$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/DA3E289CF5B811EFA1046714C4F9AE02.roa File: DA3E289CF5B811EFA1046714C4F9AE02.roa (raw, json) Hash identifier: ghtYYnHvBHOXjjafNw/o3b7nWMJznKoJtYacsPdc8uY= Subject key identifier: 50:15:FF:9E:02:7B:37:9D:12:C2:D1:77:F7:06:8F:B2:19:82:2D:A6 Certificate issuer: /CN=A91FC985/serialNumber=29ADB39B620EAE3CB8AFCA2CA185F5C4876FD043 Certificate serial: 08 Authority key identifier: 29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/DA3E289CF5B811EFA1046714C4F9AE02.roa Signing time: Wed 05 Mar 2025 08:52:46 +0000 ROA not before: Wed 05 Mar 2025 08:52:46 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 135391 IP address blocks: 103.162.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 06:47:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC985 Validity Not Before: Mar 5 08:52:46 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c810de-fcc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6f:9d:3c:f8:1a:95:16:e8:c8:f9:13:96:70: 2b:97:c8:89:60:0b:a5:f2:12:5d:8b:6a:b9:1c:1e: 26:97:44:45:5d:da:ea:73:9d:fd:d5:45:72:ac:1a: b5:92:a8:c7:cc:00:06:33:0a:f8:e8:f4:92:3f:13: b9:58:fd:73:5a:1a:84:6e:0d:f9:38:bf:1c:97:81: 50:78:e1:b7:ff:8c:6d:80:67:d9:69:51:d1:d4:a3: 03:41:25:91:72:c8:6c:ee:3e:fb:56:df:b4:22:df: bc:98:2a:1e:8a:5e:e2:f3:ed:d7:d4:5b:59:5d:46: c6:7c:38:56:79:85:91:e7:9f:66:07:e6:7c:3b:d8: ee:8f:1d:c2:4e:9c:ab:d8:43:92:7c:84:35:e2:df: 86:07:e6:5e:b2:fd:0f:25:77:61:3f:53:9e:cb:96: 20:4f:77:5e:ea:0f:4f:87:38:62:ec:13:96:ce:62: 6d:e6:1f:05:95:13:8f:cb:c7:b7:33:99:4c:55:10: 16:e9:39:5f:36:9a:b8:35:a4:a5:0b:f6:ae:a4:88: cf:7c:c3:84:07:47:ed:74:5b:60:cb:fc:fa:04:8d: f0:2c:b6:5f:ba:ce:f0:4a:9e:de:7a:f5:48:54:76: 6d:57:0e:2d:d1:e5:2b:10:98:77:67:73:51:5a:7c: 28:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:15:FF:9E:02:7B:37:9D:12:C2:D1:77:F7:06:8F:B2:19:82:2D:A6 X509v3 Authority Key Identifier: keyid:29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/DA3E289CF5B811EFA1046714C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.203.0/24 Signature Algorithm: sha256WithRSAEncryption 76:c1:df:53:1e:6a:fc:01:1e:27:4b:f0:67:c1:f4:e2:f6:d6: 05:6b:14:1f:ac:e7:18:ba:ca:10:53:c2:16:de:3a:54:47:48: a1:df:3a:8f:f9:e7:a6:c3:fa:0f:f8:e3:9d:57:80:32:47:51: 7e:65:b5:b4:20:3b:f7:0d:f9:12:db:7b:07:e4:25:2b:34:c1: 62:b3:ce:b9:6e:31:c8:6a:8e:5e:d2:3a:aa:5a:62:83:fc:b0: 44:5d:d8:6d:17:4d:6f:b8:f0:22:6c:32:3c:00:67:f7:94:44: cd:c8:5d:d0:6c:76:1c:66:c2:9e:80:a0:61:c4:26:3a:b1:f6: f3:b4:83:22:58:2f:a5:ee:b7:a5:82:c6:00:f9:11:34:5d:d1: bb:31:40:22:d7:7a:41:c5:8a:bc:1a:c6:07:18:1d:4a:38:c3: c1:2f:b1:db:5a:58:e0:cb:a2:b9:23:b1:f9:70:03:32:7b:9b: 32:1a:de:1a:4d:06:e8:ff:34:ba:0f:23:36:e8:e9:06:42:f7: 2f:d1:a7:8d:b7:b9:f9:da:d8:2a:1e:71:b2:d7:2e:e2:ae:6a: a5:6a:2e:48:d6:54:77:07:a3:22:e7:b8:70:9a:50:47:aa:44: 15:e9:b1:c6:a2:6a:32:02:f3:40:d5:1a:a3:4b:39:a7:e6:66: ca:c0:19:7b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG Qzk4NTExMC8GA1UEBRMoMjlBREIzOUI2MjBFQUUzQ0I4QUZDQTJDQTE4NUY1QzQ4 NzZGRDA0MzAeFw0yNTAzMDUwODUyNDZaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YzgxMGRlLWZjYzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyb508+BqVFujI+ROWcCuXyIlgC6XyEl2LarkcHiaXREVd2upznf3VRXKsGrWS qMfMAAYzCvjo9JI/E7lY/XNaGoRuDfk4vxyXgVB44bf/jG2AZ9lpUdHUowNBJZFy yGzuPvtW37Qi37yYKh6KXuLz7dfUW1ldRsZ8OFZ5hZHnn2YH5nw72O6PHcJOnKvY Q5J8hDXi34YH5l6y/Q8ld2E/U57LliBPd17qD0+HOGLsE5bOYm3mHwWVE4/Lx7cz mUxVEBbpOV82mrg1pKUL9q6kiM98w4QHR+10W2DL/PoEjfAstl+6zvBKnt569UhU dm1XDi3R5SsQmHdnc1FafCjPAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUUBX/ngJ7 N50SwtF39waPshmCLaYwHwYDVR0jBBgwFoAUKa2zm2IOrjy4r8osoYX1xIdv0EMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZDOTg1LzY3M0FBMkY0RjVC NzExRUY4QzFGRjYxMUM0RjlBRTAyL0thMnptMklPcmp5NHI4b3NvWVgxeElkdjBF TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2Eyem0ySU9yank0cjhvc29ZWDF4SWR2MEVNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Qzk4NS82NzNBQTJGNEY1QjcxMUVGOEMxRkY2MTFDNEY5QUUwMi9EQTNFMjg5Q0Y1 QjgxMUVGQTEwNDY3MTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeiyzANBgkqhkiG9w0BAQsFAAOCAQEAdsHfUx5q/AEeJ0vw Z8H04vbWBWsUH6znGLrKEFPCFt46VEdIod86j/nnpsP6D/jjnVeAMkdRfmW1tCA7 9w35Ett7B+QlKzTBYrPOuW4xyGqOXtI6qlpig/ywRF3YbRdNb7jwImwyPABn95RE zchd0Gx2HGbCnoCgYcQmOrH287SDIlgvpe63pYLGAPkRNF3RuzFAItd6QcWKvBrG BxgdSjjDwS+x21pY4MuiuSOx+XADMnubMhreGk0G6P80ug8jNujpBkL3L9Gnjbe5 +drYKh5xstcu4q5qpWouSNZUdwejIue4cJpQR6pEFemxxqJqMgLzQNUao0s5p+Zm ysAZew== -----END CERTIFICATE-----Generated at Fri Apr 11 23:34:35 2025 by rpki-client