$ rpki-client -vvf rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/FA429FD6FEED11EF826A3F81C4F9AE02.roa File: FA429FD6FEED11EF826A3F81C4F9AE02.roa (raw, json) Hash identifier: +DgxPlUsAPOqgoW/QPj4mhiM+6u6bShnRM17P00ub90= Subject key identifier: 21:B5:11:6D:2D:17:D1:D6:0B:79:86:B6:58:2A:D4:11:C5:B4:C1:ED Certificate issuer: /CN=A91E36C4/serialNumber=C7C3234BD26DAD629E2D7EF444484FE541D8148E Certificate serial: 02 Authority key identifier: C7:C3:23:4B:D2:6D:AD:62:9E:2D:7E:F4:44:48:4F:E5:41:D8:14:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8MjS9JtrWKeLX70REhP5UHYFI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/FA429FD6FEED11EF826A3F81C4F9AE02.roa Signing time: Wed 12 Mar 2025 02:59:13 +0000 ROA not before: Wed 12 Mar 2025 02:59:13 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 398704 IP address blocks: 103.167.64.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.crl rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8MjS9JtrWKeLX70REhP5UHYFI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:22:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E36C4 Validity Not Before: Mar 12 02:59:13 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67d0f881-0b7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:74:c8:a6:df:c6:5d:99:4c:5c:f4:e4:31:dc: 97:0f:a0:0d:31:57:19:ff:72:59:dd:06:15:86:49: 36:36:2b:59:69:58:79:d6:58:a0:89:4a:3c:66:8e: c1:66:25:dd:86:9b:8b:3b:93:b8:89:be:c1:dd:3f: 50:be:45:dd:30:11:61:88:8f:6c:f8:d5:e2:a3:84: 8c:44:a4:ad:89:79:77:44:b9:7d:4c:ff:a1:f9:62: e9:02:9b:1e:af:40:2d:5b:f1:31:10:fb:05:df:12: 62:39:5c:70:b8:ae:98:a2:48:31:1b:ab:70:63:a4: 1e:c1:d1:5b:48:89:b0:d9:64:c7:4b:84:d6:78:bf: 1c:49:b8:5f:de:ba:50:9d:51:d4:73:70:9e:44:9b: b3:ee:9b:43:32:74:9a:8f:f6:ed:d0:75:bb:cd:14: 96:e4:12:b0:12:71:14:1c:eb:e3:5f:7a:42:65:c4: 43:09:a9:14:78:e2:fb:7c:dc:33:3b:fe:54:50:1e: 70:55:be:42:55:59:d7:01:99:1f:62:96:f8:32:9f: 97:8e:cb:4c:2f:08:ea:05:3c:0d:e9:ee:d5:86:e7: 7a:6f:22:2f:9b:c4:9b:12:18:c3:12:5d:2f:9f:8e: fc:f6:20:ba:6a:49:4d:6c:3b:7e:85:cd:e0:d1:b9: fe:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:B5:11:6D:2D:17:D1:D6:0B:79:86:B6:58:2A:D4:11:C5:B4:C1:ED X509v3 Authority Key Identifier: keyid:C7:C3:23:4B:D2:6D:AD:62:9E:2D:7E:F4:44:48:4F:E5:41:D8:14:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/x8MjS9JtrWKeLX70REhP5UHYFI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x8MjS9JtrWKeLX70REhP5UHYFI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E36C4/C1605852FEED11EF9FF6CE80C4F9AE02/FA429FD6FEED11EF826A3F81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.64.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:da:ee:87:aa:33:ab:d7:34:8c:d5:0d:9c:ad:43:d2:b9:21: 49:57:53:51:2a:2c:73:94:ed:c0:77:89:c1:c2:c1:bf:4f:9a: 13:8a:0d:a9:ed:46:95:eb:ac:e7:fb:8d:97:32:85:ab:72:fb: 4a:81:ab:de:f2:fb:4b:de:86:2c:c2:60:69:35:9e:e9:34:7f: 3a:da:84:58:9b:3e:cf:85:2f:e2:bb:3b:46:b5:7a:bf:f4:a2: 41:6f:64:a6:33:9b:3b:7e:41:9f:b9:4d:f0:4f:56:3f:09:06: b4:01:a0:87:97:be:8f:7e:01:39:b2:b0:59:d5:db:3d:a5:78: 92:1a:68:b6:d0:6d:9e:ce:81:19:03:e9:8a:ea:d2:1f:05:42: 7f:c1:17:e6:50:73:6f:39:c8:82:f8:59:a8:5e:d0:b8:90:14: 05:be:3b:9e:4a:ca:6c:f7:8b:fa:01:0e:ee:6d:4b:ee:54:60: 5a:24:31:ca:6a:41:6d:3e:d0:ed:1a:36:20:95:2d:99:da:00: 88:2c:50:a8:35:44:7b:7f:14:2e:88:10:e2:ec:0c:1b:51:dc: bb:fa:c6:b1:cb:30:25:58:65:d8:6d:26:96:0b:e3:0d:4b:53: b1:87:d0:4c:0a:5a:b7:d7:53:53:6d:8d:0e:a8:4f:bd:18:e8: d7:16:63:e0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MzZDNDExMC8GA1UEBRMoQzdDMzIzNEJEMjZEQUQ2MjlFMkQ3RUY0NDQ0ODRGRTU0 MUQ4MTQ4RTAeFw0yNTAzMTIwMjU5MTNaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZDBmODgxLTBiN2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCdMim38ZdmUxc9OQx3JcPoA0xVxn/clndBhWGSTY2K1lpWHnWWKCJSjxmjsFm Jd2Gm4s7k7iJvsHdP1C+Rd0wEWGIj2z41eKjhIxEpK2JeXdEuX1M/6H5YukCmx6v QC1b8TEQ+wXfEmI5XHC4rpiiSDEbq3BjpB7B0VtIibDZZMdLhNZ4vxxJuF/eulCd UdRzcJ5Em7Pum0MydJqP9u3QdbvNFJbkErAScRQc6+NfekJlxEMJqRR44vt83DM7 /lRQHnBVvkJVWdcBmR9ilvgyn5eOy0wvCOoFPA3p7tWG53pvIi+bxJsSGMMSXS+f jvz2ILpqSU1sO36FzeDRuf57AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUIbURbS0X 0dYLeYa2WCrUEcW0we0wHwYDVR0jBBgwFoAUx8MjS9JtrWKeLX70REhP5UHYFI4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzNkM0L0MxNjA1ODUyRkVF RDExRUY5RkY2Q0U4MEM0RjlBRTAyL3g4TWpTOUp0cldLZUxYNzBSRWhQNVVIWUZJ NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveDhNalM5SnRyV0tlTFg3MFJFaFA1VUhZRkk0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzZDNC9DMTYwNTg1MkZFRUQxMUVGOUZGNkNFODBDNEY5QUUwMi9GQTQyOUZENkZF RUQxMUVGODI2QTNGODFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWenQDANBgkqhkiG9w0BAQsFAAOCAQEALtruh6ozq9c0jNUN nK1D0rkhSVdTUSosc5TtwHeJwcLBv0+aE4oNqe1Gleus5/uNlzKFq3L7SoGr3vL7 S96GLMJgaTWe6TR/OtqEWJs+z4Uv4rs7RrV6v/SiQW9kpjObO35Bn7lN8E9WPwkG tAGgh5e+j34BObKwWdXbPaV4khpottBtns6BGQPpiurSHwVCf8EX5lBzbznIgvhZ qF7QuJAUBb47nkrKbPeL+gEO7m1L7lRgWiQxympBbT7Q7Ro2IJUtmdoAiCxQqDVE e38ULogQ4uwMG1Hcu/rGscswJVhl2G0mlgvjDUtTsYfQTApat9dTU22NDqhPvRjo 1xZj4A== -----END CERTIFICATE-----Generated at Sat Apr 5 02:10:14 2025 by rpki-client