$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/0F0824DED28311EDB1655152C4F9AE02.roa File: 0F0824DED28311EDB1655152C4F9AE02.roa (raw, json) Hash identifier: dz1GvojNAIHZyqW3h8Y6bP+YBH4Rk6bXASQ1x7rYr58= Subject key identifier: EA:45:A6:71:1E:77:24:28:E7:F8:18:CB:1F:D7:F6:C3:6C:35:15:00 Certificate issuer: /CN=A91FDD4D/serialNumber=72AFBAEBC9ECDDA2EED2D49B13E6048EA3E41E60 Certificate serial: 2177 Authority key identifier: 72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/0F0824DED28311EDB1655152C4F9AE02.roa Signing time: Tue 04 Mar 2025 16:33:10 +0000 ROA not before: Tue 04 Mar 2025 16:33:10 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 132791 IP address blocks: 103.227.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 15:57:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8567 (0x2177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDD4D Validity Not Before: Mar 4 16:33:10 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c72b46-da1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:18:a6:26:73:5b:16:e7:cd:c5:c3:3e:3c:8a: 09:8b:58:d5:5a:2a:d4:de:34:3c:93:ca:fc:05:d0: 2f:63:d1:1f:ed:86:80:eb:14:76:b4:ae:a0:43:6f: 1e:2a:f1:d1:2c:bd:aa:af:a4:62:4e:ef:57:c0:d6: 07:22:55:a5:28:6d:4f:99:ba:4b:18:ee:98:0f:70: 8b:c6:c2:d0:83:a1:80:56:aa:df:05:73:aa:fd:54: 23:e3:9d:7e:6c:9d:a5:38:64:85:0f:0b:dc:df:e5: 94:af:e1:ea:6d:71:7c:ed:f0:f4:2f:f9:2d:9d:a4: c0:7a:5b:89:0f:4a:40:ee:ca:08:ac:b7:de:f1:78: 15:88:34:56:2a:b9:c4:fd:96:0f:81:04:d1:39:56: ca:49:e0:d6:be:ad:bd:5d:5d:6d:db:a2:53:26:9f: 2c:11:69:9d:94:ab:5f:b1:95:47:a7:62:05:f1:5f: f5:f0:0d:0c:48:2b:c3:8b:13:3f:cd:8d:75:9f:43: 69:72:6b:eb:db:8f:31:36:03:a6:97:9d:c7:1d:c2: 67:e5:8c:a0:ff:10:df:d0:8d:c0:95:47:8e:2f:28: 7c:82:d7:a5:74:05:66:4e:38:2f:01:f0:dc:22:67: fc:c7:52:5b:87:c7:ea:fb:d8:70:c4:00:eb:f1:4a: 33:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:45:A6:71:1E:77:24:28:E7:F8:18:CB:1F:D7:F6:C3:6C:35:15:00 X509v3 Authority Key Identifier: keyid:72:AF:BA:EB:C9:EC:DD:A2:EE:D2:D4:9B:13:E6:04:8E:A3:E4:1E:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/cq-668ns3aLu0tSbE-YEjqPkHmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cq-668ns3aLu0tSbE-YEjqPkHmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDD4D/BAE108C4EA6011E58815770CC4F9AE02/0F0824DED28311EDB1655152C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.227.67.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:8a:01:2d:66:ab:6b:ff:d1:7c:3d:e8:2e:1b:51:12:9d:25: 3c:dc:fc:42:0b:82:4c:a0:75:54:14:52:14:7a:ea:cc:5b:f6: 1a:17:d5:db:38:fd:f3:77:b0:1f:25:67:1e:bb:46:d5:ab:1f: 44:3e:65:aa:52:79:30:a9:42:e3:08:28:32:72:fe:69:08:eb: a3:8b:82:a6:31:e2:24:8a:73:a5:5b:d0:f1:b6:01:14:7c:49: 2e:f5:67:3a:03:7e:42:a0:ff:5e:30:1e:3f:fb:a1:22:c1:54: ba:30:5b:af:4e:97:7a:c2:c5:d3:2c:60:af:6a:32:b7:e6:fa: d0:bd:f8:73:2d:2d:10:34:46:15:1d:78:23:42:6e:78:8b:fc: c1:8a:ea:d8:9a:a4:e8:e4:7b:78:9c:2d:da:c0:e4:97:d4:f3: 1a:25:07:4d:c6:7d:e7:d0:ab:90:27:1d:c7:44:0d:85:7b:d2: 49:19:83:4d:3a:eb:e6:2c:c2:e8:56:e1:34:b6:b2:4f:70:6f: d2:07:4c:40:f7:25:63:31:bb:b5:98:ff:30:2f:e4:f7:d4:72: 3c:09:1d:81:d4:3a:75:77:13:d4:a0:2a:d4:ee:71:35:59:02: b3:b6:aa:e2:3f:b3:11:5b:d0:ee:20:33:64:80:b0:ae:f4:69: 55:51:b6:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRENEQxMTAvBgNVBAUTKDcyQUZCQUVCQzlFQ0REQTJFRUQyRDQ5QjEzRTYwNDhF QTNFNDFFNjAwHhcNMjUwMzA0MTYzMzEwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M3MmI0Ni1kYTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnhimJnNbFufNxcM+PIoJi1jVWirU3jQ8k8r8BdAvY9Ef7YaA6xR2tK6gQ28e KvHRLL2qr6RiTu9XwNYHIlWlKG1PmbpLGO6YD3CLxsLQg6GAVqrfBXOq/VQj451+ bJ2lOGSFDwvc3+WUr+HqbXF87fD0L/ktnaTAeluJD0pA7soIrLfe8XgViDRWKrnE /ZYPgQTROVbKSeDWvq29XV1t26JTJp8sEWmdlKtfsZVHp2IF8V/18A0MSCvDixM/ zY11n0Npcmvr248xNgOml53HHcJn5Yyg/xDf0I3AlUeOLyh8gteldAVmTjgvAfDc Imf8x1Jbh8fq+9hwxADr8Uoz8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOpFpnEe dyQo5/gYyx/X9sNsNRUAMB8GA1UdIwQYMBaAFHKvuuvJ7N2i7tLUmxPmBI6j5B5g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREQ0RC9CQUUxMDhDNEVB NjAxMUU1ODgxNTc3MENDNEY5QUUwMi9jcS02NjhuczNhTHUwdFNiRS1ZRWpxUGtI bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NxLTY2OG5zM2FMdTB0U2JFLVlFanFQa0htQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRENEQvQkFFMTA4QzRFQTYwMTFFNTg4MTU3NzBDQzRGOUFFMDIvMEYwODI0REVE MjgzMTFFREIxNjU1MTUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn40MwDQYJKoZIhvcNAQELBQADggEBABqKAS1mq2v/0Xw9 6C4bURKdJTzc/EILgkygdVQUUhR66sxb9hoX1ds4/fN3sB8lZx67RtWrH0Q+ZapS eTCpQuMIKDJy/mkI66OLgqYx4iSKc6Vb0PG2ARR8SS71ZzoDfkKg/14wHj/7oSLB VLowW69Ol3rCxdMsYK9qMrfm+tC9+HMtLRA0RhUdeCNCbniL/MGK6tiapOjke3ic LdrA5JfU8xolB03GfefQq5AnHcdEDYV70kkZg0066+YswuhW4TS2sk9wb9IHTED3 JWMxu7WY/zAv5PfUcjwJHYHUOnV3E9SgKtTucTVZArO2quI/sxFb0O4gM2SAsK70 aVVRtj4= -----END CERTIFICATE-----Generated at Thu Apr 10 10:51:23 2025 by rpki-client