$ rpki-client -vvf rpki.apnic.net/member_repository/A91354AE/6C9F2DFAA50111EC89642757C4F9AE02/8C5D4FF4766511EF8820F844C4F9AE02.roa File: 8C5D4FF4766511EF8820F844C4F9AE02.roa (raw, json) Hash identifier: a/GUffZHyYeIWzCyqNA7Fc/IgTrpVgmYYpvH+uBkGnA= Subject key identifier: 64:35:93:5E:07:A8:C4:15:EF:8A:C6:54:A9:3F:42:12:64:38:58:2D Certificate issuer: /CN=A91354AE/serialNumber=87F958DAF498659A9EEE0FF144226B1710489DE0 Certificate serial: 0379 Authority key identifier: 87:F9:58:DA:F4:98:65:9A:9E:EE:0F:F1:44:22:6B:17:10:48:9D:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_lY2vSYZZqe7g_xRCJrFxBIneA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91354AE/6C9F2DFAA50111EC89642757C4F9AE02/8C5D4FF4766511EF8820F844C4F9AE02.roa Signing time: Sat 05 Apr 2025 01:06:40 +0000 ROA not before: Sat 05 Apr 2025 01:06:40 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45250 IP address blocks: 103.183.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91354AE/6C9F2DFAA50111EC89642757C4F9AE02/h_lY2vSYZZqe7g_xRCJrFxBIneA.crl rsync://rpki.apnic.net/member_repository/A91354AE/6C9F2DFAA50111EC89642757C4F9AE02/h_lY2vSYZZqe7g_xRCJrFxBIneA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_lY2vSYZZqe7g_xRCJrFxBIneA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 00:34:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 889 (0x379) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91354AE Validity Not Before: Apr 5 01:06:40 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f0821f-dfbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d9:f1:a3:dd:ec:d0:e8:5c:9c:3a:cc:3e:6b: ad:97:1c:23:dc:41:72:aa:b4:7e:b3:93:d8:51:0a: 4f:1f:de:c5:32:1c:44:33:93:f0:9e:5e:b6:51:0c: 52:dc:3d:67:b2:5f:76:80:d7:f9:5a:4a:97:b0:ad: 0a:ff:0b:18:aa:d2:bf:de:00:f4:ef:05:13:f3:42: 71:48:cd:00:61:c4:79:8f:50:5f:c7:33:05:1d:d4: 8b:1e:e6:ce:71:ea:4a:ed:5b:fe:25:c5:6f:7b:03: 01:32:c2:ad:e1:89:2b:1f:64:f2:0f:e7:63:4c:0f: a7:cd:be:1f:3e:f8:21:33:e6:f7:40:86:3d:0d:76: b4:0a:06:be:a8:ad:54:8a:5b:48:d6:52:02:6d:7f: b3:14:74:ec:64:86:89:81:79:f6:7e:b1:70:e6:6e: 05:84:91:81:67:39:8b:94:34:ef:24:1e:5f:fa:87: 48:ef:74:67:37:30:4d:00:b6:1b:e7:27:90:57:99: 36:10:76:a5:cd:7f:5c:38:77:f4:1c:6e:d7:65:69: ce:3f:2b:18:26:7b:0c:ef:b4:bf:a3:4a:b3:1c:f6: c6:1a:44:83:cc:18:b7:6f:4c:a6:c8:32:88:06:fb: e3:95:ca:a2:fa:da:45:e8:fb:ef:3d:4b:11:b1:29: 23:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:35:93:5E:07:A8:C4:15:EF:8A:C6:54:A9:3F:42:12:64:38:58:2D X509v3 Authority Key Identifier: keyid:87:F9:58:DA:F4:98:65:9A:9E:EE:0F:F1:44:22:6B:17:10:48:9D:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91354AE/6C9F2DFAA50111EC89642757C4F9AE02/h_lY2vSYZZqe7g_xRCJrFxBIneA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h_lY2vSYZZqe7g_xRCJrFxBIneA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91354AE/6C9F2DFAA50111EC89642757C4F9AE02/8C5D4FF4766511EF8820F844C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.183.247.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:7d:5d:af:bc:af:82:1c:c7:ad:85:37:4c:96:d2:d3:c0:44: e2:8f:f4:dc:16:d5:69:db:36:d1:7e:81:90:df:40:2c:42:d3: 38:ac:3c:25:f2:6e:dc:d9:ce:9c:1e:37:a3:55:c6:38:9b:74: e6:11:ea:88:28:06:43:3d:da:7c:24:0f:83:82:ab:f4:32:c5: 3d:8c:10:d6:24:5d:e1:c9:7a:88:8a:5e:1e:a4:ea:69:99:21: 02:01:c7:85:bb:33:f0:d7:9f:af:43:90:d7:9a:0d:8b:1e:49: a7:5d:dc:6d:69:9d:e1:22:12:99:e0:df:f0:b8:78:e5:0d:78: d3:9e:2e:c7:c1:af:d5:03:65:ee:b6:0b:ec:bd:fa:4f:bd:fe: 5a:24:29:0f:d3:6a:85:59:bd:0b:4a:79:93:f7:55:e9:ca:ca: 0d:9d:e3:0e:52:87:c2:64:58:91:1b:93:90:17:94:db:64:75: ea:89:96:e9:87:f1:24:70:63:bc:8f:1d:72:c8:e5:07:05:c5: 74:30:4d:ac:5b:ea:6e:ac:61:0d:bc:3b:ac:6a:b2:be:cc:ed: 0b:d9:63:71:09:ce:40:e7:db:d6:fd:d9:0e:b3:40:14:9f:a5: 8b:69:75:15:39:0e:3c:f9:b5:34:49:32:91:97:06:42:4d:02: 02:61:8f:35 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU0QUUxMTAvBgNVBAUTKDg3Rjk1OERBRjQ5ODY1OUE5RUVFMEZGMTQ0MjI2QjE3 MTA0ODlERTAwHhcNMjUwNDA1MDEwNjQwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwODIxZi1kZmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdnxo93s0OhcnDrMPmutlxwj3EFyqrR+s5PYUQpPH97FMhxEM5Pwnl62UQxS 3D1nsl92gNf5WkqXsK0K/wsYqtK/3gD07wUT80JxSM0AYcR5j1BfxzMFHdSLHubO cepK7Vv+JcVvewMBMsKt4YkrH2TyD+djTA+nzb4fPvghM+b3QIY9DXa0Cga+qK1U iltI1lICbX+zFHTsZIaJgXn2frFw5m4FhJGBZzmLlDTvJB5f+odI73RnNzBNALYb 5yeQV5k2EHalzX9cOHf0HG7XZWnOPysYJnsM77S/o0qzHPbGGkSDzBi3b0ymyDKI Bvvjlcqi+tpF6PvvPUsRsSkj/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGQ1k14H qMQV74rGVKk/QhJkOFgtMB8GA1UdIwQYMBaAFIf5WNr0mGWanu4P8UQiaxcQSJ3g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTRBRS82QzlGMkRGQUE1 MDExMUVDODk2NDI3NTdDNEY5QUUwMi9oX2xZMnZTWVpacWU3Z194UkNKckZ4Qklu ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hfbFkydlNZWlpxZTdnX3hSQ0pyRnhCSW5lQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzU0QUUvNkM5RjJERkFBNTAxMTFFQzg5NjQyNzU3QzRGOUFFMDIvOEM1RDRGRjQ3 NjY1MTFFRjg4MjBGODQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnt/cwDQYJKoZIhvcNAQELBQADggEBAH19Xa+8r4Icx62F N0yW0tPAROKP9NwW1WnbNtF+gZDfQCxC0zisPCXybtzZzpweN6NVxjibdOYR6ogo BkM92nwkD4OCq/QyxT2MENYkXeHJeoiKXh6k6mmZIQIBx4W7M/DXn69DkNeaDYse Sadd3G1pneEiEpng3/C4eOUNeNOeLsfBr9UDZe62C+y9+k+9/lokKQ/TaoVZvQtK eZP3VenKyg2d4w5Sh8JkWJEbk5AXlNtkdeqJlumH8SRwY7yPHXLI5QcFxXQwTaxb 6m6sYQ28O6xqsr7M7QvZY3EJzkDn29b92Q6zQBSfpYtpdRU5Djz5tTRJMpGXBkJN AgJhjzU= -----END CERTIFICATE-----Generated at Mon Apr 7 11:09:46 2025 by rpki-client