$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/785B44D6F2AF11EF97443030C4F9AE02.roa File: 785B44D6F2AF11EF97443030C4F9AE02.roa (raw, json) Hash identifier: 3X8JQRJ56NXF/A25OQxe1Q8xkJiOt4/FMaPtZ+BwKik= Subject key identifier: CD:FC:C3:E8:7B:D1:EE:14:46:66:9F:61:0A:77:AD:C1:CE:2D:C0:75 Certificate issuer: /CN=A91DE5E8/serialNumber=E5B1CE1D453918195BEB5CD90F6D879EFE9910A2 Certificate serial: 018B Authority key identifier: E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/785B44D6F2AF11EF97443030C4F9AE02.roa Signing time: Sat 01 Mar 2025 05:26:07 +0000 ROA not before: Sat 01 Mar 2025 05:26:07 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 45814 IP address blocks: 103.84.150.0/24 maxlen: 24 139.5.116.0/24 maxlen: 24 139.5.117.0/24 maxlen: 24 139.5.118.0/24 maxlen: 24 139.5.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:59:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE5E8 Validity Not Before: Mar 1 05:26:07 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c29a6f-1b29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:30:cf:b3:58:7e:8f:30:42:e8:70:37:7a:c6: ba:89:63:0f:a8:2b:e5:49:bc:78:e1:4f:83:f5:8a: e8:53:b1:f6:3b:ef:58:c8:cb:41:54:4b:8b:6d:22: 77:f2:35:24:bd:f5:6c:e0:7f:7c:b9:d4:40:4d:13: 81:99:a2:44:28:a8:b7:48:06:fa:ae:0f:82:0c:f4: 3d:84:20:5d:de:63:fe:91:18:07:1b:b8:dc:e3:4e: 11:39:27:15:e5:04:5f:d4:01:60:8a:79:47:a0:e7: 5f:4c:4f:ad:bc:e0:83:8b:b6:f6:95:b9:cd:38:04: 74:3c:71:61:6d:c3:85:dd:bf:10:af:39:00:da:8e: a2:1b:8d:29:a0:45:4d:e1:d9:49:75:8f:95:d2:72: 60:cb:d9:6c:06:3c:d2:d9:61:ef:5f:26:78:3c:44: f6:7a:fe:bf:a5:0c:a5:57:76:b3:68:b3:f2:81:7e: 6e:d9:45:73:d1:b8:02:8e:48:9f:b7:1a:49:cb:e4: ab:54:5f:21:58:c1:fe:fc:b6:0d:cc:e6:0e:e8:16: 39:e2:40:84:46:e8:86:a1:dc:c7:43:98:30:6d:66: d2:3c:db:dd:0f:36:92:08:26:60:32:52:12:bf:83: ec:f6:a8:3c:10:9e:25:a7:2e:f7:e4:79:a2:04:b5: be:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:FC:C3:E8:7B:D1:EE:14:46:66:9F:61:0A:77:AD:C1:CE:2D:C0:75 X509v3 Authority Key Identifier: keyid:E5:B1:CE:1D:45:39:18:19:5B:EB:5C:D9:0F:6D:87:9E:FE:99:10:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/5bHOHUU5GBlb61zZD22Hnv6ZEKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bHOHUU5GBlb61zZD22Hnv6ZEKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE5E8/E9E1BF28A30511EDAC14EE6CC4F9AE02/785B44D6F2AF11EF97443030C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.150.0/24 139.5.116.0/22 Signature Algorithm: sha256WithRSAEncryption 3f:e2:3b:fb:00:e6:4c:dd:ac:0e:fd:36:8c:36:0b:cc:3b:89: 55:57:4b:ee:4f:2c:98:6a:c5:f3:a9:39:6e:b5:a5:1e:f9:be: 66:22:06:9b:35:9d:a0:aa:9f:22:32:87:32:23:96:7a:3e:bc: 39:ba:01:2e:0c:62:36:20:64:2f:c7:e2:15:94:e8:01:0a:29: 72:e6:69:ad:dc:ca:9c:bc:01:56:6a:55:18:f9:32:57:0e:45: c0:3c:86:78:74:14:7f:73:ef:e1:fb:bd:6f:86:89:fa:1d:bb: 9f:e3:a2:c3:c8:b0:7c:00:fc:0b:25:0d:80:21:6b:94:e9:04: 58:3e:1e:3f:48:a3:50:41:23:13:21:80:44:ac:07:89:e6:65: fe:8f:d2:b8:bd:fc:84:71:c5:b6:7f:ae:29:a4:f8:ee:e1:52: 17:9e:65:1d:e1:ad:1a:10:0d:60:56:d1:fb:23:93:4a:22:e9: b5:c2:6f:0d:ef:ce:78:ba:c5:b6:01:2a:e2:75:7c:ec:19:3e: fb:1f:c9:76:89:0c:25:02:f4:92:92:b3:89:59:28:e3:80:19: 41:1f:a0:36:c0:86:f9:0e:64:d0:b6:74:e5:6f:ea:08:8b:39: be:67:a9:15:e1:97:2e:4b:94:97:93:ed:1b:90:44:54:ac:fc: 6b:16:ba:5a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1RTgxMTAvBgNVBAUTKEU1QjFDRTFENDUzOTE4MTk1QkVCNUNEOTBGNkQ4NzlF RkU5OTEwQTIwHhcNMjUwMzAxMDUyNjA3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MyOWE2Zi0xYjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDDPs1h+jzBC6HA3esa6iWMPqCvlSbx44U+D9YroU7H2O+9YyMtBVEuLbSJ3 8jUkvfVs4H98udRATROBmaJEKKi3SAb6rg+CDPQ9hCBd3mP+kRgHG7jc404ROScV 5QRf1AFginlHoOdfTE+tvOCDi7b2lbnNOAR0PHFhbcOF3b8QrzkA2o6iG40poEVN 4dlJdY+V0nJgy9lsBjzS2WHvXyZ4PET2ev6/pQylV3azaLPygX5u2UVz0bgCjkif txpJy+SrVF8hWMH+/LYNzOYO6BY54kCERuiGodzHQ5gwbWbSPNvdDzaSCCZgMlIS v4Ps9qg8EJ4lpy735HmiBLW+/QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFM38w+h7 0e4URmafYQp3rcHOLcB1MB8GA1UdIwQYMBaAFOWxzh1FORgZW+tc2Q9th57+mRCi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTVFOC9FOUUxQkYyOEEz MDUxMUVEQUMxNEVFNkNDNEY5QUUwMi81YkhPSFVVNUdCbGI2MXpaRDIySG52NlpF S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzViSE9IVVU1R0JsYjYxelpEMjJIbnY2WkVLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REU1RTgvRTlFMUJGMjhBMzA1MTFFREFDMTRFRTZDQzRGOUFFMDIvNzg1QjQ0RDZG MkFGMTFFRjk3NDQzMDMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnVJYDBAKLBXQwDQYJKoZIhvcNAQELBQADggEBAD/iO/sA 5kzdrA79Now2C8w7iVVXS+5PLJhqxfOpOW61pR75vmYiBps1naCqnyIyhzIjlno+ vDm6AS4MYjYgZC/H4hWU6AEKKXLmaa3cypy8AVZqVRj5MlcORcA8hnh0FH9z7+H7 vW+Gifodu5/josPIsHwA/AslDYAha5TpBFg+Hj9Io1BBIxMhgESsB4nmZf6P0ri9 /IRxxbZ/rimk+O7hUheeZR3hrRoQDWBW0fsjk0oi6bXCbw3vzni6xbYBKuJ1fOwZ PvsfyXaJDCUC9JKSs4lZKOOAGUEfoDbAhvkOZNC2dOVv6giLOb5nqRXhly5LlJeT 7RuQRFSs/GsWulo= -----END CERTIFICATE-----Generated at Sat Apr 5 02:10:18 2025 by rpki-client