$ rpki-client -vvf rpki.apnic.net/member_repository/A91456E2/A1FACBFC520511EC936AAB22C4F9AE02/28E9FEB86F0511EDAF35FA28C4F9AE02.roa File: 28E9FEB86F0511EDAF35FA28C4F9AE02.roa (raw, json) Hash identifier: HeEMxWbEp596Nl2YyjBu7WmXC2Fx4dfVT+MEH+2m8Ic= Subject key identifier: C3:C9:8E:E7:40:2D:26:7F:09:C9:63:A7:A1:12:FE:A0:5C:76:28:94 Certificate issuer: /CN=A91456E2/serialNumber=A6120AE99AAADC00A35A0C8BF5165E0B63A38A1E Certificate serial: 0421 Authority key identifier: A6:12:0A:E9:9A:AA:DC:00:A3:5A:0C:8B:F5:16:5E:0B:63:A3:8A:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phIK6Zqq3ACjWgyL9RZeC2Ojih4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91456E2/A1FACBFC520511EC936AAB22C4F9AE02/28E9FEB86F0511EDAF35FA28C4F9AE02.roa Signing time: Fri 31 Jan 2025 00:44:45 +0000 ROA not before: Fri 31 Jan 2025 00:44:45 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 149041 IP address blocks: 103.177.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91456E2/A1FACBFC520511EC936AAB22C4F9AE02/phIK6Zqq3ACjWgyL9RZeC2Ojih4.crl rsync://rpki.apnic.net/member_repository/A91456E2/A1FACBFC520511EC936AAB22C4F9AE02/phIK6Zqq3ACjWgyL9RZeC2Ojih4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phIK6Zqq3ACjWgyL9RZeC2Ojih4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1057 (0x421) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91456E2, serialNumber=A6120AE99AAADC00A35A0C8BF5165E0B63A38A1E Validity Not Before: Jan 31 00:44:45 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=679c1cfd-0aa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a0:f1:2b:ac:15:18:88:3d:72:dd:2c:30:b6: 5e:50:79:cc:10:86:82:2b:69:17:ca:25:db:6a:79: 33:49:e6:27:41:a1:ca:a2:b8:16:ab:ad:bc:e9:c2: fe:0a:90:0d:25:f0:24:c0:ef:19:f3:9a:bf:1c:1c: c1:3b:7b:25:05:13:80:ca:a2:69:24:26:91:38:41: 93:cb:da:d7:61:82:35:22:6b:36:62:5b:58:59:6b: ef:25:ce:79:c7:a6:3e:f1:a2:79:94:61:bc:23:79: 97:20:70:a3:64:b1:34:08:43:ba:16:2a:65:75:f4: 5e:9a:10:82:7b:a9:18:a8:8f:36:7f:96:ec:6d:5b: 5c:52:bd:e2:4d:f7:55:f4:56:11:a2:46:cf:44:a6: 9c:77:c5:1c:5c:af:a3:51:79:5d:9c:2e:a0:2f:1f: 6f:4c:41:5e:e3:77:87:1b:b5:0f:c6:95:2e:b0:32: 65:62:6a:09:7e:8a:17:4b:64:05:e5:b4:dd:23:24: 00:9a:eb:71:cc:38:73:90:7e:64:27:f0:be:11:f6: 99:30:90:ce:51:3e:3c:3b:08:33:68:5a:e5:93:ce: e7:7d:3c:ff:a4:15:fc:55:4d:59:d8:76:c8:37:07: 0b:70:c3:dc:22:12:95:4f:11:99:79:0e:60:cf:8d: 85:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:C9:8E:E7:40:2D:26:7F:09:C9:63:A7:A1:12:FE:A0:5C:76:28:94 X509v3 Authority Key Identifier: keyid:A6:12:0A:E9:9A:AA:DC:00:A3:5A:0C:8B:F5:16:5E:0B:63:A3:8A:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91456E2/A1FACBFC520511EC936AAB22C4F9AE02/phIK6Zqq3ACjWgyL9RZeC2Ojih4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phIK6Zqq3ACjWgyL9RZeC2Ojih4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91456E2/A1FACBFC520511EC936AAB22C4F9AE02/28E9FEB86F0511EDAF35FA28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.177.74.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:95:20:30:87:e9:c5:32:68:6a:e8:5b:0b:fd:d7:91:2d:d4: 3d:3d:7f:31:c6:49:17:ae:4d:4c:69:97:b7:05:d4:5c:8e:3e: 64:49:97:9b:4a:12:c3:4b:ac:92:ef:14:6b:7c:a2:42:80:6f: 85:da:2d:1c:e2:3c:b3:d2:1a:8f:0b:18:e5:21:64:f0:ca:e3: e8:8d:32:f8:3d:c4:7e:f2:53:ab:44:b8:0d:65:b8:23:70:a5: 11:cd:ad:44:0c:e0:ca:35:4d:53:5d:5a:dd:6e:d8:89:90:e9: c7:35:22:a7:51:fa:95:19:84:d1:bd:c8:b6:4c:98:46:57:60: 9d:c6:a4:1f:ad:c2:45:8a:db:cb:d5:24:c9:8d:87:8a:79:bd: e0:a9:02:a9:ab:9e:c3:be:08:81:a4:a9:72:e7:c5:1d:4d:f4: 4e:64:12:61:a3:7a:20:09:06:2f:93:7d:d7:60:73:17:47:09: 46:12:51:4e:2f:c7:26:f7:90:1d:de:7b:44:f5:ee:36:53:e6: 2f:ff:c7:c2:70:dd:6a:3b:25:08:5c:82:bc:43:98:81:99:65: 99:52:0b:da:9a:64:61:c0:f4:17:c3:47:d5:a4:38:00:0b:66: ea:78:da:17:7b:77:e2:48:3d:e4:e5:5e:27:bd:51:a4:81:79: f5:6d:04:9e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU2RTIxMTAvBgNVBAUTKEE2MTIwQUU5OUFBQURDMDBBMzVBMEM4QkY1MTY1RTBC NjNBMzhBMUUwHhcNMjUwMTMxMDA0NDQ1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzljMWNmZC0wYWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnqDxK6wVGIg9ct0sMLZeUHnMEIaCK2kXyiXbankzSeYnQaHKorgWq6286cL+ CpANJfAkwO8Z85q/HBzBO3slBROAyqJpJCaROEGTy9rXYYI1Ims2YltYWWvvJc55 x6Y+8aJ5lGG8I3mXIHCjZLE0CEO6FipldfRemhCCe6kYqI82f5bsbVtcUr3iTfdV 9FYRokbPRKacd8UcXK+jUXldnC6gLx9vTEFe43eHG7UPxpUusDJlYmoJfooXS2QF 5bTdIyQAmutxzDhzkH5kJ/C+EfaZMJDOUT48OwgzaFrlk87nfTz/pBX8VU1Z2HbI NwcLcMPcIhKVTxGZeQ5gz42FxwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMPJjudA LSZ/Ccljp6ES/qBcdiiUMB8GA1UdIwQYMBaAFKYSCumaqtwAo1oMi/UWXgtjo4oe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTZFMi9BMUZBQ0JGQzUy MDUxMUVDOTM2QUFCMjJDNEY5QUUwMi9waElLNlpxcTNBQ2pXZ3lMOVJaZUMyT2pp aDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BoSUs2WnFxM0FDaldneUw5UlplQzJPamloNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU2RTIvQTFGQUNCRkM1MjA1MTFFQzkzNkFBQjIyQzRGOUFFMDIvMjhFOUZFQjg2 RjA1MTFFREFGMzVGQTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnsUowDQYJKoZIhvcNAQELBQADggEBAIqVIDCH6cUyaGro Wwv915Et1D09fzHGSReuTUxpl7cF1FyOPmRJl5tKEsNLrJLvFGt8okKAb4XaLRzi PLPSGo8LGOUhZPDK4+iNMvg9xH7yU6tEuA1luCNwpRHNrUQM4Mo1TVNdWt1u2ImQ 6cc1IqdR+pUZhNG9yLZMmEZXYJ3GpB+twkWK28vVJMmNh4p5veCpAqmrnsO+CIGk qXLnxR1N9E5kEmGjeiAJBi+TfddgcxdHCUYSUU4vxyb3kB3ee0T17jZT5i//x8Jw 3Wo7JQhcgrxDmIGZZZlSC9qaZGHA9BfDR9WkOAALZup42hd7d+JIPeTlXie9UaSB efVtBJ4= -----END CERTIFICATE-----Generated at Sat Apr 26 13:38:41 2025 by rpki-client