$ rpki-client -vvf rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/2798B9A6BABA11EB8A51C234C4F9AE02.roa File: 2798B9A6BABA11EB8A51C234C4F9AE02.roa (raw, json) Hash identifier: +zcjX2imATb1GbMG2fycsIcaiWvdU6/+K/wkiamqX6U= Subject key identifier: E8:9D:37:C5:C2:C6:31:E7:C3:10:20:30:9C:43:24:CE:CD:7B:80:89 Certificate issuer: /CN=A91D40BF/serialNumber=BE463FC1919B4142B2382813827FB716D6EE9283 Certificate serial: 0735 Authority key identifier: BE:46:3F:C1:91:9B:41:42:B2:38:28:13:82:7F:B7:16:D6:EE:92:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkY_wZGbQUKyOCgTgn-3FtbukoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/2798B9A6BABA11EB8A51C234C4F9AE02.roa Signing time: Mon 10 Mar 2025 21:42:03 +0000 ROA not before: Mon 10 Mar 2025 21:42:03 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 38166 IP address blocks: 103.75.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.crl rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkY_wZGbQUKyOCgTgn-3FtbukoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:52:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1845 (0x735) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D40BF Validity Not Before: Mar 10 21:42:03 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67cf5cab-d6eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:63:07:db:6d:49:2a:32:1c:d4:78:bd:58:b1: 83:64:f3:d6:d6:41:27:44:ae:2e:43:28:58:6d:e0: f2:86:3d:0e:65:77:66:fb:aa:4b:25:f7:a2:31:8e: 16:4a:1c:4d:48:e7:7b:ba:05:63:74:ed:6d:b4:b9: de:ac:cd:7c:5a:d0:77:84:86:15:c9:2d:3c:fa:f5: 2e:a9:a0:3e:6d:f3:18:09:95:98:b2:97:54:fe:9a: ac:1f:64:86:74:25:0e:6b:75:67:c2:34:b7:63:ca: 5f:de:a6:79:a5:06:d5:2f:d3:53:95:e2:50:95:6c: 29:87:fa:6f:db:81:38:1f:0e:42:cb:61:c8:a8:e4: 8c:6f:a3:8f:0d:53:c9:00:42:bb:98:ea:fa:ca:1a: d1:2d:b5:0b:22:11:77:12:c9:76:8b:bb:35:bf:d9: 7e:fb:4c:b2:85:e6:cc:b8:37:d3:8c:b5:87:2a:c7: c5:79:12:9c:92:3d:64:ff:ff:5d:a7:93:49:61:aa: 7a:13:e4:0a:ca:de:24:db:d2:95:a5:84:6d:96:ff: 2c:35:ab:54:b6:10:30:0a:44:28:f2:5b:4f:c8:fa: 7f:5e:32:81:8e:97:1f:b6:b0:4d:2f:89:1c:e7:17: 58:c5:e0:59:16:70:31:62:c7:74:e3:8d:c5:2c:0d: f8:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:9D:37:C5:C2:C6:31:E7:C3:10:20:30:9C:43:24:CE:CD:7B:80:89 X509v3 Authority Key Identifier: keyid:BE:46:3F:C1:91:9B:41:42:B2:38:28:13:82:7F:B7:16:D6:EE:92:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkY_wZGbQUKyOCgTgn-3FtbukoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/2798B9A6BABA11EB8A51C234C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.75.175.0/24 Signature Algorithm: sha256WithRSAEncryption 91:87:80:9c:2f:b5:e3:29:8c:70:af:72:76:a9:a1:a1:32:39: db:d8:54:e4:70:f8:8b:61:eb:6e:cf:a1:4c:53:1d:10:28:7d: 98:2a:f1:e7:f0:f6:7e:5b:6a:b3:69:80:02:16:da:47:e9:77: eb:1f:57:59:d7:1f:04:45:35:12:1a:3a:c4:c1:36:f0:dc:32: 05:ab:68:e3:49:ea:51:d7:82:15:23:fe:4b:94:2a:57:00:4c: 35:ee:13:c4:cb:50:0d:64:5d:74:ea:a2:59:72:ab:29:f5:81: b4:db:c7:eb:cd:a9:25:8f:9c:66:0b:18:a9:d8:ad:5a:34:50: 3f:3b:7c:54:66:30:20:a5:0c:f6:17:32:75:9e:6e:d1:dc:24: db:b7:dd:5a:13:04:ae:e8:7d:20:c2:7f:8d:88:d4:29:21:b1: ce:38:d5:da:15:b9:5e:0a:f9:8d:12:35:ae:b2:56:55:88:55: f2:b5:40:84:17:95:f0:af:d8:42:82:c2:6d:1a:2d:7a:84:e4: d5:9c:37:48:7b:f8:90:59:b3:a7:d8:a3:6b:c2:e3:18:24:62: fa:a4:5c:b4:80:ad:13:ea:00:a9:7f:dd:97:d5:49:3e:07:b9: c4:d6:97:1d:87:fc:85:60:86:86:96:32:9d:39:c4:ed:ca:90: 25:49:2c:85 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQwQkYxMTAvBgNVBAUTKEJFNDYzRkMxOTE5QjQxNDJCMjM4MjgxMzgyN0ZCNzE2 RDZFRTkyODMwHhcNMjUwMzEwMjE0MjAzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NmNWNhYi1kNmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumMH221JKjIc1Hi9WLGDZPPW1kEnRK4uQyhYbeDyhj0OZXdm+6pLJfeiMY4W ShxNSOd7ugVjdO1ttLnerM18WtB3hIYVyS08+vUuqaA+bfMYCZWYspdU/pqsH2SG dCUOa3VnwjS3Y8pf3qZ5pQbVL9NTleJQlWwph/pv24E4Hw5Cy2HIqOSMb6OPDVPJ AEK7mOr6yhrRLbULIhF3Esl2i7s1v9l++0yyhebMuDfTjLWHKsfFeRKckj1k//9d p5NJYap6E+QKyt4k29KVpYRtlv8sNatUthAwCkQo8ltPyPp/XjKBjpcftrBNL4kc 5xdYxeBZFnAxYsd0443FLA34jQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOidN8XC xjHnwxAgMJxDJM7Ne4CJMB8GA1UdIwQYMBaAFL5GP8GRm0FCsjgoE4J/txbW7pKD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDBCRi8yN0I3QTI4NDI0 QzAxMUVCQjYyQjQzODdDNEY5QUUwMi92a1lfd1pHYlFVS3lPQ2dUZ24tM0Z0YnVr b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZrWV93WkdiUVVLeU9DZ1Rnbi0zRnRidWtvTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQwQkYvMjdCN0EyODQyNEMwMTFFQkI2MkI0Mzg3QzRGOUFFMDIvMjc5OEI5QTZC QUJBMTFFQjhBNTFDMjM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnS68wDQYJKoZIhvcNAQELBQADggEBAJGHgJwvteMpjHCv cnapoaEyOdvYVORw+Ith627PoUxTHRAofZgq8efw9n5barNpgAIW2kfpd+sfV1nX HwRFNRIaOsTBNvDcMgWraONJ6lHXghUj/kuUKlcATDXuE8TLUA1kXXTqollyqyn1 gbTbx+vNqSWPnGYLGKnYrVo0UD87fFRmMCClDPYXMnWebtHcJNu33VoTBK7ofSDC f42I1Ckhsc441doVuV4K+Y0SNa6yVlWIVfK1QIQXlfCv2EKCwm0aLXqE5NWcN0h7 +JBZs6fYo2vC4xgkYvqkXLSArRPqAKl/3ZfVST4HucTWlx2H/IVghoaWMp05xO3K kCVJLIU= -----END CERTIFICATE-----Generated at Sat Apr 5 03:26:29 2025 by rpki-client