$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/9406C1209FDB11EDB88C5662C4F9AE02.roa File: 9406C1209FDB11EDB88C5662C4F9AE02.roa (raw, json) Hash identifier: NOfiYVkjVgVKJdndF7rjEsZWLBXmxcXaA+rDg1JFfcI= Subject key identifier: 9C:67:B3:8F:03:21:76:92:7C:EB:E5:8E:01:B1:B3:FD:AA:32:9A:E2 Certificate issuer: /CN=A91E7E45/serialNumber=C4829B6C07FD804DF0925CFFC161C6702807A026 Certificate serial: 09CE Authority key identifier: C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/9406C1209FDB11EDB88C5662C4F9AE02.roa Signing time: Wed 12 Feb 2025 20:58:32 +0000 ROA not before: Wed 12 Feb 2025 20:58:32 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 6939 IP address blocks: 103.207.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:13:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2510 (0x9ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7E45 Validity Not Before: Feb 12 20:58:32 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ad0b77-6fb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:70:a8:15:ca:d9:b9:dd:96:01:a2:cd:95:bf: 8e:3b:40:8d:25:9c:87:7a:0b:2b:37:fc:b9:19:c6: b4:30:8e:a3:1c:78:04:29:d5:53:63:75:04:8d:c0: d5:4d:08:7a:fa:66:77:bc:f5:e0:a3:a7:d6:b7:88: 9d:46:45:ce:2d:60:a2:ce:14:fd:da:cd:df:3a:c1: 00:8e:36:d7:3a:66:1f:56:18:7e:24:c8:ed:ba:67: 54:72:52:39:01:6c:84:0e:f0:2d:6b:31:74:50:06: ea:82:5d:9f:ae:47:af:08:1b:41:78:e4:4d:c0:cc: cc:d6:27:fe:c1:5a:e6:78:a1:79:b0:06:74:ab:de: c4:8c:3f:6a:8f:9b:aa:b3:d4:28:d4:c2:13:92:46: 32:27:b6:f2:ec:a3:60:1a:66:42:c0:0e:2f:c4:07: 44:fc:20:85:66:5f:cf:76:4c:9f:d7:ed:04:94:a4: 13:c4:d4:6a:a9:3b:0d:c3:db:9d:70:16:64:2b:76: cf:b4:c8:95:0e:a0:44:2c:bf:1c:5b:ec:e4:a9:a3: 85:01:0a:cb:a9:6b:c7:77:6c:7e:e9:f3:34:35:e5: c5:1b:65:29:05:59:51:30:da:87:68:af:e3:b2:22: 62:53:71:e8:63:02:c3:e3:96:f0:4b:ff:27:47:d3: 4f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:67:B3:8F:03:21:76:92:7C:EB:E5:8E:01:B1:B3:FD:AA:32:9A:E2 X509v3 Authority Key Identifier: keyid:C4:82:9B:6C:07:FD:80:4D:F0:92:5C:FF:C1:61:C6:70:28:07:A0:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/xIKbbAf9gE3wklz_wWHGcCgHoCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIKbbAf9gE3wklz_wWHGcCgHoCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7E45/06C8563C83D911EAA3124F5CC4F9AE02/9406C1209FDB11EDB88C5662C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.207.71.0/24 Signature Algorithm: sha256WithRSAEncryption 93:77:1c:54:95:75:da:e1:b9:46:9a:ab:87:75:48:4d:8d:cf: 5b:e0:1d:3c:56:fc:53:0e:91:15:6b:43:f8:18:40:f1:db:9e: 1a:80:f7:a4:74:26:54:81:e2:38:11:d0:e6:16:f7:59:2c:fa: 0c:7d:a9:6b:8c:87:37:b3:04:1d:4f:82:68:56:c0:06:2c:e3: a1:66:59:7c:e7:22:f9:65:bf:55:18:6a:56:91:21:22:ae:7e: 68:4c:59:a3:de:36:18:19:4d:a1:42:6a:81:f0:18:96:16:1a: e6:ea:f2:ba:7e:d1:95:f6:3d:d2:d7:94:05:66:16:1a:6c:b8: ae:12:a9:30:1e:72:4f:75:f6:7d:f8:d6:0f:73:ba:80:89:64: 2b:32:22:d9:ac:fb:63:1a:5c:05:d3:58:fc:5a:8d:17:ba:8b: ae:b1:ff:72:5b:74:2d:f2:89:a5:ac:0f:1a:12:57:2f:9f:76: 6d:2d:cc:46:24:4f:de:f0:49:af:e9:cf:c5:e8:57:c3:17:ad: 9e:ac:12:21:bf:58:87:62:96:6d:f2:4c:d4:fb:05:f0:be:ec: 85:9f:f0:c7:e3:12:0a:78:fa:eb:8c:a9:52:c1:a6:0a:b9:70: 10:6c:52:96:03:d3:c0:62:ac:7a:b3:02:a7:e1:5b:ba:d7:f4: 8a:77:49:30 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdFNDUxMTAvBgNVBAUTKEM0ODI5QjZDMDdGRDgwNERGMDkyNUNGRkMxNjFDNjcw MjgwN0EwMjYwHhcNMjUwMjEyMjA1ODMyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FkMGI3Ny02ZmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnCoFcrZud2WAaLNlb+OO0CNJZyHegsrN/y5Gca0MI6jHHgEKdVTY3UEjcDV TQh6+mZ3vPXgo6fWt4idRkXOLWCizhT92s3fOsEAjjbXOmYfVhh+JMjtumdUclI5 AWyEDvAtazF0UAbqgl2frkevCBtBeORNwMzM1if+wVrmeKF5sAZ0q97EjD9qj5uq s9Qo1MITkkYyJ7by7KNgGmZCwA4vxAdE/CCFZl/Pdkyf1+0ElKQTxNRqqTsNw9ud cBZkK3bPtMiVDqBELL8cW+zkqaOFAQrLqWvHd2x+6fM0NeXFG2UpBVlRMNqHaK/j siJiU3HoYwLD45bwS/8nR9NPUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJxns48D IXaSfOvljgGxs/2qMpriMB8GA1UdIwQYMBaAFMSCm2wH/YBN8JJc/8FhxnAoB6Am MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0U0NS8wNkM4NTYzQzgz RDkxMUVBQTMxMjRGNUNDNEY5QUUwMi94SUtiYkFmOWdFM3drbHpfd1dIR2NDZ0hv Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJS2JiQWY5Z0Uzd2tsel93V0hHY0NnSG9DWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTdFNDUvMDZDODU2M0M4M0Q5MTFFQUEzMTI0RjVDQzRGOUFFMDIvOTQwNkMxMjA5 RkRCMTFFREI4OEM1NjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnz0cwDQYJKoZIhvcNAQELBQADggEBAJN3HFSVddrhuUaa q4d1SE2Nz1vgHTxW/FMOkRVrQ/gYQPHbnhqA96R0JlSB4jgR0OYW91ks+gx9qWuM hzezBB1PgmhWwAYs46FmWXznIvllv1UYalaRISKufmhMWaPeNhgZTaFCaoHwGJYW Gubq8rp+0ZX2PdLXlAVmFhpsuK4SqTAeck919n341g9zuoCJZCsyItms+2MaXAXT WPxajRe6i66x/3JbdC3yiaWsDxoSVy+fdm0tzEYkT97wSa/pz8XoV8MXrZ6sEiG/ WIdilm3yTNT7BfC+7IWf8MfjEgp4+uuMqVLBpgq5cBBsUpYD08BirHqzAqfhW7rX 9Ip3STA= -----END CERTIFICATE-----Generated at Sat Apr 5 01:45:08 2025 by rpki-client