$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9766/80F59E94EA5711EFB42CB285C4F9AE02/28CED806EA5811EF90C1D323C4F9AE02.roa File: 28CED806EA5811EF90C1D323C4F9AE02.roa (raw, json) Hash identifier: wZLv0x5Ye2YsFJ9ksDDY7rn+/yu0V//tFuTwHUih6i8= Subject key identifier: 8C:37:47:80:13:9F:A5:D9:9F:C7:AB:1E:C5:0A:B0:13:4B:CA:19:A1 Certificate issuer: /CN=A91F9766/serialNumber=C9246014257EEFFFFE80CD3EABFED67A898D6F57 Certificate serial: 03 Authority key identifier: C9:24:60:14:25:7E:EF:FF:FE:80:CD:3E:AB:FE:D6:7A:89:8D:6F:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySRgFCV-7__-gM0-q_7WeomNb1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9766/80F59E94EA5711EFB42CB285C4F9AE02/28CED806EA5811EF90C1D323C4F9AE02.roa Signing time: Thu 13 Feb 2025 22:16:23 +0000 ROA not before: Thu 13 Feb 2025 22:16:23 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 134829 IP address blocks: 103.92.137.0/24 maxlen: 24 103.92.138.0/24 maxlen: 24 103.92.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9766/80F59E94EA5711EFB42CB285C4F9AE02/ySRgFCV-7__-gM0-q_7WeomNb1c.crl rsync://rpki.apnic.net/member_repository/A91F9766/80F59E94EA5711EFB42CB285C4F9AE02/ySRgFCV-7__-gM0-q_7WeomNb1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySRgFCV-7__-gM0-q_7WeomNb1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:10:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9766 Validity Not Before: Feb 13 22:16:23 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67ae6f37-63da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:44:58:f0:61:42:d9:47:6e:ea:e6:66:45:aa: 4c:9f:47:ed:14:59:4f:9b:e0:37:33:58:39:e5:98: 4f:06:2a:9d:93:16:5c:97:5c:6a:bf:c6:2f:2d:70: 55:38:1f:d7:82:0c:6e:37:9c:0e:17:35:49:35:09: d6:e2:d1:92:24:fe:89:84:d8:f1:77:ae:2d:bc:e8: 42:08:76:93:4d:bd:c1:8d:b0:14:c0:3f:ab:8e:87: a9:5d:fe:81:59:79:e7:2e:e0:83:94:8d:a7:af:47: d5:a3:ee:6f:6e:85:09:1c:39:df:64:73:25:b6:6f: 15:da:12:ca:99:f1:bb:f2:27:24:50:f5:c9:2a:70: a7:bd:9a:d5:15:12:e5:4c:f9:e0:23:ee:01:3b:67: 6f:44:ca:94:f7:f8:5a:41:42:ee:2b:20:5a:b8:9d: c7:cb:64:2b:21:ab:e0:a5:15:b6:0f:5b:60:a6:87: 4f:9b:5b:19:56:b5:c1:d5:00:54:6f:c6:6e:1c:c4: 85:2b:5c:7f:21:0a:d2:61:96:e9:30:3d:33:29:51: a4:5d:59:4d:e5:71:92:d3:64:f1:ae:d6:80:2f:36: ea:8c:8f:9e:3d:7b:45:8f:a0:91:d8:a2:c1:0f:24: 29:0c:86:f2:49:84:a2:a8:1a:0a:33:80:10:c9:d9: ff:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:37:47:80:13:9F:A5:D9:9F:C7:AB:1E:C5:0A:B0:13:4B:CA:19:A1 X509v3 Authority Key Identifier: keyid:C9:24:60:14:25:7E:EF:FF:FE:80:CD:3E:AB:FE:D6:7A:89:8D:6F:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9766/80F59E94EA5711EFB42CB285C4F9AE02/ySRgFCV-7__-gM0-q_7WeomNb1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySRgFCV-7__-gM0-q_7WeomNb1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9766/80F59E94EA5711EFB42CB285C4F9AE02/28CED806EA5811EF90C1D323C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.92.137.0-103.92.139.255 Signature Algorithm: sha256WithRSAEncryption 7d:dc:78:2c:42:da:19:2f:82:c3:46:72:00:6c:ee:49:84:74: f6:9d:7b:cd:f0:ac:81:80:77:21:3a:b4:fe:79:0e:53:9b:9b: ef:4e:6d:f0:1e:77:7e:8f:72:65:96:25:fa:4e:af:41:4c:ef: 2d:9a:13:30:6a:82:29:ed:68:28:e5:23:b3:a3:bf:03:79:e6: 77:69:1e:63:4a:31:8b:b1:2b:36:dc:0f:af:e7:d5:a5:79:47: 21:1a:56:1e:be:b0:83:a5:dd:f4:ac:dc:e0:0c:3b:36:9b:b1: 05:1f:d4:79:05:5f:ca:c0:97:99:31:8c:de:3d:12:2d:36:35: e2:b6:ed:5c:f3:c1:61:b8:d1:ee:5f:09:1a:c8:5e:bf:3a:79: a8:ef:42:8c:90:46:fe:bd:52:4d:a8:84:ae:5c:4d:90:2b:65: 42:5c:4a:65:00:47:ef:75:ed:da:7e:8a:b6:4f:50:ba:a3:a0: 2d:a7:5b:d4:a2:4f:9c:a4:6c:b6:93:f2:5a:0c:b3:77:ef:0e: 25:43:97:9a:ca:41:ca:f1:19:b7:42:b5:cf:e3:fd:bd:3c:ba: 52:46:df:29:68:7d:b2:a6:ff:f0:f3:8a:4d:d7:be:8f:21:59: 6f:b1:ef:23:be:82:70:cc:01:9c:ac:2e:60:7c:fb:85:c6:38: 5a:de:f6:dc -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG OTc2NjExMC8GA1UEBRMoQzkyNDYwMTQyNTdFRUZGRkZFODBDRDNFQUJGRUQ2N0E4 OThENkY1NzAeFw0yNTAyMTMyMjE2MjNaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YWU2ZjM3LTYzZGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7RFjwYULZR27q5mZFqkyfR+0UWU+b4DczWDnlmE8GKp2TFlyXXGq/xi8tcFU4 H9eCDG43nA4XNUk1Cdbi0ZIk/omE2PF3ri286EIIdpNNvcGNsBTAP6uOh6ld/oFZ eecu4IOUjaevR9Wj7m9uhQkcOd9kcyW2bxXaEsqZ8bvyJyRQ9ckqcKe9mtUVEuVM +eAj7gE7Z29EypT3+FpBQu4rIFq4ncfLZCshq+ClFbYPW2Cmh0+bWxlWtcHVAFRv xm4cxIUrXH8hCtJhlukwPTMpUaRdWU3lcZLTZPGu1oAvNuqMj549e0WPoJHYosEP JCkMhvJJhKKoGgozgBDJ2f8jAgMBAAGjggKdMIICmTAdBgNVHQ4EFgQUjDdHgBOf pdmfx6sexQqwE0vKGaEwHwYDVR0jBBgwFoAUySRgFCV+7//+gM0+q/7WeomNb1cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY5NzY2LzgwRjU5RTk0RUE1 NzExRUZCNDJDQjI4NUM0RjlBRTAyL3lTUmdGQ1YtN19fLWdNMC1xXzdXZW9tTmIx Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveVNSZ0ZDVi03X18tZ00wLXFfN1dlb21OYjFjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OTc2Ni84MEY1OUU5NEVBNTcxMUVGQjQyQ0IyODVDNEY5QUUwMi8yOENFRDgwNkVB NTgxMUVGOTBDMUQzMjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQY MBYwFAQCAAEwDjAMAwQAZ1yJAwQCZ1yIMA0GCSqGSIb3DQEBCwUAA4IBAQB93Hgs QtoZL4LDRnIAbO5JhHT2nXvN8KyBgHchOrT+eQ5Tm5vvTm3wHnd+j3JlliX6Tq9B TO8tmhMwaoIp7Wgo5SOzo78DeeZ3aR5jSjGLsSs23A+v59WleUchGlYevrCDpd30 rNzgDDs2m7EFH9R5BV/KwJeZMYzePRItNjXitu1c88FhuNHuXwkayF6/Onmo70KM kEb+vVJNqISuXE2QK2VCXEplAEfvde3afoq2T1C6o6Atp1vUok+cpGy2k/JaDLN3 7w4lQ5eaykHK8Rm3QrXP4/29PLpSRt8paH2ypv/w84pN176PIVlvse8jvoJwzAGc rC5gfPuFxjha3vbc -----END CERTIFICATE-----Generated at Sun Apr 6 22:21:48 2025 by rpki-client