$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/1D2E7286A6B111E997D5EA57C4F9AE02.roa File: 1D2E7286A6B111E997D5EA57C4F9AE02.roa (raw, json) Hash identifier: 1G+5ZDyz2QsGf1HTn6iCWFVSURJLuJWTrhUJ5NvAbhE= Subject key identifier: F6:CA:8D:92:98:66:71:66:03:E9:98:44:5C:D2:52:75:DA:94:C4:6D Certificate issuer: /CN=A91CEF3E/serialNumber=F896CC4F53C2A67B3046E7AB29033D50F482D488 Certificate serial: 0E35 Authority key identifier: F8:96:CC:4F:53:C2:A6:7B:30:46:E7:AB:29:03:3D:50:F4:82:D4:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-JbMT1PCpnswRuerKQM9UPSC1Ig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/1D2E7286A6B111E997D5EA57C4F9AE02.roa Signing time: Tue 14 Jan 2025 17:55:50 +0000 ROA not before: Tue 14 Jan 2025 17:55:50 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 23881 IP address blocks: 45.121.192.0/24 maxlen: 24 45.121.193.0/24 maxlen: 24 45.121.194.0/24 maxlen: 24 45.121.195.0/24 maxlen: 24 103.15.180.0/24 maxlen: 24 103.15.181.0/24 maxlen: 24 103.15.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/-JbMT1PCpnswRuerKQM9UPSC1Ig.crl rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/-JbMT1PCpnswRuerKQM9UPSC1Ig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-JbMT1PCpnswRuerKQM9UPSC1Ig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:51:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3637 (0xe35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEF3E Validity Not Before: Jan 14 17:55:50 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6786a526-d2e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e4:34:87:e4:fa:e1:04:ac:a2:7b:f5:bf:0a: 08:e8:3e:89:b0:e2:55:0e:64:65:ee:dd:b0:44:48: b4:90:d0:77:52:43:f6:23:37:92:af:4f:bc:79:6e: a0:aa:5c:cf:2e:16:3e:4f:19:95:fb:3b:79:0e:7f: 4a:12:ec:a8:11:01:6e:ba:4a:98:cf:e7:1c:dd:28: 66:9a:3b:a4:15:81:7f:5b:0d:ce:28:6b:a9:41:f9: 97:2d:8b:41:05:ab:4f:62:62:f8:ea:8d:0e:88:ab: 18:63:c4:9b:c6:98:6d:ae:1a:3f:fe:b7:23:3d:e7: 8e:a1:2b:28:9a:79:a6:61:f7:75:a5:50:67:a8:2f: 68:e2:06:83:52:fc:76:9a:1d:3b:09:57:a6:c3:45: 04:a9:32:9c:17:a3:4a:67:f2:24:d6:62:9f:4b:93: 65:cb:50:16:00:23:8f:9e:f6:ce:53:01:b3:2a:a2: fe:97:ab:2e:6f:51:11:4b:ff:ce:77:a9:db:a6:f7: ef:1c:e1:34:27:86:15:44:25:d7:24:fe:a4:f9:62: eb:6b:0d:62:37:5d:3d:38:3c:0a:b9:01:f5:69:a8: 4c:83:95:b9:c1:8f:1c:a5:0d:db:42:e4:dc:4c:88: 67:f5:dc:65:c3:e8:91:3f:13:df:7e:aa:45:5d:7d: 90:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:CA:8D:92:98:66:71:66:03:E9:98:44:5C:D2:52:75:DA:94:C4:6D X509v3 Authority Key Identifier: keyid:F8:96:CC:4F:53:C2:A6:7B:30:46:E7:AB:29:03:3D:50:F4:82:D4:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/-JbMT1PCpnswRuerKQM9UPSC1Ig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-JbMT1PCpnswRuerKQM9UPSC1Ig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/D254B5C4987B11E983ECCF13C4F9AE02/1D2E7286A6B111E997D5EA57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.121.192.0/22 103.15.180.0/23 103.15.183.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:db:cc:1e:7a:fc:bf:01:90:c8:7c:30:ff:70:40:31:f0:93: 54:cc:3f:92:e9:3a:67:02:06:57:41:da:01:fa:aa:02:f1:91: 0a:f4:bb:d9:41:b4:70:94:0b:5f:5c:9e:c7:78:50:e4:94:af: 50:f9:53:46:44:2b:bd:46:63:6f:d4:0e:21:90:51:18:d1:2d: 39:62:be:9e:47:1c:97:15:37:af:d2:3b:55:00:85:3c:49:f9: 88:20:c4:cd:20:9d:33:02:0c:a9:84:57:6d:0d:27:98:e7:25: af:5d:8b:a7:2b:97:1d:6f:34:e6:7e:65:7f:5a:84:95:a2:e1: 7e:e7:08:0e:db:15:d4:82:fb:0a:33:42:7d:4b:ad:d5:19:35: f8:98:1e:df:cd:ac:67:f7:d1:17:39:67:d1:67:c8:79:32:3c: b8:57:b9:ac:7a:56:c8:3a:ce:56:75:ce:b2:cc:4b:84:2a:04: cc:56:cf:73:60:be:b6:03:70:4d:b0:43:e8:af:7d:82:8d:e8: 5c:02:84:64:e8:ac:7c:02:58:6f:9f:2e:a9:41:48:14:f6:a4: 47:d3:a2:6b:d6:eb:2e:b8:34:17:1f:66:e2:51:1a:36:43:ba: d2:3a:b8:8f:4d:0a:e6:bf:99:46:a9:93:d9:ad:86:d5:70:ac: 67:4c:39:4d -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VGM0UxMTAvBgNVBAUTKEY4OTZDQzRGNTNDMkE2N0IzMDQ2RTdBQjI5MDMzRDUw RjQ4MkQ0ODgwHhcNMjUwMTE0MTc1NTUwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg2YTUyNi1kMmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeQ0h+T64QSsonv1vwoI6D6JsOJVDmRl7t2wREi0kNB3UkP2IzeSr0+8eW6g qlzPLhY+TxmV+zt5Dn9KEuyoEQFuukqYz+cc3ShmmjukFYF/Ww3OKGupQfmXLYtB BatPYmL46o0OiKsYY8Sbxphtrho//rcjPeeOoSsomnmmYfd1pVBnqC9o4gaDUvx2 mh07CVemw0UEqTKcF6NKZ/Ik1mKfS5Nly1AWACOPnvbOUwGzKqL+l6sub1ERS//O d6nbpvfvHOE0J4YVRCXXJP6k+WLraw1iN109ODwKuQH1aahMg5W5wY8cpQ3bQuTc TIhn9dxlw+iRPxPffqpFXX2QrwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFPbKjZKY ZnFmA+mYRFzSUnXalMRtMB8GA1UdIwQYMBaAFPiWzE9TwqZ7MEbnqykDPVD0gtSI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUYzRS9EMjU0QjVDNDk4 N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi8tSmJNVDFQQ3Buc3dSdWVyS1FNOVVQU0Mx SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1KYk1UMVBDcG5zd1J1ZXJLUU05VVBTQzFJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VGM0UvRDI1NEI1QzQ5ODdCMTFFOTgzRUNDRjEzQzRGOUFFMDIvMUQyRTcyODZB NkIxMTFFOTk3RDVFQTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAItecADBAFnD7QDBABnD7cwDQYJKoZIhvcNAQELBQADggEB AGzbzB56/L8BkMh8MP9wQDHwk1TMP5LpOmcCBldB2gH6qgLxkQr0u9lBtHCUC19c nsd4UOSUr1D5U0ZEK71GY2/UDiGQURjRLTlivp5HHJcVN6/SO1UAhTxJ+YggxM0g nTMCDKmEV20NJ5jnJa9di6crlx1vNOZ+ZX9ahJWi4X7nCA7bFdSC+wozQn1LrdUZ NfiYHt/NrGf30Rc5Z9FnyHkyPLhXuax6Vsg6zlZ1zrLMS4QqBMxWz3NgvrYDcE2w Q+ivfYKN6FwChGTorHwCWG+fLqlBSBT2pEfTomvW6y64NBcfZuJRGjZDutI6uI9N Cua/mUapk9mthtVwrGdMOU0= -----END CERTIFICATE-----Generated at Sat Apr 5 03:54:08 2025 by rpki-client