$ rpki-client -vvf rpki.apnic.net/member_repository/A91278AF/16BBD7B48D1311EBA5183D0BC4F9AE02/6DB2ADE48D1411EB8DBF4B0CC4F9AE02.roa File: 6DB2ADE48D1411EB8DBF4B0CC4F9AE02.roa (raw, json) Hash identifier: RjXIFOb4H/X8iiDE4pTuFeof6IEbmr1b61kbIaDDvIs= Subject key identifier: D5:59:45:E0:84:9F:D7:59:38:E2:37:C1:7B:DD:DE:0B:D2:64:C8:5D Certificate issuer: /CN=A91278AF/serialNumber=74B1FC6CCC27775DED1F59525B287661C8BFEA28 Certificate serial: 062D Authority key identifier: 74:B1:FC:6C:CC:27:77:5D:ED:1F:59:52:5B:28:76:61:C8:BF:EA:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dLH8bMwnd13tH1lSWyh2Yci_6ig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91278AF/16BBD7B48D1311EBA5183D0BC4F9AE02/6DB2ADE48D1411EB8DBF4B0CC4F9AE02.roa Signing time: Wed 02 Apr 2025 22:54:29 +0000 ROA not before: Wed 02 Apr 2025 22:54:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 131297 IP address blocks: 103.164.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91278AF/16BBD7B48D1311EBA5183D0BC4F9AE02/dLH8bMwnd13tH1lSWyh2Yci_6ig.crl rsync://rpki.apnic.net/member_repository/A91278AF/16BBD7B48D1311EBA5183D0BC4F9AE02/dLH8bMwnd13tH1lSWyh2Yci_6ig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dLH8bMwnd13tH1lSWyh2Yci_6ig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:25:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1581 (0x62d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91278AF, serialNumber=74B1FC6CCC27775DED1F59525B287661C8BFEA28 Validity Not Before: Apr 2 22:54:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67edc024-b397 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:f2:ec:44:29:eb:ba:d6:9d:a4:82:81:d7:b9: 4a:d0:51:e0:c1:b3:cc:7b:0b:11:e7:53:37:33:d3: 65:fe:86:4f:6a:8a:13:2c:86:61:10:25:e0:f9:c2: ed:7e:b6:c8:5b:ce:a6:3f:ee:4e:b1:40:d0:fd:6c: 2c:41:cc:ce:b6:7e:b1:66:dd:18:78:3c:17:95:19: 33:b4:55:64:f6:03:ba:0e:f2:0f:37:3c:dd:00:86: 3f:36:6e:c9:35:be:a6:98:fc:f1:4e:14:b9:ac:55: b4:96:eb:12:5e:55:b5:b5:19:6e:eb:2f:09:29:37: 0d:0f:ae:a0:cd:fa:c2:7d:41:30:80:39:c3:37:e6: 8a:1e:0a:8d:f7:76:d0:ab:b9:a8:82:d0:a0:a6:82: b7:f0:fd:16:10:38:69:4b:69:19:8f:08:45:5e:9c: 68:4a:46:75:95:cb:8d:fe:13:2f:98:09:20:79:11: d7:c0:06:6a:25:08:42:37:18:14:94:dd:e6:7a:00: 6d:de:9f:3d:28:25:ae:f0:f9:99:b3:5b:f7:d5:35: ec:af:5b:f0:76:10:d8:32:3c:45:53:51:61:cb:f3: 97:5a:f3:6d:37:d7:bd:e3:2e:8d:1f:84:2a:07:6c: 88:17:b2:85:71:93:46:12:d9:86:59:14:88:d0:30: 4b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:59:45:E0:84:9F:D7:59:38:E2:37:C1:7B:DD:DE:0B:D2:64:C8:5D X509v3 Authority Key Identifier: keyid:74:B1:FC:6C:CC:27:77:5D:ED:1F:59:52:5B:28:76:61:C8:BF:EA:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91278AF/16BBD7B48D1311EBA5183D0BC4F9AE02/dLH8bMwnd13tH1lSWyh2Yci_6ig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dLH8bMwnd13tH1lSWyh2Yci_6ig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91278AF/16BBD7B48D1311EBA5183D0BC4F9AE02/6DB2ADE48D1411EB8DBF4B0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.164.89.0/24 Signature Algorithm: sha256WithRSAEncryption a2:33:0b:e8:2a:95:1e:b0:f5:d8:b2:60:f8:d7:9d:44:c9:69: 93:bf:f3:f9:32:3e:07:81:41:9c:a5:36:50:e9:d8:c3:87:11: 27:72:82:fa:12:b3:60:2c:47:8d:ae:4a:57:f6:cf:71:a4:27: 96:a4:cf:40:af:29:6b:d5:b5:93:26:19:b2:9d:1f:5d:f5:a0: a4:ee:32:2b:67:5f:86:51:08:02:ca:8d:c0:f8:53:67:19:be: b9:18:e7:9e:38:62:35:7e:68:ea:a9:af:0c:be:6d:84:62:0c: 51:7d:14:db:19:d8:49:85:75:f6:de:ff:46:3f:2c:f2:0b:91: ca:35:32:a7:17:01:bf:d9:79:46:c9:eb:47:b3:f7:b9:c0:f2: 43:37:fc:69:5a:a7:c4:03:73:2c:72:2f:17:af:51:64:16:3d: ad:b7:9a:2a:0e:65:1f:19:ac:29:0c:9c:67:7d:9a:68:91:0a: ca:f3:20:61:90:9c:bb:5b:e1:8b:a7:c8:8f:c2:31:4a:5d:63: b4:f3:25:6e:85:08:b8:eb:a2:46:3c:a5:d5:2b:94:f5:bd:05: 51:aa:d0:ec:b1:1b:34:ad:4a:63:20:8d:23:21:0b:21:9f:c0: 33:db:94:43:57:c9:1a:cc:92:6d:79:44:3b:21:b2:19:d0:22: 7a:09:1a:24 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc4QUYxMTAvBgNVBAUTKDc0QjFGQzZDQ0MyNzc3NURFRDFGNTk1MjVCMjg3NjYx QzhCRkVBMjgwHhcNMjUwNDAyMjI1NDI5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkYzAyNC1iMzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkvLsRCnrutadpIKB17lK0FHgwbPMewsR51M3M9Nl/oZPaooTLIZhECXg+cLt frbIW86mP+5OsUDQ/WwsQczOtn6xZt0YeDwXlRkztFVk9gO6DvIPNzzdAIY/Nm7J Nb6mmPzxThS5rFW0lusSXlW1tRlu6y8JKTcND66gzfrCfUEwgDnDN+aKHgqN93bQ q7mogtCgpoK38P0WEDhpS2kZjwhFXpxoSkZ1lcuN/hMvmAkgeRHXwAZqJQhCNxgU lN3megBt3p89KCWu8PmZs1v31TXsr1vwdhDYMjxFU1Fhy/OXWvNtN9e94y6NH4Qq B2yIF7KFcZNGEtmGWRSI0DBL1QIDAQABo4IClTCCApEwHQYDVR0OBBYEFNVZReCE n9dZOOI3wXvd3gvSZMhdMB8GA1UdIwQYMBaAFHSx/GzMJ3dd7R9ZUlsodmHIv+oo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzhBRi8xNkJCRDdCNDhE MTMxMUVCQTUxODNEMEJDNEY5QUUwMi9kTEg4Yk13bmQxM3RIMWxTV3loMlljaV82 aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RMSDhiTXduZDEzdEgxbFNXeWgyWWNpXzZpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc4QUYvMTZCQkQ3QjQ4RDEzMTFFQkE1MTgzRDBCQzRGOUFFMDIvNkRCMkFERTQ4 RDE0MTFFQjhEQkY0QjBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnpFkwDQYJKoZIhvcNAQELBQADggEBAKIzC+gqlR6w9diy YPjXnUTJaZO/8/kyPgeBQZylNlDp2MOHESdygvoSs2AsR42uSlf2z3GkJ5akz0Cv KWvVtZMmGbKdH131oKTuMitnX4ZRCALKjcD4U2cZvrkY5544YjV+aOqprwy+bYRi DFF9FNsZ2EmFdfbe/0Y/LPILkco1MqcXAb/ZeUbJ60ez97nA8kM3/Glap8QDcyxy LxevUWQWPa23mioOZR8ZrCkMnGd9mmiRCsrzIGGQnLtb4YunyI/CMUpdY7TzJW6F CLjrokY8pdUrlPW9BVGq0OyxGzStSmMgjSMhCyGfwDPblENXyRrMkm15RDshshnQ InoJGiQ= -----END CERTIFICATE-----Generated at Sat Apr 26 12:54:51 2025 by rpki-client