$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/D3E15ECEA1E611EDABFD7D7FC4F9AE02.roa File: D3E15ECEA1E611EDABFD7D7FC4F9AE02.roa (raw, json) Hash identifier: lpjw5BWb1D28FIiM0Q0zwOopAGhOPre90gYeT7boapw= Subject key identifier: 57:3D:E4:82:76:5F:18:6A:B3:E2:6C:D2:62:31:0F:7D:EC:B5:8B:15 Certificate issuer: /CN=A91B7D3D/serialNumber=8351A0A89458A47426A570A02901F8E6542E82E2 Certificate serial: 03FB Authority key identifier: 83:51:A0:A8:94:58:A4:74:26:A5:70:A0:29:01:F8:E6:54:2E:82:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1GgqJRYpHQmpXCgKQH45lQuguI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/D3E15ECEA1E611EDABFD7D7FC4F9AE02.roa Signing time: Sun 12 Jan 2025 23:53:45 +0000 ROA not before: Sun 12 Jan 2025 23:53:45 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 141446 IP address blocks: 103.177.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.crl rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1GgqJRYpHQmpXCgKQH45lQuguI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:34:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1019 (0x3fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7D3D Validity Not Before: Jan 12 23:53:45 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67845609-2cfe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c7:06:cd:90:04:17:d0:f3:06:70:df:39:2e: fa:80:e6:53:80:fd:80:5c:d9:c0:78:f8:17:9d:d5: 5b:92:f8:8c:75:34:6a:ab:17:4e:14:db:98:21:e5: 5d:04:e5:ed:41:2c:96:48:5e:12:c6:ee:86:df:1f: 10:d0:4a:44:70:2c:85:70:3d:92:b2:f4:7b:48:9f: e8:86:d8:a4:bc:e5:51:23:cf:6c:11:d8:b2:d2:33: 1a:de:c4:ad:3a:26:93:70:e2:a1:72:b0:13:6a:09: b6:fe:b1:a4:a5:a8:ac:3c:86:7d:55:34:a2:07:a7: aa:2b:9f:be:8f:7d:47:7e:2e:76:37:0f:d3:e1:18: 37:79:08:55:3d:e4:28:e0:87:fa:29:83:bf:b3:cd: c7:6f:43:dc:d6:3e:98:c6:98:05:a1:e4:f1:64:aa: 40:cb:20:52:65:17:43:61:03:24:0c:7a:b3:ce:51: e0:df:f2:6f:a8:1e:1e:8e:5e:d9:7d:21:e5:39:b8: 2b:3a:9b:07:4c:17:dc:e9:ad:b5:4c:ff:7f:42:d7: 90:f5:88:bb:65:5f:a5:a3:ab:4b:1e:53:dc:d7:d6: 77:86:24:e6:45:99:98:8f:0c:3a:64:20:99:8d:65: ec:b9:43:ca:8a:fa:a6:73:5d:67:27:07:44:74:31: af:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:3D:E4:82:76:5F:18:6A:B3:E2:6C:D2:62:31:0F:7D:EC:B5:8B:15 X509v3 Authority Key Identifier: keyid:83:51:A0:A8:94:58:A4:74:26:A5:70:A0:29:01:F8:E6:54:2E:82:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/g1GgqJRYpHQmpXCgKQH45lQuguI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g1GgqJRYpHQmpXCgKQH45lQuguI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7D3D/233C0B4663BC11EC8B8C832AC4F9AE02/D3E15ECEA1E611EDABFD7D7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.177.169.0/24 Signature Algorithm: sha256WithRSAEncryption 51:0e:99:ee:19:8e:3f:92:4d:15:6b:1c:e4:9e:93:8a:51:5b: 92:38:5a:df:7b:27:20:c7:6e:80:80:ed:90:ef:2d:f4:21:09: e1:a2:ce:f3:28:aa:f3:56:12:8d:51:4f:c8:2b:7f:64:bf:7e: 97:2c:5d:4f:3d:d0:cd:ec:28:ec:8d:08:64:27:60:ff:1a:b1: a7:0c:93:db:7f:78:42:33:fc:57:6f:e7:ea:e1:25:ef:4f:60: 5b:87:0a:8f:6b:4b:67:ce:ba:a4:4b:f2:c2:ca:e6:26:7a:7e: 58:da:cf:cc:be:30:15:a5:19:c5:5c:f0:98:51:49:94:ed:c4: 99:da:35:4e:fc:c0:a0:00:a2:6b:8b:2f:2c:9b:ad:c5:0d:86: b7:6c:3f:1b:1c:4c:e0:95:60:00:2f:fb:f6:fe:58:62:0a:9f: 90:fd:96:5c:05:a1:37:cc:14:6f:15:cc:a6:61:9c:a0:6b:de: c0:30:9d:78:af:1c:ff:fb:79:b5:4b:3f:ef:d1:6b:3d:eb:41: 6f:d3:7c:8e:00:70:f8:fd:d5:5f:df:db:fb:63:b0:25:0b:72: b5:3a:10:c1:bb:9d:d6:3f:4e:07:a5:3a:3e:67:ce:90:df:06: 66:e0:1b:7f:ba:49:89:a1:51:4a:47:ea:d5:bd:15:1f:63:38: cb:b0:1d:c3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdEM0QxMTAvBgNVBAUTKDgzNTFBMEE4OTQ1OEE0NzQyNkE1NzBBMDI5MDFGOEU2 NTQyRTgyRTIwHhcNMjUwMTEyMjM1MzQ1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg0NTYwOS0yY2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuscGzZAEF9DzBnDfOS76gOZTgP2AXNnAePgXndVbkviMdTRqqxdOFNuYIeVd BOXtQSyWSF4Sxu6G3x8Q0EpEcCyFcD2SsvR7SJ/ohtikvOVRI89sEdiy0jMa3sSt OiaTcOKhcrATagm2/rGkpaisPIZ9VTSiB6eqK5++j31Hfi52Nw/T4Rg3eQhVPeQo 4If6KYO/s83Hb0Pc1j6YxpgFoeTxZKpAyyBSZRdDYQMkDHqzzlHg3/JvqB4ejl7Z fSHlObgrOpsHTBfc6a21TP9/QteQ9Yi7ZV+lo6tLHlPc19Z3hiTmRZmYjww6ZCCZ jWXsuUPKivqmc11nJwdEdDGvLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFc95IJ2 Xxhqs+Js0mIxD33stYsVMB8GA1UdIwQYMBaAFINRoKiUWKR0JqVwoCkB+OZULoLi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0QzRC8yMzNDMEI0NjYz QkMxMUVDOEI4QzgzMkFDNEY5QUUwMi9nMUdncUpSWXBIUW1wWENnS1FINDVsUXVn dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cxR2dxSlJZcEhRbXBYQ2dLUUg0NWxRdWd1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjdEM0QvMjMzQzBCNDY2M0JDMTFFQzhCOEM4MzJBQzRGOUFFMDIvRDNFMTVFQ0VB MUU2MTFFREFCRkQ3RDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnsakwDQYJKoZIhvcNAQELBQADggEBAFEOme4Zjj+STRVr HOSek4pRW5I4Wt97JyDHboCA7ZDvLfQhCeGizvMoqvNWEo1RT8grf2S/fpcsXU89 0M3sKOyNCGQnYP8asacMk9t/eEIz/Fdv5+rhJe9PYFuHCo9rS2fOuqRL8sLK5iZ6 fljaz8y+MBWlGcVc8JhRSZTtxJnaNU78wKAAomuLLyybrcUNhrdsPxscTOCVYAAv +/b+WGIKn5D9llwFoTfMFG8VzKZhnKBr3sAwnXivHP/7ebVLP+/Raz3rQW/TfI4A cPj91V/f2/tjsCULcrU6EMG7ndY/TgelOj5nzpDfBmbgG3+6SYmhUUpH6tW9FR9j OMuwHcM= -----END CERTIFICATE-----Generated at Sat Apr 5 08:02:13 2025 by rpki-client