$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6940/E0D06B82D77E11EA8EE61B32C4F9AE02/153BEF1EE34A11EFA6960F0CC4F9AE02.roa File: 153BEF1EE34A11EFA6960F0CC4F9AE02.roa (raw, json) Hash identifier: hFavaYgDI5fd8yhRFzFQOHqkohum1YjPxt3lBbRwspQ= Subject key identifier: 09:DD:12:67:3D:2C:DC:C7:81:18:D1:EE:54:74:8C:13:22:C9:78:67 Certificate issuer: /CN=A91D6940/serialNumber=BD7568DC449372FE22C2EC9EB772B7D6E82D2A80 Certificate serial: 07E5 Authority key identifier: BD:75:68:DC:44:93:72:FE:22:C2:EC:9E:B7:72:B7:D6:E8:2D:2A:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vXVo3ESTcv4iwuyet3K31ugtKoA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6940/E0D06B82D77E11EA8EE61B32C4F9AE02/153BEF1EE34A11EFA6960F0CC4F9AE02.roa Signing time: Tue 04 Feb 2025 22:48:00 +0000 ROA not before: Tue 04 Feb 2025 22:48:00 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 139077 IP address blocks: 103.181.224.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6940/E0D06B82D77E11EA8EE61B32C4F9AE02/vXVo3ESTcv4iwuyet3K31ugtKoA.crl rsync://rpki.apnic.net/member_repository/A91D6940/E0D06B82D77E11EA8EE61B32C4F9AE02/vXVo3ESTcv4iwuyet3K31ugtKoA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vXVo3ESTcv4iwuyet3K31ugtKoA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:43:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2021 (0x7e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6940, serialNumber=BD7568DC449372FE22C2EC9EB772B7D6E82D2A80 Validity Not Before: Feb 4 22:48:00 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67a2991f-f3f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a0:ed:7b:ac:67:16:80:e7:76:e8:bf:dc:f7: b7:2c:8e:14:c2:98:12:64:1a:95:54:ab:75:be:c7: 48:12:d9:c2:b9:d8:38:23:5a:f6:8d:54:e0:4c:68: d5:a8:ad:39:9b:a7:d6:e4:49:b6:72:01:ba:1d:e7: d9:e4:34:e9:a6:02:ce:c2:65:99:ad:22:c3:d0:0a: cd:73:28:b6:84:82:c1:c0:bc:ba:33:9a:09:ab:95: c8:c1:35:69:a8:2d:1c:09:c3:c5:07:ce:c2:ff:9a: 76:03:0a:0a:9d:7b:11:47:89:a0:2a:4c:b9:85:99: 11:cf:00:5a:da:e6:11:5f:1f:6b:4b:e4:b1:54:4e: 20:17:93:ab:a6:47:e6:79:71:57:12:12:0a:91:79: 12:af:cc:b6:06:1c:a3:e3:bf:d1:3c:48:8b:24:29: 2c:91:ba:5a:e4:5b:f5:7b:81:ce:33:ff:b3:62:bb: 67:d1:aa:36:f4:ab:bd:f1:6e:70:f7:0e:95:eb:32: 0f:78:22:29:ad:af:ce:69:28:97:9e:9d:55:dc:e9: b2:a7:6c:fb:f7:89:81:c4:c3:b8:37:cb:f5:d7:c1: 61:7a:f5:49:8d:1f:f4:f9:06:07:3a:1a:cb:c3:27: d2:a0:c8:36:39:08:88:8f:6e:2c:fb:44:b5:d2:0f: 01:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:DD:12:67:3D:2C:DC:C7:81:18:D1:EE:54:74:8C:13:22:C9:78:67 X509v3 Authority Key Identifier: keyid:BD:75:68:DC:44:93:72:FE:22:C2:EC:9E:B7:72:B7:D6:E8:2D:2A:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6940/E0D06B82D77E11EA8EE61B32C4F9AE02/vXVo3ESTcv4iwuyet3K31ugtKoA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vXVo3ESTcv4iwuyet3K31ugtKoA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6940/E0D06B82D77E11EA8EE61B32C4F9AE02/153BEF1EE34A11EFA6960F0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.224.0/23 Signature Algorithm: sha256WithRSAEncryption 95:12:c2:0c:49:50:af:1b:ee:5e:99:0c:e6:26:4b:e9:17:37: 06:ec:bf:76:c0:60:1b:dc:5e:d7:29:58:46:98:ab:0f:8a:56: cd:fa:98:62:8e:6c:b6:ef:09:1e:1f:83:1a:cb:06:ee:78:69: 13:bd:ce:e2:ae:4b:dd:23:80:5f:57:f0:c0:e6:62:f2:7b:38: 33:0b:2a:f1:49:50:53:51:12:e2:95:be:0c:8d:c2:64:78:10: b9:1f:1c:6c:52:e2:c6:d0:ac:cc:52:4c:c4:33:ad:df:73:5a: 85:68:80:70:64:11:fc:b3:54:d9:15:b1:91:4e:d3:b8:c6:39: 30:e2:77:0b:b6:d5:71:9e:ba:ae:11:6e:f8:a6:6d:c8:da:47: 78:a8:57:e7:17:2c:a9:9f:49:37:f3:2b:56:f5:25:b2:2b:d7: 50:b2:28:b6:56:d6:e9:8d:37:07:88:1e:5b:1a:4c:32:6a:00: 8f:b7:0d:c0:41:42:22:2c:d6:05:fb:b4:c4:6a:e6:93:49:e6: b7:cd:35:e0:c6:10:37:f5:7b:d1:3f:cc:23:fb:9a:6e:0e:d1: 02:f4:95:4b:59:2f:38:bc:61:4f:9e:a5:ed:d4:97:a2:9d:ac: 01:e2:b3:58:96:56:d4:c4:2f:77:d6:80:d5:00:d8:9a:d4:77: 52:19:06:81 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY5NDAxMTAvBgNVBAUTKEJENzU2OERDNDQ5MzcyRkUyMkMyRUM5RUI3NzJCN0Q2 RTgyRDJBODAwHhcNMjUwMjA0MjI0ODAwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyOTkxZi1mM2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6Dte6xnFoDndui/3Pe3LI4UwpgSZBqVVKt1vsdIEtnCudg4I1r2jVTgTGjV qK05m6fW5Em2cgG6HefZ5DTppgLOwmWZrSLD0ArNcyi2hILBwLy6M5oJq5XIwTVp qC0cCcPFB87C/5p2AwoKnXsRR4mgKky5hZkRzwBa2uYRXx9rS+SxVE4gF5Orpkfm eXFXEhIKkXkSr8y2Bhyj47/RPEiLJCkskbpa5Fv1e4HOM/+zYrtn0ao29Ku98W5w 9w6V6zIPeCIpra/OaSiXnp1V3Omyp2z794mBxMO4N8v118FhevVJjR/0+QYHOhrL wyfSoMg2OQiIj24s+0S10g8BaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAndEmc9 LNzHgRjR7lR0jBMiyXhnMB8GA1UdIwQYMBaAFL11aNxEk3L+IsLsnrdyt9boLSqA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjk0MC9FMEQwNkI4MkQ3 N0UxMUVBOEVFNjFCMzJDNEY5QUUwMi92WFZvM0VTVGN2NGl3dXlldDNLMzF1Z3RL b0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZYVm8zRVNUY3Y0aXd1eWV0M0szMXVndEtvQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY5NDAvRTBEMDZCODJENzdFMTFFQThFRTYxQjMyQzRGOUFFMDIvMTUzQkVGMUVF MzRBMTFFRkE2OTYwRjBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnteAwDQYJKoZIhvcNAQELBQADggEBAJUSwgxJUK8b7l6Z DOYmS+kXNwbsv3bAYBvcXtcpWEaYqw+KVs36mGKObLbvCR4fgxrLBu54aRO9zuKu S90jgF9X8MDmYvJ7ODMLKvFJUFNREuKVvgyNwmR4ELkfHGxS4sbQrMxSTMQzrd9z WoVogHBkEfyzVNkVsZFO07jGOTDidwu21XGeuq4RbvimbcjaR3ioV+cXLKmfSTfz K1b1JbIr11CyKLZW1umNNweIHlsaTDJqAI+3DcBBQiIs1gX7tMRq5pNJ5rfNNeDG EDf1e9E/zCP7mm4O0QL0lUtZLzi8YU+epe3Ul6KdrAHis1iWVtTEL3fWgNUA2JrU d1IZBoE= -----END CERTIFICATE-----Generated at Sat Apr 26 08:16:01 2025 by rpki-client