$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/8291E388EA0811EFB385192AC4F9AE02.roa File: 8291E388EA0811EFB385192AC4F9AE02.roa (raw, json) Hash identifier: XpmAeXpdeuf94znt4qbum8GMVNKKeabDl6UX2Jbwn48= Subject key identifier: C0:EB:05:AA:50:05:E3:81:07:70:4F:C6:F6:F9:1C:A1:CA:E3:8E:27 Certificate issuer: /CN=A91E1CB1/serialNumber=063E0127472A7E2A6F8470409C9B823905FAFE8E Certificate serial: 02 Authority key identifier: 06:3E:01:27:47:2A:7E:2A:6F:84:70:40:9C:9B:82:39:05:FA:FE:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/8291E388EA0811EFB385192AC4F9AE02.roa Signing time: Thu 13 Feb 2025 12:46:14 +0000 ROA not before: Thu 13 Feb 2025 12:46:14 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 142594 IP address blocks: 103.166.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.crl rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:09:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1CB1 Validity Not Before: Feb 13 12:46:14 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67ade996-1113 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:35:ff:8b:eb:44:60:f2:2e:15:7e:2c:3e:3f: 9b:6c:85:da:b4:c5:f2:f3:60:58:68:e0:9e:20:85: cc:47:19:e5:94:fe:50:88:65:c5:14:b9:9f:e8:94: 88:64:de:14:f3:65:b4:58:6b:f0:4e:4a:29:42:d7: c2:b9:26:c5:7f:b6:d8:70:4d:8b:09:c1:f0:49:6d: 28:b9:89:5d:66:ad:89:58:45:17:6e:79:a6:2f:be: 9e:1e:3f:ba:8d:84:8a:29:2f:e0:c9:23:5c:01:bc: 79:3f:9a:92:fd:74:7e:53:05:c3:9a:2c:9e:27:f2: b5:4e:90:21:e6:4d:b5:4d:f9:ab:ed:ef:60:ad:0e: cc:92:1c:cf:46:31:d6:be:32:a1:4c:ab:af:f4:b8: 7b:d7:05:54:27:21:af:bc:4d:3d:d8:de:50:ac:70: ca:3f:28:7a:5c:9d:67:28:23:91:32:66:e2:d2:d9: 59:7c:20:0b:36:1a:9a:e8:6e:af:9f:0e:b9:03:56: 87:01:7e:09:4e:60:c9:a5:eb:b5:72:2e:85:7a:42: 8e:95:2a:8c:e1:d2:f2:c2:d9:ed:9a:e8:7f:4f:5e: 67:c7:76:a4:73:29:d0:c2:13:43:6e:43:44:e6:ca: bf:d9:81:9d:f6:35:a6:87:6e:76:e8:cd:bc:e1:03: 2b:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:EB:05:AA:50:05:E3:81:07:70:4F:C6:F6:F9:1C:A1:CA:E3:8E:27 X509v3 Authority Key Identifier: keyid:06:3E:01:27:47:2A:7E:2A:6F:84:70:40:9C:9B:82:39:05:FA:FE:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bj4BJ0cqfipvhHBAnJuCOQX6_o4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1CB1/3F4A5A2EEA0811EF9D339B29C4F9AE02/8291E388EA0811EFB385192AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.228.0/24 Signature Algorithm: sha256WithRSAEncryption 61:3c:cd:26:59:b8:13:a5:5b:f3:be:9d:65:db:47:b8:a5:49: f9:29:51:dd:aa:eb:ad:03:62:21:02:83:fe:21:9b:f6:b2:9e: cf:e5:0e:f6:dc:94:7a:80:05:d5:df:22:cf:4d:d4:49:3c:cc: 25:28:21:01:61:2a:a2:a9:91:21:1e:a2:6a:ac:99:29:d0:61: d2:79:55:3d:68:90:4e:d0:45:21:b6:86:5a:e6:0f:0d:2f:e0: a0:d5:16:07:97:ad:d7:f4:d1:95:a2:d5:a3:b3:07:9c:ae:77: eb:e6:1f:47:85:3f:76:9d:85:a4:c5:1e:1b:9f:f1:1e:83:51: fb:67:51:8e:cb:31:10:a4:3f:e0:40:30:e6:07:24:fe:b9:5a: d4:c9:b9:dc:a1:20:11:00:95:d7:c2:74:f7:4e:d0:a5:c6:13: e5:97:4c:6e:6b:ff:f8:58:f2:1f:7c:6a:9c:c4:f1:b2:1c:12: 62:41:48:b7:11:2c:86:57:50:ec:d2:1f:28:62:ff:63:c7:d7: 1f:55:75:51:fa:e0:09:7f:4e:65:3d:5e:cf:75:ab:1e:a5:01: 84:57:6d:26:df:06:b7:e9:59:d5:f2:e4:27:53:35:99:cf:55: 6d:40:d2:e6:49:6e:50:75:91:be:8c:b1:46:1d:aa:ed:ff:8f: 4f:0d:37:77 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MUNCMTExMC8GA1UEBRMoMDYzRTAxMjc0NzJBN0UyQTZGODQ3MDQwOUM5QjgyMzkw NUZBRkU4RTAeFw0yNTAyMTMxMjQ2MTRaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YWRlOTk2LTExMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDjNf+L60Rg8i4Vfiw+P5tshdq0xfLzYFho4J4ghcxHGeWU/lCIZcUUuZ/olIhk 3hTzZbRYa/BOSilC18K5JsV/tthwTYsJwfBJbSi5iV1mrYlYRRdueaYvvp4eP7qN hIopL+DJI1wBvHk/mpL9dH5TBcOaLJ4n8rVOkCHmTbVN+avt72CtDsySHM9GMda+ MqFMq6/0uHvXBVQnIa+8TT3Y3lCscMo/KHpcnWcoI5EyZuLS2Vl8IAs2Gprobq+f DrkDVocBfglOYMml67VyLoV6Qo6VKozh0vLC2e2a6H9PXmfHdqRzKdDCE0NuQ0Tm yr/ZgZ32NaaHbnbozbzhAyuXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUwOsFqlAF 44EHcE/G9vkcocrjjicwHwYDVR0jBBgwFoAUBj4BJ0cqfipvhHBAnJuCOQX6/o4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxQ0IxLzNGNEE1QTJFRUEw ODExRUY5RDMzOUIyOUM0RjlBRTAyL0JqNEJKMGNxZmlwdmhIQkFuSnVDT1FYNl9v NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQmo0QkowY3FmaXB2aEhCQW5KdUNPUVg2X280LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MUNCMS8zRjRBNUEyRUVBMDgxMUVGOUQzMzlCMjlDNEY5QUUwMi84MjkxRTM4OEVB MDgxMUVGQjM4NTE5MkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGem5DANBgkqhkiG9w0BAQsFAAOCAQEAYTzNJlm4E6Vb876d ZdtHuKVJ+SlR3arrrQNiIQKD/iGb9rKez+UO9tyUeoAF1d8iz03USTzMJSghAWEq oqmRIR6iaqyZKdBh0nlVPWiQTtBFIbaGWuYPDS/goNUWB5et1/TRlaLVo7MHnK53 6+YfR4U/dp2FpMUeG5/xHoNR+2dRjssxEKQ/4EAw5gck/rla1Mm53KEgEQCV18J0 907QpcYT5ZdMbmv/+FjyH3xqnMTxshwSYkFItxEshldQ7NIfKGL/Y8fXH1V1Ufrg CX9OZT1ez3WrHqUBhFdtJt8Gt+lZ1fLkJ1M1mc9VbUDS5kluUHWRvoyxRh2q7f+P Tw03dw== -----END CERTIFICATE-----Generated at Sat Apr 5 07:19:26 2025 by rpki-client