$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/1A15CABE7DD111ECBB4A7D84C4F9AE02.roa File: 1A15CABE7DD111ECBB4A7D84C4F9AE02.roa (raw, json) Hash identifier: aUKFEcgAYH8+/UqmZ13PB+UHXTWO1HzOhS9AQMfTurg= Subject key identifier: C7:E3:92:A8:57:69:64:40:E2:94:C5:E4:12:48:15:AD:DE:FF:D8:4C Certificate issuer: /CN=A91DBD27/serialNumber=F214EDD7EF8D006F82A227FCE65BC5F3E648A3FA Certificate serial: 03D1 Authority key identifier: F2:14:ED:D7:EF:8D:00:6F:82:A2:27:FC:E6:5B:C5:F3:E6:48:A3:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8hTt1--NAG-Coif85lvF8-ZIo_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/1A15CABE7DD111ECBB4A7D84C4F9AE02.roa Signing time: Thu 03 Apr 2025 00:56:15 +0000 ROA not before: Thu 03 Apr 2025 00:56:15 +0000 ROA not after: Fri 01 Aug 2025 00:00:00 +0000 asID: 149441 IP address blocks: 103.179.133.0/24 maxlen: 24 2001:df0:4e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/8hTt1--NAG-Coif85lvF8-ZIo_o.crl rsync://rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/8hTt1--NAG-Coif85lvF8-ZIo_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8hTt1--NAG-Coif85lvF8-ZIo_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 00:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 977 (0x3d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBD27, serialNumber=F214EDD7EF8D006F82A227FCE65BC5F3E648A3FA Validity Not Before: Apr 3 00:56:15 2025 GMT Not After : Aug 1 00:00:00 2025 GMT Subject: CN=67eddcaf-1037 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:bb:51:89:7f:92:f4:92:8e:5f:dd:14:93:5a: 94:f8:ef:f1:03:88:9e:ac:25:25:5a:0b:78:08:77: 02:72:71:e4:85:87:6d:a7:70:2e:0e:43:1e:8f:21: b3:c0:4b:f4:6c:87:6d:31:6d:16:be:9a:d1:b5:9c: 77:e5:03:c1:05:5a:96:c4:8a:39:e1:7d:ed:3e:9b: 07:be:8b:ca:62:27:cf:0a:8d:34:c1:f1:df:f4:86: 0e:c7:df:8e:ec:a8:af:dc:01:34:79:37:fc:65:93: c0:a0:b2:64:90:d4:6c:ec:90:a7:66:d6:4f:0a:24: 1d:20:3a:86:d7:8b:9c:e8:f5:93:8a:c7:83:94:d2: e8:53:94:56:a9:a0:2a:7b:4f:75:a3:be:86:41:b2: c1:0f:9a:04:1d:90:e0:c6:0e:a9:16:6f:5a:2a:51: c6:f4:0c:f2:af:36:db:95:78:f2:74:f9:59:42:f1: 49:55:c0:65:ff:45:cc:97:3b:fd:80:b0:f7:75:fa: af:a4:7d:e7:35:70:54:9e:79:f0:d3:0c:6f:79:62: 16:67:88:8d:ea:78:33:ba:9c:63:b7:df:3b:b9:31: a9:3b:75:0c:bb:f7:02:61:a2:6d:03:4b:81:06:6a: 2f:fe:f2:ae:64:0a:26:53:1f:f9:a5:d3:3d:7a:85: 6f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:E3:92:A8:57:69:64:40:E2:94:C5:E4:12:48:15:AD:DE:FF:D8:4C X509v3 Authority Key Identifier: keyid:F2:14:ED:D7:EF:8D:00:6F:82:A2:27:FC:E6:5B:C5:F3:E6:48:A3:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/8hTt1--NAG-Coif85lvF8-ZIo_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8hTt1--NAG-Coif85lvF8-ZIo_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBD27/DE5E774E7DCD11ECA6BD9D32C4F9AE02/1A15CABE7DD111ECBB4A7D84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.133.0/24 IPv6: 2001:df0:4e40::/48 Signature Algorithm: sha256WithRSAEncryption a3:ad:07:bd:fc:56:0f:57:ea:2f:17:cc:53:2a:ec:23:b9:c0: f4:ae:86:84:6e:67:44:ae:27:de:c8:ec:de:73:b6:e2:1d:e1: e9:d7:87:96:e1:61:6d:27:21:7f:bd:21:df:98:e7:a3:4f:8b: 13:a0:6f:32:5f:87:5e:02:7a:f4:1f:17:d4:15:45:82:1b:96: b8:92:7d:92:5c:c8:61:a0:15:fd:77:be:c5:69:3a:cd:3f:86: 2b:be:f2:ee:17:18:e9:77:b7:48:c1:0d:dd:7e:c8:be:88:aa: ae:e7:2b:c1:9d:0a:ee:de:9b:93:db:2d:79:ae:7e:e7:34:7a: 8a:c7:5d:e6:9a:c2:ac:b2:1c:3c:b3:c7:1e:b6:d1:6e:5a:f1: 84:77:bf:3d:e8:8d:54:3a:98:73:39:0e:58:cd:ee:8e:65:62: 56:3b:d6:ed:1b:82:a9:09:2a:14:b0:a7:7c:13:f0:9b:d0:b3: bc:88:3c:34:95:3f:49:d5:08:a0:e9:72:5e:ff:d3:17:6d:2b: 97:75:ae:54:dc:2a:df:ae:f1:90:8c:83:7d:0f:61:3f:9f:1e: 0d:8a:19:15:af:18:2d:63:65:f0:f1:d8:e5:4c:a3:68:d9:1a: 3f:2c:97:1b:d5:96:12:7f:97:cc:be:e8:b5:2a:72:3a:4e:63: 06:16:d1:89 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJEMjcxMTAvBgNVBAUTKEYyMTRFREQ3RUY4RDAwNkY4MkEyMjdGQ0U2NUJDNUYz RTY0OEEzRkEwHhcNMjUwNDAzMDA1NjE1WhcNMjUwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkZGNhZi0xMDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLtRiX+S9JKOX90Uk1qU+O/xA4ierCUlWgt4CHcCcnHkhYdtp3AuDkMejyGz wEv0bIdtMW0WvprRtZx35QPBBVqWxIo54X3tPpsHvovKYifPCo00wfHf9IYOx9+O 7Kiv3AE0eTf8ZZPAoLJkkNRs7JCnZtZPCiQdIDqG14uc6PWTiseDlNLoU5RWqaAq e091o76GQbLBD5oEHZDgxg6pFm9aKlHG9AzyrzbblXjydPlZQvFJVcBl/0XMlzv9 gLD3dfqvpH3nNXBUnnnw0wxveWIWZ4iN6ngzupxjt987uTGpO3UMu/cCYaJtA0uB Bmov/vKuZAomUx/5pdM9eoVviwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMfjkqhX aWRA4pTF5BJIFa3e/9hMMB8GA1UdIwQYMBaAFPIU7dfvjQBvgqIn/OZbxfPmSKP6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkQyNy9ERTVFNzc0RTdE Q0QxMUVDQTZCRDlEMzJDNEY5QUUwMi84aFR0MS0tTkFHLUNvaWY4NWx2RjgtWklv X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhoVHQxLS1OQUctQ29pZjg1bHZGOC1aSW9fby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REJEMjcvREU1RTc3NEU3RENEMTFFQ0E2QkQ5RDMyQzRGOUFFMDIvMUExNUNBQkU3 REQxMTFFQ0JCNEE3RDg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABns4UwDwQCAAIwCQMHACABDfBOQDANBgkqhkiG9w0BAQsF AAOCAQEAo60HvfxWD1fqLxfMUyrsI7nA9K6GhG5nRK4n3sjs3nO24h3h6deHluFh bSchf70h35jno0+LE6BvMl+HXgJ69B8X1BVFghuWuJJ9klzIYaAV/Xe+xWk6zT+G K77y7hcY6Xe3SMEN3X7IvoiqrucrwZ0K7t6bk9stea5+5zR6isdd5prCrLIcPLPH HrbRblrxhHe/PeiNVDqYczkOWM3ujmViVjvW7RuCqQkqFLCnfBPwm9CzvIg8NJU/ SdUIoOlyXv/TF20rl3WuVNwq367xkIyDfQ9hP58eDYoZFa8YLWNl8PHY5UyjaNka PyyXG9WWEn+XzL7otSpyOk5jBhbRiQ== -----END CERTIFICATE-----Generated at Sun Apr 13 04:33:34 2025 by rpki-client