$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/2857F2E4111A11EF86332415C4F9AE02.roa File: 2857F2E4111A11EF86332415C4F9AE02.roa (raw, json) Hash identifier: yNiSqyUgGq7X2OqvzLvfoSJUstp1wz+ZN5+bLrhI6IQ= Subject key identifier: A7:D2:2F:B2:E1:05:5E:4F:57:1A:04:C2:30:32:9D:4A:7A:99:77:80 Certificate issuer: /CN=A91C8F27/serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Certificate serial: 0938 Authority key identifier: D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/2857F2E4111A11EF86332415C4F9AE02.roa Signing time: Sun 06 Apr 2025 20:30:31 +0000 ROA not before: Sun 06 Apr 2025 20:30:31 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 62240 IP address blocks: 103.112.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:20:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2360 (0x938) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8F27, serialNumber=D1A36CD8ED2355082761A3DB13EDD30DFDA2CFD0 Validity Not Before: Apr 6 20:30:31 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f2e467-396c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8b:78:05:27:48:38:99:4e:25:26:6a:62:47: bd:65:33:47:9f:44:b2:13:9c:58:08:72:a2:6e:05: 89:d6:3a:6e:d2:64:80:4d:54:ca:53:13:e4:b5:c2: 73:55:e2:e8:eb:a2:bf:2f:8b:79:56:76:c0:9b:ab: e6:f7:c2:a2:e8:8b:ec:33:b5:55:0e:7f:d2:12:e8: a8:37:08:e5:5a:1f:01:d1:3c:91:e9:83:80:aa:2c: c8:d9:a8:41:0f:d5:ff:6f:65:cd:27:a6:46:63:85: 66:a3:65:85:30:2b:cf:c0:dd:79:27:f2:66:1d:61: fe:47:66:10:e5:46:ca:0c:1d:ec:7b:61:5e:e7:e7: 52:90:69:ad:db:db:42:2b:24:70:80:43:ee:7d:6d: 35:cf:e0:cf:2e:ad:dd:0d:b2:b0:b2:b3:6c:6f:b9: 4b:84:0d:bc:66:f4:e2:89:bf:e3:ef:9c:c4:c4:a0: f0:c4:1b:de:0a:8e:36:a6:c7:40:65:f1:63:42:29: b7:3e:9a:85:f0:c8:ea:81:cc:bb:42:9d:9b:b3:95: be:c6:53:17:85:72:64:e7:b4:3f:10:f5:27:db:44: 1d:f7:1a:df:58:e0:09:90:e3:4d:f5:70:1b:09:c1: 5a:ee:73:9f:05:f4:b3:d4:36:a0:5f:98:1c:25:f1: 1f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:D2:2F:B2:E1:05:5E:4F:57:1A:04:C2:30:32:9D:4A:7A:99:77:80 X509v3 Authority Key Identifier: keyid:D1:A3:6C:D8:ED:23:55:08:27:61:A3:DB:13:ED:D3:0D:FD:A2:CF:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/0aNs2O0jVQgnYaPbE-3TDf2iz9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0aNs2O0jVQgnYaPbE-3TDf2iz9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8F27/7F5229A8B09211EAB5DBEC58C4F9AE02/2857F2E4111A11EF86332415C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.3.0/24 Signature Algorithm: sha256WithRSAEncryption ac:cb:41:64:19:29:f1:86:85:da:69:c6:a1:74:8a:5c:3b:ff: 72:b0:0d:e9:41:b9:a6:95:f3:8b:4f:75:bc:be:a0:92:6b:7c: d4:34:e4:07:fd:48:1e:0b:c2:e9:ca:0b:11:9f:66:2e:93:3a: 34:c6:10:2c:49:5c:b2:fd:62:9c:63:72:4f:9b:4b:e9:42:81: e0:55:c0:18:5a:1d:b5:dd:5e:71:2b:4a:0f:1b:31:33:8f:24: 5a:96:37:b0:6a:97:30:3b:75:86:af:a7:13:eb:55:d2:b9:1b: af:04:b2:ef:be:2a:50:e5:52:c2:0e:95:9d:b3:a9:a3:c8:4d: 1c:a9:7f:cc:0d:7e:e9:55:0e:2c:df:da:f2:13:50:ee:c4:6a: 15:2f:0f:eb:43:7e:80:4e:f0:96:0f:c1:f9:5b:8d:fe:4f:48: 51:66:ca:fe:00:90:f3:9e:28:b9:85:b8:99:2e:7f:d4:47:3a: 00:88:21:0b:fb:e0:1f:1f:98:ef:42:07:f8:0c:36:cd:92:19: 86:6e:ee:9d:79:9d:32:3d:28:cb:d2:c4:40:d1:e8:41:00:09: 82:5b:13:17:b8:4c:24:33:0d:7e:f3:ad:bc:95:12:65:8b:a1: 39:61:7b:f6:d8:4e:61:ba:03:8b:77:da:bc:0b:9b:91:dd:e7: 6b:ff:db:2c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhGMjcxMTAvBgNVBAUTKEQxQTM2Q0Q4RUQyMzU1MDgyNzYxQTNEQjEzRUREMzBE RkRBMkNGRDAwHhcNMjUwNDA2MjAzMDMxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YyZTQ2Ny0zOTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4t4BSdIOJlOJSZqYke9ZTNHn0SyE5xYCHKibgWJ1jpu0mSATVTKUxPktcJz VeLo66K/L4t5VnbAm6vm98Ki6IvsM7VVDn/SEuioNwjlWh8B0TyR6YOAqizI2ahB D9X/b2XNJ6ZGY4Vmo2WFMCvPwN15J/JmHWH+R2YQ5UbKDB3se2Fe5+dSkGmt29tC KyRwgEPufW01z+DPLq3dDbKwsrNsb7lLhA28ZvTiib/j75zExKDwxBveCo42psdA ZfFjQim3PpqF8Mjqgcy7Qp2bs5W+xlMXhXJk57Q/EPUn20Qd9xrfWOAJkONN9XAb CcFa7nOfBfSz1DagX5gcJfEfkQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKfSL7Lh BV5PVxoEwjAynUp6mXeAMB8GA1UdIwQYMBaAFNGjbNjtI1UIJ2Gj2xPt0w39os/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEYyNy83RjUyMjlBOEIw OTIxMUVBQjVEQkVDNThDNEY5QUUwMi8wYU5zMk8walZRZ25ZYVBiRS0zVERmMml6 OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBhTnMyTzBqVlFnbllhUGJFLTNURGYyaXo5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzhGMjcvN0Y1MjI5QThCMDkyMTFFQUI1REJFQzU4QzRGOUFFMDIvMjg1N0YyRTQx MTFBMTFFRjg2MzMyNDE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABncAMwDQYJKoZIhvcNAQELBQADggEBAKzLQWQZKfGGhdpp xqF0ilw7/3KwDelBuaaV84tPdby+oJJrfNQ05Af9SB4LwunKCxGfZi6TOjTGECxJ XLL9Ypxjck+bS+lCgeBVwBhaHbXdXnErSg8bMTOPJFqWN7BqlzA7dYavpxPrVdK5 G68Esu++KlDlUsIOlZ2zqaPITRypf8wNfulVDizf2vITUO7EahUvD+tDfoBO8JYP wflbjf5PSFFmyv4AkPOeKLmFuJkuf9RHOgCIIQv74B8fmO9CB/gMNs2SGYZu7p15 nTI9KMvSxEDR6EEACYJbExe4TCQzDX7zrbyVEmWLoTlhe/bYTmG6A4t32rwLm5Hd 52v/2yw= -----END CERTIFICATE-----Generated at Sat Apr 26 16:46:00 2025 by rpki-client