$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/8E4BBF50F5C511EF89110646C4F9AE02.roa File: 8E4BBF50F5C511EF89110646C4F9AE02.roa (raw, json) Hash identifier: S0EFM1LlMU93Q/SmaTsXJfrCySvLdm2xsJllc0bdMTA= Subject key identifier: C5:D4:8F:63:2C:18:A5:1C:AE:71:BC:D9:D0:A8:67:DC:33:07:1E:3E Certificate issuer: /CN=A91D6AB2/serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Certificate serial: 03E8 Authority key identifier: 4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/8E4BBF50F5C511EF89110646C4F9AE02.roa Signing time: Fri 28 Feb 2025 11:17:12 +0000 ROA not before: Fri 28 Feb 2025 11:17:12 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140950 IP address blocks: 103.153.174.0/24 maxlen: 24 2001:df4:5380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:40:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1000 (0x3e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=4D901C34253BCA5B274EEB106993DEF720A252AC Validity Not Before: Feb 28 11:17:12 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=67c19b37-f35c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:52:8e:9f:f9:0b:49:bb:6e:7f:bd:93:f2:b3: bb:18:30:1e:b1:e5:a9:e1:fb:f1:7f:a1:86:24:89: c7:3e:ba:56:10:1b:22:4f:90:70:eb:09:81:ce:37: 6e:ea:5c:76:bd:8e:99:6c:f0:af:ce:33:82:53:f0: c8:1e:fb:28:47:15:03:dd:2a:63:9e:8e:bf:c5:5d: 15:12:4c:7b:3e:1f:d0:0c:af:36:91:af:f5:d0:28: 1b:21:b4:a1:70:ff:06:16:21:1c:f6:05:88:de:8d: 88:9f:f0:aa:62:a9:69:20:f2:05:0c:68:82:a2:a6: ae:59:33:4a:1d:ab:86:5c:92:68:75:cc:37:1b:8c: 4a:7c:d0:01:9e:b1:43:3c:50:12:41:cf:a1:aa:1c: 2b:f7:06:e6:27:bd:39:2b:c1:66:32:f0:fb:8b:23: 20:fe:7c:c2:36:36:b1:eb:a0:9b:1e:58:08:05:5e: 3f:58:31:8a:42:1e:bb:13:eb:fd:9f:97:c7:b8:a1: 81:09:73:aa:21:0a:58:16:36:25:54:0c:37:84:2f: 52:4d:94:66:53:65:7e:1b:b5:66:c5:bb:bd:c5:33: cb:05:a3:22:5e:a8:0d:fd:35:69:d9:fc:0a:0c:cf: 4a:76:a6:cd:ba:99:26:10:5a:bc:38:a5:f9:af:06: b4:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:D4:8F:63:2C:18:A5:1C:AE:71:BC:D9:D0:A8:67:DC:33:07:1E:3E X509v3 Authority Key Identifier: keyid:4D:90:1C:34:25:3B:CA:5B:27:4E:EB:10:69:93:DE:F7:20:A2:52:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/TZAcNCU7ylsnTusQaZPe9yCiUqw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZAcNCU7ylsnTusQaZPe9yCiUqw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/8E4BBF50F5C511EF89110646C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.174.0/24 IPv6: 2001:df4:5380::/48 Signature Algorithm: sha256WithRSAEncryption 48:23:5a:57:34:10:63:a1:e5:e8:38:09:5c:30:83:ae:35:7c: d6:a1:7f:4a:ab:7d:bb:51:67:7a:64:44:9e:bf:25:b4:3f:5c: 79:4e:c8:a4:15:ca:10:cd:aa:11:d5:a1:0b:45:0f:4f:54:3c: 2a:3d:d9:f3:c7:0e:48:ab:0e:e4:42:c4:4e:29:1c:c9:4f:98: cc:39:bf:2e:7d:61:99:b9:3c:1d:07:ad:8b:56:77:09:2a:dd: 2f:67:b6:45:54:3c:98:ba:5b:0a:a9:cb:55:16:97:22:f0:26: 38:9c:aa:27:c3:3f:a9:46:65:17:32:41:84:2f:ae:21:4f:f3: 20:99:0d:9d:eb:16:44:dd:29:23:da:f1:a8:56:8b:52:ba:a9: 35:ff:59:a5:83:e3:32:9e:4c:f9:1c:59:98:aa:bd:6f:53:99: b8:11:ba:26:60:3d:91:1b:13:79:ed:36:48:28:23:8e:bc:09: ce:a6:fb:73:0b:a6:7e:d0:02:14:3d:69:59:83:d0:bf:09:31: 4d:57:17:e8:54:8b:1c:9f:02:77:de:50:09:12:2c:45:26:c9: 9c:9d:b7:cf:d8:37:75:92:04:c8:a3:72:0c:39:13:82:e7:60: cd:50:37:17:7f:0f:91:2b:93:5c:67:17:6c:1f:5c:09:60:ba: 0f:ef:22:f0 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDREOTAxQzM0MjUzQkNBNUIyNzRFRUIxMDY5OTNERUY3 MjBBMjUyQUMwHhcNMjUwMjI4MTExNzEyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MxOWIzNy1mMzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFKOn/kLSbtuf72T8rO7GDAeseWp4fvxf6GGJInHPrpWEBsiT5Bw6wmBzjdu 6lx2vY6ZbPCvzjOCU/DIHvsoRxUD3Spjno6/xV0VEkx7Ph/QDK82ka/10CgbIbSh cP8GFiEc9gWI3o2In/CqYqlpIPIFDGiCoqauWTNKHauGXJJodcw3G4xKfNABnrFD PFASQc+hqhwr9wbmJ705K8FmMvD7iyMg/nzCNjax66CbHlgIBV4/WDGKQh67E+v9 n5fHuKGBCXOqIQpYFjYlVAw3hC9STZRmU2V+G7Vmxbu9xTPLBaMiXqgN/TVp2fwK DM9KdqbNupkmEFq8OKX5rwa0AQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMXUj2Ms GKUcrnG82dCoZ9wzBx4+MB8GA1UdIwQYMBaAFE2QHDQlO8pbJ07rEGmT3vcgolKs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9UWkFjTkNVN3lsc25UdXNRYVpQZTl5Q2lV cXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RaQWNOQ1U3eWxzblR1c1FhWlBlOXlDaVVxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDZBQjIvMEFGMkVBQUFDRjcwMTFFQThBRTU1RDQ4QzRGOUFFMDIvOEU0QkJGNTBG NUM1MTFFRjg5MTEwNjQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnma4wDwQCAAIwCQMHACABDfRTgDANBgkqhkiG9w0BAQsF AAOCAQEASCNaVzQQY6Hl6DgJXDCDrjV81qF/Sqt9u1FnemREnr8ltD9ceU7IpBXK EM2qEdWhC0UPT1Q8Kj3Z88cOSKsO5ELETikcyU+YzDm/Ln1hmbk8HQeti1Z3CSrd L2e2RVQ8mLpbCqnLVRaXIvAmOJyqJ8M/qUZlFzJBhC+uIU/zIJkNnesWRN0pI9rx qFaLUrqpNf9ZpYPjMp5M+RxZmKq9b1OZuBG6JmA9kRsTee02SCgjjrwJzqb7cwum ftACFD1pWYPQvwkxTVcX6FSLHJ8Cd95QCRIsRSbJnJ23z9g3dZIEyKNyDDkTgudg zVA3F38PkSuTXGcXbB9cCWC6D+8i8A== -----END CERTIFICATE-----Generated at Sat Apr 26 08:15:49 2025 by rpki-client