$ rpki-client -vvf rpki.apnic.net/member_repository/A91B43EE/4A8ADAC0CD4611EDB45CCD66C4F9AE02/5192AB7ED47811EEB5A6D21AC4F9AE02.roa File: 5192AB7ED47811EEB5A6D21AC4F9AE02.roa (raw, json) Hash identifier: xW/u71nn0KALe/rW4D+40PFnNAvvVtQKyJcvAPM8UVs= Subject key identifier: E2:5A:EE:4C:14:83:FD:5A:D8:A2:99:77:65:FE:AF:B8:75:19:7B:C6 Certificate issuer: /CN=A91B43EE/serialNumber=02BA63B5862E2709B90D16B7DC2EB5CFC8A2E684 Certificate serial: 0191 Authority key identifier: 02:BA:63:B5:86:2E:27:09:B9:0D:16:B7:DC:2E:B5:CF:C8:A2:E6:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ArpjtYYuJwm5DRa33C61z8ii5oQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B43EE/4A8ADAC0CD4611EDB45CCD66C4F9AE02/5192AB7ED47811EEB5A6D21AC4F9AE02.roa Signing time: Mon 07 Apr 2025 02:40:25 +0000 ROA not before: Mon 07 Apr 2025 02:40:25 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152479 IP address blocks: 103.224.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B43EE/4A8ADAC0CD4611EDB45CCD66C4F9AE02/ArpjtYYuJwm5DRa33C61z8ii5oQ.crl rsync://rpki.apnic.net/member_repository/A91B43EE/4A8ADAC0CD4611EDB45CCD66C4F9AE02/ArpjtYYuJwm5DRa33C61z8ii5oQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ArpjtYYuJwm5DRa33C61z8ii5oQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:45:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B43EE, serialNumber=02BA63B5862E2709B90D16B7DC2EB5CFC8A2E684 Validity Not Before: Apr 7 02:40:25 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f33b19-830b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:39:5b:17:c7:3d:32:c4:de:56:df:17:ce:ed: ce:1b:73:98:aa:d8:e7:0e:94:7e:f3:f5:54:75:f2: 1f:50:6a:29:e7:93:7c:a1:4a:db:3a:e2:d2:34:09: 70:46:69:f4:79:07:3c:43:ef:ea:04:2b:2a:79:ef: 64:ac:7e:13:af:5f:03:32:dc:a6:2d:e9:90:3a:b9: 8a:92:14:78:5d:d1:e0:d9:f0:82:cf:45:2d:d9:28: b3:d3:ef:01:be:17:5b:fa:03:d6:56:f8:5d:c5:31: ac:29:49:a7:14:2c:1c:91:3b:c0:c0:f3:4b:82:3b: 5f:7f:42:5a:07:8f:4d:c4:85:35:fe:85:86:52:a5: 1f:13:2b:6e:5c:89:f7:94:9b:58:66:f3:93:fe:38: 21:53:84:aa:69:f9:be:68:9c:91:39:e3:de:12:77: fd:02:a5:2f:2e:37:b6:7f:cf:60:1e:cb:c0:70:36: f1:57:b2:1b:f4:f3:fb:31:ea:28:ac:14:3a:fb:00: b6:2b:5d:bf:8c:fc:d6:2c:1c:24:38:a4:0a:fe:67: 7d:01:7a:56:e9:bf:1f:fe:3a:97:6e:32:3b:d3:83: a6:84:be:84:5a:42:28:45:37:02:40:91:06:c7:14: 5b:5e:21:a1:82:6e:19:fc:4e:6e:08:62:2b:45:b7: 28:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:5A:EE:4C:14:83:FD:5A:D8:A2:99:77:65:FE:AF:B8:75:19:7B:C6 X509v3 Authority Key Identifier: keyid:02:BA:63:B5:86:2E:27:09:B9:0D:16:B7:DC:2E:B5:CF:C8:A2:E6:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B43EE/4A8ADAC0CD4611EDB45CCD66C4F9AE02/ArpjtYYuJwm5DRa33C61z8ii5oQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ArpjtYYuJwm5DRa33C61z8ii5oQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B43EE/4A8ADAC0CD4611EDB45CCD66C4F9AE02/5192AB7ED47811EEB5A6D21AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.224.55.0/24 Signature Algorithm: sha256WithRSAEncryption 72:d9:cb:45:1f:91:12:db:89:a6:c4:c8:7e:6a:6a:46:de:ef: 50:99:8f:70:c3:12:a1:8e:81:a2:3e:45:b5:af:3f:5d:0c:63: ab:37:e9:69:58:5d:d9:76:0e:50:26:bb:2d:ce:64:ff:5d:3e: 2e:27:7e:ca:5b:bf:03:1a:c2:b7:3e:33:ea:63:2a:b0:88:94: 3e:5c:0a:be:28:57:c8:39:7e:21:f0:ea:1a:e7:87:11:1b:78: 40:65:b3:12:9e:78:9f:75:db:90:0e:c8:d0:48:66:7f:c2:76: a0:2d:ab:8a:be:8b:33:54:bf:d4:1a:49:fd:a1:78:ab:e2:f1: 9d:69:a3:44:a9:5d:05:55:d9:14:8e:b8:c3:d7:a8:1f:eb:b6: ed:a0:02:ee:f9:b5:5a:a3:ed:65:90:e5:8e:71:5f:81:e0:9d: 92:4e:c8:90:fb:c9:61:aa:8a:ac:aa:70:4b:21:b4:e0:07:03: 7c:7f:fe:30:e3:b2:20:33:36:66:c9:06:88:d1:bf:ca:82:25: af:53:7d:97:d0:ed:a3:3e:37:f6:a4:5e:83:82:11:0b:70:21: 41:f4:b7:e6:a3:2d:72:51:e0:50:05:30:8e:49:f0:d6:46:97: 55:3c:d2:ce:29:2b:a6:c2:c8:c8:a6:28:14:96:a7:f7:5a:31: 88:40:2c:fd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzRUUxMTAvBgNVBAUTKDAyQkE2M0I1ODYyRTI3MDlCOTBEMTZCN0RDMkVCNUNG QzhBMkU2ODQwHhcNMjUwNDA3MDI0MDI1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YzM2IxOS04MzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTlbF8c9MsTeVt8Xzu3OG3OYqtjnDpR+8/VUdfIfUGop55N8oUrbOuLSNAlw Rmn0eQc8Q+/qBCsqee9krH4Tr18DMtymLemQOrmKkhR4XdHg2fCCz0Ut2Siz0+8B vhdb+gPWVvhdxTGsKUmnFCwckTvAwPNLgjtff0JaB49NxIU1/oWGUqUfEytuXIn3 lJtYZvOT/jghU4Sqafm+aJyROePeEnf9AqUvLje2f89gHsvAcDbxV7Ib9PP7Meoo rBQ6+wC2K12/jPzWLBwkOKQK/md9AXpW6b8f/jqXbjI704OmhL6EWkIoRTcCQJEG xxRbXiGhgm4Z/E5uCGIrRbcoSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOJa7kwU g/1a2KKZd2X+r7h1GXvGMB8GA1UdIwQYMBaAFAK6Y7WGLicJuQ0Wt9wutc/IouaE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDNFRS80QThBREFDMENE NDYxMUVEQjQ1Q0NENjZDNEY5QUUwMi9BcnBqdFlZdUp3bTVEUmEzM0M2MXo4aWk1 b1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FycGp0WVl1SndtNURSYTMzQzYxejhpaTVvUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjQzRUUvNEE4QURBQzBDRDQ2MTFFREI0NUNDRDY2QzRGOUFFMDIvNTE5MkFCN0VE NDc4MTFFRUI1QTZEMjFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn4DcwDQYJKoZIhvcNAQELBQADggEBAHLZy0UfkRLbiabE yH5qakbe71CZj3DDEqGOgaI+RbWvP10MY6s36WlYXdl2DlAmuy3OZP9dPi4nfspb vwMawrc+M+pjKrCIlD5cCr4oV8g5fiHw6hrnhxEbeEBlsxKeeJ9125AOyNBIZn/C dqAtq4q+izNUv9QaSf2heKvi8Z1po0SpXQVV2RSOuMPXqB/rtu2gAu75tVqj7WWQ 5Y5xX4HgnZJOyJD7yWGqiqyqcEshtOAHA3x//jDjsiAzNmbJBojRv8qCJa9TfZfQ 7aM+N/akXoOCEQtwIUH0t+ajLXJR4FAFMI5J8NZGl1U80s4pK6bCyMimKBSWp/da MYhALP0= -----END CERTIFICATE-----Generated at Sat Apr 26 20:21:22 2025 by rpki-client