$ rpki-client -vvf rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/85A82A144C1311ECB5708257C4F9AE02.roa File: 85A82A144C1311ECB5708257C4F9AE02.roa (raw, json) Hash identifier: dphkC3ssGJ+iIglODQswGH04mVygF6iWdjby9ZvopB8= Subject key identifier: 59:B8:1C:D2:15:A2:F3:B7:2C:B7:7B:55:F6:6D:53:09:F3:8B:3D:9E Certificate issuer: /CN=A91B075B/serialNumber=953EC2A1BE70259E6A2FD9CE8D483BD9BD1AE33F Certificate serial: 0425 Authority key identifier: 95:3E:C2:A1:BE:70:25:9E:6A:2F:D9:CE:8D:48:3B:D9:BD:1A:E3:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lT7Cob5wJZ5qL9nOjUg72b0a4z8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/85A82A144C1311ECB5708257C4F9AE02.roa Signing time: Wed 15 Jan 2025 00:03:10 +0000 ROA not before: Wed 15 Jan 2025 00:03:10 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 149026 IP address blocks: 103.176.218.0/23 maxlen: 24 2400:35e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.crl rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lT7Cob5wJZ5qL9nOjUg72b0a4z8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:19:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1061 (0x425) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B075B Validity Not Before: Jan 15 00:03:10 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6786fb3e-6159 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:77:1f:09:a0:d9:48:d5:19:eb:38:29:09:5d: 86:ce:d8:88:3e:91:5a:cd:71:6e:b2:b0:54:7d:78: 3c:12:5e:46:0e:13:09:ab:89:9b:be:f4:a3:8d:eb: 90:fe:f0:9e:c7:d7:ba:00:e9:a6:01:d9:e7:b1:ae: b1:0f:96:fc:e0:f3:fd:ba:0c:47:6c:d3:bd:67:8c: 2a:3b:95:1e:2a:cd:04:08:36:5f:a3:ca:1f:d2:13: 4f:ab:1e:74:03:92:47:d9:30:b1:8f:42:58:b7:94: c7:3e:91:27:08:4d:2d:ff:d2:c3:22:cc:d3:09:ae: 3a:d0:4e:12:7c:89:96:44:78:64:e0:27:66:f2:3c: 80:ed:09:0b:c3:6c:77:a3:d4:38:f7:e1:5b:08:98: 43:d1:1e:0f:6c:b9:2b:9a:0a:34:fc:0a:0b:1b:f6: 61:77:53:21:09:1e:61:ec:21:b2:6c:8e:0c:b1:f1: 2c:22:8a:db:4b:35:c6:36:2f:dc:d0:db:c3:33:05: ff:ca:52:a4:65:f6:f3:47:95:df:f2:83:d1:84:a5: 79:57:89:26:59:ea:97:24:96:93:38:ba:3c:a2:54: ea:a3:67:a5:a4:77:77:ac:11:42:cd:18:72:8e:8c: 91:36:59:b0:16:2e:d2:8a:5d:9e:c8:63:dc:48:88: 4a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:B8:1C:D2:15:A2:F3:B7:2C:B7:7B:55:F6:6D:53:09:F3:8B:3D:9E X509v3 Authority Key Identifier: keyid:95:3E:C2:A1:BE:70:25:9E:6A:2F:D9:CE:8D:48:3B:D9:BD:1A:E3:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/lT7Cob5wJZ5qL9nOjUg72b0a4z8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lT7Cob5wJZ5qL9nOjUg72b0a4z8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B075B/44A13B4E4C1011ECA5D2A94FC4F9AE02/85A82A144C1311ECB5708257C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.218.0/23 IPv6: 2400:35e0::/32 Signature Algorithm: sha256WithRSAEncryption b4:33:10:5e:0a:cc:df:88:df:4c:e3:78:24:9d:d4:0a:97:71: 1f:18:88:41:82:4e:a6:71:d8:7c:b2:f0:df:4e:a2:43:e5:10: ad:e6:bc:5a:8b:01:90:82:30:0f:04:f1:54:11:ca:f5:cf:f3: 62:bd:8e:22:1e:e7:af:d7:80:8a:e4:f0:41:22:08:e2:23:f5: 32:30:95:18:a8:cd:26:33:27:5e:79:00:f9:8b:c0:a6:27:81: 20:fe:01:ec:91:1f:f5:a6:5e:35:06:7d:64:f5:33:8b:72:48: f1:20:9b:a3:ee:1d:2f:38:41:b9:e0:4b:7d:4e:96:37:e0:34: 66:22:6c:c8:c8:3b:3b:33:e0:e1:1d:33:ea:29:82:16:23:0a: cd:93:eb:66:49:45:40:c6:04:ad:ea:cc:3f:a2:7e:4b:32:5d: 5f:28:cf:dd:07:a4:6e:80:e1:6c:95:3d:ef:48:93:66:4e:3c: 88:2e:e6:a4:71:c3:cc:45:63:04:f0:19:09:29:1b:9e:8b:37: dd:c1:69:a3:02:cc:30:3f:b8:bd:2e:63:30:99:b8:c4:5c:14: b7:6a:10:99:da:4c:d0:9f:4b:aa:b6:4f:e3:fd:19:a2:23:bc: e1:cf:53:19:3a:90:92:19:04:dd:8c:d4:5a:64:ce:11:e6:92: 28:97:95:89 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjA3NUIxMTAvBgNVBAUTKDk1M0VDMkExQkU3MDI1OUU2QTJGRDlDRThENDgzQkQ5 QkQxQUUzM0YwHhcNMjUwMTE1MDAwMzEwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg2ZmIzZS02MTU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5HcfCaDZSNUZ6zgpCV2GztiIPpFazXFusrBUfXg8El5GDhMJq4mbvvSjjeuQ /vCex9e6AOmmAdnnsa6xD5b84PP9ugxHbNO9Z4wqO5UeKs0ECDZfo8of0hNPqx50 A5JH2TCxj0JYt5THPpEnCE0t/9LDIszTCa460E4SfImWRHhk4Cdm8jyA7QkLw2x3 o9Q49+FbCJhD0R4PbLkrmgo0/AoLG/Zhd1MhCR5h7CGybI4MsfEsIorbSzXGNi/c 0NvDMwX/ylKkZfbzR5Xf8oPRhKV5V4kmWeqXJJaTOLo8olTqo2elpHd3rBFCzRhy joyRNlmwFi7Sil2eyGPcSIhKeQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFm4HNIV ovO3LLd7VfZtUwnziz2eMB8GA1UdIwQYMBaAFJU+wqG+cCWeai/Zzo1IO9m9GuM/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDc1Qi80NEExM0I0RTRD MTAxMUVDQTVEMkE5NEZDNEY5QUUwMi9sVDdDb2I1d0paNXFMOW5PalVnNzJiMGE0 ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xUN0NvYjV3Slo1cUw5bk9qVWc3MmIwYTR6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjA3NUIvNDRBMTNCNEU0QzEwMTFFQ0E1RDJBOTRGQzRGOUFFMDIvODVBODJBMTQ0 QzEzMTFFQ0I1NzA4MjU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnsNowDQQCAAIwBwMFACQANeAwDQYJKoZIhvcNAQELBQAD ggEBALQzEF4KzN+I30zjeCSd1AqXcR8YiEGCTqZx2Hyy8N9OokPlEK3mvFqLAZCC MA8E8VQRyvXP82K9jiIe56/XgIrk8EEiCOIj9TIwlRiozSYzJ155APmLwKYngSD+ AeyRH/WmXjUGfWT1M4tySPEgm6PuHS84QbngS31OljfgNGYibMjIOzsz4OEdM+op ghYjCs2T62ZJRUDGBK3qzD+ifksyXV8oz90HpG6A4WyVPe9Ik2ZOPIgu5qRxw8xF YwTwGQkpG56LN93BaaMCzDA/uL0uYzCZuMRcFLdqEJnaTNCfS6q2T+P9GaIjvOHP Uxk6kJIZBN2M1FpkzhHmkiiXlYk= -----END CERTIFICATE-----Generated at Sat Apr 5 22:15:07 2025 by rpki-client