$ rpki-client -vvf rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/87840F3AFBD111EFB4804F27C4F9AE02.roa File: 87840F3AFBD111EFB4804F27C4F9AE02.roa (raw, json) Hash identifier: 4ehbMo37a6ch/Exe1ear/YvsEg7kjNmAG4ZYn9dhULQ= Subject key identifier: 35:CC:03:87:F2:EF:40:00:9C:FB:1C:7D:67:BE:C8:C0:4A:CD:1C:3A Certificate issuer: /CN=A91524AF/serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Certificate serial: 045C Authority key identifier: 5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/87840F3AFBD111EFB4804F27C4F9AE02.roa Signing time: Tue 11 Mar 2025 04:38:06 +0000 ROA not before: Tue 11 Mar 2025 04:38:06 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 149039 IP address blocks: 103.177.72.0/23 maxlen: 23 2001:df0:1ec0::/48 maxlen: 56 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1116 (0x45c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91524AF, serialNumber=5C315DAFC53A82FDD62C72005C7644333BC0297A Validity Not Before: Mar 11 04:38:06 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67cfbe2e-f54e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a1:f2:b3:9b:12:18:b0:8c:07:54:41:e9:63: 28:c7:9c:92:d7:59:d0:74:21:5e:07:1d:b7:bd:d2: 53:ca:98:2e:bc:85:0a:21:cc:fd:b5:27:3f:12:d2: cc:21:63:9f:d4:c6:2e:da:18:9b:4e:a9:76:ab:77: 86:a1:ef:a7:04:ee:4f:64:e9:65:b0:30:64:b6:0a: a3:9e:a9:92:06:8a:e8:8c:14:55:c2:85:39:f9:e8: c3:9b:45:40:30:a7:de:24:9e:0f:0f:1c:4d:79:93: 51:0d:89:a2:59:39:36:f7:c8:df:55:85:e8:ca:77: 7d:57:96:32:ec:87:9c:7b:fc:c5:8a:fb:9d:d4:ab: ea:42:3f:28:e5:b6:3f:46:4c:52:ab:49:df:c9:9a: 52:ba:8e:2c:f1:c1:a3:e0:a4:13:85:1b:22:5f:17: 24:3f:71:23:5e:9c:83:f3:bb:68:ce:7d:45:c4:2f: 24:bc:3b:6e:d2:b1:d2:b8:aa:9d:a6:bf:09:00:61: ca:42:5e:02:36:ae:fc:50:fa:d7:c6:e9:e8:d1:6a: 51:03:2b:04:df:c9:13:c1:a1:41:db:c3:4e:e2:07: bc:e9:7b:28:3c:e7:11:77:76:dd:87:23:2a:01:b6: 92:b6:94:61:66:41:8c:36:d3:91:86:e7:64:f6:b9: a7:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:CC:03:87:F2:EF:40:00:9C:FB:1C:7D:67:BE:C8:C0:4A:CD:1C:3A X509v3 Authority Key Identifier: keyid:5C:31:5D:AF:C5:3A:82:FD:D6:2C:72:00:5C:76:44:33:3B:C0:29:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/XDFdr8U6gv3WLHIAXHZEMzvAKXo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDFdr8U6gv3WLHIAXHZEMzvAKXo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91524AF/76C7F0F451F611EC9E3C6C3AC4F9AE02/87840F3AFBD111EFB4804F27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.177.72.0/23 IPv6: 2001:df0:1ec0::/48 Signature Algorithm: sha256WithRSAEncryption 1b:5b:39:c2:17:e2:92:14:80:ab:3a:0c:c5:f0:d6:91:6e:d5: 95:3f:98:66:3a:7a:29:e8:c7:73:3c:13:3a:86:27:1b:8a:52: c2:ea:9c:95:ab:9b:18:cb:0a:f1:32:32:10:db:58:3f:be:7d: 79:46:cd:7d:b8:de:2f:87:dc:c3:bf:9e:e1:99:8b:3c:f3:4c: 78:a2:69:f3:ca:cd:1c:bb:d8:26:9d:27:d1:47:6c:95:28:c8: 02:21:ea:4a:d2:76:f3:0b:8c:2e:9c:f9:04:c5:9a:6a:e9:09: 81:9e:1d:b7:b2:e3:e0:27:c1:b7:e5:be:94:63:7d:68:0a:20: e3:2d:c5:6b:9c:58:09:bc:b3:b5:ba:a0:10:7e:ef:d2:63:af: f4:14:38:6b:04:ef:8f:08:93:30:cd:6a:9d:d6:7b:08:cd:23: f3:f8:a0:09:6c:48:1f:55:98:e4:76:27:81:5e:02:06:c8:2a: 78:ec:4a:36:f3:ae:fc:b1:c2:cf:cf:c7:33:e3:48:2a:e2:88: 8c:66:17:5c:f8:6e:2e:3a:1c:00:8b:11:8e:3f:b2:3e:4d:cc: f2:e0:bf:e2:c0:91:78:d8:e6:bc:df:bc:47:2e:4d:92:d9:4b: 20:0d:07:dd:04:73:d2:c0:38:7b:5a:97:94:3b:07:bf:a1:65: 11:21:54:2a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBFwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI0QUYxMTAvBgNVBAUTKDVDMzE1REFGQzUzQTgyRkRENjJDNzIwMDVDNzY0NDMz M0JDMDI5N0EwHhcNMjUwMzExMDQzODA2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NmYmUyZS1mNTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyaHys5sSGLCMB1RB6WMox5yS11nQdCFeBx23vdJTypguvIUKIcz9tSc/EtLM IWOf1MYu2hibTql2q3eGoe+nBO5PZOllsDBktgqjnqmSBorojBRVwoU5+ejDm0VA MKfeJJ4PDxxNeZNRDYmiWTk298jfVYXoynd9V5Yy7Iece/zFivud1KvqQj8o5bY/ RkxSq0nfyZpSuo4s8cGj4KQThRsiXxckP3EjXpyD87tozn1FxC8kvDtu0rHSuKqd pr8JAGHKQl4CNq78UPrXxuno0WpRAysE38kTwaFB28NO4ge86XsoPOcRd3bdhyMq AbaStpRhZkGMNtORhudk9rmntwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDXMA4fy 70AAnPscfWe+yMBKzRw6MB8GA1UdIwQYMBaAFFwxXa/FOoL91ixyAFx2RDM7wCl6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjRBRi83NkM3RjBGNDUx RjYxMUVDOUUzQzZDM0FDNEY5QUUwMi9YREZkcjhVNmd2M1dMSElBWEhaRU16dkFL WG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hERmRyOFU2Z3YzV0xISUFYSFpFTXp2QUtYby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTI0QUYvNzZDN0YwRjQ1MUY2MTFFQzlFM0M2QzNBQzRGOUFFMDIvODc4NDBGM0FG QkQxMTFFRkI0ODA0RjI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnsUgwDwQCAAIwCQMHACABDfAewDANBgkqhkiG9w0BAQsF AAOCAQEAG1s5whfikhSAqzoMxfDWkW7VlT+YZjp6KejHczwTOoYnG4pSwuqclaub GMsK8TIyENtYP759eUbNfbjeL4fcw7+e4ZmLPPNMeKJp88rNHLvYJp0n0UdslSjI AiHqStJ28wuMLpz5BMWaaukJgZ4dt7Lj4CfBt+W+lGN9aAog4y3Fa5xYCbyztbqg EH7v0mOv9BQ4awTvjwiTMM1qndZ7CM0j8/igCWxIH1WY5HYngV4CBsgqeOxKNvOu /LHCz8/HM+NIKuKIjGYXXPhuLjocAIsRjj+yPk3M8uC/4sCReNjmvN+8Ry5NktlL IA0H3QRz0sA4e1qXlDsHv6FlESFUKg== -----END CERTIFICATE-----Generated at Sat Apr 26 12:25:23 2025 by rpki-client