$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/25985D28EE1411EFB4908431C4F9AE02.roa File: 25985D28EE1411EFB4908431C4F9AE02.roa (raw, json) Hash identifier: GsEWcWV51pwlPsxUODRoLwLibcUDu1FJ1giEHi8eZSw= Subject key identifier: 35:42:36:E6:01:85:1F:F7:0C:7A:5A:B5:88:3C:6D:B0:8A:6A:4A:D3 Certificate issuer: /CN=A91BDCF1/serialNumber=C44F2ACAB2A779994315AA93B323DA9B475C7B9A Certificate serial: 036C Authority key identifier: C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/25985D28EE1411EFB4908431C4F9AE02.roa Signing time: Tue 18 Feb 2025 16:19:37 +0000 ROA not before: Tue 18 Feb 2025 16:19:37 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 9318 IP address blocks: 103.178.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.crl rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:07:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 876 (0x36c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDCF1 Validity Not Before: Feb 18 16:19:37 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67b4b319-dd64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:98:cf:e8:5d:ff:ea:28:90:cb:b0:d2:75:47: 64:0f:ae:20:7d:2f:e4:e5:bb:e2:44:d5:0f:ed:8d: f3:a6:26:f2:4b:de:0d:f0:fa:8e:aa:22:41:78:ec: 47:ab:96:2a:db:f0:71:23:2c:67:03:53:2b:2f:76: ce:89:65:2f:39:f4:0e:f0:5e:ce:8c:aa:1f:24:5d: 7c:2e:e9:cd:24:e6:a3:b5:40:36:db:c8:34:39:a4: 09:a2:8d:4f:49:80:a5:40:61:e5:cc:c3:f8:47:96: e4:5b:33:5f:27:2f:8a:a9:a7:c1:de:52:4c:2e:9e: 23:5c:5f:f6:3c:f8:ba:b3:f9:b5:46:75:15:ba:be: ef:78:1d:29:db:91:93:fb:d4:5c:49:f2:53:04:87: 70:22:8a:ff:fa:0c:f0:eb:e6:92:ed:b8:50:61:63: 5c:57:45:d5:dc:da:21:13:bd:0b:69:80:3e:59:26: 08:7f:a6:a4:7b:10:35:13:fd:0a:ad:6d:94:3b:78: f4:cf:31:28:bb:89:6d:6e:d0:43:90:99:73:1e:00: 58:f3:d1:31:9b:c5:b0:36:96:d4:c6:d6:f1:be:80: 0b:11:dd:1e:a6:67:9b:61:a2:6c:a2:6c:9a:d3:8e: 5b:f7:4e:38:57:b6:b9:65:41:fe:f8:f2:14:27:07: 96:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:42:36:E6:01:85:1F:F7:0C:7A:5A:B5:88:3C:6D:B0:8A:6A:4A:D3 X509v3 Authority Key Identifier: keyid:C4:4F:2A:CA:B2:A7:79:99:43:15:AA:93:B3:23:DA:9B:47:5C:7B:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/xE8qyrKneZlDFaqTsyPam0dce5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xE8qyrKneZlDFaqTsyPam0dce5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDCF1/EB591122A83C11ECA3A4F325C4F9AE02/25985D28EE1411EFB4908431C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.178.56.0/24 Signature Algorithm: sha256WithRSAEncryption 44:96:52:0d:6c:c1:ff:00:09:30:c6:2a:b7:07:a8:fb:6f:34: 3f:a0:42:b7:73:14:10:36:59:33:30:9a:ab:28:cb:6f:83:b6: 40:ad:b6:7b:38:cb:02:15:16:ad:d4:99:2b:8a:33:b7:f7:da: fe:2f:81:41:0e:6d:10:67:09:56:e0:21:1b:49:f1:f5:59:51: 96:9d:80:1c:0b:cd:59:f9:b4:84:3e:a2:50:89:79:4e:47:a0: 42:c4:04:24:3b:43:a5:10:c5:66:7b:2e:4a:bb:32:65:65:20: cd:44:49:9a:78:23:6e:34:af:77:07:4b:df:32:ff:cf:b2:17: 4d:db:8a:d2:a9:3d:5c:ed:66:0e:e6:83:02:4c:64:cc:73:0d: 80:64:61:d7:2d:b1:35:77:ee:c1:21:6d:d7:b8:03:28:b8:a3: 76:10:6a:fb:f7:db:fc:31:42:33:29:c6:21:9a:70:ea:db:5b: b1:d2:e4:78:47:db:7c:65:c1:fb:49:99:80:ef:68:3d:df:33: 7f:03:c8:aa:75:62:29:de:22:eb:46:f9:6f:06:d9:3f:0e:94: d9:e7:3a:b9:48:e6:c5:83:d1:7f:8a:81:09:33:41:c9:70:e8: 4f:d1:fc:1f:b3:1d:e9:3f:fb:e5:76:3e:a8:7b:f7:da:b0:89: b4:24:f0:23 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRDRjExMTAvBgNVBAUTKEM0NEYyQUNBQjJBNzc5OTk0MzE1QUE5M0IzMjNEQTlC NDc1QzdCOUEwHhcNMjUwMjE4MTYxOTM3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I0YjMxOS1kZDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJjP6F3/6iiQy7DSdUdkD64gfS/k5bviRNUP7Y3zpibyS94N8PqOqiJBeOxH q5Yq2/BxIyxnA1MrL3bOiWUvOfQO8F7OjKofJF18LunNJOajtUA228g0OaQJoo1P SYClQGHlzMP4R5bkWzNfJy+KqafB3lJMLp4jXF/2PPi6s/m1RnUVur7veB0p25GT +9RcSfJTBIdwIor/+gzw6+aS7bhQYWNcV0XV3NohE70LaYA+WSYIf6akexA1E/0K rW2UO3j0zzEou4ltbtBDkJlzHgBY89Exm8WwNpbUxtbxvoALEd0epmebYaJsomya 045b9044V7a5ZUH++PIUJweWiwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDVCNuYB hR/3DHpatYg8bbCKakrTMB8GA1UdIwQYMBaAFMRPKsqyp3mZQxWqk7Mj2ptHXHua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRENGMS9FQjU5MTEyMkE4 M0MxMUVDQTNBNEYzMjVDNEY5QUUwMi94RThxeXJLbmVabERGYXFUc3lQYW0wZGNl NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hFOHF5cktuZVpsREZhcVRzeVBhbTBkY2U1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkRDRjEvRUI1OTExMjJBODNDMTFFQ0EzQTRGMzI1QzRGOUFFMDIvMjU5ODVEMjhF RTE0MTFFRkI0OTA4NDMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnsjgwDQYJKoZIhvcNAQELBQADggEBAESWUg1swf8ACTDG KrcHqPtvND+gQrdzFBA2WTMwmqsoy2+DtkCttns4ywIVFq3UmSuKM7f32v4vgUEO bRBnCVbgIRtJ8fVZUZadgBwLzVn5tIQ+olCJeU5HoELEBCQ7Q6UQxWZ7Lkq7MmVl IM1ESZp4I240r3cHS98y/8+yF03bitKpPVztZg7mgwJMZMxzDYBkYdctsTV37sEh bde4Ayi4o3YQavv32/wxQjMpxiGacOrbW7HS5HhH23xlwftJmYDvaD3fM38DyKp1 YineIutG+W8G2T8OlNnnOrlI5sWD0X+KgQkzQclw6E/R/B+zHek/++V2Pqh799qw ibQk8CM= -----END CERTIFICATE-----Generated at Sun Apr 6 01:46:58 2025 by rpki-client