$ rpki-client -vvf rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/F84777FCD9DC11EDA4083A71C4F9AE02.roa File: F84777FCD9DC11EDA4083A71C4F9AE02.roa (raw, json) Hash identifier: CoOJrAcKTrWo0nejzXhp58RWFVEIO9a7vZX9DurBX3o= Subject key identifier: FA:4C:13:93:AC:80:72:64:8E:60:29:17:9C:89:28:BA:E4:A9:8C:91 Certificate issuer: /CN=A91999F5/serialNumber=9212EEA2B91A32660F75271FEC8589B309C389F0 Certificate serial: 0374 Authority key identifier: 92:12:EE:A2:B9:1A:32:66:0F:75:27:1F:EC:85:89:B3:09:C3:89:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khLuorkaMmYPdScf7IWJswnDifA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/F84777FCD9DC11EDA4083A71C4F9AE02.roa Signing time: Wed 05 Mar 2025 02:17:44 +0000 ROA not before: Wed 05 Mar 2025 02:17:44 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 55405 IP address blocks: 103.162.26.0/24 maxlen: 24 103.162.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.crl rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khLuorkaMmYPdScf7IWJswnDifA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:03:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 884 (0x374) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91999F5 Validity Not Before: Mar 5 02:17:44 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c7b448-aba7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f1:c2:88:64:55:c6:08:03:1e:6e:11:3b:a4: ba:12:9b:3c:53:eb:28:8f:9c:db:56:4b:94:f9:45: 95:39:88:19:9e:74:ba:ec:bd:e0:d5:69:4d:44:36: 16:34:e7:69:50:a2:57:22:06:57:1f:c1:62:f9:42: 77:87:68:f1:4f:a8:b9:ea:47:04:ed:25:9b:ac:d2: f8:9b:53:35:43:2f:b7:1a:7b:1d:14:87:8c:f1:fb: ab:fa:5a:ee:bb:ce:f6:a3:b3:25:2a:e2:0c:5c:95: fa:e3:54:13:98:5e:b4:73:cb:fd:f4:54:b3:c6:38: f6:25:f5:30:b5:36:2e:03:25:2e:43:80:19:4f:d8: 0b:c5:4e:df:cd:ca:f6:d6:e2:8d:3e:ad:79:0b:e3: 05:cc:76:fb:6c:0a:7e:81:fc:95:3c:ed:33:ab:0e: 87:35:5f:27:69:25:64:24:56:8a:ac:4c:b8:29:b8: 0d:36:4c:2f:39:2e:49:8e:47:2b:c7:0b:42:de:aa: 3a:05:81:c2:ae:59:db:79:f1:f3:bf:f3:b2:f6:0f: 3c:98:09:5d:f1:92:8d:5d:4b:31:21:3f:4c:ed:92: 6a:7b:27:05:a0:ee:08:49:c0:7a:37:29:25:37:28: 0d:23:58:d9:7d:9c:06:ec:67:f8:14:4a:e0:e1:07: 6b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:4C:13:93:AC:80:72:64:8E:60:29:17:9C:89:28:BA:E4:A9:8C:91 X509v3 Authority Key Identifier: keyid:92:12:EE:A2:B9:1A:32:66:0F:75:27:1F:EC:85:89:B3:09:C3:89:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khLuorkaMmYPdScf7IWJswnDifA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/F84777FCD9DC11EDA4083A71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.26.0/23 Signature Algorithm: sha256WithRSAEncryption 78:92:c4:33:4d:09:ff:c3:6c:6d:69:61:e6:a4:94:98:4a:63: d2:ec:3e:35:09:80:90:ae:37:8a:e3:8e:d6:d4:f0:d9:72:3d: 06:0e:0e:01:35:b9:46:ff:d6:a1:c1:46:a1:48:f2:f8:9f:c9: 6f:48:37:86:6e:61:97:20:b3:0d:ed:30:c3:75:1d:89:25:16: e8:c2:0c:aa:08:ec:fd:a2:d1:f7:f8:d5:ff:77:91:0e:0e:bc: d3:2b:c3:29:c5:52:0d:69:ca:a6:95:36:3d:74:b7:52:82:9e: e0:00:b2:be:75:19:25:52:d8:19:54:41:85:93:1f:ca:d6:0e: 14:ca:bd:c5:9e:a2:88:28:0b:4e:5f:a3:d1:1e:31:f8:c6:19: 80:30:ee:ac:c5:5d:76:24:df:4b:7b:4d:77:79:64:08:d1:d0: b4:7a:0b:2f:73:1e:b8:bd:26:97:eb:70:f3:f1:97:06:6c:8b: 54:f9:20:b8:bf:91:15:68:c8:11:ee:22:d8:19:cb:47:76:26: 67:d2:e3:13:ff:d1:53:b5:e7:22:6d:8e:e1:89:4e:82:fa:82: 56:2e:e5:bc:86:89:41:7b:02:9a:b5:c1:f6:78:cd:ef:50:83: dd:e2:b1:bf:12:ef:4a:55:a6:a6:16:d9:e2:01:c4:ab:6d:3f: 63:75:84:ce -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA3QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk5RjUxMTAvBgNVBAUTKDkyMTJFRUEyQjkxQTMyNjYwRjc1MjcxRkVDODU4OUIz MDlDMzg5RjAwHhcNMjUwMzA1MDIxNzQ0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M3YjQ0OC1hYmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfHCiGRVxggDHm4RO6S6Eps8U+soj5zbVkuU+UWVOYgZnnS67L3g1WlNRDYW NOdpUKJXIgZXH8Fi+UJ3h2jxT6i56kcE7SWbrNL4m1M1Qy+3GnsdFIeM8fur+lru u872o7MlKuIMXJX641QTmF60c8v99FSzxjj2JfUwtTYuAyUuQ4AZT9gLxU7fzcr2 1uKNPq15C+MFzHb7bAp+gfyVPO0zqw6HNV8naSVkJFaKrEy4KbgNNkwvOS5Jjkcr xwtC3qo6BYHCrlnbefHzv/Oy9g88mAld8ZKNXUsxIT9M7ZJqeycFoO4IScB6Nykl NygNI1jZfZwG7Gf4FErg4QdrPQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPpME5Os gHJkjmApF5yJKLrkqYyRMB8GA1UdIwQYMBaAFJIS7qK5GjJmD3UnH+yFibMJw4nw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTlGNS82QTNEQjU3ODlG NzkxMUVDOUNCNDdBMEFDNEY5QUUwMi9raEx1b3JrYU1tWVBkU2NmN0lXSnN3bkRp ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toTHVvcmthTW1ZUGRTY2Y3SVdKc3duRGlmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTk5RjUvNkEzREI1Nzg5Rjc5MTFFQzlDQjQ3QTBBQzRGOUFFMDIvRjg0Nzc3RkNE OURDMTFFREE0MDgzQTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnohowDQYJKoZIhvcNAQELBQADggEBAHiSxDNNCf/DbG1p YeaklJhKY9LsPjUJgJCuN4rjjtbU8NlyPQYODgE1uUb/1qHBRqFI8vifyW9IN4Zu YZcgsw3tMMN1HYklFujCDKoI7P2i0ff41f93kQ4OvNMrwynFUg1pyqaVNj10t1KC nuAAsr51GSVS2BlUQYWTH8rWDhTKvcWeoogoC05fo9EeMfjGGYAw7qzFXXYk30t7 TXd5ZAjR0LR6Cy9zHri9JpfrcPPxlwZsi1T5ILi/kRVoyBHuItgZy0d2JmfS4xP/ 0VO15yJtjuGJToL6glYu5byGiUF7Apq1wfZ4ze9Qg93isb8S70pVpqYW2eIBxKtt P2N1hM4= -----END CERTIFICATE-----Generated at Sun Apr 6 06:32:51 2025 by rpki-client