$ rpki-client -vvf rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/EDC6896617B611F08E260814C4F9AE02.roa File: EDC6896617B611F08E260814C4F9AE02.roa (raw, json) Hash identifier: MPM/fDIm7iSq8h5ZOB3ujJWuioyZyPhojtnDvre1LOg= Subject key identifier: BB:46:A1:35:3E:EB:1A:F4:66:36:B7:90:00:51:04:6D:BC:CE:AB:26 Certificate issuer: /CN=A91128E3/serialNumber=71C1E8E054049ACFD9AA2193AF1D48C6D1D025E1 Certificate serial: 0536 Authority key identifier: 71:C1:E8:E0:54:04:9A:CF:D9:AA:21:93:AF:1D:48:C6:D1:D0:25:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/EDC6896617B611F08E260814C4F9AE02.roa Signing time: Sat 12 Apr 2025 15:58:09 +0000 ROA not before: Sat 12 Apr 2025 15:58:09 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 210110 IP address blocks: 103.170.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.crl rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:24:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1334 (0x536) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91128E3, serialNumber=71C1E8E054049ACFD9AA2193AF1D48C6D1D025E1 Validity Not Before: Apr 12 15:58:09 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=67fa8d91-02ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0e:37:ed:78:04:0c:a4:8b:63:b0:d9:eb:5c: 86:02:ae:33:a4:bd:4a:74:fe:db:33:f1:23:2e:b9: 82:22:d5:3a:c6:dd:91:e6:57:17:e7:4e:c0:d0:5c: 2d:06:e1:9d:71:af:0b:13:bc:a2:f1:dc:bb:18:54: 63:7b:cb:ec:8e:9c:e7:e7:02:b2:76:03:6d:32:96: ca:2b:bd:70:85:3d:a1:c7:9e:65:25:35:50:c3:b7: b4:de:4e:fb:5b:cd:03:64:27:00:e6:61:c0:3d:9b: 8b:e8:79:fc:56:79:e0:3f:fe:44:a0:d5:f8:dd:ed: 69:61:2b:31:a1:fd:f8:6c:3f:8b:32:45:51:5d:1c: 38:92:7c:67:bf:04:96:8f:20:2f:88:84:7a:5c:d6: 63:4b:df:7f:94:3f:03:7d:58:28:fa:40:1d:ba:59: ad:4c:f0:3f:a2:6b:7e:70:7a:b5:c4:51:83:1e:f8: aa:a9:d2:24:e5:d4:90:d0:e7:4d:19:6f:a6:e0:18: be:7d:eb:82:18:e1:1b:4f:da:92:86:0b:fa:ae:de: 64:cf:ca:59:93:12:a7:3e:bc:73:8d:ef:cf:8c:4c: d2:ca:6f:6a:7b:ac:b3:49:4c:b6:21:86:5e:ff:7e: 2d:37:db:e0:2d:67:cc:59:80:51:01:c7:fa:ce:87: 4c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:46:A1:35:3E:EB:1A:F4:66:36:B7:90:00:51:04:6D:BC:CE:AB:26 X509v3 Authority Key Identifier: keyid:71:C1:E8:E0:54:04:9A:CF:D9:AA:21:93:AF:1D:48:C6:D1:D0:25:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/EDC6896617B611F08E260814C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.72.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:60:62:c9:0c:d0:2f:ac:6e:b9:ba:27:5f:9b:b5:c6:48:1d: 31:2e:0f:2d:0c:f7:3e:60:a1:70:6b:10:56:f5:33:74:27:07: c4:d7:42:d5:56:38:a1:b0:3f:14:37:10:99:59:45:ae:6d:e7: 17:fd:c7:bb:f6:87:f5:8c:f1:c6:b4:bf:3d:36:29:42:06:ee: ed:5d:70:5c:eb:75:c1:b4:b5:6b:7d:f0:75:58:08:6d:1f:a1: ac:b7:8d:1c:cc:b6:59:31:f6:a0:98:e1:49:1a:62:97:c8:53: 83:78:2c:d4:f1:90:da:b9:60:1c:4d:a0:10:a1:ff:b3:f3:5f: 29:0a:3a:11:8b:e1:84:40:6e:ef:3e:73:66:3c:98:e5:40:40: 1a:5b:f8:96:cc:02:47:9b:f5:d6:8e:ee:30:09:72:1f:c3:97: e4:a8:82:e7:36:c0:b8:13:da:9b:c6:49:ac:4f:cc:75:c3:b0: 11:51:10:47:95:60:d2:9c:6d:b6:c2:b3:2f:7b:f7:e4:4b:4d: f4:44:33:e7:61:04:1d:1f:d9:a5:be:8f:ee:18:73:17:87:80: 52:bd:5d:ee:02:34:d9:03:45:8a:60:5d:94:c2:fd:79:e9:9c: 54:93:ba:5f:dd:00:da:8f:d6:bc:87:67:c9:78:66:f1:99:87: 34:57:65:5e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBTYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4RTMxMTAvBgNVBAUTKDcxQzFFOEUwNTQwNDlBQ0ZEOUFBMjE5M0FGMUQ0OEM2 RDFEMDI1RTEwHhcNMjUwNDEyMTU1ODA5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZhOGQ5MS0wMmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtw437XgEDKSLY7DZ61yGAq4zpL1KdP7bM/EjLrmCItU6xt2R5lcX507A0Fwt BuGdca8LE7yi8dy7GFRje8vsjpzn5wKydgNtMpbKK71whT2hx55lJTVQw7e03k77 W80DZCcA5mHAPZuL6Hn8VnngP/5EoNX43e1pYSsxof34bD+LMkVRXRw4knxnvwSW jyAviIR6XNZjS99/lD8DfVgo+kAdulmtTPA/omt+cHq1xFGDHviqqdIk5dSQ0OdN GW+m4Bi+feuCGOEbT9qShgv6rt5kz8pZkxKnPrxzje/PjEzSym9qe6yzSUy2IYZe /34tN9vgLWfMWYBRAcf6zodMcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLtGoTU+ 6xr0Zja3kABRBG28zqsmMB8GA1UdIwQYMBaAFHHB6OBUBJrP2aohk68dSMbR0CXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjhFMy81MzkzQzBFRTAw MjYxMUVDQTQwNjE2MTRDNEY5QUUwMi9jY0hvNEZRRW1zX1pxaUdUcngxSXh0SFFK ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NjSG80RlFFbXNfWnFpR1RyeDFJeHRIUUplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI4RTMvNTM5M0MwRUUwMDI2MTFFQ0E0MDYxNjE0QzRGOUFFMDIvRURDNjg5NjYx N0I2MTFGMDhFMjYwODE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqkgwDQYJKoZIhvcNAQELBQADggEBAJ9gYskM0C+sbrm6 J1+btcZIHTEuDy0M9z5goXBrEFb1M3QnB8TXQtVWOKGwPxQ3EJlZRa5t5xf9x7v2 h/WM8ca0vz02KUIG7u1dcFzrdcG0tWt98HVYCG0foay3jRzMtlkx9qCY4UkaYpfI U4N4LNTxkNq5YBxNoBCh/7PzXykKOhGL4YRAbu8+c2Y8mOVAQBpb+JbMAkeb9daO 7jAJch/Dl+Soguc2wLgT2pvGSaxPzHXDsBFREEeVYNKcbbbCsy979+RLTfREM+dh BB0f2aW+j+4YcxeHgFK9Xe4CNNkDRYpgXZTC/XnpnFSTul/dANqP1ryHZ8l4ZvGZ hzRXZV4= -----END CERTIFICATE-----Generated at Sat Apr 26 08:30:50 2025 by rpki-client