$ rpki-client -vvf rpki.apnic.net/member_repository/A91925D2/6DF602D078BF11EE93FFB764C4F9AE02/2C4CD10078C011EE90D36F13C4F9AE02.roa File: 2C4CD10078C011EE90D36F13C4F9AE02.roa (raw, json) Hash identifier: +7GFnP4vXiPay7vN6IrJFOHX1SU8MW5paTRJSWnqDFI= Subject key identifier: 8C:50:0A:50:10:F3:9A:8B:33:DF:40:41:C9:F9:BC:D1:67:06:77:FF Certificate issuer: /CN=A91925D2/serialNumber=34517CC29F74169FD736A2C240619F8B330FDD9D Certificate serial: DB Authority key identifier: 34:51:7C:C2:9F:74:16:9F:D7:36:A2:C2:40:61:9F:8B:33:0F:DD:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NFF8wp90Fp_XNqLCQGGfizMP3Z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91925D2/6DF602D078BF11EE93FFB764C4F9AE02/2C4CD10078C011EE90D36F13C4F9AE02.roa Signing time: Tue 31 Dec 2024 04:17:47 +0000 ROA not before: Tue 31 Dec 2024 04:17:46 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 151967 IP address blocks: 103.65.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91925D2/6DF602D078BF11EE93FFB764C4F9AE02/NFF8wp90Fp_XNqLCQGGfizMP3Z0.crl rsync://rpki.apnic.net/member_repository/A91925D2/6DF602D078BF11EE93FFB764C4F9AE02/NFF8wp90Fp_XNqLCQGGfizMP3Z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NFF8wp90Fp_XNqLCQGGfizMP3Z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 04:11:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91925D2, serialNumber=34517CC29F74169FD736A2C240619F8B330FDD9D Validity Not Before: Dec 31 04:17:46 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6773706a-0879 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:80:f1:d1:01:39:a3:8d:ae:27:d8:84:13:c7: ff:cd:dc:8a:95:89:37:57:38:ee:e2:e2:cb:99:5f: 61:17:25:d9:2c:32:0a:ae:5b:38:75:71:5f:bc:37: 5c:70:42:da:7c:ce:40:ee:47:fd:0f:69:d7:4e:6b: 95:e6:c4:57:07:a5:8c:51:dd:0d:d3:29:db:68:76: 41:02:06:b9:99:b9:42:2d:34:8c:22:45:7b:b5:35: 0e:87:14:04:31:7b:97:65:5e:67:86:4d:6c:4d:49: 13:02:19:ff:dd:31:c9:76:16:d5:b4:81:46:db:1a: 37:ff:52:2c:27:7f:41:12:96:88:8a:48:51:f6:cf: 10:9a:c3:4c:b8:4a:a4:79:22:d6:66:7c:6a:ab:83: 6c:7f:6e:92:f0:c7:89:64:3c:d1:dd:bf:a4:53:d6: 3d:d5:8f:76:54:8e:2f:6c:6c:ae:53:71:b5:62:c5: 0b:32:32:13:80:a8:dc:97:f1:f8:0d:fb:d6:b3:5d: 90:c8:09:9d:bd:91:2a:d2:15:a5:86:52:32:a9:4c: 09:fb:d7:b0:07:37:cf:f5:fe:a0:74:3d:2b:19:f2: 08:31:8c:d4:18:96:13:72:db:5e:cb:f4:5e:81:0a: e9:fd:d3:b8:21:ba:e1:ed:a4:90:7b:e0:87:c1:31: 1e:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:50:0A:50:10:F3:9A:8B:33:DF:40:41:C9:F9:BC:D1:67:06:77:FF X509v3 Authority Key Identifier: keyid:34:51:7C:C2:9F:74:16:9F:D7:36:A2:C2:40:61:9F:8B:33:0F:DD:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91925D2/6DF602D078BF11EE93FFB764C4F9AE02/NFF8wp90Fp_XNqLCQGGfizMP3Z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NFF8wp90Fp_XNqLCQGGfizMP3Z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91925D2/6DF602D078BF11EE93FFB764C4F9AE02/2C4CD10078C011EE90D36F13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.138.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:f3:68:73:e9:4e:58:b9:17:a7:ab:7f:8e:93:df:fc:d5:e1: 66:fd:80:af:d5:da:66:79:3d:81:88:fa:89:2c:ad:1d:da:9c: 2d:e6:13:7d:94:b6:87:8e:6a:d4:13:77:a8:8a:2d:97:0c:17: bd:62:16:b0:37:17:ee:01:f5:89:f7:d1:98:fb:fb:8c:fd:42: 6d:77:31:56:17:d0:3d:c8:f0:d8:12:a9:a1:72:74:62:6d:0e: c1:31:57:ad:fa:4b:d1:ef:6a:b9:b4:03:61:d4:4e:d1:59:3d: 98:05:45:b1:06:71:0a:7f:71:65:35:7f:d1:ae:1c:ff:aa:e1: 85:cc:58:62:fa:93:e2:53:12:b0:aa:b6:0d:4f:11:f0:a6:92: 87:5e:45:7c:20:ef:e0:ab:33:93:75:f6:a5:ba:3b:11:36:01: 96:2b:54:eb:c5:cf:c3:44:4f:5b:6e:bb:3a:57:c1:ff:3b:de: 0e:da:c6:05:d1:49:03:58:25:de:e7:48:6a:c2:c5:7c:cc:bc: ee:fc:41:2a:02:fd:87:37:31:cf:73:81:14:96:33:57:2e:95: ba:6d:36:d9:02:10:79:d0:f8:a6:8d:47:34:ec:b0:8f:73:9c: 76:17:72:87:9e:fd:28:c0:9c:d9:ea:5b:08:c5:c8:38:3c:3b: 05:53:ed:7d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTI1RDIxMTAvBgNVBAUTKDM0NTE3Q0MyOUY3NDE2OUZENzM2QTJDMjQwNjE5RjhC MzMwRkREOUQwHhcNMjQxMjMxMDQxNzQ2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzczNzA2YS0wODc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYDx0QE5o42uJ9iEE8f/zdyKlYk3Vzju4uLLmV9hFyXZLDIKrls4dXFfvDdc cELafM5A7kf9D2nXTmuV5sRXB6WMUd0N0ynbaHZBAga5mblCLTSMIkV7tTUOhxQE MXuXZV5nhk1sTUkTAhn/3THJdhbVtIFG2xo3/1IsJ39BEpaIikhR9s8QmsNMuEqk eSLWZnxqq4Nsf26S8MeJZDzR3b+kU9Y91Y92VI4vbGyuU3G1YsULMjITgKjcl/H4 DfvWs12QyAmdvZEq0hWlhlIyqUwJ+9ewBzfP9f6gdD0rGfIIMYzUGJYTcttey/Re gQrp/dO4Ibrh7aSQe+CHwTEeJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIxQClAQ 85qLM99AQcn5vNFnBnf/MB8GA1UdIwQYMBaAFDRRfMKfdBaf1zaiwkBhn4szD92d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MjVEMi82REY2MDJEMDc4 QkYxMUVFOTNGRkI3NjRDNEY5QUUwMi9ORkY4d3A5MEZwX1hOcUxDUUdHZml6TVAz WjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05GRjh3cDkwRnBfWE5xTENRR0dmaXpNUDNaMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTI1RDIvNkRGNjAyRDA3OEJGMTFFRTkzRkZCNzY0QzRGOUFFMDIvMkM0Q0QxMDA3 OEMwMTFFRTkwRDM2RjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnQYowDQYJKoZIhvcNAQELBQADggEBAC3zaHPpTli5F6er f46T3/zV4Wb9gK/V2mZ5PYGI+oksrR3anC3mE32UtoeOatQTd6iKLZcMF71iFrA3 F+4B9Yn30Zj7+4z9Qm13MVYX0D3I8NgSqaFydGJtDsExV636S9Hvarm0A2HUTtFZ PZgFRbEGcQp/cWU1f9GuHP+q4YXMWGL6k+JTErCqtg1PEfCmkodeRXwg7+CrM5N1 9qW6OxE2AZYrVOvFz8NET1tuuzpXwf873g7axgXRSQNYJd7nSGrCxXzMvO78QSoC /Yc3Mc9zgRSWM1culbptNtkCEHnQ+KaNRzTssI9znHYXcoee/SjAnNnqWwjFyDg8 OwVT7X0= -----END CERTIFICATE-----Generated at Sat Apr 12 19:14:37 2025 by rpki-client