$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/79FC546E326611F08478D72AC4F9AE02.roa File: 79FC546E326611F08478D72AC4F9AE02.roa (raw, json) Hash identifier: am3NhgZhlWglkGfbZZct7Zns0eBmoWnvC8JZyjiffXU= Subject key identifier: 85:A2:9C:CD:DA:85:B4:7D:0D:D4:4A:AD:35:EB:0D:C0:E4:F8:E7:2A Certificate issuer: /CN=A91F9C42/serialNumber=8379D747F74A55EDC73A0E0421C79B5EC0E4DE76 Certificate serial: 0167 Authority key identifier: 83:79:D7:47:F7:4A:55:ED:C7:3A:0E:04:21:C7:9B:5E:C0:E4:DE:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3nXR_dKVe3HOg4EIcebXsDk3nY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/79FC546E326611F08478D72AC4F9AE02.roa Signing time: Fri 16 May 2025 15:00:16 +0000 ROA not before: Fri 16 May 2025 15:00:16 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 151467 IP address blocks: 103.229.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/g3nXR_dKVe3HOg4EIcebXsDk3nY.crl rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/g3nXR_dKVe3HOg4EIcebXsDk3nY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3nXR_dKVe3HOg4EIcebXsDk3nY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 03:40:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 359 (0x167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9C42, serialNumber=8379D747F74A55EDC73A0E0421C79B5EC0E4DE76 Validity Not Before: May 16 15:00:16 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=68275300-db26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:58:54:38:a2:2d:05:3a:ca:d3:68:37:a9:bd: 4d:94:e9:ef:6d:7e:20:9a:25:2e:16:f6:c7:d2:e8: ec:c3:da:a1:1d:9c:e3:11:81:65:79:68:a7:ba:5c: bc:d2:e9:ea:d6:a0:8c:9b:f5:26:eb:c9:7a:6a:64: 05:15:a1:2f:f4:bb:74:8f:3c:00:97:f6:da:6f:c6: 57:c3:02:36:15:3f:01:26:99:e7:89:3e:0c:94:0e: 5d:0a:8a:2a:88:da:40:db:33:59:c2:43:f5:ca:71: 4d:25:5e:65:24:d5:32:b3:44:41:fa:60:3e:f8:d8: e3:d6:55:d8:a7:16:eb:c9:9e:46:7d:25:3c:65:db: 09:7b:3d:1f:0f:08:7c:94:e2:4f:74:f5:c9:c9:a7: 8d:16:16:f5:af:05:f8:c9:2c:7a:b2:4b:f3:8b:76: 27:8a:74:67:0b:5b:03:b6:0e:22:e1:70:16:bf:0f: b0:e1:39:da:06:2b:8d:55:38:1f:b9:8f:45:c5:bd: c2:22:05:31:98:b5:dc:db:ed:07:5a:fb:51:bf:ac: 9a:00:b1:25:a7:af:aa:f8:25:6f:60:2e:47:df:a5: f2:db:7f:8a:96:89:0a:ce:18:62:cf:63:00:bf:bc: f4:1f:ac:e7:19:b2:80:a8:d2:f9:d4:b7:85:36:ef: 03:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:A2:9C:CD:DA:85:B4:7D:0D:D4:4A:AD:35:EB:0D:C0:E4:F8:E7:2A X509v3 Authority Key Identifier: keyid:83:79:D7:47:F7:4A:55:ED:C7:3A:0E:04:21:C7:9B:5E:C0:E4:DE:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/g3nXR_dKVe3HOg4EIcebXsDk3nY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g3nXR_dKVe3HOg4EIcebXsDk3nY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9C42/24A65EBE20D011EE90084F5CC4F9AE02/79FC546E326611F08478D72AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.191.0/24 Signature Algorithm: sha256WithRSAEncryption 69:e1:e1:b6:ee:59:f9:fa:4f:98:c5:2d:98:8f:e5:e9:cc:78: ea:5f:ca:dc:5d:55:81:2e:1c:ca:f9:ae:a2:14:89:2d:97:f1: 1e:8e:30:3c:de:22:97:a9:8c:d4:69:bf:f8:f2:94:c8:7c:f9: 22:95:f5:ec:cb:6a:a6:ce:cf:18:41:f2:c7:c6:88:fa:98:07: 7f:89:40:7a:96:95:08:24:91:d7:ad:7d:fa:14:77:26:e9:da: af:73:91:40:a9:bf:a7:6d:0a:34:e0:a0:e3:4f:da:b8:83:43: 51:ac:1e:01:4a:ce:19:6e:34:b9:b4:12:a2:f8:4b:be:8f:f3: f7:bf:1a:f1:9a:73:36:95:f2:39:77:f1:7c:e1:d4:43:b4:42: 05:63:cf:d2:9e:6c:6a:62:ca:fd:28:5a:a8:22:34:c8:e3:cb: 60:27:18:fd:98:0f:c9:a1:9c:71:75:30:4a:43:70:8b:86:b9: 3d:44:35:00:15:d6:b9:9d:61:73:b3:7b:50:56:6a:cf:35:09: e2:ed:e5:9a:1d:23:ad:aa:36:cb:bc:ae:6b:39:b5:a0:04:a1: 20:7a:07:a9:64:d6:a3:fb:2a:8d:be:4e:2c:1f:26:22:3c:43: 6c:39:60:37:60:60:dd:76:1e:b8:5d:cd:f0:e6:2c:5a:19:41: 6c:bd:37:7c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlDNDIxMTAvBgNVBAUTKDgzNzlENzQ3Rjc0QTU1RURDNzNBMEUwNDIxQzc5QjVF QzBFNERFNzYwHhcNMjUwNTE2MTUwMDE2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3NTMwMC1kYjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlhUOKItBTrK02g3qb1NlOnvbX4gmiUuFvbH0ujsw9qhHZzjEYFleWinuly8 0unq1qCMm/Um68l6amQFFaEv9Lt0jzwAl/bab8ZXwwI2FT8BJpnniT4MlA5dCooq iNpA2zNZwkP1ynFNJV5lJNUys0RB+mA++Njj1lXYpxbryZ5GfSU8ZdsJez0fDwh8 lOJPdPXJyaeNFhb1rwX4ySx6skvzi3YninRnC1sDtg4i4XAWvw+w4TnaBiuNVTgf uY9Fxb3CIgUxmLXc2+0HWvtRv6yaALElp6+q+CVvYC5H36Xy23+KlokKzhhiz2MA v7z0H6znGbKAqNL51LeFNu8D2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFIWinM3a hbR9DdRKrTXrDcDk+OcqMB8GA1UdIwQYMBaAFIN510f3SlXtxzoOBCHHm17A5N52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUM0Mi8yNEE2NUVCRTIw RDAxMUVFOTAwODRGNUNDNEY5QUUwMi9nM25YUl9kS1ZlM0hPZzRFSWNlYlhzRGsz blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2czblhSX2RLVmUzSE9nNEVJY2ViWHNEazNuWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjlDNDIvMjRBNjVFQkUyMEQwMTFFRTkwMDg0RjVDQzRGOUFFMDIvNzlGQzU0NkUz MjY2MTFGMDg0NzhENzJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5b8wDQYJKoZIhvcNAQELBQADggEBAGnh4bbuWfn6T5jF LZiP5enMeOpfytxdVYEuHMr5rqIUiS2X8R6OMDzeIpepjNRpv/jylMh8+SKV9ezL aqbOzxhB8sfGiPqYB3+JQHqWlQgkkdetffoUdybp2q9zkUCpv6dtCjTgoONP2riD Q1GsHgFKzhluNLm0EqL4S76P8/e/GvGaczaV8jl38Xzh1EO0QgVjz9KebGpiyv0o WqgiNMjjy2AnGP2YD8mhnHF1MEpDcIuGuT1ENQAV1rmdYXOze1BWas81CeLt5Zod I62qNsu8rms5taAEoSB6B6lk1qP7Ko2+TiwfJiI8Q2w5YDdgYN12HrhdzfDmLFoZ QWy9N3w= -----END CERTIFICATE-----Generated at Mon Jun 2 07:09:21 2025 by rpki-client