$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/CEFEEFEA854E11EBA2CFDC87C4F9AE02.roa File: CEFEEFEA854E11EBA2CFDC87C4F9AE02.roa (raw, json) Hash identifier: neskcJ2ryIraX5yGhHnDKoHimVr5nfZfeUgF/8p7xpw= Subject key identifier: 7B:C2:6D:5D:9D:34:9D:F3:13:8E:25:C1:6E:A8:CA:7E:6B:3C:30:F2 Certificate issuer: /CN=A91A3078/serialNumber=5027F3192EBDD54950A39C3D13094A71F1D33266 Certificate serial: 0ACD Authority key identifier: 50:27:F3:19:2E:BD:D5:49:50:A3:9C:3D:13:09:4A:71:F1:D3:32:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/CEFEEFEA854E11EBA2CFDC87C4F9AE02.roa Signing time: Tue 04 Feb 2025 19:18:57 +0000 ROA not before: Tue 04 Feb 2025 19:18:57 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 63969 IP address blocks: 103.147.182.0/23 maxlen: 23 103.147.182.0/24 maxlen: 24 103.147.183.0/24 maxlen: 24 103.204.80.0/23 maxlen: 23 103.204.80.0/24 maxlen: 24 103.204.81.0/24 maxlen: 24 2001:df2:9f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.crl rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:37:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2765 (0xacd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3078 Validity Not Before: Feb 4 19:18:57 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a26820-49c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:45:19:29:72:31:6d:67:f0:a0:28:bf:d1:07: 9b:c6:e0:64:7a:16:ac:c2:1c:ca:46:85:34:c1:a2: ab:e3:a3:b4:f1:c7:7d:ae:04:7c:1c:21:6b:92:53: 8b:8a:c8:74:81:8d:20:98:f3:bc:ee:0e:24:64:a3: e4:b5:b7:02:53:51:30:3c:97:c8:e4:57:c9:a4:ab: 0d:ce:4a:a4:2b:8a:53:52:3a:65:95:b1:4b:2d:bf: 37:ab:18:dd:ff:b7:94:45:d7:f9:c8:1b:bb:66:0c: 04:5a:7a:ae:1c:35:0d:1d:8c:c1:12:a8:ed:99:d8: 7f:99:91:c3:af:64:18:60:45:37:c8:37:15:87:89: ef:7f:dd:09:d0:8c:6f:8b:7c:d0:fb:4c:f3:f9:a9: 7d:cf:26:d8:d4:58:5f:ba:a4:c6:af:0d:8a:89:7b: 81:d5:a6:56:bd:ab:56:c3:3e:c7:c4:5d:fb:ed:44: 4c:3e:13:ef:e2:00:8c:53:cd:36:f2:ed:7e:b3:08: f2:38:dd:da:3e:7d:fe:74:e0:e9:b5:9d:28:9c:c9: 1b:18:00:3a:b5:d2:45:a5:69:6d:86:98:23:2b:26: bd:2a:d1:a1:83:9e:18:27:64:b3:18:50:1e:4e:a2: 42:06:10:52:1f:ca:6a:3c:83:ec:47:e1:be:9e:95: 76:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:C2:6D:5D:9D:34:9D:F3:13:8E:25:C1:6E:A8:CA:7E:6B:3C:30:F2 X509v3 Authority Key Identifier: keyid:50:27:F3:19:2E:BD:D5:49:50:A3:9C:3D:13:09:4A:71:F1:D3:32:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/UCfzGS691UlQo5w9EwlKcfHTMmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UCfzGS691UlQo5w9EwlKcfHTMmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3078/8630B1C84C8C11EAB9E27057C4F9AE02/CEFEEFEA854E11EBA2CFDC87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.182.0/23 103.204.80.0/23 IPv6: 2001:df2:9f80::/48 Signature Algorithm: sha256WithRSAEncryption 3b:bf:c2:8d:83:1a:43:27:25:a9:78:0e:05:38:b1:bc:f7:7b: 61:ae:6c:35:cc:a9:af:ea:44:af:03:ba:88:e7:cf:e6:c6:77: 3c:17:a5:d7:81:34:ea:de:66:2f:18:41:d3:d7:17:62:0d:c7: 95:86:65:94:bd:45:58:23:e2:ee:e9:5d:88:bd:27:99:2b:8b: 98:4e:0e:2b:94:f6:7a:16:fa:d7:ad:e4:c2:3f:66:f8:24:08: d2:ff:c7:7d:55:4a:fc:de:40:d9:fa:b5:53:cd:3b:d8:de:78: f1:ad:aa:27:ba:ea:62:0d:d3:36:03:10:a9:f4:f4:eb:ff:69: e1:72:06:9f:f8:5a:7b:41:b8:9d:cc:32:43:a5:fc:c7:af:da: 91:ed:1d:b8:2a:87:53:6b:a9:e2:ab:66:8f:de:69:1c:e0:37: d5:c4:f4:7f:7e:5f:9d:bb:d2:49:38:b5:11:16:cb:ca:05:2d: 62:a2:f6:46:7b:07:01:24:b1:f4:35:d5:9b:f8:37:69:39:da: 8c:68:14:18:60:bb:fb:5c:f9:f1:fe:ae:77:1c:82:b1:02:b4: f7:9d:3e:25:0c:d1:77:58:e2:bc:71:46:f0:88:02:77:7b:ec: b7:b4:6c:d4:16:c2:ad:95:e6:4f:71:e1:be:ce:02:fa:2d:fd: 45:20:73:65 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwNzgxMTAvBgNVBAUTKDUwMjdGMzE5MkVCREQ1NDk1MEEzOUMzRDEzMDk0QTcx RjFEMzMyNjYwHhcNMjUwMjA0MTkxODU3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyNjgyMC00OWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl0UZKXIxbWfwoCi/0QebxuBkehaswhzKRoU0waKr46O08cd9rgR8HCFrklOL ish0gY0gmPO87g4kZKPktbcCU1EwPJfI5FfJpKsNzkqkK4pTUjpllbFLLb83qxjd /7eURdf5yBu7ZgwEWnquHDUNHYzBEqjtmdh/mZHDr2QYYEU3yDcVh4nvf90J0Ixv i3zQ+0zz+al9zybY1FhfuqTGrw2KiXuB1aZWvatWwz7HxF377URMPhPv4gCMU802 8u1+swjyON3aPn3+dODptZ0onMkbGAA6tdJFpWlthpgjKya9KtGhg54YJ2SzGFAe TqJCBhBSH8pqPIPsR+G+npV2jwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFHvCbV2d NJ3zE44lwW6oyn5rPDDyMB8GA1UdIwQYMBaAFFAn8xkuvdVJUKOcPRMJSnHx0zJm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzA3OC84NjMwQjFDODRD OEMxMUVBQjlFMjcwNTdDNEY5QUUwMi9VQ2Z6R1M2OTFVbFFvNXc5RXdsS2NmSFRN bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VDZnpHUzY5MVVsUW81dzlFd2xLY2ZIVE1tWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTMwNzgvODYzMEIxQzg0QzhDMTFFQUI5RTI3MDU3QzRGOUFFMDIvQ0VGRUVGRUE4 NTRFMTFFQkEyQ0ZEQzg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAFnk7YDBAFnzFAwDwQCAAIwCQMHACABDfKfgDANBgkqhkiG 9w0BAQsFAAOCAQEAO7/CjYMaQyclqXgOBTixvPd7Ya5sNcypr+pErwO6iOfP5sZ3 PBel14E06t5mLxhB09cXYg3HlYZllL1FWCPi7uldiL0nmSuLmE4OK5T2ehb6163k wj9m+CQI0v/HfVVK/N5A2fq1U8072N548a2qJ7rqYg3TNgMQqfT06/9p4XIGn/ha e0G4ncwyQ6X8x6/ake0duCqHU2up4qtmj95pHOA31cT0f35fnbvSSTi1ERbLygUt YqL2RnsHASSx9DXVm/g3aTnajGgUGGC7+1z58f6udxyCsQK0950+JQzRd1jivHFG 8IgCd3vst7Rs1BbCrZXmT3Hhvs4C+i39RSBzZQ== -----END CERTIFICATE-----Generated at Sat Apr 5 01:45:08 2025 by rpki-client