$ rpki-client -vvf rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/92F8EAF428F511EDA8D1655FC4F9AE02.roa File: 92F8EAF428F511EDA8D1655FC4F9AE02.roa (raw, json) Hash identifier: dftYADdFFUc1O011GFzDE5h9w7SMkc25c1t2QDLUX6k= Subject key identifier: 78:53:20:03:FD:C4:00:B3:D0:76:8C:38:A8:F1:A2:54:C0:3A:29:64 Certificate issuer: /CN=A913EF8E/serialNumber=8E16A106ADF413AFFFC58F10119274F700CFA593 Certificate serial: 024F Authority key identifier: 8E:16:A1:06:AD:F4:13:AF:FF:C5:8F:10:11:92:74:F7:00:CF:A5:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/92F8EAF428F511EDA8D1655FC4F9AE02.roa Signing time: Mon 21 Apr 2025 08:53:33 +0000 ROA not before: Mon 21 Apr 2025 08:53:32 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 150132 IP address blocks: 103.191.178.0/23 maxlen: 23 103.191.178.0/24 maxlen: 24 103.191.179.0/24 maxlen: 24 2400:97e0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.crl rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:37:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 591 (0x24f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913EF8E, serialNumber=8E16A106ADF413AFFFC58F10119274F700CFA593 Validity Not Before: Apr 21 08:53:32 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6806078c-9f17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b4:e7:9f:9a:b5:7c:78:d4:65:02:05:bc:b9: 66:81:bb:0b:7a:c1:e3:2f:1b:6f:cb:4c:98:5b:22: b5:e8:d9:84:2f:4d:df:fc:fe:13:8f:e3:79:8c:29: 49:aa:08:50:44:3d:8d:14:00:ef:62:ec:69:ee:e0: 16:7c:16:9e:22:3b:50:d5:a9:b3:53:1d:bd:5b:ca: e1:44:2d:c1:f6:12:f7:8a:a1:52:3d:47:a3:61:31: 39:cc:f5:62:ba:6d:53:e4:db:57:be:c4:fe:57:2d: eb:51:ee:13:38:5f:93:72:3e:7f:15:63:90:4b:fc: 7c:b6:d3:5c:14:1e:c7:6f:f6:61:d9:5f:cc:1f:f3: eb:3c:05:94:32:19:96:54:3e:30:73:a9:bb:34:19: f0:11:40:ba:d1:ab:d3:ff:8d:21:71:ba:17:d6:b6: b7:b6:29:20:bd:dd:a2:ec:ea:5f:ff:a7:85:40:cf: 8f:cb:6f:dd:ad:09:a0:f1:92:42:14:d0:0a:1d:26: 8a:36:11:d5:be:89:d5:f9:6c:8f:86:0f:fe:c5:9a: 52:c4:06:5b:cb:6b:f8:42:fe:e2:91:0a:1d:d7:6d: 14:76:e9:ef:6c:4d:3c:1e:73:06:58:2b:cc:eb:9d: b9:af:8a:0f:41:1d:ae:1d:0a:25:b4:f8:d7:6b:f0: a8:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:53:20:03:FD:C4:00:B3:D0:76:8C:38:A8:F1:A2:54:C0:3A:29:64 X509v3 Authority Key Identifier: keyid:8E:16:A1:06:AD:F4:13:AF:FF:C5:8F:10:11:92:74:F7:00:CF:A5:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/jhahBq30E6__xY8QEZJ09wDPpZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jhahBq30E6__xY8QEZJ09wDPpZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913EF8E/2AB24918171B11EDB3544D68C4F9AE02/92F8EAF428F511EDA8D1655FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.191.178.0/23 IPv6: 2400:97e0::/32 Signature Algorithm: sha256WithRSAEncryption 2e:42:a4:2e:0c:aa:13:d0:e6:2f:dd:81:9d:98:4c:16:98:37: 40:a8:1b:0b:eb:61:02:cc:e8:2b:ee:a9:c0:1e:56:b7:cc:ae: 3e:9c:af:53:08:98:5d:19:cf:bc:71:5d:a3:16:c8:a1:63:3f: ae:6c:f0:e2:e2:cf:bc:e1:e7:eb:7b:a3:fa:ec:ca:1b:a2:7f: be:ab:37:65:c3:bc:1a:ea:aa:65:a9:b9:98:9d:ff:31:44:75: 98:8d:d1:3d:15:98:a2:9c:9e:4d:06:2d:22:7e:6d:a0:7c:c9: dd:99:c5:30:51:75:ef:69:08:1d:8a:a3:2a:80:21:5a:d9:9a: df:ea:20:f1:3f:ea:09:a9:43:c2:d5:9b:ef:1a:d4:bc:66:b5: 3a:01:90:93:7e:b7:71:d2:ff:3a:ac:c4:14:ce:5f:05:eb:10: 73:72:94:60:36:9c:ce:f6:4a:6e:ac:f5:eb:fc:4d:bb:c4:23: ee:ae:5d:c7:78:d4:40:5a:c4:35:8f:8f:0a:67:05:f6:d3:f0: 42:2d:a4:2b:e1:c8:70:68:ee:29:d6:2b:58:8b:08:f0:06:6d: 90:41:66:b6:53:b9:97:69:11:23:92:cb:af:e4:36:89:b4:1c: 76:0a:5a:e8:44:bd:4b:b2:98:bb:2e:3a:d1:76:86:6e:10:78: b8:5a:4c:f8 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VGOEUxMTAvBgNVBAUTKDhFMTZBMTA2QURGNDEzQUZGRkM1OEYxMDExOTI3NEY3 MDBDRkE1OTMwHhcNMjUwNDIxMDg1MzMyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA2MDc4Yy05ZjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbTnn5q1fHjUZQIFvLlmgbsLesHjLxtvy0yYWyK16NmEL03f/P4Tj+N5jClJ qghQRD2NFADvYuxp7uAWfBaeIjtQ1amzUx29W8rhRC3B9hL3iqFSPUejYTE5zPVi um1T5NtXvsT+Vy3rUe4TOF+Tcj5/FWOQS/x8ttNcFB7Hb/Zh2V/MH/PrPAWUMhmW VD4wc6m7NBnwEUC60avT/40hcboX1ra3tikgvd2i7Opf/6eFQM+Py2/drQmg8ZJC FNAKHSaKNhHVvonV+WyPhg/+xZpSxAZby2v4Qv7ikQod120UdunvbE08HnMGWCvM 6525r4oPQR2uHQoltPjXa/CozQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHhTIAP9 xACz0HaMOKjxolTAOilkMB8GA1UdIwQYMBaAFI4WoQat9BOv/8WPEBGSdPcAz6WT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUY4RS8yQUIyNDkxODE3 MUIxMUVEQjM1NDRENjhDNEY5QUUwMi9qaGFoQnEzMEU2X194WThRRVpKMDl3RFBw Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2poYWhCcTMwRTZfX3hZOFFFWkowOXdEUHBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0VGOEUvMkFCMjQ5MTgxNzFCMTFFREIzNTQ0RDY4QzRGOUFFMDIvOTJGOEVBRjQy OEY1MTFFREE4RDE2NTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnv7IwDQQCAAIwBwMFACQAl+AwDQYJKoZIhvcNAQELBQAD ggEBAC5CpC4MqhPQ5i/dgZ2YTBaYN0CoGwvrYQLM6CvuqcAeVrfMrj6cr1MImF0Z z7xxXaMWyKFjP65s8OLiz7zh5+t7o/rsyhuif76rN2XDvBrqqmWpuZid/zFEdZiN 0T0VmKKcnk0GLSJ+baB8yd2ZxTBRde9pCB2KoyqAIVrZmt/qIPE/6gmpQ8LVm+8a 1LxmtToBkJN+t3HS/zqsxBTOXwXrEHNylGA2nM72Sm6s9ev8TbvEI+6uXcd41EBa xDWPjwpnBfbT8EItpCvhyHBo7inWK1iLCPAGbZBBZrZTuZdpESOSy6/kNom0HHYK WuhEvUuymLsuOtF2hm4QeLhaTPg= -----END CERTIFICATE-----Generated at Sat Apr 26 13:04:11 2025 by rpki-client