$ rpki-client -vvf rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/8D3BB78A3AEA11EC84E6634EC4F9AE02.roa File: 8D3BB78A3AEA11EC84E6634EC4F9AE02.roa (raw, json) Hash identifier: KHH4guWZz2QPTGfSHIABOFeNEzmNYAkAEdSlj0Q8gIk= Subject key identifier: 9A:3B:C5:DB:B5:67:E0:03:33:AD:16:D8:7C:1B:42:73:91:C3:6B:0D Certificate issuer: /CN=A91B885C/serialNumber=5374C6E75F186052455A2D8DA5292FEF009CC9AF Certificate serial: 0CF3 Authority key identifier: 53:74:C6:E7:5F:18:60:52:45:5A:2D:8D:A5:29:2F:EF:00:9C:C9:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3TG518YYFJFWi2NpSkv7wCcya8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/8D3BB78A3AEA11EC84E6634EC4F9AE02.roa Signing time: Sat 18 Jan 2025 18:06:49 +0000 ROA not before: Sat 18 Jan 2025 18:06:49 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 45785 IP address blocks: 103.10.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/U3TG518YYFJFWi2NpSkv7wCcya8.crl rsync://rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/U3TG518YYFJFWi2NpSkv7wCcya8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3TG518YYFJFWi2NpSkv7wCcya8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3315 (0xcf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B885C, serialNumber=5374C6E75F186052455A2D8DA5292FEF009CC9AF Validity Not Before: Jan 18 18:06:49 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=678bedb9-b47d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:34:59:6b:83:55:20:6d:5b:70:55:2c:af:ab: c3:3e:75:30:b3:92:65:67:39:9b:7c:b4:bf:ef:42: d0:f6:06:b9:2e:a4:07:0e:c3:a2:d0:8b:1d:82:cb: 9e:8c:e5:5d:7d:e9:02:ac:ca:fe:bf:b4:2d:41:64: 67:ad:3b:48:40:52:47:5c:3f:ec:2e:f1:ae:46:85: 46:ba:a3:ce:15:dd:f7:65:6f:02:29:86:97:1d:68: 5a:6a:a0:76:95:d6:7f:23:e3:7f:c6:f2:35:18:ed: 98:ef:f6:ef:1f:b0:06:86:94:c6:6f:c8:00:b5:72: a9:de:32:51:24:db:3d:ed:f7:41:21:41:96:bb:62: 84:51:d4:bb:3c:fe:96:70:4c:7e:3e:ed:36:df:e1: 02:c8:8a:ee:4e:ed:b4:1f:a7:63:1b:60:02:d7:d7: f4:25:60:cf:c0:b6:0f:01:a5:c5:1c:3b:c9:35:df: 6f:20:41:4e:61:80:de:b3:b7:19:b8:72:f9:42:82: 68:c3:da:e1:7e:58:ce:99:45:49:3c:0a:8c:19:df: 86:26:38:26:ba:17:b8:69:02:34:b3:78:1e:96:6d: 94:ba:89:7c:68:f2:8c:af:ec:43:f7:c9:63:41:ed: b8:11:8b:d2:07:ba:8f:5e:b1:7c:c7:9d:d8:ca:31: 6d:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:3B:C5:DB:B5:67:E0:03:33:AD:16:D8:7C:1B:42:73:91:C3:6B:0D X509v3 Authority Key Identifier: keyid:53:74:C6:E7:5F:18:60:52:45:5A:2D:8D:A5:29:2F:EF:00:9C:C9:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/U3TG518YYFJFWi2NpSkv7wCcya8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3TG518YYFJFWi2NpSkv7wCcya8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B885C/5C19F842F26711E987C7131FC4F9AE02/8D3BB78A3AEA11EC84E6634EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.10.196.0/24 Signature Algorithm: sha256WithRSAEncryption 27:10:9c:a4:d1:0d:39:b6:2d:94:fa:bc:2c:dc:c1:53:22:d8: a9:fc:97:60:66:d8:d8:df:d3:8b:8e:fd:b2:7a:6e:52:00:3e: 3e:06:4f:ce:b7:e0:62:ff:ff:85:d1:75:0a:2d:7b:9e:65:70: e1:f8:d2:d7:2b:cd:e5:13:c8:5d:d0:2d:48:03:ba:ea:0a:79: 8c:4b:4a:f6:f4:5c:16:80:e6:ba:34:19:6a:eb:cc:64:04:74: af:9e:b9:c1:4b:65:56:30:5d:c6:28:ea:50:31:42:68:b2:f3: 3e:ed:eb:d1:de:b2:2e:71:12:e3:85:30:19:aa:8b:0c:d8:dc: 5b:f6:df:8a:02:6c:ec:21:d6:10:d3:df:61:83:53:02:10:7e: b3:0a:76:0a:c4:45:5f:89:fa:6c:24:b4:69:9b:c0:48:5a:6c: d7:72:3e:88:34:35:5f:d1:6d:a4:c8:93:77:2a:ea:ce:87:f6: c7:a3:51:d9:a6:94:d4:e8:05:12:1f:9e:78:00:83:d4:13:8d: f6:75:d6:b8:db:ff:53:08:95:02:dd:36:82:d9:88:24:10:b6: 37:6d:7b:0c:aa:e4:6f:cd:48:ec:91:8d:48:72:71:d6:09:52: fd:09:e6:b6:49:3d:6b:8b:ea:e1:5e:a0:7d:0f:09:2a:a3:f8: 79:17:78:d9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjg4NUMxMTAvBgNVBAUTKDUzNzRDNkU3NUYxODYwNTI0NTVBMkQ4REE1MjkyRkVG MDA5Q0M5QUYwHhcNMjUwMTE4MTgwNjQ5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzhiZWRiOS1iNDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTRZa4NVIG1bcFUsr6vDPnUws5JlZzmbfLS/70LQ9ga5LqQHDsOi0Isdgsue jOVdfekCrMr+v7QtQWRnrTtIQFJHXD/sLvGuRoVGuqPOFd33ZW8CKYaXHWhaaqB2 ldZ/I+N/xvI1GO2Y7/bvH7AGhpTGb8gAtXKp3jJRJNs97fdBIUGWu2KEUdS7PP6W cEx+Pu023+ECyIruTu20H6djG2AC19f0JWDPwLYPAaXFHDvJNd9vIEFOYYDes7cZ uHL5QoJow9rhfljOmUVJPAqMGd+GJjgmuhe4aQI0s3gelm2Uuol8aPKMr+xD98lj Qe24EYvSB7qPXrF8x53YyjFtSQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJo7xdu1 Z+ADM60W2HwbQnORw2sNMB8GA1UdIwQYMBaAFFN0xudfGGBSRVotjaUpL+8AnMmv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODg1Qy81QzE5Rjg0MkYy NjcxMUU5ODdDNzEzMUZDNEY5QUUwMi9VM1RHNTE4WVlGSkZXaTJOcFNrdjd3Q2N5 YTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UzVEc1MThZWUZKRldpMk5wU2t2N3dDY3lhOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjg4NUMvNUMxOUY4NDJGMjY3MTFFOTg3QzcxMzFGQzRGOUFFMDIvOEQzQkI3OEEz QUVBMTFFQzg0RTY2MzRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnCsQwDQYJKoZIhvcNAQELBQADggEBACcQnKTRDTm2LZT6 vCzcwVMi2Kn8l2Bm2Njf04uO/bJ6blIAPj4GT8634GL//4XRdQote55lcOH40tcr zeUTyF3QLUgDuuoKeYxLSvb0XBaA5ro0GWrrzGQEdK+eucFLZVYwXcYo6lAxQmiy 8z7t69Hesi5xEuOFMBmqiwzY3Fv234oCbOwh1hDT32GDUwIQfrMKdgrERV+J+mwk tGmbwEhabNdyPog0NV/RbaTIk3cq6s6H9sejUdmmlNToBRIfnngAg9QTjfZ11rjb /1MIlQLdNoLZiCQQtjdtewyq5G/NSOyRjUhycdYJUv0J5rZJPWuL6uFeoH0PCSqj +HkXeNk= -----END CERTIFICATE-----Generated at Sat Apr 26 17:04:37 2025 by rpki-client