$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/AB292A3C96B011EF8A9EC651C4F9AE02.roa File: AB292A3C96B011EF8A9EC651C4F9AE02.roa (raw, json) Hash identifier: BzLLvkfSgA90WHkemc3z5sY93K0AoCZEQTiqQoQL3lc= Subject key identifier: C1:DD:6B:B9:3A:95:73:8C:3B:C6:DD:FD:30:3A:5A:10:41:F1:7A:CB Certificate issuer: /CN=A91EAB64/serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Certificate serial: 016F Authority key identifier: 20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/AB292A3C96B011EF8A9EC651C4F9AE02.roa Signing time: Tue 11 Mar 2025 00:46:45 +0000 ROA not before: Tue 11 Mar 2025 00:46:45 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 149994 IP address blocks: 103.179.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 00:21:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 367 (0x16f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAB64, serialNumber=20ED0AAB20750B8B27A86DF989A754BF5726DD7E Validity Not Before: Mar 11 00:46:45 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67cf87f5-cd11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ae:42:be:16:48:85:c3:61:1a:00:99:7f:6f: 11:8f:6e:29:94:8b:2f:c8:59:bf:a3:12:c9:d0:5b: dc:e3:82:a2:8a:fa:ae:e7:a4:24:10:8e:d3:bc:54: 3e:57:7e:95:00:1b:5b:11:07:56:6f:fb:94:be:be: 3c:62:30:c7:4c:af:97:cf:ef:8a:1e:a0:a9:a1:06: f8:b3:08:b7:15:4a:81:eb:78:c6:60:b1:64:95:05: 27:49:74:4b:c1:e5:1e:f8:06:66:45:64:2f:36:10: 6e:c0:3a:20:51:3b:e7:40:30:3d:18:fc:73:48:be: 99:75:a1:fc:23:9b:fa:cb:c3:8c:48:8b:09:b8:89: e4:75:4d:53:16:5f:64:db:da:3b:f6:ca:e8:9b:c4: 71:08:ca:68:c3:99:64:4d:46:ab:7f:ca:6b:fa:e4: 5d:21:fc:bf:a8:de:a2:44:d9:82:cb:82:93:5e:b3: 32:ae:a5:8a:26:b0:23:74:8c:c8:61:f7:23:b3:79: a6:27:5e:db:b8:99:2f:80:a9:9c:e3:50:d1:01:37: 9a:31:37:00:06:cc:f1:87:dc:e0:52:7e:ed:ce:6d: d7:15:74:20:89:ff:8c:7b:e1:f0:ca:25:8e:e1:de: 6c:0d:e0:f2:69:67:bf:83:ea:ec:35:c4:c0:af:fa: d8:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:DD:6B:B9:3A:95:73:8C:3B:C6:DD:FD:30:3A:5A:10:41:F1:7A:CB X509v3 Authority Key Identifier: keyid:20:ED:0A:AB:20:75:0B:8B:27:A8:6D:F9:89:A7:54:BF:57:26:DD:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/IO0KqyB1C4snqG35iadUv1cm3X4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IO0KqyB1C4snqG35iadUv1cm3X4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAB64/9B44EB748F2911ECB6A6996CC4F9AE02/AB292A3C96B011EF8A9EC651C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.126.0/24 Signature Algorithm: sha256WithRSAEncryption 62:69:44:dd:72:cd:33:f2:8f:b4:83:49:61:64:3e:bf:92:27: 69:ee:7e:85:9b:e4:2a:e3:71:f6:a8:1b:57:12:62:2f:60:16: 8a:02:ac:55:6b:24:49:a8:54:42:d0:56:40:4d:3b:06:3d:43: 83:5a:af:c3:e9:0b:ef:bd:e8:97:68:1c:39:b4:f0:4c:06:79: 24:34:f2:59:77:0f:76:25:bb:89:0f:53:63:c5:83:53:3c:c2: 3a:47:0c:3f:fb:d3:bf:9a:42:f0:bc:0e:76:3d:d7:d7:40:a0: 9f:8c:16:27:36:1a:20:ff:9a:a9:e9:f9:fc:9c:94:37:3c:33: 21:3d:cc:e0:f9:e0:34:10:a4:a8:f1:7f:05:10:d2:5c:cb:60: a2:05:0b:27:cd:8d:a3:0a:f8:3b:c7:79:9f:1e:4b:44:a0:35: aa:53:4c:e2:ce:1f:df:de:00:00:ce:65:ac:0b:41:dd:80:01: 50:d1:9c:d0:77:ab:bd:58:5b:6c:ee:19:d0:c6:95:a3:36:d1: 07:4a:ef:8b:98:77:ca:7e:b2:c8:3d:9d:68:d8:45:6d:76:ac: c2:fd:94:d8:b3:df:50:f0:f2:ec:d6:1a:7d:9a:18:3c:0a:f1: 40:5b:de:a0:6f:b9:1b:55:b0:16:50:48:c3:36:74:5b:97:93: 7e:aa:e0:a9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFCNjQxMTAvBgNVBAUTKDIwRUQwQUFCMjA3NTBCOEIyN0E4NkRGOTg5QTc1NEJG NTcyNkREN0UwHhcNMjUwMzExMDA0NjQ1WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NmODdmNS1jZDExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzq5CvhZIhcNhGgCZf28Rj24plIsvyFm/oxLJ0Fvc44Kiivqu56QkEI7TvFQ+ V36VABtbEQdWb/uUvr48YjDHTK+Xz++KHqCpoQb4swi3FUqB63jGYLFklQUnSXRL weUe+AZmRWQvNhBuwDogUTvnQDA9GPxzSL6ZdaH8I5v6y8OMSIsJuInkdU1TFl9k 29o79srom8RxCMpow5lkTUarf8pr+uRdIfy/qN6iRNmCy4KTXrMyrqWKJrAjdIzI Yfcjs3mmJ17buJkvgKmc41DRATeaMTcABszxh9zgUn7tzm3XFXQgif+Me+HwyiWO 4d5sDeDyaWe/g+rsNcTAr/rYnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMHda7k6 lXOMO8bd/TA6WhBB8XrLMB8GA1UdIwQYMBaAFCDtCqsgdQuLJ6ht+YmnVL9XJt1+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUI2NC85QjQ0RUI3NDhG MjkxMUVDQjZBNjk5NkNDNEY5QUUwMi9JTzBLcXlCMUM0c25xRzM1aWFkVXYxY20z WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lPMEtxeUIxQzRzbnFHMzVpYWRVdjFjbTNYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFCNjQvOUI0NEVCNzQ4RjI5MTFFQ0I2QTY5OTZDQzRGOUFFMDIvQUIyOTJBM0M5 NkIwMTFFRjhBOUVDNjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABns34wDQYJKoZIhvcNAQELBQADggEBAGJpRN1yzTPyj7SD SWFkPr+SJ2nufoWb5CrjcfaoG1cSYi9gFooCrFVrJEmoVELQVkBNOwY9Q4Nar8Pp C++96JdoHDm08EwGeSQ08ll3D3Ylu4kPU2PFg1M8wjpHDD/707+aQvC8DnY919dA oJ+MFic2GiD/mqnp+fyclDc8MyE9zOD54DQQpKjxfwUQ0lzLYKIFCyfNjaMK+DvH eZ8eS0SgNapTTOLOH9/eAADOZawLQd2AAVDRnNB3q71YW2zuGdDGlaM20QdK74uY d8p+ssg9nWjYRW12rML9lNiz31Dw8uzWGn2aGDwK8UBb3qBvuRtVsBZQSMM2dFuX k36q4Kk= -----END CERTIFICATE-----Generated at Tue Apr 22 23:17:54 2025 by rpki-client