$ rpki-client -vvf rpki.apnic.net/member_repository/A91567D5/DEFCA452B41B11EDB6C8DD67C4F9AE02/C47523F0509D11EFA81FC32AC4F9AE02.roa File: C47523F0509D11EFA81FC32AC4F9AE02.roa (raw, json) Hash identifier: my2I25rVWAI3mCpxgHNM4W2V83/AlwvIt+xbjzG24Hw= Subject key identifier: D5:01:D3:D2:DD:2F:DA:39:2F:E4:FF:12:61:15:13:99:92:3C:0A:2D Certificate issuer: /CN=A91567D5/serialNumber=31DC4B6C32D7B5E5F3A860173885A645F4FC0152 Certificate serial: 88 Authority key identifier: 31:DC:4B:6C:32:D7:B5:E5:F3:A8:60:17:38:85:A6:45:F4:FC:01:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdxLbDLXteXzqGAXOIWmRfT8AVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91567D5/DEFCA452B41B11EDB6C8DD67C4F9AE02/C47523F0509D11EFA81FC32AC4F9AE02.roa Signing time: Thu 03 Apr 2025 02:59:28 +0000 ROA not before: Thu 03 Apr 2025 02:59:28 +0000 ROA not after: Fri 01 Aug 2025 00:00:00 +0000 asID: 150734 IP address blocks: 103.151.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91567D5/DEFCA452B41B11EDB6C8DD67C4F9AE02/MdxLbDLXteXzqGAXOIWmRfT8AVI.crl rsync://rpki.apnic.net/member_repository/A91567D5/DEFCA452B41B11EDB6C8DD67C4F9AE02/MdxLbDLXteXzqGAXOIWmRfT8AVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdxLbDLXteXzqGAXOIWmRfT8AVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:34:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91567D5, serialNumber=31DC4B6C32D7B5E5F3A860173885A645F4FC0152 Validity Not Before: Apr 3 02:59:28 2025 GMT Not After : Aug 1 00:00:00 2025 GMT Subject: CN=67edf990-4293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:14:17:db:aa:88:3d:4e:16:d3:18:cc:a0:bc: c1:36:e1:94:7d:b6:bd:98:f3:6b:ca:90:63:61:7b: 1c:89:ad:8e:31:cf:11:b0:4c:df:b4:20:59:3b:65: f4:85:7e:2d:34:21:31:27:1e:46:d5:49:73:9d:83: d9:14:46:f6:40:61:ac:57:af:0d:09:c2:50:4d:e4: 8f:07:13:30:4d:63:4d:24:9e:4b:bd:32:34:b9:45: 18:18:17:65:c5:4f:c3:9a:9e:2c:2a:aa:7a:16:83: bc:0a:96:e5:ad:93:de:6e:2d:09:3b:98:24:73:e9: 0f:9f:67:98:65:c6:42:55:0a:0a:c4:65:8a:f0:e9: e5:57:84:be:32:d6:c9:93:c7:6c:f1:f4:6c:f7:bc: 02:1c:50:55:c8:d5:31:7a:00:8f:4c:a7:33:0c:18: 20:25:e7:36:33:fd:83:80:fc:f7:9e:0e:ef:be:7b: 66:7c:ef:24:5a:7a:67:3e:17:32:3b:93:ea:34:d4: f4:cb:8d:e9:06:47:3a:50:58:44:53:b0:a6:0a:42: c4:c4:3e:14:5d:49:20:12:82:e3:cd:b3:4e:2d:64: 1b:38:99:46:c4:1f:1a:25:32:c8:ed:c8:df:a2:45: b5:4a:39:79:67:b1:f0:95:c0:b6:f3:43:80:b8:1e: b9:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:01:D3:D2:DD:2F:DA:39:2F:E4:FF:12:61:15:13:99:92:3C:0A:2D X509v3 Authority Key Identifier: keyid:31:DC:4B:6C:32:D7:B5:E5:F3:A8:60:17:38:85:A6:45:F4:FC:01:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91567D5/DEFCA452B41B11EDB6C8DD67C4F9AE02/MdxLbDLXteXzqGAXOIWmRfT8AVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdxLbDLXteXzqGAXOIWmRfT8AVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91567D5/DEFCA452B41B11EDB6C8DD67C4F9AE02/C47523F0509D11EFA81FC32AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.12.0/24 Signature Algorithm: sha256WithRSAEncryption 67:9e:f8:a1:49:8c:d7:09:3a:05:16:27:19:a1:4e:55:31:b8: 84:45:f2:54:51:f0:30:d0:a7:fe:48:52:fe:67:6b:92:8b:a2: 59:16:51:c3:9d:c6:74:7b:8f:79:ff:ed:ce:d0:8c:22:b1:b5: 57:7d:13:ad:00:97:64:e8:93:70:a7:36:a0:e0:e9:24:e6:46: 34:34:18:16:12:4d:9e:08:3c:a6:87:58:a7:cd:03:2d:16:ff: 33:6b:df:8d:9e:0a:b8:3f:f1:f3:74:a2:99:d1:98:51:d6:b8: a6:5b:44:68:f0:78:ac:dd:86:fa:f2:2f:3a:b4:63:07:53:c0: a4:ec:b1:7e:0f:00:da:fa:d0:ec:4f:aa:39:0e:9a:4c:17:98: 14:1c:db:f7:39:d0:f0:88:c6:28:74:68:5e:bd:c1:34:1d:cb: cd:10:7c:c4:c2:96:2d:2e:81:99:de:aa:ae:4d:06:a2:e9:61: 23:0c:1b:61:6b:55:75:0c:81:fb:43:4b:a3:b4:04:28:95:37: 2a:55:7b:3c:86:83:db:e5:7e:05:6d:69:c2:cb:74:74:3e:ff: b9:b6:e1:db:19:d0:0d:47:5c:3d:dd:07:1c:e0:3c:17:9b:0d: 46:5d:3b:00:ec:a6:ff:11:e8:a6:64:b5:05:bc:49:f0:19:33: 74:73:97:1f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY3RDUxMTAvBgNVBAUTKDMxREM0QjZDMzJEN0I1RTVGM0E4NjAxNzM4ODVBNjQ1 RjRGQzAxNTIwHhcNMjUwNDAzMDI1OTI4WhcNMjUwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkZjk5MC00MjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhQX26qIPU4W0xjMoLzBNuGUfba9mPNrypBjYXscia2OMc8RsEzftCBZO2X0 hX4tNCExJx5G1UlznYPZFEb2QGGsV68NCcJQTeSPBxMwTWNNJJ5LvTI0uUUYGBdl xU/Dmp4sKqp6FoO8CpblrZPebi0JO5gkc+kPn2eYZcZCVQoKxGWK8OnlV4S+MtbJ k8ds8fRs97wCHFBVyNUxegCPTKczDBggJec2M/2DgPz3ng7vvntmfO8kWnpnPhcy O5PqNNT0y43pBkc6UFhEU7CmCkLExD4UXUkgEoLjzbNOLWQbOJlGxB8aJTLI7cjf okW1Sjl5Z7HwlcC280OAuB65bQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNUB09Ld L9o5L+T/EmEVE5mSPAotMB8GA1UdIwQYMBaAFDHcS2wy17Xl86hgFziFpkX0/AFS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjdENS9ERUZDQTQ1MkI0 MUIxMUVEQjZDOERENjdDNEY5QUUwMi9NZHhMYkRMWHRlWHpxR0FYT0lXbVJmVDhB VkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01keExiRExYdGVYenFHQVhPSVdtUmZUOEFWSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTY3RDUvREVGQ0E0NTJCNDFCMTFFREI2QzhERDY3QzRGOUFFMDIvQzQ3NTIzRjA1 MDlEMTFFRkE4MUZDMzJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlwwwDQYJKoZIhvcNAQELBQADggEBAGee+KFJjNcJOgUW JxmhTlUxuIRF8lRR8DDQp/5IUv5na5KLolkWUcOdxnR7j3n/7c7QjCKxtVd9E60A l2Tok3CnNqDg6STmRjQ0GBYSTZ4IPKaHWKfNAy0W/zNr342eCrg/8fN0opnRmFHW uKZbRGjweKzdhvryLzq0YwdTwKTssX4PANr60OxPqjkOmkwXmBQc2/c50PCIxih0 aF69wTQdy80QfMTCli0ugZneqq5NBqLpYSMMG2FrVXUMgftDS6O0BCiVNypVezyG g9vlfgVtacLLdHQ+/7m24dsZ0A1HXD3dBxzgPBebDUZdOwDspv8R6KZktQW8SfAZ M3Rzlx8= -----END CERTIFICATE-----Generated at Sat Apr 26 15:04:36 2025 by rpki-client