$ rpki-client -vvf rpki.apnic.net/member_repository/A91987D0/18EB075242BE11EBBC1FEC1FC4F9AE02/02DAC07852C611ED845AB22BC4F9AE02.roa File: 02DAC07852C611ED845AB22BC4F9AE02.roa (raw, json) Hash identifier: 4rISf9Z0gDtlAylgqmkLRj4oHpOaisWHbdYvnEyJBHI= Subject key identifier: B7:C8:CC:3B:82:7D:4F:BF:7A:5A:86:68:AA:C8:1F:C1:CF:DE:47:1F Certificate issuer: /CN=A91987D0/serialNumber=95DF7A8100D979536873AC0FF99F6E472852BA99 Certificate serial: 06BD Authority key identifier: 95:DF:7A:81:00:D9:79:53:68:73:AC:0F:F9:9F:6E:47:28:52:BA:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ld96gQDZeVNoc6wP-Z9uRyhSupk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91987D0/18EB075242BE11EBBC1FEC1FC4F9AE02/02DAC07852C611ED845AB22BC4F9AE02.roa Signing time: Mon 06 Jan 2025 22:10:59 +0000 ROA not before: Mon 06 Jan 2025 22:10:59 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 141473 IP address blocks: 103.159.188.0/24 maxlen: 24 103.159.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91987D0/18EB075242BE11EBBC1FEC1FC4F9AE02/ld96gQDZeVNoc6wP-Z9uRyhSupk.crl rsync://rpki.apnic.net/member_repository/A91987D0/18EB075242BE11EBBC1FEC1FC4F9AE02/ld96gQDZeVNoc6wP-Z9uRyhSupk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ld96gQDZeVNoc6wP-Z9uRyhSupk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:46:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1725 (0x6bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91987D0, serialNumber=95DF7A8100D979536873AC0FF99F6E472852BA99 Validity Not Before: Jan 6 22:10:59 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=677c54f3-deee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:dd:4d:32:13:9a:9f:95:c7:59:68:84:88:f4: 56:73:0f:0b:1e:95:90:6f:59:e8:85:c7:25:fb:ed: 60:5e:be:b1:22:da:47:8c:da:7b:89:bd:e1:ef:6f: e8:2b:66:d9:1e:cf:f5:6d:ce:97:d8:85:4a:6b:a4: a3:8b:ed:f4:bc:f5:81:8d:23:8b:ea:a8:cb:f4:df: fa:ba:62:9a:3b:7a:31:d1:0f:3f:88:f5:db:e5:bb: 7d:ea:03:3a:d0:8c:0e:32:94:1f:ca:08:6a:b8:ab: 4b:4e:c6:f3:d3:7d:85:97:24:9d:5b:19:88:6f:52: 48:97:12:4d:a8:e2:dd:0d:da:b7:bb:98:f4:e0:02: 3f:cb:b0:95:c0:91:64:7e:33:0b:b3:5a:22:c0:2e: 18:38:94:dd:46:32:4c:54:a3:f5:96:72:6c:58:5f: 45:15:e8:6d:e4:8b:cd:1c:d4:30:a5:4a:50:b5:62: c7:da:e0:db:a7:25:cf:b1:2b:df:85:b6:f8:7e:05: ce:94:e9:9c:e2:a2:6d:04:cc:05:19:67:c6:b7:38: e2:8c:d7:13:a2:8e:92:dc:94:b3:05:7e:53:37:64: 51:e4:db:57:cc:81:b9:4e:98:67:87:a5:a2:ba:b5: 24:e9:3a:6c:26:db:4c:23:e4:21:51:b8:d7:e5:ad: cd:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:C8:CC:3B:82:7D:4F:BF:7A:5A:86:68:AA:C8:1F:C1:CF:DE:47:1F X509v3 Authority Key Identifier: keyid:95:DF:7A:81:00:D9:79:53:68:73:AC:0F:F9:9F:6E:47:28:52:BA:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91987D0/18EB075242BE11EBBC1FEC1FC4F9AE02/ld96gQDZeVNoc6wP-Z9uRyhSupk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ld96gQDZeVNoc6wP-Z9uRyhSupk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91987D0/18EB075242BE11EBBC1FEC1FC4F9AE02/02DAC07852C611ED845AB22BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.188.0/23 Signature Algorithm: sha256WithRSAEncryption ba:1b:4d:a2:5f:aa:94:60:2a:d3:16:79:df:c0:cc:5a:38:b5: 14:7f:98:1a:d8:19:ea:63:df:82:f0:62:e3:81:37:46:fa:60: 9c:a2:45:d3:94:6e:c9:47:3c:47:ac:a7:e5:5e:2d:1f:55:cd: 8e:05:b4:05:fd:fc:5d:e1:e9:27:f7:ac:a4:e3:76:e2:cf:ff: 47:6a:a8:43:7e:db:44:a2:b6:b9:cc:81:ac:53:0c:4e:bb:dd: 39:c5:c5:40:db:f2:0e:12:97:ee:46:3d:2a:96:26:74:75:e2: fe:23:8c:65:7e:d3:53:a6:41:f9:16:f7:4a:82:2f:4a:84:25: 40:8a:27:2c:d7:bb:69:8b:ce:b1:54:d0:a4:15:d0:db:05:6a: 9c:b6:a1:e3:79:0a:8d:d4:0f:56:0c:53:0c:ff:1d:65:15:20: 70:13:da:67:81:80:1d:c8:85:85:78:f5:58:ae:59:02:39:e9: 60:6b:e6:80:ab:83:df:e4:5d:83:77:c8:6d:ff:31:46:58:0c: ac:5e:cb:51:ff:26:49:7e:45:d7:e6:3f:2f:cb:71:bc:20:af: 08:95:62:8c:7d:88:2c:64:73:d8:ac:22:e3:8b:10:c6:36:02: f7:9d:3c:d9:5e:5f:c9:64:3f:0a:7d:56:57:42:c9:91:86:a1: 67:84:6d:9b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3RDAxMTAvBgNVBAUTKDk1REY3QTgxMDBEOTc5NTM2ODczQUMwRkY5OUY2RTQ3 Mjg1MkJBOTkwHhcNMjUwMTA2MjIxMDU5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdjNTRmMy1kZWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzN1NMhOan5XHWWiEiPRWcw8LHpWQb1nohccl++1gXr6xItpHjNp7ib3h72/o K2bZHs/1bc6X2IVKa6Sji+30vPWBjSOL6qjL9N/6umKaO3ox0Q8/iPXb5bt96gM6 0IwOMpQfyghquKtLTsbz032FlySdWxmIb1JIlxJNqOLdDdq3u5j04AI/y7CVwJFk fjMLs1oiwC4YOJTdRjJMVKP1lnJsWF9FFeht5IvNHNQwpUpQtWLH2uDbpyXPsSvf hbb4fgXOlOmc4qJtBMwFGWfGtzjijNcToo6S3JSzBX5TN2RR5NtXzIG5Tphnh6Wi urUk6TpsJttMI+QhUbjX5a3NNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLfIzDuC fU+/elqGaKrIH8HP3kcfMB8GA1UdIwQYMBaAFJXfeoEA2XlTaHOsD/mfbkcoUrqZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODdEMC8xOEVCMDc1MjQy QkUxMUVCQkMxRkVDMUZDNEY5QUUwMi9sZDk2Z1FEWmVWTm9jNndQLVo5dVJ5aFN1 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xkOTZnUURaZVZOb2M2d1AtWjl1UnloU3Vway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTg3RDAvMThFQjA3NTI0MkJFMTFFQkJDMUZFQzFGQzRGOUFFMDIvMDJEQUMwNzg1 MkM2MTFFRDg0NUFCMjJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnn7wwDQYJKoZIhvcNAQELBQADggEBALobTaJfqpRgKtMW ed/AzFo4tRR/mBrYGepj34LwYuOBN0b6YJyiRdOUbslHPEesp+VeLR9VzY4FtAX9 /F3h6Sf3rKTjduLP/0dqqEN+20SitrnMgaxTDE673TnFxUDb8g4Sl+5GPSqWJnR1 4v4jjGV+01OmQfkW90qCL0qEJUCKJyzXu2mLzrFU0KQV0NsFapy2oeN5Co3UD1YM Uwz/HWUVIHAT2meBgB3IhYV49ViuWQI56WBr5oCrg9/kXYN3yG3/MUZYDKxey1H/ Jkl+RdfmPy/LcbwgrwiVYox9iCxkc9isIuOLEMY2AvedPNleX8lkPwp9VldCyZGG oWeEbZs= -----END CERTIFICATE-----Generated at Sat Apr 26 07:59:13 2025 by rpki-client