$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/8C2FEEE0708811ED95A9DC75C4F9AE02.roa File: 8C2FEEE0708811ED95A9DC75C4F9AE02.roa (raw, json) Hash identifier: N1sk6XLj5xgH93qOL/I5QuR42p2aQ914FnE3hKMRCac= Subject key identifier: E0:3E:B5:0E:5C:27:4D:E1:8E:D5:A4:E3:01:78:0C:A5:EB:80:E7:B3 Certificate issuer: /CN=A91BE1BC/serialNumber=429E9BDDA296620003CEC5EFABB823D303FE4F71 Certificate serial: 0FEA Authority key identifier: 42:9E:9B:DD:A2:96:62:00:03:CE:C5:EF:AB:B8:23:D3:03:FE:4F:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qp6b3aKWYgADzsXvq7gj0wP-T3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/8C2FEEE0708811ED95A9DC75C4F9AE02.roa Signing time: Tue 04 Feb 2025 17:25:35 +0000 ROA not before: Tue 04 Feb 2025 17:25:35 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 24378 IP address blocks: 103.26.20.0/24 maxlen: 24 103.26.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.crl rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qp6b3aKWYgADzsXvq7gj0wP-T3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:27:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4074 (0xfea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE1BC, serialNumber=429E9BDDA296620003CEC5EFABB823D303FE4F71 Validity Not Before: Feb 4 17:25:35 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a24d8e-8cf1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:6f:9d:35:14:ce:6d:6d:16:79:2b:45:e0:9f: 80:db:c8:0a:70:6b:27:5c:4f:af:02:81:dd:ae:86: e6:eb:5e:f0:82:a0:96:45:6b:f5:6c:1e:bb:9f:b4: 90:19:4f:2f:fa:5e:63:38:b4:db:c5:32:8c:14:22: 05:0f:d8:b3:da:7d:50:92:70:6e:a4:84:72:29:5f: f4:fe:85:c9:b7:de:18:0a:76:00:4d:e5:38:6b:5f: 94:21:64:76:3a:d4:71:cd:4c:96:65:65:d5:bc:c5: 87:71:85:c4:f4:48:1b:70:a1:a7:43:9b:a9:30:f7: de:de:b0:78:92:e8:fb:81:6c:b9:f4:ea:51:a2:72: c8:3e:df:d5:16:b3:ae:b7:84:ca:3e:54:3d:35:41: 63:fb:06:21:09:ee:f2:64:5a:b4:bc:50:34:7f:62: f5:7b:0c:7d:66:90:59:42:17:8b:e4:1d:4d:cd:82: 91:d4:32:1a:f1:6d:63:34:bd:0e:30:b9:3e:0e:1d: 68:dc:d3:de:cc:6e:8f:d7:a8:4d:4b:58:2a:34:1c: 2b:c8:f7:fa:d8:f1:a8:5e:e9:dd:03:d1:73:fd:8d: 28:6d:8f:f7:83:d7:94:d0:7e:e7:94:e0:84:26:d2: e4:d0:cf:2b:1a:e5:5a:d6:a5:50:16:11:6e:c0:10: e7:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:3E:B5:0E:5C:27:4D:E1:8E:D5:A4:E3:01:78:0C:A5:EB:80:E7:B3 X509v3 Authority Key Identifier: keyid:42:9E:9B:DD:A2:96:62:00:03:CE:C5:EF:AB:B8:23:D3:03:FE:4F:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/Qp6b3aKWYgADzsXvq7gj0wP-T3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qp6b3aKWYgADzsXvq7gj0wP-T3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE1BC/896C6C4846CE11E992850A3CC4F9AE02/8C2FEEE0708811ED95A9DC75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.20.0/23 Signature Algorithm: sha256WithRSAEncryption 11:ab:f2:4f:ab:f8:f5:5b:27:a7:db:b3:82:38:41:e0:c0:ea: 59:b0:ea:40:e4:08:73:50:fe:24:d0:fa:44:3d:d3:98:66:b7: db:09:92:4f:77:bb:27:61:dd:b7:1c:09:cc:b3:9c:e2:78:4e: 17:c0:11:e0:4f:94:c0:c5:14:9d:a5:f3:a8:a3:40:3b:47:ad: a4:16:28:a6:da:10:5d:e0:d5:d5:03:df:c9:33:75:1e:2e:74: 87:0c:32:d2:bd:c1:53:57:96:81:78:40:cb:eb:16:79:a5:79: a3:f3:26:ee:9f:1f:b0:41:be:fd:6b:1f:ec:20:8d:3c:8b:a5: 3a:0f:a2:89:65:b9:c0:4f:89:9e:9f:a9:3b:cc:08:58:3b:8b: 21:de:85:67:1e:93:5f:aa:3b:82:7f:f1:93:cb:46:c1:ee:57: 65:a7:0c:b8:50:bd:f8:9d:1b:29:3a:ed:f0:ff:6e:7f:52:97: 37:03:fe:21:16:6a:af:b8:ab:2c:64:54:f8:bf:bc:fe:4f:f4: cc:f8:dd:6b:73:1c:58:db:6c:91:92:b6:f9:a7:ad:0b:38:11: c6:e2:dc:dd:e7:e1:9e:27:08:32:9e:c4:ee:aa:09:16:96:7a: bf:0f:62:ca:73:41:0b:a8:94:4c:2f:bd:d9:7c:dd:e9:b8:5a: ee:23:a4:f8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUxQkMxMTAvBgNVBAUTKDQyOUU5QkREQTI5NjYyMDAwM0NFQzVFRkFCQjgyM0Qz MDNGRTRGNzEwHhcNMjUwMjA0MTcyNTM1WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyNGQ4ZS04Y2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA32+dNRTObW0WeStF4J+A28gKcGsnXE+vAoHdrobm617wgqCWRWv1bB67n7SQ GU8v+l5jOLTbxTKMFCIFD9iz2n1QknBupIRyKV/0/oXJt94YCnYATeU4a1+UIWR2 OtRxzUyWZWXVvMWHcYXE9EgbcKGnQ5upMPfe3rB4kuj7gWy59OpRonLIPt/VFrOu t4TKPlQ9NUFj+wYhCe7yZFq0vFA0f2L1ewx9ZpBZQheL5B1NzYKR1DIa8W1jNL0O MLk+Dh1o3NPezG6P16hNS1gqNBwryPf62PGoXundA9Fz/Y0obY/3g9eU0H7nlOCE JtLk0M8rGuVa1qVQFhFuwBDnzwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOA+tQ5c J03hjtWk4wF4DKXrgOezMB8GA1UdIwQYMBaAFEKem92ilmIAA87F76u4I9MD/k9x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTFCQy84OTZDNkM0ODQ2 Q0UxMUU5OTI4NTBBM0NDNEY5QUUwMi9RcDZiM2FLV1lnQUR6c1h2cTdnajB3UC1U M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FwNmIzYUtXWWdBRHpzWHZxN2dqMHdQLVQzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkUxQkMvODk2QzZDNDg0NkNFMTFFOTkyODUwQTNDQzRGOUFFMDIvOEMyRkVFRTA3 MDg4MTFFRDk1QTlEQzc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnGhQwDQYJKoZIhvcNAQELBQADggEBABGr8k+r+PVbJ6fb s4I4QeDA6lmw6kDkCHNQ/iTQ+kQ905hmt9sJkk93uydh3bccCcyznOJ4ThfAEeBP lMDFFJ2l86ijQDtHraQWKKbaEF3g1dUD38kzdR4udIcMMtK9wVNXloF4QMvrFnml eaPzJu6fH7BBvv1rH+wgjTyLpToPoollucBPiZ6fqTvMCFg7iyHehWcek1+qO4J/ 8ZPLRsHuV2WnDLhQvfidGyk67fD/bn9SlzcD/iEWaq+4qyxkVPi/vP5P9Mz43Wtz HFjbbJGStvmnrQs4Ecbi3N3n4Z4nCDKexO6qCRaWer8PYspzQQuolEwvvdl83em4 Wu4jpPg= -----END CERTIFICATE-----Generated at Sat Apr 26 08:12:41 2025 by rpki-client