$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/8AAEC8AEE48D11EF98A3562BC4F9AE02.roa File: 8AAEC8AEE48D11EF98A3562BC4F9AE02.roa (raw, json) Hash identifier: 8qV4xNEzC9YwAyrCmGEDqkkT1vswlJKt6VLA8n7jDac= Subject key identifier: 73:7F:20:A3:51:D8:49:5F:60:78:8F:82:52:12:79:74:6E:32:4B:85 Certificate issuer: /CN=A91A0BEC/serialNumber=277F6862684072B62A156DDF75DD7725C38F51D0 Certificate serial: 0A2F Authority key identifier: 27:7F:68:62:68:40:72:B6:2A:15:6D:DF:75:DD:77:25:C3:8F:51:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J39oYmhAcrYqFW3fdd13JcOPUdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/8AAEC8AEE48D11EF98A3562BC4F9AE02.roa Signing time: Thu 06 Mar 2025 20:10:08 +0000 ROA not before: Thu 06 Mar 2025 20:10:08 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 150774 IP address blocks: 103.133.174.0/23 maxlen: 23 103.133.174.0/24 maxlen: 24 103.133.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.crl rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J39oYmhAcrYqFW3fdd13JcOPUdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:38:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2607 (0xa2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0BEC, serialNumber=277F6862684072B62A156DDF75DD7725C38F51D0 Validity Not Before: Mar 6 20:10:08 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ca0120-0aa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:2b:fa:7f:42:dc:34:65:ee:ab:0a:66:b9:fd: 0a:f5:af:ea:da:b6:df:28:20:83:34:eb:06:17:53: 60:bc:f3:44:d3:cb:80:f3:18:76:7a:bd:72:48:ba: 5c:15:66:2a:2b:c0:0a:5e:a0:36:ab:00:28:a1:ea: 6a:a7:f9:15:0b:99:35:67:ae:62:73:88:b8:8b:15: 69:9d:27:94:98:80:cf:26:41:6c:4b:2e:0f:39:af: 6f:ce:ca:bd:f7:c6:e9:98:70:73:a1:10:44:fa:ae: 4d:8e:fa:7c:e1:d0:4e:8a:fb:d2:8c:bd:6c:27:60: 4e:be:92:9e:11:0d:aa:b0:84:eb:e0:88:0b:01:21: c9:3d:fe:d5:69:57:1e:37:19:03:2f:66:49:0e:ad: 5c:fa:41:f3:cc:70:8c:0e:39:4e:4c:6d:ef:17:fa: ce:e1:0a:72:df:5a:e5:86:37:ae:3b:d5:08:8b:b8: 05:3f:2e:ec:b1:76:12:0a:9f:bb:a9:75:a1:f7:6b: f5:8f:c2:53:34:cf:17:6f:c1:b1:e9:de:48:41:4f: ff:89:7e:fe:31:85:5d:63:54:d9:a6:76:66:bb:29: c1:1c:52:3d:c7:54:d7:1d:36:8e:2d:3e:6f:f9:d5: 68:32:8f:d8:f6:40:1e:fe:c1:ad:45:c8:56:14:b5: 6f:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:7F:20:A3:51:D8:49:5F:60:78:8F:82:52:12:79:74:6E:32:4B:85 X509v3 Authority Key Identifier: keyid:27:7F:68:62:68:40:72:B6:2A:15:6D:DF:75:DD:77:25:C3:8F:51:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/J39oYmhAcrYqFW3fdd13JcOPUdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J39oYmhAcrYqFW3fdd13JcOPUdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0BEC/7B7F28E2677E11EA8BD8262DC4F9AE02/8AAEC8AEE48D11EF98A3562BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.174.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:31:5f:c2:cd:a3:19:55:89:6a:d3:dd:d2:ae:b5:c5:2b:3f: 41:65:f2:13:68:37:be:40:4f:64:2b:ff:a8:8f:39:3f:6b:76: dd:26:50:36:41:3f:5e:d3:62:01:10:fd:a9:fa:47:d4:cd:36: 2e:fa:c6:90:12:2f:44:6a:6d:65:eb:ea:26:db:3d:a5:78:4f: 20:17:e2:8c:73:33:5b:69:8d:6d:5d:d7:5d:d1:7d:66:a8:e9: 46:55:27:4a:19:1e:4e:32:3f:a9:61:59:7b:53:5d:ef:47:9e: 07:92:0e:46:a4:da:97:f5:5a:3d:4f:4f:b0:60:0e:f1:54:ef: 4a:fd:59:79:1b:8d:1e:ae:b2:7c:57:a4:54:b5:14:4e:a5:f2: d6:17:84:03:52:0a:1c:3e:6e:80:4a:fc:f4:67:72:90:2d:86: 12:59:e8:70:63:10:c2:ec:e4:5f:5c:bd:ab:6d:fa:ab:0b:90: bf:ef:c0:63:14:0c:ac:6d:6c:d6:56:89:76:03:04:19:9f:ee: 4e:cc:ea:41:57:3c:b8:c0:14:05:f2:09:06:6b:33:3a:d8:4a: df:05:af:ca:40:a6:b2:02:7d:5f:18:ed:8c:f3:f9:5d:b6:b8: 99:07:52:2b:db:f4:e7:90:6b:ac:c2:cc:d7:ad:99:1d:23:c5: e8:f9:8e:3f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTBCRUMxMTAvBgNVBAUTKDI3N0Y2ODYyNjg0MDcyQjYyQTE1NkRERjc1REQ3NzI1 QzM4RjUxRDAwHhcNMjUwMzA2MjAxMDA4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NhMDEyMC0wYWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlCv6f0LcNGXuqwpmuf0K9a/q2rbfKCCDNOsGF1NgvPNE08uA8xh2er1ySLpc FWYqK8AKXqA2qwAooepqp/kVC5k1Z65ic4i4ixVpnSeUmIDPJkFsSy4POa9vzsq9 98bpmHBzoRBE+q5Njvp84dBOivvSjL1sJ2BOvpKeEQ2qsITr4IgLASHJPf7VaVce NxkDL2ZJDq1c+kHzzHCMDjlOTG3vF/rO4Qpy31rlhjeuO9UIi7gFPy7ssXYSCp+7 qXWh92v1j8JTNM8Xb8Gx6d5IQU//iX7+MYVdY1TZpnZmuynBHFI9x1TXHTaOLT5v +dVoMo/Y9kAe/sGtRchWFLVvjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHN/IKNR 2ElfYHiPglISeXRuMkuFMB8GA1UdIwQYMBaAFCd/aGJoQHK2KhVt33XddyXDj1HQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMEJFQy83QjdGMjhFMjY3 N0UxMUVBOEJEODI2MkRDNEY5QUUwMi9KMzlvWW1oQWNyWXFGVzNmZGQxM0pjT1BV ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ozOW9ZbWhBY3JZcUZXM2ZkZDEzSmNPUFVkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTBCRUMvN0I3RjI4RTI2NzdFMTFFQThCRDgyNjJEQzRGOUFFMDIvOEFBRUM4QUVF NDhEMTFFRjk4QTM1NjJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnha4wDQYJKoZIhvcNAQELBQADggEBAJ0xX8LNoxlViWrT 3dKutcUrP0Fl8hNoN75AT2Qr/6iPOT9rdt0mUDZBP17TYgEQ/an6R9TNNi76xpAS L0RqbWXr6ibbPaV4TyAX4oxzM1tpjW1d113RfWao6UZVJ0oZHk4yP6lhWXtTXe9H ngeSDkak2pf1Wj1PT7BgDvFU70r9WXkbjR6usnxXpFS1FE6l8tYXhANSChw+boBK /PRncpAthhJZ6HBjEMLs5F9cvatt+qsLkL/vwGMUDKxtbNZWiXYDBBmf7k7M6kFX PLjAFAXyCQZrMzrYSt8Fr8pAprICfV8Y7Yzz+V22uJkHUivb9OeQa6zCzNetmR0j xej5jj8= -----END CERTIFICATE-----Generated at Sat Apr 26 15:04:32 2025 by rpki-client