$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFFF0/44FEBC92ADB211E89C9B4553C4F9AE02/8853B5C200FF11F09AD9E43CC4F9AE02.roa File: 8853B5C200FF11F09AD9E43CC4F9AE02.roa (raw, json) Hash identifier: ++7RC+lcxadURbh9ihJKswyqNjTMzF1VYIMw23UQZNY= Subject key identifier: 04:14:1E:A4:5D:A6:EE:73:C4:C5:3B:BC:40:1C:70:65:EB:69:B2:11 Certificate issuer: /CN=A91EFFF0/serialNumber=AEFCE4BA24DFA6ED64E41E4F2451C9E884AE69A2 Certificate serial: 12FD Authority key identifier: AE:FC:E4:BA:24:DF:A6:ED:64:E4:1E:4F:24:51:C9:E8:84:AE:69:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rvzkuiTfpu1k5B5PJFHJ6ISuaaI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EFFF0/44FEBC92ADB211E89C9B4553C4F9AE02/8853B5C200FF11F09AD9E43CC4F9AE02.roa Signing time: Fri 14 Mar 2025 18:09:55 +0000 ROA not before: Fri 14 Mar 2025 18:09:55 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 153174 IP address blocks: 103.139.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EFFF0/44FEBC92ADB211E89C9B4553C4F9AE02/rvzkuiTfpu1k5B5PJFHJ6ISuaaI.crl rsync://rpki.apnic.net/member_repository/A91EFFF0/44FEBC92ADB211E89C9B4553C4F9AE02/rvzkuiTfpu1k5B5PJFHJ6ISuaaI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rvzkuiTfpu1k5B5PJFHJ6ISuaaI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:08:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4861 (0x12fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EFFF0 Validity Not Before: Mar 14 18:09:55 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67d470f3-e9a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:8e:ae:1b:2b:91:f4:2e:e7:74:1c:ec:25:da: 65:39:09:53:ea:52:58:7c:6b:fb:0c:c3:ae:e8:67: 30:12:79:15:63:81:ed:8a:a7:f0:99:d6:3f:8e:59: 81:33:66:18:f4:b6:24:41:9f:aa:f4:e7:bc:a4:db: d7:b2:18:85:de:80:94:62:48:bc:dd:d1:9e:44:15: b2:eb:b8:b0:c5:74:f7:f4:66:a3:44:1c:b4:49:d1: 11:a5:ba:99:4a:e6:09:0e:7d:59:49:5b:f2:4e:68: 60:8b:4a:32:52:0a:6c:cc:d4:05:f4:f5:6e:f8:c9: 57:6f:ff:4b:43:19:5d:e6:4e:b2:56:a0:79:a8:03: ea:2f:05:e4:25:8a:03:7e:a2:72:12:c8:f3:e7:43: b5:ee:52:2c:d5:9d:ad:4e:d2:b3:91:22:fe:4b:71: 33:ee:86:1a:90:00:98:b2:38:b0:a7:f0:a0:09:c4: 78:9e:eb:c9:31:be:44:d4:38:4a:4d:de:31:3d:bc: c8:93:b5:4a:92:c2:fc:8b:21:09:02:85:1a:38:11: 72:48:c8:38:7f:ca:03:91:93:9d:8b:e3:ba:73:1b: af:02:ec:7e:06:ca:ea:51:67:1b:93:bf:b0:ba:bc: 64:aa:3d:8c:b5:71:58:f8:0f:27:e3:bc:e8:68:27: d1:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:14:1E:A4:5D:A6:EE:73:C4:C5:3B:BC:40:1C:70:65:EB:69:B2:11 X509v3 Authority Key Identifier: keyid:AE:FC:E4:BA:24:DF:A6:ED:64:E4:1E:4F:24:51:C9:E8:84:AE:69:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EFFF0/44FEBC92ADB211E89C9B4553C4F9AE02/rvzkuiTfpu1k5B5PJFHJ6ISuaaI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rvzkuiTfpu1k5B5PJFHJ6ISuaaI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFFF0/44FEBC92ADB211E89C9B4553C4F9AE02/8853B5C200FF11F09AD9E43CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.80.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:f4:89:69:e7:26:eb:d8:d2:03:7d:ff:d3:83:35:5d:5c:8e: 56:c9:b2:91:43:23:cb:59:e5:45:dc:b2:70:2a:47:4b:63:a2: 42:c1:73:26:e0:76:e2:73:5f:9c:e8:d7:8e:7a:84:9f:1c:cd: 0a:d4:27:26:bf:07:78:5e:d2:4b:e8:15:6b:ee:e3:79:b9:64: 71:f6:ae:e4:41:17:c0:2b:04:55:b6:fe:69:74:f1:02:ac:2c: 74:b8:61:be:41:09:49:b0:b7:47:a5:49:d2:cf:e3:56:7e:48: 45:b2:c8:0c:48:93:ee:aa:89:65:f8:23:6e:49:1f:3e:9c:3e: 42:ee:30:98:1f:ea:a7:05:22:c2:b1:a2:86:18:89:2b:6e:a8: aa:fc:e1:81:56:8e:04:64:94:33:1d:f1:98:5c:40:5e:a2:e3: ae:8e:35:1f:60:cc:f2:6c:48:29:f5:44:32:a1:f5:0d:96:f2: 12:c5:ce:03:5f:30:54:c3:54:af:4e:56:f5:d7:bc:f8:0e:c7: 28:d4:ec:31:33:47:6c:cb:bd:97:ca:1c:6b:cb:91:47:fb:37: 98:fc:73:be:58:e0:ef:83:8c:4a:46:0b:88:00:18:bc:8c:ea: 63:8b:47:4e:20:85:3a:d3:15:ae:56:51:7b:11:d1:b4:c7:f2: 7c:7e:95:82 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUZGRjAxMTAvBgNVBAUTKEFFRkNFNEJBMjRERkE2RUQ2NEU0MUU0RjI0NTFDOUU4 ODRBRTY5QTIwHhcNMjUwMzE0MTgwOTU1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q0NzBmMy1lOWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp46uGyuR9C7ndBzsJdplOQlT6lJYfGv7DMOu6GcwEnkVY4HtiqfwmdY/jlmB M2YY9LYkQZ+q9Oe8pNvXshiF3oCUYki83dGeRBWy67iwxXT39GajRBy0SdERpbqZ SuYJDn1ZSVvyTmhgi0oyUgpszNQF9PVu+MlXb/9LQxld5k6yVqB5qAPqLwXkJYoD fqJyEsjz50O17lIs1Z2tTtKzkSL+S3Ez7oYakACYsjiwp/CgCcR4nuvJMb5E1DhK Td4xPbzIk7VKksL8iyEJAoUaOBFySMg4f8oDkZOdi+O6cxuvAux+BsrqUWcbk7+w urxkqj2MtXFY+A8n47zoaCfRsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAQUHqRd pu5zxMU7vEAccGXrabIRMB8GA1UdIwQYMBaAFK785Lok36btZOQeTyRRyeiErmmi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRkZGMC80NEZFQkM5MkFE QjIxMUU4OUM5QjQ1NTNDNEY5QUUwMi9ydnprdWlUZnB1MWs1QjVQSkZISjZJU3Vh YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J2emt1aVRmcHUxazVCNVBKRkhKNklTdWFhSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUZGRjAvNDRGRUJDOTJBREIyMTFFODlDOUI0NTUzQzRGOUFFMDIvODg1M0I1QzIw MEZGMTFGMDlBRDlFNDNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABni1AwDQYJKoZIhvcNAQELBQADggEBAJv0iWnnJuvY0gN9 /9ODNV1cjlbJspFDI8tZ5UXcsnAqR0tjokLBcybgduJzX5zo1456hJ8czQrUJya/ B3he0kvoFWvu43m5ZHH2ruRBF8ArBFW2/ml08QKsLHS4Yb5BCUmwt0elSdLP41Z+ SEWyyAxIk+6qiWX4I25JHz6cPkLuMJgf6qcFIsKxooYYiStuqKr84YFWjgRklDMd 8ZhcQF6i466ONR9gzPJsSCn1RDKh9Q2W8hLFzgNfMFTDVK9OVvXXvPgOxyjU7DEz R2zLvZfKHGvLkUf7N5j8c75Y4O+DjEpGC4gAGLyM6mOLR04ghTrTFa5WUXsR0bTH 8nx+lYI= -----END CERTIFICATE-----Generated at Sun Apr 6 14:07:26 2025 by rpki-client