$ rpki-client -vvf rpki.apnic.net/member_repository/A91B72D9/AA23FA96697111ECB625930CC4F9AE02/4FD9C050F53411EFBF7FCA34C4F9AE02.roa File: 4FD9C050F53411EFBF7FCA34C4F9AE02.roa (raw, json) Hash identifier: UdXjbAhF6oniMP9h+eQndIWcxlYyRMTp0LAX//sl/pw= Subject key identifier: 74:99:9D:BE:DA:5E:87:43:AB:C0:25:31:C8:A2:CE:72:66:BD:E9:7C Certificate issuer: /CN=A91B72D9/serialNumber=41E5DC2155069FF317E5EE38C75B7889C22197E3 Certificate serial: 0410 Authority key identifier: 41:E5:DC:21:55:06:9F:F3:17:E5:EE:38:C7:5B:78:89:C2:21:97:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeXcIVUGn_MX5e44x1t4icIhl-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B72D9/AA23FA96697111ECB625930CC4F9AE02/4FD9C050F53411EFBF7FCA34C4F9AE02.roa Signing time: Thu 27 Feb 2025 17:57:30 +0000 ROA not before: Thu 27 Feb 2025 17:57:30 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 138004 IP address blocks: 103.178.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B72D9/AA23FA96697111ECB625930CC4F9AE02/QeXcIVUGn_MX5e44x1t4icIhl-M.crl rsync://rpki.apnic.net/member_repository/A91B72D9/AA23FA96697111ECB625930CC4F9AE02/QeXcIVUGn_MX5e44x1t4icIhl-M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeXcIVUGn_MX5e44x1t4icIhl-M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:13:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1040 (0x410) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B72D9, serialNumber=41E5DC2155069FF317E5EE38C75B7889C22197E3 Validity Not Before: Feb 27 17:57:30 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67c0a78a-8c0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:00:f2:47:e8:34:4d:83:b3:90:fd:1c:10:2e: 76:b4:ee:87:88:53:4e:da:73:c9:11:27:b0:62:28: b4:0f:aa:df:fc:ee:4a:6c:53:46:0d:9b:4d:c6:fe: 36:66:65:68:d6:96:ab:53:c9:c8:49:22:34:ab:6f: b8:9b:94:8e:1a:aa:88:b7:64:2f:03:19:64:ca:06: cb:74:40:53:fe:6e:7b:e4:11:85:5a:a7:fd:b9:99: 87:d7:b9:61:c3:24:f1:c0:e8:d2:1c:cb:5f:57:52: d8:a0:63:0a:6d:93:74:8d:44:fa:5f:c7:0f:a3:be: 22:27:c7:f4:e4:a3:ce:55:af:f3:ec:95:9d:f0:9a: 38:03:cf:2e:83:c4:ac:4b:70:f1:65:f9:4e:90:82: 6d:a6:31:80:01:7c:8e:ea:52:c4:82:af:0d:d3:e4: 72:9e:35:39:82:d5:a4:21:ca:ad:bb:23:6b:4a:b6: 34:26:fd:b1:a2:d9:85:6c:e4:37:82:65:b9:11:bf: e0:92:4c:36:8a:82:58:d7:d2:96:88:8c:92:b4:58: 4f:68:dc:e7:36:57:54:a1:67:da:4a:4f:61:50:66: 7d:5f:e0:e2:a8:62:f1:cf:55:69:5a:ef:db:3d:19: aa:dd:9b:6c:a6:7d:17:05:4e:3a:56:4f:29:7d:b6: bc:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:99:9D:BE:DA:5E:87:43:AB:C0:25:31:C8:A2:CE:72:66:BD:E9:7C X509v3 Authority Key Identifier: keyid:41:E5:DC:21:55:06:9F:F3:17:E5:EE:38:C7:5B:78:89:C2:21:97:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B72D9/AA23FA96697111ECB625930CC4F9AE02/QeXcIVUGn_MX5e44x1t4icIhl-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QeXcIVUGn_MX5e44x1t4icIhl-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B72D9/AA23FA96697111ECB625930CC4F9AE02/4FD9C050F53411EFBF7FCA34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.178.221.0/24 Signature Algorithm: sha256WithRSAEncryption 52:a3:f8:16:37:36:b7:05:a6:3d:f3:34:8c:cb:ec:b7:ce:d7: 09:d6:f8:df:ef:0d:44:f8:80:fe:c4:57:4e:99:5d:d3:96:28: 87:57:8c:05:72:bc:e9:e1:8f:1d:b5:a1:2b:57:ff:ea:99:64: 40:61:67:3c:f9:4c:5e:c8:ae:8f:c4:95:8a:a7:e8:7f:5b:85: b1:24:3e:ea:9a:1a:91:64:b8:c0:d3:58:f4:20:b5:06:31:30: af:d0:a1:4a:77:52:18:1f:a4:e8:d6:b2:48:89:9b:8b:1f:70: 87:b9:26:d8:db:bb:ee:04:5d:c4:bc:89:47:d5:57:4a:3a:cb: 6a:10:1f:4e:33:87:11:72:40:8e:ef:46:6b:7b:b7:fc:a7:98: 26:00:12:9d:01:7f:f7:47:d2:55:3c:57:17:eb:e2:9e:2d:b7: b6:22:26:7a:f9:47:da:83:43:ae:0e:8f:ae:37:22:ca:3b:30: 33:a2:02:0b:8f:1c:1a:23:2b:7f:72:c5:64:df:81:07:c8:8c: 65:3d:52:71:94:8f:d2:2c:c9:b6:64:0c:e0:d3:7c:a0:56:19: 38:c8:d1:0f:cc:65:10:67:74:84:11:48:2a:cd:a5:78:82:de: 27:fd:95:fd:a4:97:3f:4a:b7:a0:0a:30:d8:bb:84:5a:f1:de: f3:5e:d2:81 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjcyRDkxMTAvBgNVBAUTKDQxRTVEQzIxNTUwNjlGRjMxN0U1RUUzOEM3NUI3ODg5 QzIyMTk3RTMwHhcNMjUwMjI3MTc1NzMwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MwYTc4YS04YzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0gDyR+g0TYOzkP0cEC52tO6HiFNO2nPJESewYii0D6rf/O5KbFNGDZtNxv42 ZmVo1parU8nISSI0q2+4m5SOGqqIt2QvAxlkygbLdEBT/m575BGFWqf9uZmH17lh wyTxwOjSHMtfV1LYoGMKbZN0jUT6X8cPo74iJ8f05KPOVa/z7JWd8Jo4A88ug8Ss S3DxZflOkIJtpjGAAXyO6lLEgq8N0+RynjU5gtWkIcqtuyNrSrY0Jv2xotmFbOQ3 gmW5Eb/gkkw2ioJY19KWiIyStFhPaNznNldUoWfaSk9hUGZ9X+DiqGLxz1VpWu/b PRmq3Ztspn0XBU46Vk8pfba8UQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHSZnb7a XodDq8AlMciiznJmvel8MB8GA1UdIwQYMBaAFEHl3CFVBp/zF+XuOMdbeInCIZfj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzJEOS9BQTIzRkE5NjY5 NzExMUVDQjYyNTkzMENDNEY5QUUwMi9RZVhjSVZVR25fTVg1ZTQ0eDF0NGljSWhs LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FlWGNJVlVHbl9NWDVlNDR4MXQ0aWNJaGwtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjcyRDkvQUEyM0ZBOTY2OTcxMTFFQ0I2MjU5MzBDQzRGOUFFMDIvNEZEOUMwNTBG NTM0MTFFRkJGN0ZDQTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnst0wDQYJKoZIhvcNAQELBQADggEBAFKj+BY3NrcFpj3z NIzL7LfO1wnW+N/vDUT4gP7EV06ZXdOWKIdXjAVyvOnhjx21oStX/+qZZEBhZzz5 TF7Iro/ElYqn6H9bhbEkPuqaGpFkuMDTWPQgtQYxMK/QoUp3UhgfpOjWskiJm4sf cIe5Jtjbu+4EXcS8iUfVV0o6y2oQH04zhxFyQI7vRmt7t/ynmCYAEp0Bf/dH0lU8 Vxfr4p4tt7YiJnr5R9qDQ64Oj643Iso7MDOiAguPHBojK39yxWTfgQfIjGU9UnGU j9IsybZkDODTfKBWGTjI0Q/MZRBndIQRSCrNpXiC3if9lf2klz9Kt6AKMNi7hFrx 3vNe0oE= -----END CERTIFICATE-----Generated at Sat Apr 26 16:34:59 2025 by rpki-client