$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/52EFDBAE687D11ECBF82F558C4F9AE02.roa File: 52EFDBAE687D11ECBF82F558C4F9AE02.roa (raw, json) Hash identifier: mMIicPlcpaWI6t1PAKb6yu3WWQthocogsEM4ChK6LBo= Subject key identifier: C8:EB:6B:39:B7:1A:0F:B7:B7:37:00:32:01:05:B2:11:D8:C6:EB:D7 Certificate issuer: /CN=A91AC726/serialNumber=4D847523E5BDD9E3B8969828A04BFEDA2B0C031B Certificate serial: 0700 Authority key identifier: 4D:84:75:23:E5:BD:D9:E3:B8:96:98:28:A0:4B:FE:DA:2B:0C:03:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TYR1I-W92eO4lpgooEv-2isMAxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/52EFDBAE687D11ECBF82F558C4F9AE02.roa Signing time: Wed 12 Feb 2025 23:00:55 +0000 ROA not before: Wed 12 Feb 2025 23:00:55 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 137000 IP address blocks: 103.159.192.0/24 maxlen: 24 103.159.193.0/24 maxlen: 24 2001:df5:8680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/TYR1I-W92eO4lpgooEv-2isMAxs.crl rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/TYR1I-W92eO4lpgooEv-2isMAxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TYR1I-W92eO4lpgooEv-2isMAxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1792 (0x700) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC726 Validity Not Before: Feb 12 23:00:55 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67ad2826-d507 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:a2:34:17:9a:ad:2f:8c:f9:2d:fd:ce:f0:76: bc:25:e4:c3:b3:34:69:52:51:ed:be:1f:05:9f:c6: 3c:fe:67:0c:67:cc:4f:8d:43:2a:02:8a:dc:01:4b: de:80:db:ea:c1:6f:fb:47:92:3f:a7:aa:07:8f:b2: 16:5b:f6:c2:cd:91:d0:a4:68:4d:f3:88:5e:1b:28: b1:b7:1b:4a:d4:89:99:9d:d1:5c:45:47:a2:7b:59: a2:e7:a5:ae:47:9d:5c:63:f9:0d:6e:28:33:91:83: ae:95:b4:6e:49:b1:02:53:d6:cc:12:18:aa:83:64: 0b:b8:32:e1:b6:e0:db:0c:a8:5a:04:17:d2:8c:75: 3c:c8:30:64:7f:76:61:2d:55:49:52:83:c1:f5:f1: 9a:c8:1b:aa:bb:f3:9c:57:ee:e9:9a:ed:53:64:fd: 2f:69:33:29:e6:02:00:e6:26:19:7e:9f:e1:77:e3: 28:d0:33:a1:f1:c8:c8:e8:96:43:18:2d:f6:88:8e: 0f:a7:5b:c2:76:50:16:98:9c:f7:2c:82:11:c4:9e: 54:51:47:6f:43:ff:a6:ae:24:55:a3:88:9a:8b:6b: c6:88:4a:23:e0:0d:9c:b7:82:c7:13:83:31:0b:b5: 3d:d7:4f:a3:2c:52:2f:33:86:9d:1a:a8:40:34:c0: d7:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:EB:6B:39:B7:1A:0F:B7:B7:37:00:32:01:05:B2:11:D8:C6:EB:D7 X509v3 Authority Key Identifier: keyid:4D:84:75:23:E5:BD:D9:E3:B8:96:98:28:A0:4B:FE:DA:2B:0C:03:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/TYR1I-W92eO4lpgooEv-2isMAxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TYR1I-W92eO4lpgooEv-2isMAxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC726/9C4F530A38AF11EB8913DE41C4F9AE02/52EFDBAE687D11ECBF82F558C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.192.0/23 IPv6: 2001:df5:8680::/48 Signature Algorithm: sha256WithRSAEncryption 74:73:67:dd:33:43:5a:e3:29:5a:88:01:2c:90:a9:67:d9:2c: 69:b7:c2:d5:f2:86:d6:7f:d6:e5:56:bd:37:fc:64:e0:57:9d: f2:c0:6d:2d:93:f9:08:67:ea:ad:db:71:f9:8d:a8:e3:7e:99: c1:92:84:85:99:48:37:b2:34:bf:d1:61:54:45:73:45:05:d3: 8f:08:5e:49:53:1f:85:01:fe:d2:8c:c1:58:fe:58:89:a6:9c: b1:2d:83:7b:4a:23:e0:ee:07:2d:b6:bd:05:8b:cf:21:ce:99: 07:5e:f3:5f:bc:b4:de:8a:6e:6e:71:5d:a8:32:d7:d3:b7:3a: a2:bd:b4:19:3a:af:3f:d2:56:3b:b3:14:59:e5:4e:aa:a4:02: e0:d5:ba:f9:1a:82:d5:de:7c:7c:83:61:b1:df:28:99:a6:9a: 7c:12:5a:5e:2b:13:e0:93:e4:d0:0d:07:28:09:9c:09:2e:1c: 31:cc:88:6a:ab:67:87:73:40:d3:14:d7:47:3d:83:05:2e:fb: 94:66:53:aa:d5:0b:e3:b0:f6:ce:a1:e7:cb:c8:a4:aa:3d:62: 5e:4b:0f:8d:b4:92:b3:b8:c8:87:85:0e:a8:7b:59:f0:14:42: 5b:61:7e:e2:7d:ac:41:0b:d6:28:fc:2a:24:4e:ea:95:40:53: dc:44:c3:9d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUM3MjYxMTAvBgNVBAUTKDREODQ3NTIzRTVCREQ5RTNCODk2OTgyOEEwNEJGRURB MkIwQzAzMUIwHhcNMjUwMjEyMjMwMDU1WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FkMjgyNi1kNTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA76I0F5qtL4z5Lf3O8Ha8JeTDszRpUlHtvh8Fn8Y8/mcMZ8xPjUMqAorcAUve gNvqwW/7R5I/p6oHj7IWW/bCzZHQpGhN84heGyixtxtK1ImZndFcRUeie1mi56Wu R51cY/kNbigzkYOulbRuSbECU9bMEhiqg2QLuDLhtuDbDKhaBBfSjHU8yDBkf3Zh LVVJUoPB9fGayBuqu/OcV+7pmu1TZP0vaTMp5gIA5iYZfp/hd+Mo0DOh8cjI6JZD GC32iI4Pp1vCdlAWmJz3LIIRxJ5UUUdvQ/+mriRVo4iai2vGiEoj4A2ct4LHE4Mx C7U910+jLFIvM4adGqhANMDXcwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMjrazm3 Gg+3tzcAMgEFshHYxuvXMB8GA1UdIwQYMBaAFE2EdSPlvdnjuJaYKKBL/torDAMb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQzcyNi85QzRGNTMwQTM4 QUYxMUVCODkxM0RFNDFDNEY5QUUwMi9UWVIxSS1XOTJlTzRscGdvb0V2LTJpc01B eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RZUjFJLVc5MmVPNGxwZ29vRXYtMmlzTUF4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUM3MjYvOUM0RjUzMEEzOEFGMTFFQjg5MTNERTQxQzRGOUFFMDIvNTJFRkRCQUU2 ODdEMTFFQ0JGODJGNTU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnn8AwDwQCAAIwCQMHACABDfWGgDANBgkqhkiG9w0BAQsF AAOCAQEAdHNn3TNDWuMpWogBLJCpZ9ksabfC1fKG1n/W5Va9N/xk4Fed8sBtLZP5 CGfqrdtx+Y2o436ZwZKEhZlIN7I0v9FhVEVzRQXTjwheSVMfhQH+0ozBWP5Yiaac sS2De0oj4O4HLba9BYvPIc6ZB17zX7y03opubnFdqDLX07c6or20GTqvP9JWO7MU WeVOqqQC4NW6+RqC1d58fINhsd8omaaafBJaXisT4JPk0A0HKAmcCS4cMcyIaqtn h3NA0xTXRz2DBS77lGZTqtUL47D2zqHny8ikqj1iXksPjbSSs7jIh4UOqHtZ8BRC W2F+4n2sQQvWKPwqJE7qlUBT3ETDnQ== -----END CERTIFICATE-----Generated at Sat Apr 5 00:53:39 2025 by rpki-client