$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/17E03256B62811EF8D234218C4F9AE02.roa File: 17E03256B62811EF8D234218C4F9AE02.roa (raw, json) Hash identifier: K58ualcAz/8vUOZws7f1WHAGLYLtETkXGgN3zPvTq4E= Subject key identifier: DB:6F:10:25:33:74:28:C7:9A:64:1D:1F:D4:DC:67:98:20:42:0D:0E Certificate issuer: /CN=A91E0D87/serialNumber=725FD977CE734BBA9933F2943DC26939FA0608A7 Certificate serial: 04A8 Authority key identifier: 72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/17E03256B62811EF8D234218C4F9AE02.roa Signing time: Tue 31 Dec 2024 23:42:53 +0000 ROA not before: Tue 31 Dec 2024 23:42:53 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 151734 IP address blocks: 103.204.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 23:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1192 (0x4a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0D87 Validity Not Before: Dec 31 23:42:53 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6774817d-1b2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:86:cf:57:22:77:5f:fb:c4:44:26:51:dd:da: 64:09:75:ec:e9:9e:8b:f0:fa:f3:10:88:b4:30:22: 79:24:5d:60:4f:35:4a:1a:c0:99:54:78:1b:3d:50: df:29:69:5b:9f:07:42:93:76:8c:a8:ab:8e:26:0e: 24:9b:51:c0:3d:74:93:42:df:e7:11:51:f6:28:b5: ec:f5:59:a6:36:16:70:94:ce:72:2d:34:00:51:b1: 4c:72:5a:b6:d5:11:2e:b4:3a:81:97:14:63:c2:0d: 1a:1b:5b:58:f2:0b:f5:36:1e:4f:46:ac:30:6e:91: d4:d7:23:5b:8e:fd:90:ee:18:40:85:17:ae:23:8b: 21:bc:28:69:bd:45:48:a2:c8:54:76:15:4b:cc:c6: 47:19:b4:5e:a2:43:65:8e:b8:7b:d4:f0:4f:92:de: 1a:4a:a0:e0:30:7e:4e:92:a5:28:33:7a:e5:2b:54: d3:a6:21:be:73:f2:b1:8a:50:64:2a:15:88:65:08: 36:66:ef:48:10:53:01:0b:7a:65:3b:15:99:4e:db: 9e:83:ed:fb:16:02:69:ef:dd:02:7c:f1:ae:14:5b: 6e:67:d0:1a:8f:b0:bc:1f:a4:5a:d0:5c:91:ad:24: 95:4a:11:6f:25:3a:bf:ac:26:97:0e:ee:1a:6f:f8: 75:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:6F:10:25:33:74:28:C7:9A:64:1D:1F:D4:DC:67:98:20:42:0D:0E X509v3 Authority Key Identifier: keyid:72:5F:D9:77:CE:73:4B:BA:99:33:F2:94:3D:C2:69:39:FA:06:08:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/cl_Zd85zS7qZM_KUPcJpOfoGCKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cl_Zd85zS7qZM_KUPcJpOfoGCKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0D87/F683CEF221EB11EC92501819C4F9AE02/17E03256B62811EF8D234218C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.22.0/24 Signature Algorithm: sha256WithRSAEncryption 40:24:44:c0:ec:f6:88:a8:66:39:f2:ff:43:41:a9:81:5a:c8: ea:ec:0a:c5:e2:81:71:d5:bc:ff:27:7c:03:d3:0f:e6:f2:21: 76:7f:5b:c6:cc:98:66:dc:3a:36:43:c3:3e:09:63:d9:35:4b: 52:25:e4:29:8a:d8:a6:83:a9:e1:17:a6:88:73:24:0d:be:86: e2:b0:0b:fb:45:ea:56:06:ff:21:5e:ea:0f:77:c2:16:8f:64: 5d:80:da:87:ea:cd:29:78:4b:9e:e2:e7:da:1d:99:eb:77:3c: c4:24:db:e0:83:19:7e:85:e2:1b:28:de:a4:8d:bd:61:3a:0a: bc:17:ca:6a:2d:60:5e:08:8c:dd:2f:06:23:48:d7:7f:2c:79: 62:e3:a0:58:f1:cc:78:9c:f7:86:cb:63:ff:9c:03:78:6e:d8: bb:72:c0:39:af:41:90:09:6e:22:3c:22:99:ec:32:e3:6b:e6: 81:f0:ab:38:4c:52:46:b5:51:fe:c7:8c:de:6f:5a:60:0f:67: 3e:a8:26:7e:47:a0:8f:16:64:78:8e:e2:bc:bc:f3:92:8c:6b: 46:85:c3:18:bd:0e:e8:5a:8d:8a:72:76:3f:e3:fc:67:96:ed: 9e:2f:09:67:ed:2b:ca:60:96:41:05:2c:e3:b4:9b:d8:92:06: 88:fb:70:67 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBEODcxMTAvBgNVBAUTKDcyNUZEOTc3Q0U3MzRCQkE5OTMzRjI5NDNEQzI2OTM5 RkEwNjA4QTcwHhcNMjQxMjMxMjM0MjUzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc0ODE3ZC0xYjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4bPVyJ3X/vERCZR3dpkCXXs6Z6L8PrzEIi0MCJ5JF1gTzVKGsCZVHgbPVDf KWlbnwdCk3aMqKuOJg4km1HAPXSTQt/nEVH2KLXs9VmmNhZwlM5yLTQAUbFMclq2 1REutDqBlxRjwg0aG1tY8gv1Nh5PRqwwbpHU1yNbjv2Q7hhAhReuI4shvChpvUVI oshUdhVLzMZHGbReokNljrh71PBPkt4aSqDgMH5OkqUoM3rlK1TTpiG+c/KxilBk KhWIZQg2Zu9IEFMBC3plOxWZTtueg+37FgJp790CfPGuFFtuZ9Aaj7C8H6Ra0FyR rSSVShFvJTq/rCaXDu4ab/h11QIDAQABo4IClTCCApEwHQYDVR0OBBYEFNtvECUz dCjHmmQdH9TcZ5ggQg0OMB8GA1UdIwQYMBaAFHJf2XfOc0u6mTPylD3CaTn6Bgin MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEQ4Ny9GNjgzQ0VGMjIx RUIxMUVDOTI1MDE4MTlDNEY5QUUwMi9jbF9aZDg1elM3cVpNX0tVUGNKcE9mb0dD S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NsX1pkODV6UzdxWk1fS1VQY0pwT2ZvR0NLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBEODcvRjY4M0NFRjIyMUVCMTFFQzkyNTAxODE5QzRGOUFFMDIvMTdFMDMyNTZC NjI4MTFFRjhEMjM0MjE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnzBYwDQYJKoZIhvcNAQELBQADggEBAEAkRMDs9oioZjny /0NBqYFayOrsCsXigXHVvP8nfAPTD+byIXZ/W8bMmGbcOjZDwz4JY9k1S1Il5CmK 2KaDqeEXpohzJA2+huKwC/tF6lYG/yFe6g93whaPZF2A2ofqzSl4S57i59odmet3 PMQk2+CDGX6F4hso3qSNvWE6CrwXymotYF4IjN0vBiNI138seWLjoFjxzHic94bL Y/+cA3hu2LtywDmvQZAJbiI8IpnsMuNr5oHwqzhMUka1Uf7HjN5vWmAPZz6oJn5H oI8WZHiO4ry885KMa0aFwxi9DuhajYpydj/j/GeW7Z4vCWftK8pglkEFLOO0m9iS Boj7cGc= -----END CERTIFICATE-----Generated at Fri Apr 11 23:34:24 2025 by rpki-client