$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/1CDD9EF85B9F11EFACE3275CC4F9AE02.roa File: 1CDD9EF85B9F11EFACE3275CC4F9AE02.roa (raw, json) Hash identifier: v4ejIpdySbBIKimD5EDirkHkD31xywXn/idyAwvPc/k= Subject key identifier: DE:B5:19:FF:0A:FF:02:C4:76:09:0B:C1:E6:0C:F7:20:6C:CC:E1:C6 Certificate issuer: /CN=A91AF3E2/serialNumber=F6BA6E630A6AA98D821568264E027B988DF5C9BA Certificate serial: 63 Authority key identifier: F6:BA:6E:63:0A:6A:A9:8D:82:15:68:26:4E:02:7B:98:8D:F5:C9:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9rpuYwpqqY2CFWgmTgJ7mI31ybo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/1CDD9EF85B9F11EFACE3275CC4F9AE02.roa Signing time: Sat 15 Feb 2025 08:28:34 +0000 ROA not before: Sat 15 Feb 2025 08:28:34 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 26658 IP address blocks: 27.0.156.0/22 maxlen: 22 103.208.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.crl rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9rpuYwpqqY2CFWgmTgJ7mI31ybo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF3E2 Validity Not Before: Feb 15 08:28:34 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67b05032-4362 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3d:91:e9:b1:e7:2f:7f:3e:cc:36:d9:a0:af: f7:2f:80:50:11:01:4e:d0:e3:f2:dc:64:2c:73:65: f2:35:d9:ff:91:77:d0:2c:72:07:90:3b:0b:bf:c9: cb:21:0d:53:27:df:81:a2:db:6d:c4:86:f0:44:d6: 75:1f:f0:9f:45:df:50:ad:06:11:79:e1:da:5d:b5: 4e:55:b2:69:31:8b:93:84:51:11:f7:e0:98:47:80: 4c:8e:2b:3f:9f:66:9e:42:97:ac:80:44:3b:1e:bb: fd:20:95:42:82:bc:57:2a:6b:f3:15:13:97:00:5f: e6:38:c7:d7:0b:7d:7f:b9:a0:53:02:9c:b7:2f:e5: a5:37:30:6c:a3:5c:33:98:b2:fc:09:8f:b2:c6:cb: d8:06:61:a0:fe:65:c2:43:74:0c:82:66:9b:41:c5: 4a:92:b7:9d:31:e9:5c:a1:1a:e3:b5:3a:bf:8c:83: ad:d0:81:d7:89:f8:33:ab:0f:ac:6b:dd:37:b6:56: 7a:7a:df:16:07:72:53:0d:4a:ba:b1:e4:49:4e:70: 70:55:38:1f:99:bf:9b:44:10:cd:69:c2:99:cd:49: 22:39:d3:8f:39:fa:89:a3:7f:37:eb:4d:d8:59:9b: 04:95:38:84:48:86:9d:d5:03:2c:bc:b1:15:68:cd: 3d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:B5:19:FF:0A:FF:02:C4:76:09:0B:C1:E6:0C:F7:20:6C:CC:E1:C6 X509v3 Authority Key Identifier: keyid:F6:BA:6E:63:0A:6A:A9:8D:82:15:68:26:4E:02:7B:98:8D:F5:C9:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/9rpuYwpqqY2CFWgmTgJ7mI31ybo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9rpuYwpqqY2CFWgmTgJ7mI31ybo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF3E2/DA622E9A5B9E11EFBCDBC55BC4F9AE02/1CDD9EF85B9F11EFACE3275CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.0.156.0/22 103.208.8.0/22 Signature Algorithm: sha256WithRSAEncryption c6:c8:dd:ed:a8:94:82:d2:18:21:72:e8:0a:38:22:22:0c:47: 18:d6:55:38:7a:91:cf:5f:ff:48:9a:c7:d1:9d:50:66:d6:66: f5:e3:cc:1d:cb:f7:63:0f:e9:86:52:a6:76:e8:a0:cd:95:2c: 87:3b:59:a8:c2:89:dd:7d:c6:67:d6:82:f9:80:aa:e0:a2:4f: 49:a0:10:44:3b:4b:18:c7:c1:93:30:26:8b:2c:02:22:4b:2e: 38:00:07:d7:a3:52:14:6d:92:b6:b1:08:6c:0e:0a:34:c7:7f: e8:cf:4e:a0:c0:d7:8b:3c:d1:6d:f9:78:47:aa:da:57:99:cb: 25:9f:27:f7:92:40:47:6a:52:14:2b:e0:f4:ca:72:d0:88:52: 2d:8d:7a:e8:c2:a7:6d:88:b6:bd:2b:bb:96:23:35:10:77:72: 0f:20:a2:ef:18:e3:10:c3:6e:3f:8f:c7:c8:21:9c:a6:6f:0e: 4d:1d:41:93:1c:a2:95:24:ed:6e:90:53:cc:c7:b8:cd:d1:f7: 7e:bb:41:37:e0:45:b9:0e:bf:8a:ea:ce:a7:b2:37:57:9a:8a: 14:07:36:a4:44:43:28:f3:b5:ff:49:74:59:9b:55:dc:62:52: e2:91:93:dc:49:bc:e0:95:35:cd:37:50:80:12:80:9a:6f:47: c7:ce:a7:a5 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RjNFMjExMC8GA1UEBRMoRjZCQTZFNjMwQTZBQTk4RDgyMTU2ODI2NEUwMjdCOTg4 REY1QzlCQTAeFw0yNTAyMTUwODI4MzRaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YjA1MDMyLTQzNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrPZHpsecvfz7MNtmgr/cvgFARAU7Q4/LcZCxzZfI12f+Rd9AscgeQOwu/ycsh DVMn34Gi223EhvBE1nUf8J9F31CtBhF54dpdtU5Vsmkxi5OEURH34JhHgEyOKz+f Zp5Cl6yARDseu/0glUKCvFcqa/MVE5cAX+Y4x9cLfX+5oFMCnLcv5aU3MGyjXDOY svwJj7LGy9gGYaD+ZcJDdAyCZptBxUqSt50x6VyhGuO1Or+Mg63QgdeJ+DOrD6xr 3Te2Vnp63xYHclMNSrqx5ElOcHBVOB+Zv5tEEM1pwpnNSSI50485+omjfzfrTdhZ mwSVOIRIhp3VAyy8sRVozT1VAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU3rUZ/wr/ AsR2CQvB5gz3IGzM4cYwHwYDVR0jBBgwFoAU9rpuYwpqqY2CFWgmTgJ7mI31ybow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFGM0UyL0RBNjIyRTlBNUI5 RTExRUZCQ0RCQzU1QkM0RjlBRTAyLzlycHVZd3BxcVkyQ0ZXZ21UZ0o3bUkzMXli by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOXJwdVl3cHFxWTJDRldnbVRnSjdtSTMxeWJvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjNFMi9EQTYyMkU5QTVCOUUxMUVGQkNEQkM1NUJDNEY5QUUwMi8xQ0REOUVGODVC OUYxMUVGQUNFMzI3NUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAhsAnAMEAmfQCDANBgkqhkiG9w0BAQsFAAOCAQEAxsjd7aiU gtIYIXLoCjgiIgxHGNZVOHqRz1//SJrH0Z1QZtZm9ePMHcv3Yw/phlKmduigzZUs hztZqMKJ3X3GZ9aC+YCq4KJPSaAQRDtLGMfBkzAmiywCIksuOAAH16NSFG2StrEI bA4KNMd/6M9OoMDXizzRbfl4R6raV5nLJZ8n95JAR2pSFCvg9Mpy0IhSLY166MKn bYi2vSu7liM1EHdyDyCi7xjjEMNuP4/HyCGcpm8OTR1BkxyilSTtbpBTzMe4zdH3 frtBN+BFuQ6/iurOp7I3V5qKFAc2pERDKPO1/0l0WZtV3GJS4pGT3Em84JU1zTdQ gBKAmm9Hx86npQ== -----END CERTIFICATE-----Generated at Sat Apr 5 01:12:34 2025 by rpki-client