$ rpki-client -vvf rpki.apnic.net/member_repository/A91147EF/8A291046991611EA9955D50BC4F9AE02/84D32F2AE32411EA800C6724C4F9AE02.roa File: 84D32F2AE32411EA800C6724C4F9AE02.roa (raw, json) Hash identifier: DaSUtI7cCFZVDFGMxaMRlNVdC4PaCp9TfzAzL8z3Ug0= Subject key identifier: AA:5E:B8:C9:38:86:1F:70:2F:20:61:62:56:F1:12:80:4D:12:3C:8F Certificate issuer: /CN=A91147EF/serialNumber=0215502AA8FFDC721D7F84F74CD070B756390016 Certificate serial: 0942 Authority key identifier: 02:15:50:2A:A8:FF:DC:72:1D:7F:84:F7:4C:D0:70:B7:56:39:00:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AhVQKqj_3HIdf4T3TNBwt1Y5ABY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91147EF/8A291046991611EA9955D50BC4F9AE02/84D32F2AE32411EA800C6724C4F9AE02.roa Signing time: Thu 10 Apr 2025 20:30:32 +0000 ROA not before: Thu 10 Apr 2025 20:30:32 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 22900 IP address blocks: 103.149.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91147EF/8A291046991611EA9955D50BC4F9AE02/AhVQKqj_3HIdf4T3TNBwt1Y5ABY.crl rsync://rpki.apnic.net/member_repository/A91147EF/8A291046991611EA9955D50BC4F9AE02/AhVQKqj_3HIdf4T3TNBwt1Y5ABY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AhVQKqj_3HIdf4T3TNBwt1Y5ABY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:08:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2370 (0x942) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91147EF, serialNumber=0215502AA8FFDC721D7F84F74CD070B756390016 Validity Not Before: Apr 10 20:30:32 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f82a67-5e24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e8:ff:1f:70:6f:b3:a7:70:77:15:39:a7:c5: 61:17:88:0b:a8:2b:72:70:3c:15:12:ba:73:fa:1f: e1:23:56:47:bf:eb:b1:57:15:ed:91:1d:ce:c2:29: d9:cc:c3:07:42:29:9e:d1:56:fc:ef:81:ae:1a:21: bd:9e:92:f7:91:7c:c4:cc:ee:79:8b:34:cb:9b:5e: e1:41:0c:e7:d5:77:c4:47:db:9d:d3:ea:6c:6a:7f: 20:af:74:49:b0:cb:6e:bf:c9:ae:d0:27:df:d5:36: 55:b0:2f:98:a6:9e:b3:85:db:b0:31:37:7c:bf:7a: a4:b0:9d:dd:d0:e1:47:eb:3f:d4:d5:4d:43:94:86: 9b:cf:7c:d7:f1:74:73:94:f0:f5:1c:8c:1e:d5:b0: 61:d4:53:88:fe:48:57:69:10:5b:81:5c:b7:e5:18: 92:95:43:17:8c:67:cf:5d:e8:9e:69:cb:88:bf:e5: 82:b2:20:2b:79:fc:c6:9c:3c:96:87:9b:9e:2c:8e: f8:8c:b1:58:23:fb:c9:42:38:72:43:70:24:85:84: 1c:4a:83:18:01:59:31:2f:c3:62:5a:29:7e:18:d8: 80:3a:3f:39:0f:a1:4d:2c:5f:16:b0:86:dd:e9:ea: 9f:a7:e9:a5:34:e9:48:12:b3:bf:94:c5:9d:00:01: ae:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:5E:B8:C9:38:86:1F:70:2F:20:61:62:56:F1:12:80:4D:12:3C:8F X509v3 Authority Key Identifier: keyid:02:15:50:2A:A8:FF:DC:72:1D:7F:84:F7:4C:D0:70:B7:56:39:00:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91147EF/8A291046991611EA9955D50BC4F9AE02/AhVQKqj_3HIdf4T3TNBwt1Y5ABY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AhVQKqj_3HIdf4T3TNBwt1Y5ABY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91147EF/8A291046991611EA9955D50BC4F9AE02/84D32F2AE32411EA800C6724C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.76.0/24 Signature Algorithm: sha256WithRSAEncryption 76:f0:c4:63:6e:a5:3f:6a:57:3d:1b:44:23:f0:36:97:b7:0b: 99:ce:d8:8d:17:91:ec:70:5e:ba:e7:7d:b8:88:e5:83:6e:4e: 05:21:44:d2:3f:39:a9:f6:26:cb:66:17:1b:a5:8f:5f:a8:97: 51:5b:fc:94:aa:a1:3d:2d:dd:14:55:c9:89:cf:3e:a2:c4:5c: 1c:b7:3a:3b:ec:6f:66:ff:c4:e3:ab:10:10:f0:d5:f2:54:bb: 09:9a:6b:92:8d:32:d4:76:e5:5d:a0:c6:61:04:9e:4a:7a:cb: 39:34:4e:01:7e:2d:e6:c4:f0:d6:ac:c7:05:6c:40:e5:4e:5b: e3:2c:3c:dc:f0:c9:11:e8:70:9b:5f:b8:76:df:16:1d:56:18: d3:12:55:a2:8e:fe:b3:da:41:18:9f:24:87:bc:17:d2:2a:c0: 1e:98:0c:28:a0:6e:75:65:b4:5d:ec:10:6a:7e:56:e2:f8:11: 47:86:c3:bc:c7:b3:5f:3e:a2:4a:c1:33:bb:5c:32:b7:78:de: df:8b:e2:c8:ff:53:8d:73:9c:0e:d6:ad:c6:c0:76:1b:f9:a1: ac:46:27:9a:f6:69:dc:be:86:32:b8:a7:50:dd:83:04:67:dd: 21:82:6f:2c:1f:a1:d8:85:c6:35:b6:be:f2:02:fa:b8:c5:7d: 29:49:cb:17 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQ3RUYxMTAvBgNVBAUTKDAyMTU1MDJBQThGRkRDNzIxRDdGODRGNzRDRDA3MEI3 NTYzOTAwMTYwHhcNMjUwNDEwMjAzMDMyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y4MmE2Ny01ZTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOj/H3Bvs6dwdxU5p8VhF4gLqCtycDwVErpz+h/hI1ZHv+uxVxXtkR3OwinZ zMMHQime0Vb874GuGiG9npL3kXzEzO55izTLm17hQQzn1XfER9ud0+psan8gr3RJ sMtuv8mu0Cff1TZVsC+Ypp6zhduwMTd8v3qksJ3d0OFH6z/U1U1DlIabz3zX8XRz lPD1HIwe1bBh1FOI/khXaRBbgVy35RiSlUMXjGfPXeieacuIv+WCsiArefzGnDyW h5ueLI74jLFYI/vJQjhyQ3AkhYQcSoMYAVkxL8NiWil+GNiAOj85D6FNLF8WsIbd 6eqfp+mlNOlIErO/lMWdAAGuMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKpeuMk4 hh9wLyBhYlbxEoBNEjyPMB8GA1UdIwQYMBaAFAIVUCqo/9xyHX+E90zQcLdWOQAW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDdFRi84QTI5MTA0Njk5 MTYxMUVBOTk1NUQ1MEJDNEY5QUUwMi9BaFZRS3FqXzNISWRmNFQzVE5Cd3QxWTVB QlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FoVlFLcWpfM0hJZGY0VDNUTkJ3dDFZNUFCWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTQ3RUYvOEEyOTEwNDY5OTE2MTFFQTk5NTVENTBCQzRGOUFFMDIvODREMzJGMkFF MzI0MTFFQTgwMEM2NzI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlUwwDQYJKoZIhvcNAQELBQADggEBAHbwxGNupT9qVz0b RCPwNpe3C5nO2I0XkexwXrrnfbiI5YNuTgUhRNI/Oan2JstmFxulj1+ol1Fb/JSq oT0t3RRVyYnPPqLEXBy3Ojvsb2b/xOOrEBDw1fJUuwmaa5KNMtR25V2gxmEEnkp6 yzk0TgF+LebE8NasxwVsQOVOW+MsPNzwyRHocJtfuHbfFh1WGNMSVaKO/rPaQRif JIe8F9IqwB6YDCigbnVltF3sEGp+VuL4EUeGw7zHs18+okrBM7tcMrd43t+L4sj/ U41znA7WrcbAdhv5oaxGJ5r2ady+hjK4p1DdgwRn3SGCbywfodiFxjW2vvIC+rjF fSlJyxc= -----END CERTIFICATE-----Generated at Sat Apr 26 08:19:34 2025 by rpki-client