$ rpki-client -vvf rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/2DE4C8AA9B6111EF99A97B52C4F9AE02.roa File: 2DE4C8AA9B6111EF99A97B52C4F9AE02.roa (raw, json) Hash identifier: VhDwcUHjhyil4F0v9hLHnTY4dEx10IiI44izoTq8eNs= Subject key identifier: 61:E2:8D:18:5D:5B:B9:98:7C:91:A0:39:C8:53:A7:76:5C:49:44:4D Certificate issuer: /CN=A918A96A/serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Certificate serial: 034F Authority key identifier: F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/2DE4C8AA9B6111EF99A97B52C4F9AE02.roa Signing time: Thu 03 Apr 2025 01:27:13 +0000 ROA not before: Thu 03 Apr 2025 01:27:13 +0000 ROA not after: Fri 01 Aug 2025 00:00:00 +0000 asID: 136520 IP address blocks: 103.91.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:51:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 847 (0x34f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A96A, serialNumber=F02245353FC1F194A9022A4AC01977DE5FDE36F9 Validity Not Before: Apr 3 01:27:13 2025 GMT Not After : Aug 1 00:00:00 2025 GMT Subject: CN=67ede3f1-4396 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:6c:86:fd:c7:b5:07:8f:50:a0:d5:2f:03:af: 59:55:5a:b5:01:3d:cb:c2:9f:83:79:9e:98:14:a1: a3:2c:f1:4a:27:0b:b7:94:90:85:ce:46:36:87:71: ca:2a:35:ad:fe:a6:29:37:62:dc:4b:8b:c0:b4:a5: 5a:14:01:de:6a:4c:c1:85:47:06:b7:8a:2a:d5:b9: 2e:68:c3:0f:ff:c5:cc:9d:f0:6f:21:45:94:6a:fa: a5:6c:76:25:11:60:57:5d:21:71:25:92:5b:96:3d: 4f:ea:e0:1c:aa:01:57:f7:49:5e:67:03:05:b6:7a: ae:a1:d7:aa:2d:4d:21:93:16:2a:ed:42:16:c1:10: 3c:ed:59:17:d5:a3:18:2a:6a:ce:68:08:31:7a:3c: 91:29:69:b3:24:91:6d:d8:4e:b3:29:74:d6:80:24: 58:f2:89:40:f3:bb:8a:5a:12:6f:6b:d9:73:10:41: b4:56:6a:1f:53:a5:1c:be:c5:0d:d1:51:67:7e:69: 75:2c:a9:b7:f0:5e:5b:c0:25:f5:aa:0e:08:07:7c: c8:b3:9f:32:c1:a3:28:d8:82:6a:e3:01:93:41:9d: 18:45:bb:83:bd:7f:f5:ca:1d:6c:0b:ba:11:89:a0: 09:b1:d0:17:33:b8:2b:32:66:3c:62:09:f5:6b:e8: 0c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:E2:8D:18:5D:5B:B9:98:7C:91:A0:39:C8:53:A7:76:5C:49:44:4D X509v3 Authority Key Identifier: keyid:F0:22:45:35:3F:C1:F1:94:A9:02:2A:4A:C0:19:77:DE:5F:DE:36:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/8CJFNT_B8ZSpAipKwBl33l_eNvk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8CJFNT_B8ZSpAipKwBl33l_eNvk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A96A/28785F60BFBF11ECAED48C71C4F9AE02/2DE4C8AA9B6111EF99A97B52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.194.0/24 Signature Algorithm: sha256WithRSAEncryption 21:b0:45:17:89:cc:43:7c:be:e0:6c:da:37:b6:01:39:95:72: 2f:bd:f1:c3:73:0b:8d:b1:77:3c:64:a7:6d:12:3c:1b:ce:b9: 92:8f:99:a8:e7:83:27:7a:87:23:37:de:26:d3:06:9d:9e:55: 81:00:98:22:2d:4a:8a:8f:8d:d9:a0:e5:f7:c0:cd:5c:21:21: 5d:4c:78:70:85:b6:5e:5a:b1:44:4a:87:cf:9e:45:3c:1d:c4: 62:94:80:7c:a2:01:b3:c2:04:38:5d:31:08:36:35:25:0c:f4: fe:7d:1a:93:61:af:e3:df:7a:ff:e3:d9:ef:6c:a2:db:8c:f6: d7:3d:a1:7e:e3:59:23:7b:fc:9d:d2:dd:4c:63:05:d7:55:67: 3f:fa:06:d5:ee:f1:fd:84:61:b1:11:80:8d:6d:b2:ed:ef:d5: 58:18:a6:a2:e8:cc:67:45:34:58:46:fc:c2:8f:50:5a:dd:77: a1:cf:53:9d:e7:72:55:5a:18:11:5c:d0:ef:7b:5a:a1:50:62: 5b:f9:eb:d0:c8:e1:3e:96:ca:63:3a:22:a9:23:cd:0a:18:58: fc:f6:60:f7:82:ce:b9:21:2a:07:76:92:fc:20:b3:45:39:70: 0a:c1:06:ec:49:d9:fa:98:7e:6b:b1:3f:51:39:9d:57:ad:c4: 41:73:e7:72 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE5NkExMTAvBgNVBAUTKEYwMjI0NTM1M0ZDMUYxOTRBOTAyMkE0QUMwMTk3N0RF NUZERTM2RjkwHhcNMjUwNDAzMDEyNzEzWhcNMjUwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkZTNmMS00Mzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7WyG/ce1B49QoNUvA69ZVVq1AT3Lwp+DeZ6YFKGjLPFKJwu3lJCFzkY2h3HK KjWt/qYpN2LcS4vAtKVaFAHeakzBhUcGt4oq1bkuaMMP/8XMnfBvIUWUavqlbHYl EWBXXSFxJZJblj1P6uAcqgFX90leZwMFtnquodeqLU0hkxYq7UIWwRA87VkX1aMY KmrOaAgxejyRKWmzJJFt2E6zKXTWgCRY8olA87uKWhJva9lzEEG0VmofU6UcvsUN 0VFnfml1LKm38F5bwCX1qg4IB3zIs58ywaMo2IJq4wGTQZ0YRbuDvX/1yh1sC7oR iaAJsdAXM7grMmY8Ygn1a+gMSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGHijRhd W7mYfJGgOchTp3ZcSURNMB8GA1UdIwQYMBaAFPAiRTU/wfGUqQIqSsAZd95f3jb5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTk2QS8yODc4NUY2MEJG QkYxMUVDQUVENDhDNzFDNEY5QUUwMi84Q0pGTlRfQjhaU3BBaXBLd0JsMzNsX2VO dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDSkZOVF9COFpTcEFpcEt3QmwzM2xfZU52ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEE5NkEvMjg3ODVGNjBCRkJGMTFFQ0FFRDQ4QzcxQzRGOUFFMDIvMkRFNEM4QUE5 QjYxMTFFRjk5QTk3QjUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnW8IwDQYJKoZIhvcNAQELBQADggEBACGwRReJzEN8vuBs 2je2ATmVci+98cNzC42xdzxkp20SPBvOuZKPmajngyd6hyM33ibTBp2eVYEAmCIt SoqPjdmg5ffAzVwhIV1MeHCFtl5asURKh8+eRTwdxGKUgHyiAbPCBDhdMQg2NSUM 9P59GpNhr+Pfev/j2e9sotuM9tc9oX7jWSN7/J3S3UxjBddVZz/6BtXu8f2EYbER gI1tsu3v1VgYpqLozGdFNFhG/MKPUFrdd6HPU53nclVaGBFc0O97WqFQYlv569DI 4T6WymM6IqkjzQoYWPz2YPeCzrkhKgd2kvwgs0U5cArBBuxJ2fqYfmuxP1E5nVet xEFz53I= -----END CERTIFICATE-----Generated at Sat Apr 26 09:08:48 2025 by rpki-client