$ rpki-client -vvf rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/28543AA0BABA11EB8A51C234C4F9AE02.roa File: 28543AA0BABA11EB8A51C234C4F9AE02.roa (raw, json) Hash identifier: tLbuywK1hQsCi3a1AqRQB3esx6wP54LrqFgdAXcaBdM= Subject key identifier: A6:5E:13:D4:4E:CA:26:42:9C:EE:F9:F1:8B:4A:D5:CB:41:AD:C7:4B Certificate issuer: /CN=A91D40BF/serialNumber=BE463FC1919B4142B2382813827FB716D6EE9283 Certificate serial: 0736 Authority key identifier: BE:46:3F:C1:91:9B:41:42:B2:38:28:13:82:7F:B7:16:D6:EE:92:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkY_wZGbQUKyOCgTgn-3FtbukoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/28543AA0BABA11EB8A51C234C4F9AE02.roa Signing time: Mon 10 Mar 2025 21:42:04 +0000 ROA not before: Mon 10 Mar 2025 21:42:04 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 51318 IP address blocks: 103.68.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.crl rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkY_wZGbQUKyOCgTgn-3FtbukoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:52:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1846 (0x736) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D40BF Validity Not Before: Mar 10 21:42:04 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67cf5cac-b9f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:57:be:20:ec:de:5c:cf:71:9f:e9:39:43:3a: 58:04:7b:77:19:aa:e7:7d:88:95:6b:a9:0c:fd:5c: 2a:a4:bd:48:be:0d:fb:65:b3:c6:ed:66:2a:1d:b6: 1b:42:b8:fc:7c:90:f1:88:af:cb:35:45:ce:bc:82: 35:c8:34:11:af:27:43:70:2d:5f:18:e6:d8:7c:19: f5:9d:95:2c:5f:e9:72:34:72:1e:6e:ed:ae:6e:86: e2:9d:8f:0f:d3:c0:42:7e:1c:24:95:e5:68:98:91: 1e:8d:63:59:ef:26:07:0a:e8:cf:aa:08:f6:e0:b7: 54:aa:42:19:e5:de:c3:8b:ce:19:b4:c3:3a:64:a4: 2a:92:df:2f:5c:8a:8d:25:21:28:9c:8f:61:cd:f0: 16:78:66:45:09:0f:f0:51:a7:8a:16:37:8b:c3:f3: 3d:f4:b9:a6:bf:fa:81:d6:1b:28:b5:5c:ff:6a:3e: 8f:37:a2:6c:f2:95:6c:fd:e3:13:77:87:0e:93:ce: fe:c3:63:01:47:78:4f:6f:a5:8d:3e:dc:1d:d1:50: 27:5e:40:18:74:34:69:da:82:37:79:bf:7d:33:ff: 3e:7e:8f:e9:16:c5:35:16:47:30:cf:55:85:3d:c3: 60:19:74:e4:02:39:77:14:5f:86:19:29:11:73:62: 16:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:5E:13:D4:4E:CA:26:42:9C:EE:F9:F1:8B:4A:D5:CB:41:AD:C7:4B X509v3 Authority Key Identifier: keyid:BE:46:3F:C1:91:9B:41:42:B2:38:28:13:82:7F:B7:16:D6:EE:92:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/vkY_wZGbQUKyOCgTgn-3FtbukoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vkY_wZGbQUKyOCgTgn-3FtbukoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D40BF/27B7A28424C011EBB62B4387C4F9AE02/28543AA0BABA11EB8A51C234C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.125.0/24 Signature Algorithm: sha256WithRSAEncryption 01:42:b5:8a:45:61:6c:8b:0b:65:e9:9b:69:d3:dd:af:8c:fa: c9:c9:97:62:f4:85:a6:c8:31:35:54:91:32:d4:3d:22:02:4e: 5c:c3:c7:ff:00:ab:7f:62:78:3f:ba:18:dc:95:85:0a:7b:38: 1b:7f:a9:36:09:78:85:53:2e:6d:22:02:de:c5:6a:37:a5:4e: bf:fe:cc:90:7d:55:c3:26:09:5f:c5:67:c1:89:c4:16:2b:16: 8e:6f:87:af:43:c8:48:76:11:3d:c1:e5:f9:47:ad:3e:45:66: 20:85:49:72:13:f3:75:a6:67:f6:ff:38:2d:c2:ab:1d:84:aa: e1:6a:c6:d4:cf:13:29:8c:bc:b6:de:d1:52:30:e4:ea:21:3b: 68:d5:02:dd:a8:11:8b:60:ef:78:95:07:4c:95:22:9f:4d:70: e0:3d:44:f7:33:1b:bc:7f:f0:e8:1f:5d:be:03:fe:70:77:bc: fb:e5:94:35:ba:a2:6d:b1:ac:c7:11:9a:c4:57:3b:4d:ab:d3: d0:a2:7c:bb:52:d0:92:4c:7a:8e:3a:77:ab:20:a8:ce:ee:a6: 84:ce:94:5b:95:1d:89:72:0a:20:ca:f8:2a:9b:fd:c3:ec:10: c8:54:ee:d4:6b:48:e9:9b:2b:37:a9:be:61:44:68:47:4a:6a: 7b:a8:19:a9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQwQkYxMTAvBgNVBAUTKEJFNDYzRkMxOTE5QjQxNDJCMjM4MjgxMzgyN0ZCNzE2 RDZFRTkyODMwHhcNMjUwMzEwMjE0MjA0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NmNWNhYy1iOWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Fe+IOzeXM9xn+k5QzpYBHt3GarnfYiVa6kM/VwqpL1Ivg37ZbPG7WYqHbYb Qrj8fJDxiK/LNUXOvII1yDQRrydDcC1fGObYfBn1nZUsX+lyNHIebu2ubobinY8P 08BCfhwkleVomJEejWNZ7yYHCujPqgj24LdUqkIZ5d7Di84ZtMM6ZKQqkt8vXIqN JSEonI9hzfAWeGZFCQ/wUaeKFjeLw/M99Lmmv/qB1hsotVz/aj6PN6Js8pVs/eMT d4cOk87+w2MBR3hPb6WNPtwd0VAnXkAYdDRp2oI3eb99M/8+fo/pFsU1Fkcwz1WF PcNgGXTkAjl3FF+GGSkRc2IWpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKZeE9RO yiZCnO758YtK1ctBrcdLMB8GA1UdIwQYMBaAFL5GP8GRm0FCsjgoE4J/txbW7pKD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDBCRi8yN0I3QTI4NDI0 QzAxMUVCQjYyQjQzODdDNEY5QUUwMi92a1lfd1pHYlFVS3lPQ2dUZ24tM0Z0YnVr b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZrWV93WkdiUVVLeU9DZ1Rnbi0zRnRidWtvTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQwQkYvMjdCN0EyODQyNEMwMTFFQkI2MkI0Mzg3QzRGOUFFMDIvMjg1NDNBQTBC QUJBMTFFQjhBNTFDMjM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnRH0wDQYJKoZIhvcNAQELBQADggEBAAFCtYpFYWyLC2Xp m2nT3a+M+snJl2L0habIMTVUkTLUPSICTlzDx/8Aq39ieD+6GNyVhQp7OBt/qTYJ eIVTLm0iAt7FajelTr/+zJB9VcMmCV/FZ8GJxBYrFo5vh69DyEh2ET3B5flHrT5F ZiCFSXIT83WmZ/b/OC3Cqx2EquFqxtTPEymMvLbe0VIw5OohO2jVAt2oEYtg73iV B0yVIp9NcOA9RPczG7x/8OgfXb4D/nB3vPvllDW6om2xrMcRmsRXO02r09CifLtS 0JJMeo46d6sgqM7upoTOlFuVHYlyCiDK+Cqb/cPsEMhU7tRrSOmbKzepvmFEaEdK anuoGak= -----END CERTIFICATE-----Generated at Sat Apr 5 06:10:00 2025 by rpki-client