$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/51C204DAEA9011EFB8B82081C4F9AE02.roa File: 51C204DAEA9011EFB8B82081C4F9AE02.roa (raw, json) Hash identifier: 3+A2ANkp0TI4iEFiuxaHkbdXUeiNj96UO23AWbpZWqw= Subject key identifier: D4:E1:0D:AC:F0:E7:38:C3:41:75:6D:DD:10:9B:64:6E:32:77:32:F3 Certificate issuer: /CN=A91D1E30/serialNumber=9F6C60E6A2A5BB33055249D47238477F89E13A70 Certificate serial: 0164 Authority key identifier: 9F:6C:60:E6:A2:A5:BB:33:05:52:49:D4:72:38:47:7F:89:E1:3A:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2xg5qKluzMFUknUcjhHf4nhOnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/51C204DAEA9011EFB8B82081C4F9AE02.roa Signing time: Fri 14 Feb 2025 04:58:24 +0000 ROA not before: Fri 14 Feb 2025 04:58:24 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 136609 IP address blocks: 103.93.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.crl rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2xg5qKluzMFUknUcjhHf4nhOnA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:43:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1E30, serialNumber=9F6C60E6A2A5BB33055249D47238477F89E13A70 Validity Not Before: Feb 14 04:58:24 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67aecd70-c2dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ef:4b:97:4f:f9:a4:2b:c3:f0:9b:e2:98:57: 8f:d1:8e:aa:01:c4:bf:ea:e7:eb:a9:cb:10:88:e9: 56:cd:7b:f2:33:e5:c4:48:3e:b6:1c:d7:eb:87:48: 3a:ee:bf:fc:25:a3:42:29:eb:6f:9b:88:28:97:ea: 7c:e4:bc:a7:64:19:c0:76:86:52:8f:3e:e7:78:66: 08:f3:16:54:f4:35:9b:a3:74:05:35:8c:26:a2:bb: 64:f9:37:aa:80:c9:9d:5a:c0:9f:26:e7:37:4b:b3: 2e:15:e5:f9:9b:d3:18:c5:7b:84:b0:8d:47:04:89: ad:44:13:79:90:fc:37:9a:d3:90:d5:c3:8e:2c:f8: 5a:2a:83:55:cc:8e:e7:98:6c:1b:7b:ee:84:61:1b: 5a:48:ac:59:1a:33:18:25:77:24:cb:48:6b:77:66: 64:b4:c0:11:10:04:c6:26:59:6d:d4:15:62:70:2a: 3b:a2:41:54:87:c8:8a:4d:6b:88:7d:5a:29:0f:5a: a7:66:ad:83:ab:e9:c4:f5:46:4a:0a:4f:14:0e:46: d2:99:6f:3a:83:40:34:2e:a2:fc:48:45:b2:7d:25: 55:70:f7:73:88:b9:1a:f0:11:0e:72:71:d7:92:b5: ca:9e:1d:0f:13:86:c9:fe:e7:f2:fe:d0:46:2e:5e: 1a:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:E1:0D:AC:F0:E7:38:C3:41:75:6D:DD:10:9B:64:6E:32:77:32:F3 X509v3 Authority Key Identifier: keyid:9F:6C:60:E6:A2:A5:BB:33:05:52:49:D4:72:38:47:7F:89:E1:3A:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/n2xg5qKluzMFUknUcjhHf4nhOnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n2xg5qKluzMFUknUcjhHf4nhOnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1E30/5CA5052CC9D711ED92A1382CC4F9AE02/51C204DAEA9011EFB8B82081C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.93.239.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:58:b4:49:eb:83:e9:ae:7a:ee:a2:7b:55:21:e2:3d:29:9e: 6d:bd:da:91:53:ea:2a:98:c8:37:3d:9e:33:42:90:02:d0:10: 34:d2:c6:ae:a6:1b:e3:e4:84:0b:a6:8d:ba:29:31:b8:12:ea: 9d:0c:4a:70:5c:ba:42:97:16:f5:b2:b7:f3:b7:3e:be:07:8d: 72:16:0f:86:5d:0a:1c:67:f1:33:4c:b6:d3:d7:79:76:f7:7b: c1:15:c0:c1:36:3c:2f:83:9e:30:1f:24:88:07:55:c8:b4:16: 71:ff:d1:c4:26:c1:60:b3:9c:3a:1a:a8:25:31:31:21:94:bc: 1b:39:3a:96:53:79:bf:77:f1:f2:a5:5a:62:bd:01:2a:32:b7: e4:06:87:8e:06:c0:5d:03:f3:b3:04:18:66:32:2b:17:44:b9: 69:3a:83:99:2e:1e:22:c2:7c:0b:7d:fe:55:ed:be:60:6e:0d: f9:97:c6:2a:0a:b6:0f:71:fc:2a:34:c8:65:61:0a:34:6b:8f: bf:60:29:a2:44:ea:e9:a2:6a:34:8d:50:31:67:c0:e5:6e:a2: d8:26:41:dd:8a:a7:c7:38:67:2e:9d:d6:72:f0:d9:ee:d8:2d: 81:89:ab:63:2a:94:95:7c:ab:5d:77:de:57:2d:bb:10:b6:6c: 53:f0:51:eb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFMzAxMTAvBgNVBAUTKDlGNkM2MEU2QTJBNUJCMzMwNTUyNDlENDcyMzg0NzdG ODlFMTNBNzAwHhcNMjUwMjE0MDQ1ODI0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FlY2Q3MC1jMmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwe9Ll0/5pCvD8JvimFeP0Y6qAcS/6ufrqcsQiOlWzXvyM+XESD62HNfrh0g6 7r/8JaNCKetvm4gol+p85LynZBnAdoZSjz7neGYI8xZU9DWbo3QFNYwmortk+Teq gMmdWsCfJuc3S7MuFeX5m9MYxXuEsI1HBImtRBN5kPw3mtOQ1cOOLPhaKoNVzI7n mGwbe+6EYRtaSKxZGjMYJXcky0hrd2ZktMAREATGJllt1BVicCo7okFUh8iKTWuI fVopD1qnZq2Dq+nE9UZKCk8UDkbSmW86g0A0LqL8SEWyfSVVcPdziLka8BEOcnHX krXKnh0PE4bJ/ufy/tBGLl4a2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFNThDazw 5zjDQXVt3RCbZG4ydzLzMB8GA1UdIwQYMBaAFJ9sYOaipbszBVJJ1HI4R3+J4Tpw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUUzMC81Q0E1MDUyQ0M5 RDcxMUVEOTJBMTM4MkNDNEY5QUUwMi9uMnhnNXFLbHV6TUZVa25VY2poSGY0bmhP bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL24yeGc1cUtsdXpNRlVrblVjamhIZjRuaE9uQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDFFMzAvNUNBNTA1MkNDOUQ3MTFFRDkyQTEzODJDQzRGOUFFMDIvNTFDMjA0REFF QTkwMTFFRkI4QjgyMDgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnXe8wDQYJKoZIhvcNAQELBQADggEBABpYtEnrg+mueu6i e1Uh4j0pnm292pFT6iqYyDc9njNCkALQEDTSxq6mG+PkhAumjbopMbgS6p0MSnBc ukKXFvWyt/O3Pr4HjXIWD4ZdChxn8TNMttPXeXb3e8EVwME2PC+DnjAfJIgHVci0 FnH/0cQmwWCznDoaqCUxMSGUvBs5OpZTeb938fKlWmK9ASoyt+QGh44GwF0D87ME GGYyKxdEuWk6g5kuHiLCfAt9/lXtvmBuDfmXxioKtg9x/Co0yGVhCjRrj79gKaJE 6umiajSNUDFnwOVuotgmQd2Kp8c4Zy6d1nLw2e7YLYGJq2MqlJV8q1133lctuxC2 bFPwUes= -----END CERTIFICATE-----Generated at Sat Apr 26 08:13:15 2025 by rpki-client