$ rpki-client -vvf rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/7F17B380BED411EBA325CC76C4F9AE02.roa File: 7F17B380BED411EBA325CC76C4F9AE02.roa (raw, json) Hash identifier: XDIx2Mu+3w+iq57LYXThCAlha4BzO8LkP4nQjVrOfjc= Subject key identifier: 1A:75:D5:83:20:16:0A:69:28:98:81:74:4C:B0:82:CB:57:2F:C7:35 Certificate issuer: /CN=A91C02B3/serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Certificate serial: 0594 Authority key identifier: 1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/7F17B380BED411EBA325CC76C4F9AE02.roa Signing time: Tue 04 Feb 2025 23:12:45 +0000 ROA not before: Tue 04 Feb 2025 23:12:45 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 137431 IP address blocks: 103.108.104.0/22 maxlen: 24 2402:6540::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 22:47:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1428 (0x594) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C02B3, serialNumber=1BDC8A9C113DBDF33FBCF1C141B94BBB7D70127A Validity Not Before: Feb 4 23:12:45 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a29eed-60bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:4b:ed:35:7e:b5:9d:8a:54:4a:c4:7b:62:dd: 4a:87:ad:c7:bc:0f:52:85:df:99:a9:26:c6:0e:48: 90:2c:61:e3:7d:04:52:15:a9:49:4d:f7:67:b6:33: b5:eb:2d:d1:05:51:43:c1:b1:c4:6f:9d:0b:10:dc: 45:d9:7c:fb:95:fd:e2:ab:f5:7f:49:58:1e:b2:df: fe:5f:46:0b:cf:c3:95:71:bb:01:46:22:e2:63:31: a2:c2:b1:59:66:7c:c7:8c:c4:37:6a:e9:32:68:66: b0:3d:69:c4:f1:5d:7b:d7:79:5f:b8:7a:74:ac:76: 77:d3:4f:79:5a:bf:41:c8:1b:80:24:f6:67:26:4f: 88:81:d4:ba:aa:7f:ef:13:1d:ed:e8:06:b6:04:b4: 3f:cc:4a:dd:32:35:8b:e4:4e:98:d9:28:af:a1:7b: b3:60:81:32:6d:42:70:d3:6c:8f:64:3c:2c:f0:b8: a5:ad:e9:62:f7:99:47:6c:db:32:07:27:a6:1d:3c: 11:fa:62:16:94:93:1c:df:77:6b:30:70:63:e9:7c: 3c:2d:de:39:1f:5a:9f:54:2b:ac:30:c6:58:39:3d: 68:90:52:85:e9:45:85:9f:c1:b7:36:99:9b:9e:03: b8:3e:b3:0e:50:69:e7:97:74:62:78:bb:0c:aa:16: f5:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:75:D5:83:20:16:0A:69:28:98:81:74:4C:B0:82:CB:57:2F:C7:35 X509v3 Authority Key Identifier: keyid:1B:DC:8A:9C:11:3D:BD:F3:3F:BC:F1:C1:41:B9:4B:BB:7D:70:12:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/G9yKnBE9vfM_vPHBQblLu31wEno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9yKnBE9vfM_vPHBQblLu31wEno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C02B3/2C8242AEBED211EB9F409076C4F9AE02/7F17B380BED411EBA325CC76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.108.104.0/22 IPv6: 2402:6540::/32 Signature Algorithm: sha256WithRSAEncryption 24:24:ea:94:1e:c9:7f:fa:cc:df:97:36:1b:b4:d9:91:d1:c5: 67:02:a2:f0:60:fb:db:9a:11:d2:7a:c0:94:45:37:35:24:63: 79:6c:92:c5:44:77:67:0f:2a:6b:0e:1c:aa:30:71:1e:1c:ed: 28:37:42:71:5e:6f:ec:21:98:78:47:31:44:f0:d4:f9:67:ff: 70:aa:59:aa:b1:c5:4c:9d:2a:53:fc:34:7c:31:76:1b:58:28: 84:59:c5:2b:be:ab:fa:6f:b5:ca:ee:bd:7f:25:cf:c0:36:a2: 1b:48:30:53:45:fb:eb:05:4b:91:15:2b:d9:be:7f:23:95:3d: 73:58:86:4a:53:c4:d8:94:6c:96:25:3e:a3:80:b1:04:38:37: 11:6d:ba:1b:a8:c9:b4:90:97:06:f4:e9:7a:1a:58:28:38:01: b6:d5:12:9c:4d:cd:97:67:2a:46:32:6a:41:12:b2:42:30:ed: 44:4d:5c:6d:3f:41:0d:5c:42:db:6b:fb:04:87:f5:d8:21:60: bf:49:cd:54:76:cb:30:20:45:fa:5e:41:63:de:2f:1f:5e:84: b0:d6:a8:8f:8d:8e:da:cf:e2:d7:d1:db:6c:fe:63:ca:0f:c2: da:56:cc:68:00:b2:af:37:11:49:c7:4b:95:a0:18:6f:73:d4: a2:a3:d9:a7 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzAyQjMxMTAvBgNVBAUTKDFCREM4QTlDMTEzREJERjMzRkJDRjFDMTQxQjk0QkJC N0Q3MDEyN0EwHhcNMjUwMjA0MjMxMjQ1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyOWVlZC02MGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1kvtNX61nYpUSsR7Yt1Kh63HvA9Shd+ZqSbGDkiQLGHjfQRSFalJTfdntjO1 6y3RBVFDwbHEb50LENxF2Xz7lf3iq/V/SVgest/+X0YLz8OVcbsBRiLiYzGiwrFZ ZnzHjMQ3aukyaGawPWnE8V1713lfuHp0rHZ30095Wr9ByBuAJPZnJk+IgdS6qn/v Ex3t6Aa2BLQ/zErdMjWL5E6Y2SivoXuzYIEybUJw02yPZDws8Lilreli95lHbNsy ByemHTwR+mIWlJMc33drMHBj6Xw8Ld45H1qfVCusMMZYOT1okFKF6UWFn8G3Npmb ngO4PrMOUGnnl3RieLsMqhb1mwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBp11YMg FgppKJiBdEywgstXL8c1MB8GA1UdIwQYMBaAFBvcipwRPb3zP7zxwUG5S7t9cBJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMDJCMy8yQzgyNDJBRUJF RDIxMUVCOUY0MDkwNzZDNEY5QUUwMi9HOXlLbkJFOXZmTV92UEhCUWJsTHUzMXdF bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eUtuQkU5dmZNX3ZQSEJRYmxMdTMxd0Vuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzAyQjMvMkM4MjQyQUVCRUQyMTFFQjlGNDA5MDc2QzRGOUFFMDIvN0YxN0IzODBC RUQ0MTFFQkEzMjVDQzc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnbGgwDQQCAAIwBwMFACQCZUAwDQYJKoZIhvcNAQELBQAD ggEBACQk6pQeyX/6zN+XNhu02ZHRxWcCovBg+9uaEdJ6wJRFNzUkY3lsksVEd2cP KmsOHKowcR4c7Sg3QnFeb+whmHhHMUTw1Pln/3CqWaqxxUydKlP8NHwxdhtYKIRZ xSu+q/pvtcruvX8lz8A2ohtIMFNF++sFS5EVK9m+fyOVPXNYhkpTxNiUbJYlPqOA sQQ4NxFtuhuoybSQlwb06XoaWCg4AbbVEpxNzZdnKkYyakESskIw7URNXG0/QQ1c Qttr+wSH9dghYL9JzVR2yzAgRfpeQWPeLx9ehLDWqI+NjtrP4tfR22z+Y8oPwtpW zGgAsq83EUnHS5WgGG9z1KKj2ac= -----END CERTIFICATE-----Generated at Sun Apr 13 04:38:31 2025 by rpki-client