$ rpki-client -vvf rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/AB4BB622CE6111EF981AC77AC4F9AE02.roa File: AB4BB622CE6111EF981AC77AC4F9AE02.roa (raw, json) Hash identifier: 8+XeZ7gTs//qEFH1W7DiRKrnlw1RkeEDoAo1raNhxyo= Subject key identifier: A2:EB:AB:D5:95:BF:87:23:CF:CB:93:79:E0:14:0E:1C:CC:33:D4:D4 Certificate issuer: /CN=A91E015D/serialNumber=257A9E6914D58A745B0EE6ABE548CDBE020488D4 Certificate serial: 021C Authority key identifier: 25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/AB4BB622CE6111EF981AC77AC4F9AE02.roa Signing time: Thu 09 Jan 2025 08:13:56 +0000 ROA not before: Thu 09 Jan 2025 08:13:56 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 46841 IP address blocks: 103.85.200.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.crl rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 540 (0x21c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E015D Validity Not Before: Jan 9 08:13:56 2025 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=677f8543-220c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:3b:99:7d:a1:bb:6a:84:5a:3f:00:a0:dd:fc: b6:71:3d:4b:15:b2:55:2b:cd:57:46:de:39:40:62: ee:ff:e0:d8:b7:73:ea:4d:ec:c1:50:68:03:0e:b5: b9:53:8f:b8:f5:36:e2:a7:46:b5:b5:58:f0:8b:c5: 3a:f1:ae:94:1e:e6:d7:7a:11:e9:f5:2c:24:e4:ea: ac:98:3e:69:1d:33:fc:39:f3:60:31:a0:01:25:59: 01:29:3a:14:2b:cf:23:3c:40:c7:1c:88:4b:d6:08: 20:df:72:92:eb:fa:77:bb:7f:c8:15:3a:8a:40:fd: 87:a0:4f:74:14:aa:b7:f8:22:8d:ea:56:d8:e1:f2: 8e:2c:40:f7:24:e4:68:75:1c:b0:90:1f:99:13:14: 2e:ea:1f:47:17:28:29:21:7b:de:03:d0:0f:86:8c: c3:62:d8:bb:66:36:d2:15:d4:bd:57:bd:81:2c:3d: c4:4d:fb:d1:7f:75:70:9c:6b:a1:d3:06:14:e3:40: 56:fa:09:11:87:c8:e0:4a:e4:fb:a9:03:79:88:25: 26:56:c7:31:17:28:d5:7d:01:9a:18:97:e8:93:db: d1:44:3a:fe:18:83:2c:1d:2f:35:ac:f4:6a:8a:bd: 09:b2:2b:6f:20:62:6c:1f:7e:a7:94:51:d2:eb:46: a7:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:EB:AB:D5:95:BF:87:23:CF:CB:93:79:E0:14:0E:1C:CC:33:D4:D4 X509v3 Authority Key Identifier: keyid:25:7A:9E:69:14:D5:8A:74:5B:0E:E6:AB:E5:48:CD:BE:02:04:88:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/JXqeaRTVinRbDuar5UjNvgIEiNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JXqeaRTVinRbDuar5UjNvgIEiNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E015D/6C474920731211EDB70BCE33C4F9AE02/AB4BB622CE6111EF981AC77AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.200.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:c5:51:39:64:38:34:00:67:1f:92:91:45:dc:8d:4d:64:3b: aa:3c:51:db:86:fd:3c:47:c2:66:c1:d4:7e:ee:2a:b8:ef:31: 9c:9b:7e:2e:08:26:28:7c:ec:f4:53:ca:8d:43:0b:d4:4b:e5: 44:0a:32:58:6e:61:fa:63:0b:26:b4:e4:cc:75:7e:0b:31:6a: 5a:f4:31:4d:0e:4f:d5:aa:86:36:3b:07:14:14:0c:be:45:d9: 6a:0c:c6:2d:ff:93:dc:ab:d2:ce:fc:71:90:2f:01:02:60:a0: bc:85:37:5e:6b:90:d2:5c:97:d7:66:71:d3:0e:cb:b5:2e:9b: 3b:f6:26:4f:c6:94:87:a0:cd:2b:91:7d:56:76:44:7f:dd:f7: 3c:a6:f6:74:c2:62:eb:18:3f:55:0a:76:07:2c:12:28:bf:6c: 8c:f1:f5:47:54:ab:1b:92:e3:bf:ae:3d:77:29:dd:e0:a0:0f: 64:38:ff:68:a0:81:6a:4b:ea:5e:cc:ef:b0:6f:d8:62:a6:9b: 59:e8:ba:51:47:56:20:59:38:69:35:36:ca:aa:d0:61:a5:ee: bc:a1:c8:64:75:a4:0a:63:6f:f4:ca:14:2c:b9:b7:d6:aa:2c: 88:3a:d0:f9:f5:46:4a:69:67:3b:d8:af:5a:1b:46:e8:81:70: c0:53:7f:ea -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxNUQxMTAvBgNVBAUTKDI1N0E5RTY5MTRENThBNzQ1QjBFRTZBQkU1NDhDREJF MDIwNDg4RDQwHhcNMjUwMTA5MDgxMzU2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NzdmODU0My0yMjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmzuZfaG7aoRaPwCg3fy2cT1LFbJVK81XRt45QGLu/+DYt3PqTezBUGgDDrW5 U4+49Tbip0a1tVjwi8U68a6UHubXehHp9Swk5OqsmD5pHTP8OfNgMaABJVkBKToU K88jPEDHHIhL1ggg33KS6/p3u3/IFTqKQP2HoE90FKq3+CKN6lbY4fKOLED3JORo dRywkB+ZExQu6h9HFygpIXveA9APhozDYti7ZjbSFdS9V72BLD3ETfvRf3VwnGuh 0wYU40BW+gkRh8jgSuT7qQN5iCUmVscxFyjVfQGaGJfok9vRRDr+GIMsHS81rPRq ir0JsitvIGJsH36nlFHS60an/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKLrq9WV v4cjz8uTeeAUDhzMM9TUMB8GA1UdIwQYMBaAFCV6nmkU1Yp0Ww7mq+VIzb4CBIjU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDE1RC82QzQ3NDkyMDcz MTIxMUVEQjcwQkNFMzNDNEY5QUUwMi9KWHFlYVJUVmluUmJEdWFyNVVqTnZnSUVp TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pYcWVhUlRWaW5SYkR1YXI1VWpOdmdJRWlOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTAxNUQvNkM0NzQ5MjA3MzEyMTFFREI3MEJDRTMzQzRGOUFFMDIvQUI0QkI2MjJD RTYxMTFFRjk4MUFDNzdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnVcgwDQYJKoZIhvcNAQELBQADggEBABvFUTlkODQAZx+S kUXcjU1kO6o8UduG/TxHwmbB1H7uKrjvMZybfi4IJih87PRTyo1DC9RL5UQKMlhu YfpjCya05Mx1fgsxalr0MU0OT9WqhjY7BxQUDL5F2WoMxi3/k9yr0s78cZAvAQJg oLyFN15rkNJcl9dmcdMOy7Uumzv2Jk/GlIegzSuRfVZ2RH/d9zym9nTCYusYP1UK dgcsEii/bIzx9UdUqxuS47+uPXcp3eCgD2Q4/2iggWpL6l7M77Bv2GKmm1noulFH ViBZOGk1Nsqq0GGl7ryhyGR1pApjb/TKFCy5t9aqLIg60Pn1RkppZzvYr1obRuiB cMBTf+o= -----END CERTIFICATE-----Generated at Wed Feb 19 22:45:02 2025 by rpki-client