$ rpki-client -vvf rpki.apnic.net/member_repository/A91317CB/CB73F7864AB311E8AD4D1E28C4F9AE02/CBA65F7C4AB411E887FB7E29C4F9AE02.roa File: CBA65F7C4AB411E887FB7E29C4F9AE02.roa (raw, json) Hash identifier: ZrtNu0pCM+YSuzrUqWxCD6BDNZGKsa/yqsobccT0UqY= Subject key identifier: A1:94:9C:37:92:C8:47:E7:D5:F5:D9:C6:35:7F:16:66:FF:8F:FE:B3 Certificate issuer: /CN=A91317CB/serialNumber=DC5CACE7225342560706328761F913C936498AEB Certificate serial: 14DF Authority key identifier: DC:5C:AC:E7:22:53:42:56:07:06:32:87:61:F9:13:C9:36:49:8A:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Fys5yJTQlYHBjKHYfkTyTZJius.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91317CB/CB73F7864AB311E8AD4D1E28C4F9AE02/CBA65F7C4AB411E887FB7E29C4F9AE02.roa Signing time: Wed 12 Feb 2025 17:24:57 +0000 ROA not before: Wed 12 Feb 2025 17:24:57 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 134790 IP address blocks: 103.109.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91317CB/CB73F7864AB311E8AD4D1E28C4F9AE02/3Fys5yJTQlYHBjKHYfkTyTZJius.crl rsync://rpki.apnic.net/member_repository/A91317CB/CB73F7864AB311E8AD4D1E28C4F9AE02/3Fys5yJTQlYHBjKHYfkTyTZJius.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Fys5yJTQlYHBjKHYfkTyTZJius.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5343 (0x14df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91317CB, serialNumber=DC5CACE7225342560706328761F913C936498AEB Validity Not Before: Feb 12 17:24:57 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67acd969-efeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:75:95:3f:56:38:b5:c7:59:cf:68:70:e0:cb: bf:43:36:3a:51:41:3d:bb:1a:04:cb:cc:1a:3f:8d: af:ef:98:be:e0:f8:5d:c6:10:f1:93:49:c5:af:fb: c7:30:92:e1:4d:b3:ee:c0:73:49:ba:51:81:19:39: 76:cd:e5:5c:04:2c:b1:48:c8:2f:ae:8b:c1:f3:2c: e8:1f:89:27:c9:70:2d:53:e3:01:89:da:69:98:69: d3:c4:8b:89:e1:8b:ab:9f:43:7f:7d:c9:b2:ae:cf: 3a:a2:8e:cf:cd:fb:76:01:a7:26:fa:a4:75:a9:89: 02:d8:c1:66:52:b0:5f:ab:26:e3:c1:2b:59:ae:f4: f3:6a:6e:6f:84:a6:93:99:9f:e1:9c:e4:64:ce:22: 92:06:e8:71:0a:cb:98:40:76:43:5d:8f:bb:d6:49: 6a:4d:23:1a:f7:e5:05:bf:28:b6:f1:2d:d8:7c:17: 16:bd:36:07:a7:1f:6f:1a:2a:1a:84:e7:99:40:68: f0:7b:2c:be:ac:45:8c:62:e2:37:bd:35:75:9b:f4: a6:ec:c5:a6:c9:f0:33:3c:ed:83:5c:a3:9b:e6:0d: 3f:4d:b3:a7:bb:5d:96:63:8d:76:b1:ff:b8:e3:61: 69:4a:1c:03:5e:c3:55:d1:ab:82:95:fa:e4:9a:3c: bd:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:94:9C:37:92:C8:47:E7:D5:F5:D9:C6:35:7F:16:66:FF:8F:FE:B3 X509v3 Authority Key Identifier: keyid:DC:5C:AC:E7:22:53:42:56:07:06:32:87:61:F9:13:C9:36:49:8A:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91317CB/CB73F7864AB311E8AD4D1E28C4F9AE02/3Fys5yJTQlYHBjKHYfkTyTZJius.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Fys5yJTQlYHBjKHYfkTyTZJius.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91317CB/CB73F7864AB311E8AD4D1E28C4F9AE02/CBA65F7C4AB411E887FB7E29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.52.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:64:e6:19:d4:e2:82:fe:00:63:e5:88:2e:b4:27:bc:61:0e: 9b:ff:8c:62:18:0e:80:80:24:3b:bd:89:70:21:89:1c:c7:2d: 94:a8:85:f2:fc:25:09:ee:5e:64:28:45:e8:b2:57:2a:bf:df: 47:dc:1e:8d:34:a4:5c:cb:f4:33:fc:6a:5d:e8:a9:41:c2:03: 52:f5:66:ff:5c:26:db:54:79:00:a9:86:3c:68:4f:f2:3f:32: 1d:ef:2f:7d:ac:6a:d1:1c:65:67:13:e6:25:cf:68:46:12:bf: 3c:66:7a:3a:70:e3:08:32:55:cf:9c:00:50:01:49:86:52:db: 3c:5f:d2:7a:77:c3:f4:9f:a4:70:9e:66:cd:18:8d:fa:2c:5d: eb:5d:7e:44:47:ae:dc:90:2c:5d:28:3a:66:0e:6d:86:bf:cf: 6e:92:53:71:bd:d9:22:fe:47:e3:34:c5:69:b6:31:8a:f9:ec: eb:69:6d:2c:be:7a:e7:fc:e2:aa:0e:b3:de:65:f7:06:4f:e0: c8:e9:aa:58:9f:67:0e:36:95:cd:d0:70:6b:2e:60:f6:32:5a: c7:de:19:3e:af:e7:dd:15:77:37:55:61:86:84:73:00:73:a8: c6:8a:22:5d:05:dc:33:03:49:95:c8:d0:c2:c0:a5:9b:61:b2: 57:3f:d3:94 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3Q0IxMTAvBgNVBAUTKERDNUNBQ0U3MjI1MzQyNTYwNzA2MzI4NzYxRjkxM0M5 MzY0OThBRUIwHhcNMjUwMjEyMTcyNDU3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FjZDk2OS1lZmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn3WVP1Y4tcdZz2hw4Mu/QzY6UUE9uxoEy8waP42v75i+4PhdxhDxk0nFr/vH MJLhTbPuwHNJulGBGTl2zeVcBCyxSMgvrovB8yzoH4knyXAtU+MBidppmGnTxIuJ 4Yurn0N/fcmyrs86oo7Pzft2Aacm+qR1qYkC2MFmUrBfqybjwStZrvTzam5vhKaT mZ/hnORkziKSBuhxCsuYQHZDXY+71klqTSMa9+UFvyi28S3YfBcWvTYHpx9vGioa hOeZQGjweyy+rEWMYuI3vTV1m/Sm7MWmyfAzPO2DXKOb5g0/TbOnu12WY412sf+4 42FpShwDXsNV0auClfrkmjy9NQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKGUnDeS yEfn1fXZxjV/Fmb/j/6zMB8GA1UdIwQYMBaAFNxcrOciU0JWBwYyh2H5E8k2SYrr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTdDQi9DQjczRjc4NjRB QjMxMUU4QUQ0RDFFMjhDNEY5QUUwMi8zRnlzNXlKVFFsWUhCaktIWWZrVHlUWkpp dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNGeXM1eUpUUWxZSEJqS0hZZmtUeVRaSml1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzE3Q0IvQ0I3M0Y3ODY0QUIzMTFFOEFENEQxRTI4QzRGOUFFMDIvQ0JBNjVGN0M0 QUI0MTFFODg3RkI3RTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnbTQwDQYJKoZIhvcNAQELBQADggEBADtk5hnU4oL+AGPl iC60J7xhDpv/jGIYDoCAJDu9iXAhiRzHLZSohfL8JQnuXmQoReiyVyq/30fcHo00 pFzL9DP8al3oqUHCA1L1Zv9cJttUeQCphjxoT/I/Mh3vL32satEcZWcT5iXPaEYS vzxmejpw4wgyVc+cAFABSYZS2zxf0np3w/SfpHCeZs0YjfosXetdfkRHrtyQLF0o OmYObYa/z26SU3G92SL+R+M0xWm2MYr57OtpbSy+euf84qoOs95l9wZP4Mjpqlif Zw42lc3QcGsuYPYyWsfeGT6v590VdzdVYYaEcwBzqMaKIl0F3DMDSZXI0MLApZth slc/05Q= -----END CERTIFICATE-----Generated at Sat Apr 26 16:48:26 2025 by rpki-client