EDC22CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.165.80.0/24 Signature Algorithm: sha256WithRSAEncryption 10:1c:db:95:33:ec:64:18:a2:b5:3b:70:31:3f:69:59:7a:a1: bb:70:9c:a0:3e:cd:3e:11:49:a3:58:f9:2d:0b:de:3d:f3:26: 1d:3e:70:e6:07:8f:8c:e2:d3:8b:71:c0:2c:0b:35:fd:34:b2: 4e:28:1c:58:07:bd:aa:5a:24:5d:d3:61:c9:fa:3c:72:ac:b3: b0:87:a0:c0:fd:08:ef:19:51:54:b9:92:77:67:04:7a:42:57: 19:95:7e:8e:19:95:27:bb:82:6e:35:58:5f:26:a0:ac:5a:cd: da:74:b9:3c:17:1e:21:3a:17:55:e5:fd:22:46:67:34:ce:4b: 3e:0b:c9:f4:84:80:dd:ea:97:3c:1f:aa:ea:9f:36:35:03:6f: 44:9b:d7:b5:e0:fe:cd:b8:50:b4:be:b3:f9:b3:f9:38:c4:5f: 22:46:21:19:9a:bb:54:3a:84:ee:90:86:00:59:64:80:49:81: 08:49:a3:04:b3:bb:8c:c6:f5:95:65:a1:c9:3b:1c:41:8f:5f: 81:01:4b:8b:53:0a:28:25:85:6e:b5:41:95:bc:07:33:03:c3: c8:45:61:da:86:6c:41:a6:0b:74:89:0d:fd:84:db:f2:3d:11: 0a:ec:54:46:36:63:a8:76:7a:4d:b7:dc:72:93:81:20:4d:ab: 8b:24:ae:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk3QjMxMTAvBgNVBAUTKDlCRTI5MkU3RDE2RDRFOEU4MTYxNjlDM0I1MDJFQkU0 RUY0NUMxNjMwHhcNMjUwMzE5MDgzMzUzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RhODE3MS05MzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7dADdFGG6taUh1DZXfuRm2op5wZfVxblu7KCUUPk2rH6Kta27QCKLXVtOuiB ei5eGLkJfIObmCp4iHVxofHjWogjjdE2+fiSPfp+3nOQOalM5EeSo54AibwleavK rQVJqng6uvZFvkWpCB2VVQL6I+RxQ7KbEXYpe9jYuuO2V2BYA5UEVDV2mzG+asB8 O8eZm99gJCnodZ50ikmIrg0dqhqJJXaslTswtFJReEKJat2NFYajB6WNjIS+V1dH oWrfO7WdkEHpC/U3dBKqDm7tYKJkBbNJ84UfywPjePT8miolTQikf2p17CpnGrze CcVP91DZFhPtXfF1aXaUaiIlJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCf4cOJl j6jcrGRsJrdGkkjEyairMB8GA1UdIwQYMBaAFJvikufRbU6OgWFpw7UC6+TvRcFj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTdCMy82NzIxMkRGRUNF QTgxMUVCOUE5NjlFMEZDNEY5QUUwMi9tLUtTNTlGdFRvNkJZV25EdFFMcjVPOUZ3 V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20tS1M1OUZ0VG82QllXbkR0UUxyNU85RndXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODk3QjMvNjcyMTJERkVDRUE4MTFFQjlBOTY5RTBGQzRGOUFFMDIvRTNENzQ1RTQw NDlDMTFGMEE2RURDMjJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnpVAwDQYJKoZIhvcNAQELBQADggEBABAc25Uz7GQYorU7 cDE/aVl6obtwnKA+zT4RSaNY+S0L3j3zJh0+cOYHj4zi04txwCwLNf00sk4oHFgH vapaJF3TYcn6PHKss7CHoMD9CO8ZUVS5kndnBHpCVxmVfo4ZlSe7gm41WF8moKxa zdp0uTwXHiE6F1Xl/SJGZzTOSz4LyfSEgN3qlzwfquqfNjUDb0Sb17Xg/s24ULS+ s/mz+TjEXyJGIRmau1Q6hO6QhgBZZIBJgQhJowSzu4zG9ZVlock7HEGPX4EBS4tT CiglhW61QZW8BzMDw8hFYdqGbEGmC3SJDf2E2/I9EQrsVEY2Y6h2ek233HKTgSBN q4skrho= -----END CERTIFICATE-----Generated at Sat Apr 5 12:54:12 2025 by rpki-client