$ rpki-client -vvf rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/751D2C1A98E611EC849D155FC4F9AE02.roa File: 751D2C1A98E611EC849D155FC4F9AE02.roa (raw, json) Hash identifier: CkImo8IsUmsaya0jHXM103+CNWFzYVltZI4TafvBrlE= Subject key identifier: E3:91:09:69:59:B1:BF:61:24:2B:B3:02:E7:50:94:7C:3F:BE:78:52 Certificate issuer: /CN=A91F479C/serialNumber=3197402CC1D406F9707D2E2204363BC0D13C0299 Certificate serial: 037E Authority key identifier: 31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/751D2C1A98E611EC849D155FC4F9AE02.roa Signing time: Mon 17 Mar 2025 00:46:08 +0000 ROA not before: Mon 17 Mar 2025 00:46:08 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 400384 IP address blocks: 103.181.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.crl rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 00:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 894 (0x37e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F479C Validity Not Before: Mar 17 00:46:08 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67d770d0-f6c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:ee:ae:fd:9f:f0:01:c3:1f:aa:0d:78:c5:95: 6b:90:df:cb:97:bf:aa:8f:e0:43:7c:54:0c:62:82: d9:9f:32:55:8e:7b:3e:f9:b9:68:b8:f2:65:ed:0b: e5:56:25:9a:21:24:47:b1:65:31:f7:68:38:69:70: 12:28:53:66:89:33:35:bd:ef:6a:4f:c3:bd:a3:c0: 5b:28:06:76:49:01:7f:ab:fa:59:53:fe:3e:2c:60: a3:80:a9:73:cf:af:87:7e:d0:a7:21:5b:3c:ed:48: 22:73:09:97:b7:5d:b4:73:ff:2e:7f:08:33:80:2c: b1:c3:2e:bf:b6:f9:51:77:9b:89:aa:1e:91:0a:68: ca:20:f2:06:4f:43:02:1d:7d:05:ad:2b:cc:81:ba: e6:bc:dd:04:76:5b:16:79:4c:72:c7:ee:23:7d:35: eb:21:1f:23:5e:ae:39:2f:b1:f0:86:a1:7d:b8:9d: 1a:61:b5:e6:67:e6:0d:e1:36:20:17:a7:cd:b2:44: 1e:94:f8:48:44:eb:e2:81:06:a3:f6:66:51:c5:f9: 38:2a:15:8c:40:d8:63:38:66:16:4a:1b:3e:24:4a: f1:16:de:b9:06:a0:40:ef:0b:4f:a9:e8:26:d4:59: d5:a0:3c:fa:a1:d8:c9:80:b6:d3:db:7f:b4:98:e6: b9:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:91:09:69:59:B1:BF:61:24:2B:B3:02:E7:50:94:7C:3F:BE:78:52 X509v3 Authority Key Identifier: keyid:31:97:40:2C:C1:D4:06:F9:70:7D:2E:22:04:36:3B:C0:D1:3C:02:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/MZdALMHUBvlwfS4iBDY7wNE8Apk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MZdALMHUBvlwfS4iBDY7wNE8Apk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F479C/32BF850E98E411EC937D615CC4F9AE02/751D2C1A98E611EC849D155FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.98.0/23 Signature Algorithm: sha256WithRSAEncryption d8:15:20:b7:03:5c:02:86:19:83:b0:ba:b7:f5:db:d3:45:69: 57:88:5f:c1:24:9a:2b:21:ab:ed:57:47:8c:9c:93:7a:e3:41: 53:1e:f8:8c:d1:fc:9a:c2:ad:a6:e3:ae:d3:00:55:2f:24:a7: 8a:af:9d:4f:bf:5c:b8:5c:af:9c:9a:fe:b0:1e:17:58:63:31: 33:85:0c:a1:ec:2b:13:aa:c0:e0:d9:20:88:58:76:3c:b0:95: 80:33:18:a2:16:66:fd:a6:e8:e8:da:a4:94:48:c2:99:91:c6: fd:54:9b:93:0b:ce:85:87:95:12:f4:9b:8c:ea:4d:61:36:af: 9e:59:9a:3a:e5:2b:de:bb:87:a2:12:8c:3e:13:db:d8:2e:db: c1:1c:c7:f3:8e:df:cb:2d:54:a6:17:39:47:3b:f0:21:18:33: af:5d:66:f0:49:d3:c2:2b:a5:0b:81:09:e0:3d:42:a9:1b:83: be:ec:47:55:41:c8:51:37:05:8e:57:d9:c0:a8:7a:46:47:1c: 68:0c:c4:e7:51:be:9a:43:55:99:e4:24:1c:cd:ee:4e:50:84: 42:59:91:81:57:29:71:a8:ac:f6:13:53:3f:b2:be:94:de:a0: a6:b0:14:6e:d4:f4:d3:00:e2:6e:c9:66:52:fb:c7:39:66:80: 71:2a:ed:f4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA34wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ3OUMxMTAvBgNVBAUTKDMxOTc0MDJDQzFENDA2Rjk3MDdEMkUyMjA0MzYzQkMw RDEzQzAyOTkwHhcNMjUwMzE3MDA0NjA4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q3NzBkMC1mNmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9u6u/Z/wAcMfqg14xZVrkN/Ll7+qj+BDfFQMYoLZnzJVjns++blouPJl7Qvl ViWaISRHsWUx92g4aXASKFNmiTM1ve9qT8O9o8BbKAZ2SQF/q/pZU/4+LGCjgKlz z6+HftCnIVs87UgicwmXt120c/8ufwgzgCyxwy6/tvlRd5uJqh6RCmjKIPIGT0MC HX0FrSvMgbrmvN0EdlsWeUxyx+4jfTXrIR8jXq45L7HwhqF9uJ0aYbXmZ+YN4TYg F6fNskQelPhIROvigQaj9mZRxfk4KhWMQNhjOGYWShs+JErxFt65BqBA7wtPqegm 1FnVoDz6odjJgLbT23+0mOa58QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOORCWlZ sb9hJCuzAudQlHw/vnhSMB8GA1UdIwQYMBaAFDGXQCzB1Ab5cH0uIgQ2O8DRPAKZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDc5Qy8zMkJGODUwRTk4 RTQxMUVDOTM3RDYxNUNDNEY5QUUwMi9NWmRBTE1IVUJ2bHdmUzRpQkRZN3dORThB cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01aZEFMTUhVQnZsd2ZTNGlCRFk3d05FOEFway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQ3OUMvMzJCRjg1MEU5OEU0MTFFQzkzN0Q2MTVDQzRGOUFFMDIvNzUxRDJDMUE5 OEU2MTFFQzg0OUQxNTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFntWIwDQYJKoZIhvcNAQELBQADggEBANgVILcDXAKGGYOw urf129NFaVeIX8Ekmishq+1XR4yck3rjQVMe+IzR/JrCrabjrtMAVS8kp4qvnU+/ XLhcr5ya/rAeF1hjMTOFDKHsKxOqwODZIIhYdjywlYAzGKIWZv2m6OjapJRIwpmR xv1Um5MLzoWHlRL0m4zqTWE2r55ZmjrlK967h6ISjD4T29gu28Ecx/OO38stVKYX OUc78CEYM69dZvBJ08IrpQuBCeA9Qqkbg77sR1VByFE3BY5X2cCoekZHHGgMxOdR vppDVZnkJBzN7k5QhEJZkYFXKXGorPYTUz+yvpTeoKawFG7U9NMA4m7JZlL7xzlm gHEq7fQ= -----END CERTIFICATE-----Generated at Fri Apr 11 19:14:17 2025 by rpki-client