$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE4C1/3644887AE9BB11EFBAAC9D70C4F9AE02/FB4C0514E9C311EFADA7270AC4F9AE02.roa File: FB4C0514E9C311EFADA7270AC4F9AE02.roa (raw, json) Hash identifier: b+8Vf+1PI1yNyvvstVRxJPifoMZ8KqBIQc0NBIzO5qc= Subject key identifier: 3C:3C:3C:B7:A3:1D:BF:A2:2C:98:EF:7C:0B:3E:70:3D:C2:C4:28:BE Certificate issuer: /CN=A91CE4C1/serialNumber=047EF1A1CF65966349866767655648EEF9110C5A Certificate serial: 23 Authority key identifier: 04:7E:F1:A1:CF:65:96:63:49:86:67:67:65:56:48:EE:F9:11:0C:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BH7xoc9llmNJhmdnZVZI7vkRDFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE4C1/3644887AE9BB11EFBAAC9D70C4F9AE02/FB4C0514E9C311EFADA7270AC4F9AE02.roa Signing time: Tue 25 Mar 2025 07:14:01 +0000 ROA not before: Tue 25 Mar 2025 07:14:01 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 140951 IP address blocks: 103.84.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE4C1/3644887AE9BB11EFBAAC9D70C4F9AE02/BH7xoc9llmNJhmdnZVZI7vkRDFo.crl rsync://rpki.apnic.net/member_repository/A91CE4C1/3644887AE9BB11EFBAAC9D70C4F9AE02/BH7xoc9llmNJhmdnZVZI7vkRDFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BH7xoc9llmNJhmdnZVZI7vkRDFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:09:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE4C1 Validity Not Before: Mar 25 07:14:01 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e257b9-5f76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:9a:7f:ec:95:cd:35:8a:83:2c:97:8f:f6:61: f3:ab:de:e5:ef:ec:fd:07:58:9e:fd:07:bd:63:ef: ca:bf:ed:4e:96:90:d3:5d:6c:21:f7:a7:3c:29:ac: e5:da:73:82:96:1d:8c:e3:28:95:5d:c1:04:cb:ef: ce:fe:6e:60:be:32:e7:9c:7a:6f:02:e3:ec:e9:6a: 18:ba:ba:c4:84:b5:4a:f6:b6:9c:9d:a0:d4:97:f1: 9d:92:9a:1e:c4:77:24:e7:0f:ac:d0:cc:26:7a:31: f9:53:3e:30:f2:46:7f:b6:61:20:8e:3a:d8:0c:f5: a6:53:1e:24:5f:d4:b6:93:1d:2d:8a:69:a8:4b:39: be:af:25:f4:c8:b2:38:ce:6d:ed:7c:74:19:87:31: 49:b6:93:f2:37:50:6f:a0:f1:00:8f:cb:ab:d0:7d: f6:eb:ae:05:ee:1e:79:cf:fd:03:8f:9c:57:51:4a: e4:37:57:88:cf:ab:e0:7c:ef:5e:7c:40:39:e2:e4: 0a:56:ad:8c:23:6b:7a:3d:80:44:67:c0:3d:62:a0: b7:41:09:55:45:3f:c0:27:5c:0d:55:0c:98:07:17: 4a:24:4f:56:1b:9b:12:94:6f:b6:bf:91:ca:5a:37: 0e:17:56:44:5c:4b:fe:bd:c7:69:34:59:c2:0f:28: 70:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:3C:3C:B7:A3:1D:BF:A2:2C:98:EF:7C:0B:3E:70:3D:C2:C4:28:BE X509v3 Authority Key Identifier: keyid:04:7E:F1:A1:CF:65:96:63:49:86:67:67:65:56:48:EE:F9:11:0C:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE4C1/3644887AE9BB11EFBAAC9D70C4F9AE02/BH7xoc9llmNJhmdnZVZI7vkRDFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BH7xoc9llmNJhmdnZVZI7vkRDFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE4C1/3644887AE9BB11EFBAAC9D70C4F9AE02/FB4C0514E9C311EFADA7270AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.169.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:47:dd:7b:59:76:9a:3f:fe:57:84:b6:5d:ec:d8:98:5d:8a: 31:86:0a:5c:20:80:31:5c:97:3c:02:02:0f:a9:ba:17:ea:a8: 29:df:53:76:7f:79:05:80:f9:b4:d7:b8:e3:ee:7e:f7:dc:03: c4:04:ed:cf:3d:aa:98:4d:c2:cf:ff:c2:e3:35:c8:51:a1:2b: bd:a7:eb:b1:b7:ba:1f:2b:06:9c:98:82:54:47:c7:c3:ab:f6: 54:fe:c5:c1:04:96:61:6d:dd:c6:72:f8:1f:99:ec:9a:77:25: a0:e4:3b:33:40:c1:8e:d3:0a:a0:70:4e:da:ff:92:e6:ce:68: 6d:73:6e:81:f0:10:a0:fb:45:2b:56:39:93:fa:b4:f2:79:ea: 7b:9d:f6:61:8a:8c:82:d5:99:d0:87:1f:dd:56:b2:4c:df:56: 1f:00:cc:6d:5d:8a:d6:2b:71:0c:ab:96:16:50:4e:66:3f:ba: f9:5b:00:ab:c3:68:fb:32:6c:71:20:1f:a8:bc:26:f3:a3:57: 9b:14:5c:56:63:4a:12:7d:b1:ba:f0:66:27:d9:e9:69:52:07: 52:81:6b:7e:1c:a6:35:e1:8e:08:0e:4c:03:27:89:6b:0d:9d: 1c:37:f0:af:c5:eb:53:37:ae:bf:fc:42:e1:31:51:b4:1b:00: c9:78:7d:f5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RTRDMTExMC8GA1UEBRMoMDQ3RUYxQTFDRjY1OTY2MzQ5ODY2NzY3NjU1NjQ4RUVG OTExMEM1QTAeFw0yNTAzMjUwNzE0MDFaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZTI1N2I5LTVmNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJmn/slc01ioMsl4/2YfOr3uXv7P0HWJ79B71j78q/7U6WkNNdbCH3pzwprOXa c4KWHYzjKJVdwQTL787+bmC+Muecem8C4+zpahi6usSEtUr2tpydoNSX8Z2Smh7E dyTnD6zQzCZ6MflTPjDyRn+2YSCOOtgM9aZTHiRf1LaTHS2KaahLOb6vJfTIsjjO be18dBmHMUm2k/I3UG+g8QCPy6vQffbrrgXuHnnP/QOPnFdRSuQ3V4jPq+B87158 QDni5ApWrYwja3o9gERnwD1ioLdBCVVFP8AnXA1VDJgHF0okT1YbmxKUb7a/kcpa Nw4XVkRcS/69x2k0WcIPKHAdAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUPDw8t6Md v6IsmO98Cz5wPcLEKL4wHwYDVR0jBBgwFoAUBH7xoc9llmNJhmdnZVZI7vkRDFow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFNEMxLzM2NDQ4ODdBRTlC QjExRUZCQUFDOUQ3MEM0RjlBRTAyL0JIN3hvYzlsbG1OSmhtZG5aVlpJN3ZrUkRG by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQkg3eG9jOWxsbU5KaG1kblpWWkk3dmtSREZvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTRDMS8zNjQ0ODg3QUU5QkIxMUVGQkFBQzlENzBDNEY5QUUwMi9GQjRDMDUxNEU5 QzMxMUVGQURBNzI3MEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGdUqTANBgkqhkiG9w0BAQsFAAOCAQEAG0fde1l2mj/+V4S2 XezYmF2KMYYKXCCAMVyXPAICD6m6F+qoKd9Tdn95BYD5tNe44+5+99wDxATtzz2q mE3Cz//C4zXIUaErvafrsbe6HysGnJiCVEfHw6v2VP7FwQSWYW3dxnL4H5nsmncl oOQ7M0DBjtMKoHBO2v+S5s5obXNugfAQoPtFK1Y5k/q08nnqe532YYqMgtWZ0Icf 3VayTN9WHwDMbV2K1itxDKuWFlBOZj+6+VsAq8No+zJscSAfqLwm86NXmxRcVmNK En2xuvBmJ9npaVIHUoFrfhymNeGOCA5MAyeJaw2dHDfwr8XrUzeuv/xC4TFRtBsA yXh99Q== -----END CERTIFICATE-----Generated at Sat Apr 5 02:20:43 2025 by rpki-client