$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/0FD437CAC11811EE8328EF7AC4F9AE02.roa File: 0FD437CAC11811EE8328EF7AC4F9AE02.roa (raw, json) Hash identifier: 2Dd7cd8I4OSARGKZ0mccoyZW6iVZIc9ObRTGe4O/Dcc= Subject key identifier: 10:18:D2:63:35:9C:72:4C:47:CE:F6:FA:83:13:42:F4:83:70:AF:EB Certificate issuer: /CN=A91E7E45/serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Certificate serial: 09D0 Authority key identifier: C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/0FD437CAC11811EE8328EF7AC4F9AE02.roa Signing time: Wed 12 Feb 2025 20:58:34 +0000 ROA not before: Wed 12 Feb 2025 20:58:33 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 979 IP address blocks: 103.207.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:13:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2512 (0x9d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7E45 Validity Not Before: Feb 12 20:58:33 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ad0b79-e3f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:08:f8:7f:0f:72:91:ba:7a:a7:8e:f2:44:72: e2:8f:30:9a:0d:ea:99:2a:81:97:7f:de:17:bd:a5: fd:3e:03:c8:58:6d:20:2d:9c:3e:cf:7d:09:43:3a: 64:3a:5e:31:70:41:1e:93:50:36:6e:43:55:0a:68: 6e:16:d3:3c:96:e3:34:43:82:ab:e5:96:db:3d:0f: 96:21:d9:e6:e1:e3:97:31:cc:6e:6a:fa:fe:f1:1c: a5:c7:a1:5d:04:46:b8:7b:f6:9d:1e:af:1d:09:68: 34:20:87:31:25:a8:bb:32:75:52:2f:c8:1f:7d:fd: 5e:7c:e9:2a:a1:48:c2:bf:d2:2d:fa:0f:5a:6d:f0: c5:79:81:cb:a4:4a:f4:f5:34:80:10:7c:47:e7:52: dd:fe:10:c2:1d:1d:12:d7:31:78:fe:5e:f2:54:8a: 1d:a4:85:28:0c:b1:f0:bf:cb:d4:3c:b2:e1:fb:28: 53:98:b1:73:cf:e0:28:cc:3c:09:21:5a:d2:3e:d4: ab:e7:53:68:3d:a0:f0:6b:59:a4:96:df:c2:d3:a7: b7:02:dd:51:e4:28:f4:f5:d2:8b:00:99:54:50:6c: f5:c7:bd:1b:c7:2d:02:07:05:c0:c0:c5:d8:18:d7: da:72:4b:41:f5:25:e4:17:5c:a3:e4:fc:3e:95:6b: 7b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:18:D2:63:35:9C:72:4C:47:CE:F6:FA:83:13:42:F4:83:70:AF:EB X509v3 Authority Key Identifier: keyid:C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/0FD437CAC11811EE8328EF7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.207.68.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:98:64:97:e8:75:76:5c:6b:76:e1:7f:92:8c:41:1d:f0:48: cc:5e:5f:f3:00:81:ec:a8:21:e4:07:7c:c5:4b:9d:0c:c1:ff: 76:f5:0f:53:cf:12:51:c8:c7:56:21:2a:8f:1d:29:a1:18:0b: 7b:16:d9:16:dd:4d:31:dd:a3:8f:76:73:57:19:ee:cf:72:8d: 7e:00:3e:98:71:1a:bd:e3:19:d3:c1:f0:6b:bc:45:cc:0c:d1: 53:d0:56:e5:20:a6:2e:f2:29:7a:88:ac:85:d1:18:a6:c3:94: 08:ce:20:67:b1:1f:8a:45:76:82:4a:b2:0c:c0:94:2a:81:d0: b9:63:f1:63:de:a6:6d:70:43:3a:07:63:c9:22:d0:9e:1c:a9: aa:69:d8:ef:60:d3:07:9c:4f:a1:39:da:57:38:82:cc:34:11: 14:7b:bb:d3:53:6a:ce:5e:32:59:54:90:7b:10:c4:38:93:db: d9:0b:ee:f6:d1:3b:41:37:ac:0c:e6:0d:8c:f5:36:6f:5f:eb: 72:79:78:c8:cb:0f:c5:a1:88:9b:27:53:5e:7f:bc:27:0f:5b: 0e:4b:99:cc:b3:2a:76:00:13:e7:1b:72:05:8e:a3:1d:e7:20: 1c:1b:35:d6:4a:52:9c:28:6e:2e:24:f1:05:d1:43:35:ae:a7: e8:23:e3:49 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFNDUxMTAvBgNVBAUTKEM0ODI5QjZDMDdGRDgwNERGMDkyNUNGRkMxNjFDNjcw MjgwN0EwMjYwHhcNMjUwMjEyMjA1ODMzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FkMGI3OS1lM2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgj4fw9ykbp6p47yRHLijzCaDeqZKoGXf94XvaX9PgPIWG0gLZw+z30JQzpk Ol4xcEEek1A2bkNVCmhuFtM8luM0Q4Kr5ZbbPQ+WIdnm4eOXMcxuavr+8Rylx6Fd BEa4e/adHq8dCWg0IIcxJai7MnVSL8gfff1efOkqoUjCv9It+g9abfDFeYHLpEr0 9TSAEHxH51Ld/hDCHR0S1zF4/l7yVIodpIUoDLHwv8vUPLLh+yhTmLFzz+AozDwJ IVrSPtSr51NoPaDwa1mklt/C06e3At1R5Cj09dKLAJlUUGz1x70bxy0CBwXAwMXY GNfacktB9SXkF1yj5Pw+lWt7GQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBAY0mM1 nHJMR872+oMTQvSDcK/rMB8GA1UdIwQYMBaAFMSCm2wH/YBN8JJc/8FhxnAoB6Am MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0U0NS8wNkM4NTYzQzgz RDkxMUVBQTMxMjRGNUNDNEY5QUUwMi94SUtiYkFmOWdFM3drbHpfd1dIR2NDZ0hv Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJS2JiQWY5Z0Uzd2tsel93V0hHY0NnSG9DWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTdFNDUvMDZDODU2M0M4M0Q5MTFFQUEzMTI0RjVDQzRGOUFFMDIvMEZENDM3Q0FD MTE4MTFFRTgzMjhFRjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnz0QwDQYJKoZIhvcNAQELBQADggEBAHuYZJfodXZca3bh f5KMQR3wSMxeX/MAgeyoIeQHfMVLnQzB/3b1D1PPElHIx1YhKo8dKaEYC3sW2Rbd TTHdo492c1cZ7s9yjX4APphxGr3jGdPB8Gu8RcwM0VPQVuUgpi7yKXqIrIXRGKbD lAjOIGexH4pFdoJKsgzAlCqB0Llj8WPepm1wQzoHY8ki0J4cqapp2O9g0wecT6E5 2lc4gsw0ERR7u9NTas5eMllUkHsQxDiT29kL7vbRO0E3rAzmDYz1Nm9f63J5eMjL D8WhiJsnU15/vCcPWw5LmcyzKnYAE+cbcgWOox3nIBwbNdZKUpwobi4k8QXRQzWu p+gj40k= -----END CERTIFICATE-----Generated at Sat Apr 5 01:38:10 2025 by rpki-client