$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/2998A0E0F99011EF89B2363DC4F9AE02.roa File: 2998A0E0F99011EF89B2363DC4F9AE02.roa (raw, json) Hash identifier: LWXau1uCdrHu5ogCDFUTbY7LgREkc03hAE0SMJairHI= Subject key identifier: 75:4A:49:D9:5B:ED:92:D2:56:2D:E0:1A:CF:84:2B:EB:14:0C:33:79 Certificate issuer: /CN=A91E3731/serialNumber=BC3A8BB0CDD08B6E3721B2C1D21A81714C3B2142 Certificate serial: 0343 Authority key identifier: BC:3A:8B:B0:CD:D0:8B:6E:37:21:B2:C1:D2:1A:81:71:4C:3B:21:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vDqLsM3Qi243IbLB0hqBcUw7IUI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/2998A0E0F99011EF89B2363DC4F9AE02.roa Signing time: Wed 05 Mar 2025 07:05:04 +0000 ROA not before: Wed 05 Mar 2025 07:05:04 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 151636 IP address blocks: 103.184.92.0/24 maxlen: 24 103.184.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/vDqLsM3Qi243IbLB0hqBcUw7IUI.crl rsync://rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/vDqLsM3Qi243IbLB0hqBcUw7IUI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vDqLsM3Qi243IbLB0hqBcUw7IUI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:16:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 835 (0x343) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3731 Validity Not Before: Mar 5 07:05:04 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67c7f7a0-1c5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:37:1b:51:96:a7:22:29:b8:77:0b:ba:88:c0: 82:77:50:ad:ed:31:8f:2a:4c:ae:cb:4f:56:d2:f9: c5:8d:58:05:29:00:fc:86:00:15:dd:d9:ad:2e:81: 7b:54:4d:da:eb:c4:77:d7:24:16:4a:c4:6a:af:4c: ef:c1:af:53:df:57:35:88:eb:c2:7e:b2:fd:6f:a7: a9:f9:9d:51:b9:89:f7:9f:94:52:66:8b:01:c5:9a: 3c:07:fd:90:46:aa:d6:d8:f4:e3:97:a5:a3:7b:11: 52:ae:87:52:8a:8b:60:1f:2a:38:bd:1a:0a:56:33: 54:26:80:c7:c5:8e:69:d0:56:02:ff:43:bf:01:de: 63:52:2b:13:c5:91:d2:d0:0c:9c:a4:a3:17:7a:1d: 3c:ed:cd:09:95:f9:f2:e1:9b:3b:6f:0b:2e:f4:53: 02:d4:16:92:f9:29:1b:8d:ac:35:c1:da:88:21:2e: 59:26:01:71:43:10:2b:d9:75:57:6f:c1:fb:52:a0: e4:25:fe:cf:14:87:4a:b7:47:f0:89:98:c6:ae:57: 4d:3a:53:ef:82:4a:d0:17:4a:a4:a0:13:94:32:3b: c9:af:62:11:de:79:fe:9e:5e:dc:32:a6:43:d1:20: 28:24:b4:93:61:5f:56:36:23:63:af:d9:c4:ed:c0: 0c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:4A:49:D9:5B:ED:92:D2:56:2D:E0:1A:CF:84:2B:EB:14:0C:33:79 X509v3 Authority Key Identifier: keyid:BC:3A:8B:B0:CD:D0:8B:6E:37:21:B2:C1:D2:1A:81:71:4C:3B:21:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/vDqLsM3Qi243IbLB0hqBcUw7IUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vDqLsM3Qi243IbLB0hqBcUw7IUI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/2998A0E0F99011EF89B2363DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.184.92.0/23 Signature Algorithm: sha256WithRSAEncryption a8:4c:c2:90:53:42:ca:9b:4f:2a:dc:88:9e:95:78:b9:43:b6: 18:ae:2f:4a:64:ce:69:1e:2e:02:a4:29:49:f3:7a:0f:6c:bf: b6:94:a3:55:ea:f5:c8:f2:60:72:9f:a4:53:0e:95:42:e5:7b: 12:23:e0:52:66:31:3c:58:78:11:ca:38:be:ee:db:74:a8:62: 88:87:1e:b9:21:c2:36:57:5f:b9:c2:7e:5a:af:0f:0d:39:c8: 40:45:70:17:91:c3:ca:17:28:ff:9d:75:3f:56:c5:3c:0f:01: 82:68:7d:34:70:b8:7b:b1:28:1b:af:e2:e9:c1:7e:11:d8:1e: 86:81:56:d7:eb:3a:4c:93:7e:a5:bb:62:06:09:a6:6d:58:81: 89:89:62:31:3b:5f:b1:5c:1e:3b:4a:31:11:5a:ba:e5:60:42: ad:b1:a5:9e:b9:06:df:68:3d:49:0f:4f:4c:ac:ed:66:e7:86: b6:f7:61:74:8a:25:48:69:5f:ff:de:0f:c7:a6:5f:7a:44:aa: ee:5e:3c:5c:73:d4:59:19:6a:53:86:bb:98:0b:b3:05:9f:3c: f5:00:9f:e0:d1:3a:83:8a:a2:3f:38:4c:01:d0:78:88:5a:9d: dc:30:fb:6b:1d:e2:43:cd:59:16:01:cf:49:9b:ec:82:b2:2d: 63:9b:56:65 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM3MzExMTAvBgNVBAUTKEJDM0E4QkIwQ0REMDhCNkUzNzIxQjJDMUQyMUE4MTcx NEMzQjIxNDIwHhcNMjUwMzA1MDcwNTA0WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M3ZjdhMC0xYzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjcbUZanIim4dwu6iMCCd1Ct7TGPKkyuy09W0vnFjVgFKQD8hgAV3dmtLoF7 VE3a68R31yQWSsRqr0zvwa9T31c1iOvCfrL9b6ep+Z1RuYn3n5RSZosBxZo8B/2Q RqrW2PTjl6WjexFSrodSiotgHyo4vRoKVjNUJoDHxY5p0FYC/0O/Ad5jUisTxZHS 0AycpKMXeh087c0Jlfny4Zs7bwsu9FMC1BaS+Skbjaw1wdqIIS5ZJgFxQxAr2XVX b8H7UqDkJf7PFIdKt0fwiZjGrldNOlPvgkrQF0qkoBOUMjvJr2IR3nn+nl7cMqZD 0SAoJLSTYV9WNiNjr9nE7cAMAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHVKSdlb 7ZLSVi3gGs+EK+sUDDN5MB8GA1UdIwQYMBaAFLw6i7DN0ItuNyGywdIagXFMOyFC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzczMS81NUIyMjNFQUMw MjIxMUVDOTI2NURBNURDNEY5QUUwMi92RHFMc00zUWkyNDNJYkxCMGhxQmNVdzdJ VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZEcUxzTTNRaTI0M0liTEIwaHFCY1V3N0lVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTM3MzEvNTVCMjIzRUFDMDIyMTFFQzkyNjVEQTVEQzRGOUFFMDIvMjk5OEEwRTBG OTkwMTFFRjg5QjIzNjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnuFwwDQYJKoZIhvcNAQELBQADggEBAKhMwpBTQsqbTyrc iJ6VeLlDthiuL0pkzmkeLgKkKUnzeg9sv7aUo1Xq9cjyYHKfpFMOlULlexIj4FJm MTxYeBHKOL7u23SoYoiHHrkhwjZXX7nCflqvDw05yEBFcBeRw8oXKP+ddT9WxTwP AYJofTRwuHuxKBuv4unBfhHYHoaBVtfrOkyTfqW7YgYJpm1YgYmJYjE7X7FcHjtK MRFauuVgQq2xpZ65Bt9oPUkPT0ys7Wbnhrb3YXSKJUhpX//eD8emX3pEqu5ePFxz 1FkZalOGu5gLswWfPPUAn+DROoOKoj84TAHQeIhandww+2sd4kPNWRYBz0mb7IKy LWObVmU= -----END CERTIFICATE-----Generated at Sun Apr 6 01:51:59 2025 by rpki-client