$ rpki-client -vvf rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2FFD1298AC5A11EDA8C03215C4F9AE02.roa File: 2FFD1298AC5A11EDA8C03215C4F9AE02.roa (raw, json) Hash identifier: u/KB2mQ4YEKI1MO9/XhoVdCkQH3Wf5L/GvyMuIz+Fjs= Subject key identifier: BA:3C:BB:44:AB:FE:1F:D8:A7:E7:FF:3F:C7:8F:64:7E:81:9E:98:4F Certificate issuer: /CN=A91912DD/serialNumber=DAE7508D11E47228DA1FE0032597BBD29F75890C Certificate serial: 1668 Authority key identifier: DA:E7:50:8D:11:E4:72:28:DA:1F:E0:03:25:97:BB:D2:9F:75:89:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2udQjRHkcijaH-ADJZe70p91iQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2FFD1298AC5A11EDA8C03215C4F9AE02.roa Signing time: Wed 08 Jan 2025 17:04:48 +0000 ROA not before: Wed 08 Jan 2025 17:04:48 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 41281 IP address blocks: 103.81.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2udQjRHkcijaH-ADJZe70p91iQw.crl rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2udQjRHkcijaH-ADJZe70p91iQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2udQjRHkcijaH-ADJZe70p91iQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:46:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5736 (0x1668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91912DD Validity Not Before: Jan 8 17:04:48 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=677eb030-243c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:b0:07:49:18:96:64:71:eb:01:04:cf:b1:59: 1b:66:00:ed:c4:45:c8:2c:02:a6:60:f2:91:ca:a9: 45:6e:e3:03:2c:23:66:61:49:5f:07:a5:44:9d:67: b8:75:80:1c:ad:33:1c:db:0d:bc:83:94:09:73:25: 1e:e8:85:65:60:be:0a:c1:f5:ce:41:5f:b6:dc:e7: 98:d7:ac:d3:27:b3:e3:0e:b3:ba:0b:18:8f:e5:2f: eb:9f:8d:14:ef:75:7c:44:48:67:1c:04:e7:45:c8: 74:04:4d:74:96:6d:0b:33:12:27:17:4a:63:46:6d: 1a:9d:2b:f6:f3:7b:3e:38:d4:de:c8:c6:a0:90:14: 8c:f2:e3:d5:1b:14:f0:a1:c9:64:22:ac:ea:c2:c0: 54:ef:f4:3e:9e:d7:df:87:86:1f:28:46:6a:db:15: 4b:13:b8:54:5b:14:63:33:eb:7f:7e:9f:d7:3d:88: b5:7e:c6:f7:5c:f0:e8:59:51:d6:82:05:f5:56:ba: a2:1b:6e:f0:f8:48:5c:03:f9:b2:ee:f0:0a:c2:b7: b8:bd:17:cf:9b:7a:31:41:6e:a7:18:66:ae:7c:c5: b8:de:bc:9c:9c:80:92:9b:a2:eb:3e:51:95:d2:a7: 2a:49:51:02:5d:49:3e:47:e2:e9:d2:cf:23:c2:7c: 06:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:3C:BB:44:AB:FE:1F:D8:A7:E7:FF:3F:C7:8F:64:7E:81:9E:98:4F X509v3 Authority Key Identifier: keyid:DA:E7:50:8D:11:E4:72:28:DA:1F:E0:03:25:97:BB:D2:9F:75:89:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2udQjRHkcijaH-ADJZe70p91iQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2udQjRHkcijaH-ADJZe70p91iQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2FFD1298AC5A11EDA8C03215C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.81.180.0/24 Signature Algorithm: sha256WithRSAEncryption 89:a7:f4:38:d2:e4:54:b8:15:ab:0d:ca:1b:3d:cc:55:f8:a2: 88:e3:04:57:e2:86:a6:5a:ea:ac:8e:15:6a:00:c4:ab:7b:66: d0:bc:6a:cd:70:c7:be:41:b4:04:d1:09:c7:95:e0:08:de:ac: 39:1a:3f:6c:5b:c6:a0:2b:8f:1b:a2:76:30:a3:67:8d:87:65: 3d:d8:3e:90:9b:4a:44:46:d0:39:2d:4b:b2:9b:93:4b:c2:57: 4c:45:d5:51:e7:f3:4e:3e:c9:e1:14:bd:92:bb:8b:ea:8b:5a: 38:c6:f5:ca:de:19:6a:71:a0:a6:30:c3:59:ab:27:15:0b:0d: b7:f6:00:ed:4b:fe:b6:42:98:fe:8b:d6:53:ed:1a:05:79:65: 8a:57:0f:d1:b3:26:c8:c6:92:33:cb:19:ad:80:e1:60:25:72: cd:45:86:9b:25:0a:80:02:21:d0:15:d3:28:ed:3f:b9:c1:73: 5e:7a:6b:3d:f2:e8:2c:0e:8b:45:8f:32:00:fb:9d:e2:8a:be: 8d:97:14:88:5f:7e:f1:dd:d2:41:7a:fe:ef:45:fb:64:df:74: f2:ce:66:26:1b:10:3b:84:f8:2d:0c:6e:07:3a:8b:b9:96:2f: f3:3a:8c:b6:30:83:b4:cf:da:eb:b6:f3:fd:a6:30:23:00:6d: b2:c4:d2:06 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEyREQxMTAvBgNVBAUTKERBRTc1MDhEMTFFNDcyMjhEQTFGRTAwMzI1OTdCQkQy OUY3NTg5MEMwHhcNMjUwMTA4MTcwNDQ4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdlYjAzMC0yNDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7rAHSRiWZHHrAQTPsVkbZgDtxEXILAKmYPKRyqlFbuMDLCNmYUlfB6VEnWe4 dYAcrTMc2w28g5QJcyUe6IVlYL4KwfXOQV+23OeY16zTJ7PjDrO6CxiP5S/rn40U 73V8REhnHATnRch0BE10lm0LMxInF0pjRm0anSv283s+ONTeyMagkBSM8uPVGxTw oclkIqzqwsBU7/Q+ntffh4YfKEZq2xVLE7hUWxRjM+t/fp/XPYi1fsb3XPDoWVHW ggX1VrqiG27w+EhcA/my7vAKwre4vRfPm3oxQW6nGGaufMW43rycnICSm6LrPlGV 0qcqSVECXUk+R+Lp0s8jwnwG0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLo8u0Sr /h/Yp+f/P8ePZH6BnphPMB8GA1UdIwQYMBaAFNrnUI0R5HIo2h/gAyWXu9KfdYkM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTJERC80NjI4QkVDNDAw RDgxMUU4OTA2MTA2MzdDNEY5QUUwMi8ydWRRalJIa2NpamFILUFESlplNzBwOTFp UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ1ZFFqUkhrY2lqYUgtQURKWmU3MHA5MWlRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTEyREQvNDYyOEJFQzQwMEQ4MTFFODkwNjEwNjM3QzRGOUFFMDIvMkZGRDEyOThB QzVBMTFFREE4QzAzMjE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnUbQwDQYJKoZIhvcNAQELBQADggEBAImn9DjS5FS4FasN yhs9zFX4oojjBFfihqZa6qyOFWoAxKt7ZtC8as1wx75BtATRCceV4AjerDkaP2xb xqArjxuidjCjZ42HZT3YPpCbSkRG0DktS7Kbk0vCV0xF1VHn804+yeEUvZK7i+qL WjjG9creGWpxoKYww1mrJxULDbf2AO1L/rZCmP6L1lPtGgV5ZYpXD9GzJsjGkjPL Ga2A4WAlcs1FhpslCoACIdAV0yjtP7nBc156az3y6CwOi0WPMgD7neKKvo2XFIhf fvHd0kF6/u9F+2TfdPLOZiYbEDuE+C0Mbgc6i7mWL/M6jLYwg7TP2uu28/2mMCMA bbLE0gY= -----END CERTIFICATE-----Generated at Sat Apr 5 03:50:10 2025 by rpki-client