$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC9A5/0E82C2ECC4F011EA91DCDF77C4F9AE02/92154C46E3A511EF975A3E75C4F9AE02.roa File: 92154C46E3A511EF975A3E75C4F9AE02.roa (raw, json) Hash identifier: recCHLurtZkr7l6EQIwnoF/z3n9JE2wt1bVwVbwm6iY= Subject key identifier: 5D:BF:63:8A:BD:D2:5B:CA:2A:D3:13:6A:8C:E5:B1:3E:EC:52:60:1C Certificate issuer: /CN=A91EC9A5/serialNumber=E83FCF4C6FC8D74F3B6AB425606E2BC7746D6640 Certificate serial: 085B Authority key identifier: E8:3F:CF:4C:6F:C8:D7:4F:3B:6A:B4:25:60:6E:2B:C7:74:6D:66:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6D_PTG_I1087arQlYG4rx3RtZkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC9A5/0E82C2ECC4F011EA91DCDF77C4F9AE02/92154C46E3A511EF975A3E75C4F9AE02.roa Signing time: Wed 05 Feb 2025 09:42:53 +0000 ROA not before: Wed 05 Feb 2025 09:42:53 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 56054 IP address blocks: 103.84.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC9A5/0E82C2ECC4F011EA91DCDF77C4F9AE02/6D_PTG_I1087arQlYG4rx3RtZkA.crl rsync://rpki.apnic.net/member_repository/A91EC9A5/0E82C2ECC4F011EA91DCDF77C4F9AE02/6D_PTG_I1087arQlYG4rx3RtZkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6D_PTG_I1087arQlYG4rx3RtZkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2139 (0x85b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC9A5 Validity Not Before: Feb 5 09:42:53 2025 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=67a3329d-e73b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d2:b8:a1:74:97:9b:f3:80:91:39:5c:a8:e7: d6:56:ee:6d:c7:b7:42:40:c1:94:3a:17:a6:12:70: 74:5d:8c:1a:22:7b:b6:cf:22:a2:a5:59:b1:25:0d: 78:9b:8f:fc:61:6d:7d:53:da:25:59:c5:75:ef:f6: aa:08:6c:29:0a:65:9b:db:83:f9:31:58:97:a9:b5: c6:a4:3b:d9:9f:68:0a:83:2c:6e:3d:c8:db:8d:c8: fe:18:40:f3:e1:4e:18:90:da:66:66:7d:c6:d5:9e: e8:06:f7:85:fd:b3:ed:51:2c:72:b5:28:8f:56:79: 78:47:eb:1e:b0:2a:3d:9c:48:db:d8:11:25:59:53: 33:c5:b8:a5:d5:aa:79:83:93:0f:a4:06:94:9e:52: 65:35:7f:7b:1a:38:6f:7b:8b:53:a6:70:e9:8f:18: 3e:21:66:58:64:48:62:2a:d1:06:69:17:c5:80:0d: 7b:3d:1c:d7:3a:84:a1:4e:4c:a3:c5:80:fe:28:d5: 31:fb:74:7b:03:00:02:9d:b7:75:df:f4:55:90:94: f2:a7:39:a3:b8:d9:c3:02:b7:49:a7:4a:c5:ca:67: 41:28:3f:5b:15:ac:b0:5e:f0:f9:cd:e5:6f:d5:90: c5:7e:7c:28:96:d3:55:c2:d4:9a:57:d9:84:1a:66: 1a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:BF:63:8A:BD:D2:5B:CA:2A:D3:13:6A:8C:E5:B1:3E:EC:52:60:1C X509v3 Authority Key Identifier: keyid:E8:3F:CF:4C:6F:C8:D7:4F:3B:6A:B4:25:60:6E:2B:C7:74:6D:66:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC9A5/0E82C2ECC4F011EA91DCDF77C4F9AE02/6D_PTG_I1087arQlYG4rx3RtZkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6D_PTG_I1087arQlYG4rx3RtZkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC9A5/0E82C2ECC4F011EA91DCDF77C4F9AE02/92154C46E3A511EF975A3E75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.172.0/24 Signature Algorithm: sha256WithRSAEncryption 07:4f:32:01:9a:70:be:ed:ec:32:06:c7:0b:e7:63:cb:6b:08: 7e:21:ae:ce:9b:dc:e9:19:41:94:fb:4f:ba:4b:90:a1:38:6c: d0:8c:da:74:e3:60:7d:07:d3:ea:bf:92:dc:a2:bf:02:85:7d: 1a:76:a7:be:bd:f0:8f:c5:ee:6e:05:33:16:dc:db:d5:4c:6b: 1d:e1:11:cc:62:1e:6e:ee:4c:2d:e3:fb:5f:5f:f3:29:47:22: 21:8a:97:af:06:6f:20:6e:56:34:da:46:2a:43:63:0a:74:8e: 5a:d2:6d:b9:84:7f:41:79:65:4e:90:eb:5c:f5:18:cc:22:95: 8f:fe:b9:fc:2a:d6:bd:7f:f5:be:25:52:bc:a6:c0:37:87:8a: 2b:9c:5a:94:8a:01:8a:60:1f:2a:e9:fe:dc:88:65:21:e5:68: de:db:b8:65:d2:07:a3:0d:28:64:22:0f:7d:8c:38:af:08:40: bd:81:08:ef:fc:64:b1:33:65:d2:26:9b:b8:b3:f8:41:52:84: 17:20:ba:b3:a7:ed:83:43:60:d4:b8:b9:a9:5c:8a:74:48:dd: 1a:76:21:8a:1b:54:5f:23:13:85:e8:4a:da:ca:e7:44:32:ac: 9c:07:57:7a:a8:73:d9:e0:63:46:6d:4f:22:8b:48:30:4e:bf: 24:9c:f4:aa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM5QTUxMTAvBgNVBAUTKEU4M0ZDRjRDNkZDOEQ3NEYzQjZBQjQyNTYwNkUyQkM3 NzQ2RDY2NDAwHhcNMjUwMjA1MDk0MjUzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EzMzI5ZC1lNzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NK4oXSXm/OAkTlcqOfWVu5tx7dCQMGUOhemEnB0XYwaInu2zyKipVmxJQ14 m4/8YW19U9olWcV17/aqCGwpCmWb24P5MViXqbXGpDvZn2gKgyxuPcjbjcj+GEDz 4U4YkNpmZn3G1Z7oBveF/bPtUSxytSiPVnl4R+sesCo9nEjb2BElWVMzxbil1ap5 g5MPpAaUnlJlNX97Gjhve4tTpnDpjxg+IWZYZEhiKtEGaRfFgA17PRzXOoShTkyj xYD+KNUx+3R7AwACnbd13/RVkJTypzmjuNnDArdJp0rFymdBKD9bFaywXvD5zeVv 1ZDFfnwoltNVwtSaV9mEGmYawQIDAQABo4IClTCCApEwHQYDVR0OBBYEFF2/Y4q9 0lvKKtMTaozlsT7sUmAcMB8GA1UdIwQYMBaAFOg/z0xvyNdPO2q0JWBuK8d0bWZA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzlBNS8wRTgyQzJFQ0M0 RjAxMUVBOTFEQ0RGNzdDNEY5QUUwMi82RF9QVEdfSTEwODdhclFsWUc0cngzUnRa a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZEX1BUR19JMTA4N2FyUWxZRzRyeDNSdFprQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUM5QTUvMEU4MkMyRUNDNEYwMTFFQTkxRENERjc3QzRGOUFFMDIvOTIxNTRDNDZF M0E1MTFFRjk3NUEzRTc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnVKwwDQYJKoZIhvcNAQELBQADggEBAAdPMgGacL7t7DIG xwvnY8trCH4hrs6b3OkZQZT7T7pLkKE4bNCM2nTjYH0H0+q/ktyivwKFfRp2p769 8I/F7m4FMxbc29VMax3hEcxiHm7uTC3j+19f8ylHIiGKl68GbyBuVjTaRipDYwp0 jlrSbbmEf0F5ZU6Q61z1GMwilY/+ufwq1r1/9b4lUrymwDeHiiucWpSKAYpgHyrp /tyIZSHlaN7buGXSB6MNKGQiD32MOK8IQL2BCO/8ZLEzZdImm7iz+EFShBcgurOn 7YNDYNS4ualcinRI3Rp2IYobVF8jE4XoStrK50QyrJwHV3qoc9ngY0ZtTyKLSDBO vySc9Ko= -----END CERTIFICATE-----Generated at Thu Feb 20 02:43:17 2025 by rpki-client