$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/00D8BE5286FC11EB8A95642DC4F9AE02.roa File: 00D8BE5286FC11EB8A95642DC4F9AE02.roa (raw, json) Hash identifier: k0J17sE1EdNCFMHPLLouV8rIaMP7CAywUqJdG5phE9Y= Subject key identifier: 2D:2D:BE:54:8D:9D:65:37:37:03:8C:A5:20:82:1F:9A:13:C1:4E:16 Certificate issuer: /CN=A91A9B3C/serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587 Certificate serial: 0625 Authority key identifier: 6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/00D8BE5286FC11EB8A95642DC4F9AE02.roa Signing time: Sat 15 Feb 2025 00:01:08 +0000 ROA not before: Sat 15 Feb 2025 00:01:08 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 137461 IP address blocks: 103.109.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 22:20:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1573 (0x625) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3C Validity Not Before: Feb 15 00:01:08 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67afd943-b8fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:8a:09:a2:5e:2b:94:51:9f:c7:70:68:2e:d7: 61:d4:03:32:8d:b3:ba:38:53:e6:63:96:aa:7c:5a: b2:6e:5b:b8:e6:aa:a6:40:c1:85:b2:ac:c5:cd:e6: 17:e4:8e:9b:4a:7b:21:db:74:64:a9:89:90:c3:e7: d8:82:a3:a8:cb:a9:0e:ae:2f:9d:ae:cd:d7:a3:87: c6:b6:8b:89:e0:dc:83:97:8c:ca:7f:e3:0f:01:08: 8f:5d:37:b3:72:09:72:0a:1c:92:31:fe:e7:7d:89: 74:27:f2:a3:7c:6b:51:71:cd:bc:71:69:bc:0a:f1: 36:aa:f7:ce:57:61:51:73:34:47:0b:b2:2d:60:3c: 33:2a:6d:d7:d2:25:e8:4a:ea:61:33:73:4b:17:4c: 04:e4:35:38:1d:65:7c:70:76:44:95:af:9a:a5:56: 8a:68:b8:62:af:b6:5d:3a:e3:00:4b:7c:c4:a5:f7: 75:1e:8c:1d:68:c0:c6:02:8d:17:fc:10:87:31:fb: 2c:14:43:1c:74:52:51:7c:95:9c:c7:47:8c:d2:4a: c5:58:0d:76:8c:fe:1e:cd:ed:25:1b:1a:2c:eb:ac: df:db:16:df:37:3f:3d:c6:0c:02:23:ce:f6:00:19: fe:43:1f:a8:7e:d8:83:7b:2b:2d:21:b6:45:fa:56: 64:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:2D:BE:54:8D:9D:65:37:37:03:8C:A5:20:82:1F:9A:13:C1:4E:16 X509v3 Authority Key Identifier: keyid:6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/00D8BE5286FC11EB8A95642DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.121.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:eb:63:41:38:56:2f:e4:35:66:30:9f:36:cd:09:df:86:c2: f6:c0:da:82:c0:26:6c:b2:f3:72:29:22:d8:0e:09:a1:1e:c3: 01:a3:8a:c6:2f:6e:07:f4:e8:b0:ed:ef:22:25:9f:c4:33:9c: e5:b9:7e:5c:58:7a:75:d9:10:f0:2f:f0:2f:69:73:64:d3:33: 4e:7c:af:87:d9:91:85:e7:9e:b5:b4:33:67:17:bb:10:90:2a: 58:da:99:6d:39:ae:98:4a:f0:1b:f0:59:94:8e:05:ac:f7:7d: f7:69:b9:98:50:3b:cd:d2:20:35:c8:7f:5d:c9:c9:fb:f6:f4: 78:8a:e5:fe:05:8e:6e:e4:d4:9b:76:c1:36:21:d3:32:7e:27: 80:db:e1:ac:3b:86:cb:5e:5b:2b:44:32:ec:c9:06:b6:49:5c: eb:5b:06:cc:22:3d:bc:93:24:74:31:5d:1c:93:b9:31:e7:ed: bc:09:be:90:af:6d:4b:d4:97:87:0d:97:59:67:ea:b1:11:b6: 29:25:3e:c9:97:f7:2d:03:e9:d9:53:81:2b:26:53:7a:f3:da: cc:5d:21:14:9e:5c:3b:f9:5a:1b:44:3a:b0:cb:5d:d1:09:52: 38:bf:83:7e:29:90:3a:b4:cf:10:7d:f6:8f:68:00:a9:90:98: a7:45:42:4a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0MxMTAvBgNVBAUTKDZGNjE0RTU4RkU5MzZBREY3NEQ3MzZGNTM5MkRFRDVG RDE2Qjc1ODcwHhcNMjUwMjE1MDAwMTA4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FmZDk0My1iOGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYoJol4rlFGfx3BoLtdh1AMyjbO6OFPmY5aqfFqyblu45qqmQMGFsqzFzeYX 5I6bSnsh23RkqYmQw+fYgqOoy6kOri+drs3Xo4fGtouJ4NyDl4zKf+MPAQiPXTez cglyChySMf7nfYl0J/KjfGtRcc28cWm8CvE2qvfOV2FRczRHC7ItYDwzKm3X0iXo SuphM3NLF0wE5DU4HWV8cHZEla+apVaKaLhir7ZdOuMAS3zEpfd1HowdaMDGAo0X /BCHMfssFEMcdFJRfJWcx0eM0krFWA12jP4eze0lGxos66zf2xbfNz89xgwCI872 ABn+Qx+oftiDeystIbZF+lZkTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFC0tvlSN nWU3NwOMpSCCH5oTwU4WMB8GA1UdIwQYMBaAFG9hTlj+k2rfdNc29Tkt7V/Ra3WH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzQy8zRjMzNjJEQTg2 RkExMUVCQjNDN0JCMjlDNEY5QUUwMi9iMkZPV1A2VGF0OTAxemIxT1MzdFg5RnJk WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyRk9XUDZUYXQ5MDF6YjFPUzN0WDlGcmRZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTlCM0MvM0YzMzYyREE4NkZBMTFFQkIzQzdCQjI5QzRGOUFFMDIvMDBEOEJFNTI4 NkZDMTFFQjhBOTU2NDJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnbXkwDQYJKoZIhvcNAQELBQADggEBACrrY0E4Vi/kNWYw nzbNCd+GwvbA2oLAJmyy83IpItgOCaEewwGjisYvbgf06LDt7yIln8QznOW5flxY enXZEPAv8C9pc2TTM058r4fZkYXnnrW0M2cXuxCQKljamW05rphK8BvwWZSOBaz3 ffdpuZhQO83SIDXIf13Jyfv29HiK5f4Fjm7k1Jt2wTYh0zJ+J4Db4aw7hsteWytE MuzJBrZJXOtbBswiPbyTJHQxXRyTuTHn7bwJvpCvbUvUl4cNl1ln6rERtiklPsmX 9y0D6dlTgSsmU3rz2sxdIRSeXDv5WhtEOrDLXdEJUji/g34pkDq0zxB99o9oAKmQ mKdFQko= -----END CERTIFICATE-----Generated at Fri Apr 11 18:50:06 2025 by rpki-client