$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67F5/BD10B4DCB1C611EAA848296CC4F9AE02/7CA0A2E2B1CE11EAAF2F2784C4F9AE02.roa File: 7CA0A2E2B1CE11EAAF2F2784C4F9AE02.roa (raw, json) Hash identifier: WYE1oD8S3ftmPZ9P42MC6m1geSKXvRB8dw3HalDWvGA= Subject key identifier: C3:35:B3:2D:84:3D:8E:89:D5:B6:8E:74:28:E2:61:17:ED:8C:62:33 Certificate issuer: /CN=A91F67F5/serialNumber=ABF173DC0A2586959291769A067037319AFA8FD5 Certificate serial: 0897 Authority key identifier: AB:F1:73:DC:0A:25:86:95:92:91:76:9A:06:70:37:31:9A:FA:8F:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q_Fz3AolhpWSkXaaBnA3MZr6j9U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67F5/BD10B4DCB1C611EAA848296CC4F9AE02/7CA0A2E2B1CE11EAAF2F2784C4F9AE02.roa Signing time: Fri 10 Jan 2025 20:39:05 +0000 ROA not before: Fri 10 Jan 2025 20:39:05 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 55707 IP address blocks: 101.2.168.0/22 maxlen: 24 103.7.72.0/22 maxlen: 22 103.7.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67F5/BD10B4DCB1C611EAA848296CC4F9AE02/q_Fz3AolhpWSkXaaBnA3MZr6j9U.crl rsync://rpki.apnic.net/member_repository/A91F67F5/BD10B4DCB1C611EAA848296CC4F9AE02/q_Fz3AolhpWSkXaaBnA3MZr6j9U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q_Fz3AolhpWSkXaaBnA3MZr6j9U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:14:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2199 (0x897) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67F5, serialNumber=ABF173DC0A2586959291769A067037319AFA8FD5 Validity Not Before: Jan 10 20:39:05 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67818569-ce60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d7:de:ce:e8:40:4f:8d:e2:89:a5:0f:f9:b0: d7:0f:77:70:7b:2c:b1:76:ea:f6:5b:c7:42:e1:81: c2:08:95:9a:f9:a4:bd:6b:50:e5:c3:84:7b:eb:66: a0:d0:f1:93:55:49:9a:80:bb:53:87:d3:a7:2a:62: 69:7a:6d:72:64:af:4d:94:45:ea:d9:f3:bd:f6:f1: b4:bd:61:5b:66:b2:96:4b:c1:a5:1f:28:2d:61:00: c6:79:94:85:46:2b:fe:97:97:10:17:70:94:db:78: 9c:93:3f:e6:21:99:ee:f0:50:e1:0a:3b:b6:23:63: 27:8b:ad:6c:26:9c:d6:ab:12:6b:56:06:cd:1b:c2: 50:d8:68:df:0a:87:1a:a6:cc:a4:3f:af:6f:46:7a: c0:ee:82:04:d5:06:90:d9:87:4a:cf:e4:d3:7c:fc: 69:4c:ff:cb:c2:9a:65:1b:72:83:42:cf:f1:2b:66: 22:c1:a3:24:98:48:88:44:58:29:50:e4:66:16:45: 8e:72:aa:18:87:16:df:86:3b:ae:78:4f:12:b1:7e: ce:b5:29:3f:65:a9:ee:ef:30:89:eb:e2:21:80:b7: a5:33:fa:2d:b6:0c:ed:ab:29:8d:42:21:ef:40:34: 21:60:ea:1f:d3:1c:bb:d3:f1:d4:8d:90:88:21:48: 0f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:35:B3:2D:84:3D:8E:89:D5:B6:8E:74:28:E2:61:17:ED:8C:62:33 X509v3 Authority Key Identifier: keyid:AB:F1:73:DC:0A:25:86:95:92:91:76:9A:06:70:37:31:9A:FA:8F:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67F5/BD10B4DCB1C611EAA848296CC4F9AE02/q_Fz3AolhpWSkXaaBnA3MZr6j9U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q_Fz3AolhpWSkXaaBnA3MZr6j9U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67F5/BD10B4DCB1C611EAA848296CC4F9AE02/7CA0A2E2B1CE11EAAF2F2784C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.2.168.0/22 103.7.72.0/22 Signature Algorithm: sha256WithRSAEncryption 68:d0:70:15:47:a9:57:1b:a7:94:5a:03:3e:93:bd:db:6e:76: e7:61:2a:aa:ee:77:67:e0:eb:aa:8d:3a:b0:46:fa:e6:3b:5c: 55:7d:52:fd:53:5e:cc:e3:c5:e5:f1:09:e6:4e:d4:ab:9d:9e: 6d:0b:f8:47:69:cd:b8:b8:ed:ed:b8:38:22:8a:20:50:c9:45: 12:88:9a:3a:ec:08:69:66:14:6a:b5:79:81:c1:7b:d6:ee:60: c8:d9:6f:b9:67:75:a8:b2:11:a7:04:74:69:20:e3:9d:25:c9: 38:84:9f:3d:c5:55:b3:b0:d5:98:18:0f:e1:bc:f9:5f:f0:d5: e8:06:cb:39:9e:6b:dd:84:ed:41:21:7a:f5:68:aa:11:ff:7c: 21:6e:29:3e:7c:4f:32:3b:ac:9b:53:d1:a6:25:f8:bf:e3:ba: a1:46:f8:28:68:39:9c:f2:a0:bd:89:c0:05:e5:9f:d1:18:b2: df:95:e8:21:60:63:87:49:23:fc:bb:78:5c:09:f7:1c:8b:e0: 1d:27:ba:d1:8e:d6:3d:c8:20:ef:a2:16:ed:5b:95:74:63:9b: 8c:4b:ec:a5:ba:60:28:3b:a4:52:1d:bc:57:ba:49:58:be:19: 8a:2f:45:83:10:8b:b1:b9:f1:5e:5a:52:5c:70:4c:9a:7d:db: 09:87:ed:1b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3RjUxMTAvBgNVBAUTKEFCRjE3M0RDMEEyNTg2OTU5MjkxNzY5QTA2NzAzNzMx OUFGQThGRDUwHhcNMjUwMTEwMjAzOTA1WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzgxODU2OS1jZTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNfezuhAT43iiaUP+bDXD3dweyyxdur2W8dC4YHCCJWa+aS9a1Dlw4R762ag 0PGTVUmagLtTh9OnKmJpem1yZK9NlEXq2fO99vG0vWFbZrKWS8GlHygtYQDGeZSF Riv+l5cQF3CU23ickz/mIZnu8FDhCju2I2Mni61sJpzWqxJrVgbNG8JQ2GjfCoca psykP69vRnrA7oIE1QaQ2YdKz+TTfPxpTP/LwpplG3KDQs/xK2YiwaMkmEiIRFgp UORmFkWOcqoYhxbfhjuueE8SsX7OtSk/Zanu7zCJ6+IhgLelM/ottgztqymNQiHv QDQhYOof0xy70/HUjZCIIUgPUQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMM1sy2E PY6J1baOdCjiYRftjGIzMB8GA1UdIwQYMBaAFKvxc9wKJYaVkpF2mgZwNzGa+o/V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdGNS9CRDEwQjREQ0Ix QzYxMUVBQTg0ODI5NkNDNEY5QUUwMi9xX0Z6M0FvbGhwV1NrWGFhQm5BM01acjZq OVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FfRnozQW9saHBXU2tYYWFCbkEzTVpyNmo5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY3RjUvQkQxMEI0RENCMUM2MTFFQUE4NDgyOTZDQzRGOUFFMDIvN0NBMEEyRTJC MUNFMTFFQUFGMkYyNzg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJlAqgDBAJnB0gwDQYJKoZIhvcNAQELBQADggEBAGjQcBVH qVcbp5RaAz6TvdtududhKqrud2fg66qNOrBG+uY7XFV9Uv1TXszjxeXxCeZO1Kud nm0L+Edpzbi47e24OCKKIFDJRRKImjrsCGlmFGq1eYHBe9buYMjZb7lndaiyEacE dGkg450lyTiEnz3FVbOw1ZgYD+G8+V/w1egGyzmea92E7UEhevVoqhH/fCFuKT58 TzI7rJtT0aYl+L/juqFG+ChoOZzyoL2JwAXln9EYst+V6CFgY4dJI/y7eFwJ9xyL 4B0nutGO1j3IIO+iFu1blXRjm4xL7KW6YCg7pFIdvFe6SVi+GYovRYMQi7G58V5a UlxwTJp92wmH7Rs= -----END CERTIFICATE-----Generated at Tue Apr 22 13:46:51 2025 by rpki-client