$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/DB78EC4202C411F0A370F12EC4F9AE02.roa File: DB78EC4202C411F0A370F12EC4F9AE02.roa (raw, json) Hash identifier: cYCE21n+c8J3/ZWE+DpkusC3dL/h3MNQr/C6R6q0LQY= Subject key identifier: 0A:D9:CD:DB:A3:B5:5B:CE:10:9F:CA:0A:68:A6:64:77:71:9A:6A:29 Certificate issuer: /CN=A91B9C52/serialNumber=CBC14D405778462F9C5D91583A5C71836F23C19D Certificate serial: 02 Authority key identifier: CB:C1:4D:40:57:78:46:2F:9C:5D:91:58:3A:5C:71:83:6F:23:C1:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/DB78EC4202C411F0A370F12EC4F9AE02.roa Signing time: Mon 17 Mar 2025 00:14:57 +0000 ROA not before: Mon 17 Mar 2025 00:14:57 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 140697 IP address blocks: 103.151.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:51:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9C52 Validity Not Before: Mar 17 00:14:57 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67d76981-5b96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f9:a0:4c:03:26:79:66:50:27:48:0d:8a:b9: 60:b7:d3:f3:22:39:be:08:f4:5f:20:d3:7c:2d:b7: 10:7f:1f:88:1f:49:cf:57:a1:af:64:fe:82:af:01: eb:fb:64:ee:07:83:d5:f2:f1:27:45:cd:42:81:35: 15:f2:56:5e:6f:93:6a:13:2c:d9:4e:7a:a8:61:a1: db:97:9e:9b:9e:ec:67:cd:1c:44:89:63:50:fc:fd: d3:95:14:cd:e4:f4:6f:f7:ea:7c:24:c6:d4:8f:b7: a8:0a:9e:6b:25:0a:c2:37:91:a0:94:ab:72:a5:3d: c6:3b:d8:b6:fc:7d:76:79:0b:0a:ee:0a:c7:19:bb: 42:97:a2:0d:ce:60:c9:1e:32:79:a4:a7:26:94:e6: 8b:a0:06:f3:73:7e:5a:fa:4b:32:b6:ef:3c:ea:1b: d3:3f:71:c5:9a:66:41:e8:d3:b5:b6:6c:7e:85:81: 0e:7a:2c:66:98:70:07:a2:1a:6e:0f:99:4b:76:5a: c2:75:69:1a:a8:53:1e:13:1c:24:f4:0b:4f:0a:ea: cd:a6:ce:bd:e4:28:37:77:f5:48:a6:dc:7e:30:af: 7a:b9:53:0d:ce:ea:6a:32:bd:00:85:75:ac:95:9f: f4:ae:13:54:86:8c:f3:88:86:26:18:70:02:7a:3e: fa:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:D9:CD:DB:A3:B5:5B:CE:10:9F:CA:0A:68:A6:64:77:71:9A:6A:29 X509v3 Authority Key Identifier: keyid:CB:C1:4D:40:57:78:46:2F:9C:5D:91:58:3A:5C:71:83:6F:23:C1:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y8FNQFd4Ri-cXZFYOlxxg28jwZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9C52/6B7151620D7E11EC9C0B5F75C4F9AE02/DB78EC4202C411F0A370F12EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.237.0/24 Signature Algorithm: sha256WithRSAEncryption 61:29:23:80:e1:6f:c8:63:1f:e3:eb:1e:cd:87:9e:d8:fc:b1: e6:ac:f0:fd:41:2a:71:89:3e:fb:34:02:68:15:f8:79:bf:4d: 91:df:1a:91:0d:9a:af:49:e1:cc:72:9f:e0:68:fc:29:22:e4: 66:be:0d:94:97:f9:71:2f:bc:39:5c:98:36:41:a7:a5:ff:3c: 58:7a:41:91:ad:a3:56:40:be:95:58:4d:a8:50:d7:f8:b9:34: 24:9c:af:3b:16:40:41:5e:54:01:db:6d:ac:42:de:80:b6:6a: 3a:dd:41:3b:ec:5a:7b:0b:0e:48:cc:37:ca:b7:7f:06:78:3b: 96:57:66:07:a4:22:0c:9e:16:cb:76:d8:b8:62:71:f8:be:eb: 8d:2d:90:55:b4:93:6c:4e:4d:3f:f8:ed:6e:b5:bb:74:46:cf: 8a:2f:8e:3d:df:81:7c:fa:96:a4:6c:f3:3d:02:bd:fc:7f:2e: c3:46:4d:07:3f:1d:9f:fc:81:e0:35:e2:63:bd:cc:8b:80:33: 67:c1:9d:b1:e6:68:0d:a3:be:31:8c:f4:0d:46:8c:43:f7:2d: 87:df:ea:6c:7d:63:90:60:33:90:9e:58:2f:c2:d1:e3:df:29: 7f:52:b7:b2:d3:62:71:56:d2:9b:fe:33:25:b3:60:e1:f7:e2: 61:4a:a9:36 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OUM1MjExMC8GA1UEBRMoQ0JDMTRENDA1Nzc4NDYyRjlDNUQ5MTU4M0E1QzcxODM2 RjIzQzE5RDAeFw0yNTAzMTcwMDE0NTdaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZDc2OTgxLTViOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDf+aBMAyZ5ZlAnSA2KuWC30/MiOb4I9F8g03wttxB/H4gfSc9Xoa9k/oKvAev7 ZO4Hg9Xy8SdFzUKBNRXyVl5vk2oTLNlOeqhhoduXnpue7GfNHESJY1D8/dOVFM3k 9G/36nwkxtSPt6gKnmslCsI3kaCUq3KlPcY72Lb8fXZ5CwruCscZu0KXog3OYMke MnmkpyaU5ougBvNzflr6SzK27zzqG9M/ccWaZkHo07W2bH6FgQ56LGaYcAeiGm4P mUt2WsJ1aRqoUx4THCT0C08K6s2mzr3kKDd39Uim3H4wr3q5Uw3O6moyvQCFdayV n/SuE1SGjPOIhiYYcAJ6PvrdAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUCtnN26O1 W84Qn8oKaKZkd3GaaikwHwYDVR0jBBgwFoAUy8FNQFd4Ri+cXZFYOlxxg28jwZ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5QzUyLzZCNzE1MTYyMEQ3 RTExRUM5QzBCNUY3NUM0RjlBRTAyL3k4Rk5RRmQ0UmktY1haRllPbHh4ZzI4anda MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveThGTlFGZDRSaS1jWFpGWU9seHhnMjhqd1owLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OUM1Mi82QjcxNTE2MjBEN0UxMUVDOUMwQjVGNzVDNEY5QUUwMi9EQjc4RUM0MjAy QzQxMUYwQTM3MEYxMkVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeX7TANBgkqhkiG9w0BAQsFAAOCAQEAYSkjgOFvyGMf4+se zYee2Pyx5qzw/UEqcYk++zQCaBX4eb9Nkd8akQ2ar0nhzHKf4Gj8KSLkZr4NlJf5 cS+8OVyYNkGnpf88WHpBka2jVkC+lVhNqFDX+Lk0JJyvOxZAQV5UAdttrELegLZq Ot1BO+xaewsOSMw3yrd/Bng7lldmB6QiDJ4Wy3bYuGJx+L7rjS2QVbSTbE5NP/jt brW7dEbPii+OPd+BfPqWpGzzPQK9/H8uw0ZNBz8dn/yB4DXiY73Mi4AzZ8GdseZo DaO+MYz0DUaMQ/cth9/qbH1jkGAzkJ5YL8LR498pf1K3stNicVbSm/4zJbNg4ffi YUqpNg== -----END CERTIFICATE-----Generated at Sat Apr 5 03:52:16 2025 by rpki-client