$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7672/43764BECF72411E6ABF02B3CC4F9AE02/2ADC134C973F11EEA24DBE15C4F9AE02.roa File: 2ADC134C973F11EEA24DBE15C4F9AE02.roa (raw, json) Hash identifier: JZKHOUDlu06jRnQ1v4KmmKzdpSwhu9askiAeMGIAkyw= Subject key identifier: FA:36:75:E2:FE:25:B4:4A:D8:F5:5D:0E:2D:64:BD:E0:37:6E:69:14 Certificate issuer: /CN=A91C7672/serialNumber=51569B48C03891454E469853A67DB909BEC2CAD6 Certificate serial: 1BD3 Authority key identifier: 51:56:9B:48:C0:38:91:45:4E:46:98:53:A6:7D:B9:09:BE:C2:CA:D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UVabSMA4kUVORphTpn25Cb7CytY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7672/43764BECF72411E6ABF02B3CC4F9AE02/2ADC134C973F11EEA24DBE15C4F9AE02.roa Signing time: Thu 30 Jan 2025 16:33:41 +0000 ROA not before: Thu 30 Jan 2025 16:33:41 +0000 ROA not after: Mon 02 Jun 2025 00:00:00 +0000 asID: 135882 IP address blocks: 103.78.252.0/24 maxlen: 24 103.78.253.0/24 maxlen: 24 103.78.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7672/43764BECF72411E6ABF02B3CC4F9AE02/UVabSMA4kUVORphTpn25Cb7CytY.crl rsync://rpki.apnic.net/member_repository/A91C7672/43764BECF72411E6ABF02B3CC4F9AE02/UVabSMA4kUVORphTpn25Cb7CytY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UVabSMA4kUVORphTpn25Cb7CytY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 16:11:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7123 (0x1bd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7672, serialNumber=51569B48C03891454E469853A67DB909BEC2CAD6 Validity Not Before: Jan 30 16:33:41 2025 GMT Not After : Jun 2 00:00:00 2025 GMT Subject: CN=679ba9e5-6aaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f1:02:ad:61:07:41:dd:e7:a9:6f:30:6c:97: cb:4f:fd:b1:1d:cf:5b:e0:94:2a:4e:ad:ae:0d:32: 5c:cd:f5:9a:ea:fd:5c:0d:81:8a:72:cf:c2:0b:7e: 1f:4e:26:1f:38:42:f5:af:f4:0a:7f:c1:5b:62:18: b5:d0:8f:93:68:08:6b:50:09:af:1e:72:83:7c:a8: 03:a3:04:b9:c2:22:12:56:15:f9:6b:aa:18:37:07: 48:e6:3b:aa:2d:95:b9:09:b6:19:d6:b9:69:f4:f3: dd:d9:20:0d:97:13:95:3e:02:69:01:75:c2:3e:6d: 81:04:46:9d:76:7f:e9:d1:5b:74:d4:d5:3b:36:bd: 95:08:8d:08:61:74:b4:f6:d3:d8:bf:48:80:41:8f: 66:3c:a6:6f:33:8e:74:ff:2f:96:69:b1:d4:14:6c: cf:bb:7c:3d:34:9b:a3:5d:96:3a:d8:93:f4:65:e9: f0:6d:d6:56:73:bf:7b:dc:56:79:95:16:75:32:b5: 8e:0f:fb:c2:92:08:72:c0:4b:59:f3:08:cc:c1:36: a1:f8:8c:02:60:70:1d:f2:b7:c4:02:ef:42:d0:91: db:f7:ac:79:12:82:16:df:41:79:0b:b9:13:c7:19: 9f:28:43:a4:14:89:d5:1d:00:35:1b:d3:f1:a7:68: 62:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:36:75:E2:FE:25:B4:4A:D8:F5:5D:0E:2D:64:BD:E0:37:6E:69:14 X509v3 Authority Key Identifier: keyid:51:56:9B:48:C0:38:91:45:4E:46:98:53:A6:7D:B9:09:BE:C2:CA:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7672/43764BECF72411E6ABF02B3CC4F9AE02/UVabSMA4kUVORphTpn25Cb7CytY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UVabSMA4kUVORphTpn25Cb7CytY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7672/43764BECF72411E6ABF02B3CC4F9AE02/2ADC134C973F11EEA24DBE15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.78.252.0-103.78.254.255 Signature Algorithm: sha256WithRSAEncryption 82:76:30:64:d5:6d:7c:11:e1:9e:31:c5:d7:68:94:94:ee:26: 3e:1a:be:62:35:bd:3b:80:db:cd:41:2f:7e:9d:d8:ab:8e:af: 9e:94:34:e6:2e:4c:3d:f1:73:9e:02:d6:4f:f6:05:e7:ac:66: d5:24:b2:24:7d:e5:4e:a2:e4:9c:00:17:bc:9c:d2:47:49:41: 20:7f:d3:46:69:53:4c:02:65:b1:b2:32:25:e2:6e:5d:59:91: a7:9d:1b:eb:61:bd:44:b5:77:06:62:15:fb:29:28:9c:c0:ba: 4e:a1:56:1c:ac:33:a5:a1:58:f6:82:64:e0:6e:8c:fb:d7:86: 83:b7:36:d4:63:c7:ac:92:39:cd:3d:e4:a0:eb:eb:d6:b9:52: 96:6a:65:18:a3:f9:00:a7:68:75:d1:6e:30:57:d1:98:64:5d: 5c:2a:dc:c2:2d:ad:94:f5:62:69:f6:97:89:36:0e:42:4f:72: 73:de:ea:26:ab:c8:92:45:66:6f:51:f7:2d:fc:e3:37:93:24: fb:e9:15:71:ef:a5:67:1a:70:78:28:e0:11:4b:9c:9c:02:97: 0a:df:db:b1:cb:b3:f1:ac:95:b5:cd:3c:73:d5:15:c3:8f:42: 18:02:02:32:f2:67:d9:b2:17:6b:fc:93:f2:92:5f:9c:ee:71: 2d:2d:0b:11 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICG9MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc2NzIxMTAvBgNVBAUTKDUxNTY5QjQ4QzAzODkxNDU0RTQ2OTg1M0E2N0RCOTA5 QkVDMkNBRDYwHhcNMjUwMTMwMTYzMzQxWhcNMjUwNjAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzliYTllNS02YWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3/ECrWEHQd3nqW8wbJfLT/2xHc9b4JQqTq2uDTJczfWa6v1cDYGKcs/CC34f TiYfOEL1r/QKf8FbYhi10I+TaAhrUAmvHnKDfKgDowS5wiISVhX5a6oYNwdI5juq LZW5CbYZ1rlp9PPd2SANlxOVPgJpAXXCPm2BBEaddn/p0Vt01NU7Nr2VCI0IYXS0 9tPYv0iAQY9mPKZvM450/y+WabHUFGzPu3w9NJujXZY62JP0ZenwbdZWc7973FZ5 lRZ1MrWOD/vCkghywEtZ8wjMwTah+IwCYHAd8rfEAu9C0JHb96x5EoIW30F5C7kT xxmfKEOkFInVHQA1G9Pxp2hiXQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFPo2deL+ JbRK2PVdDi1kveA3bmkUMB8GA1UdIwQYMBaAFFFWm0jAOJFFTkaYU6Z9uQm+wsrW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzY3Mi80Mzc2NEJFQ0Y3 MjQxMUU2QUJGMDJCM0NDNEY5QUUwMi9VVmFiU01BNGtVVk9ScGhUcG4yNUNiN0N5 dFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VWYWJTTUE0a1VWT1JwaFRwbjI1Q2I3Q3l0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzc2NzIvNDM3NjRCRUNGNzI0MTFFNkFCRjAyQjNDQzRGOUFFMDIvMkFEQzEzNEM5 NzNGMTFFRUEyNERCRTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAmdO/AMEAGdO/jANBgkqhkiG9w0BAQsFAAOCAQEAgnYw ZNVtfBHhnjHF12iUlO4mPhq+YjW9O4DbzUEvfp3Yq46vnpQ05i5MPfFzngLWT/YF 56xm1SSyJH3lTqLknAAXvJzSR0lBIH/TRmlTTAJlsbIyJeJuXVmRp50b62G9RLV3 BmIV+ykonMC6TqFWHKwzpaFY9oJk4G6M+9eGg7c21GPHrJI5zT3koOvr1rlSlmpl GKP5AKdoddFuMFfRmGRdXCrcwi2tlPViafaXiTYOQk9yc97qJqvIkkVmb1H3Lfzj N5Mk++kVce+lZxpweCjgEUucnAKXCt/bscuz8ayVtc08c9UVw49CGAICMvJn2bIX a/yT8pJfnO5xLS0LEQ== -----END CERTIFICATE-----Generated at Sat Apr 12 23:37:57 2025 by rpki-client