$ rpki-client -vvf rpki.apnic.net/member_repository/A91D774B/8FAB216643B111EC9A51A52EC4F9AE02/30B8A186DBEF11EFAF6FF37AC4F9AE02.roa File: 30B8A186DBEF11EFAF6FF37AC4F9AE02.roa (raw, json) Hash identifier: C2tgoi4ndceE+FSZfwDXIED+n+ZW+4Wp1mUo8nhP9gw= Subject key identifier: 09:65:78:07:F7:96:50:0E:6E:83:CD:6C:0C:3B:CF:C1:03:57:72:D7 Certificate issuer: /CN=A91D774B/serialNumber=98F56AEA8744A3D15EC392AD06D6083770462541 Certificate serial: 044E Authority key identifier: 98:F5:6A:EA:87:44:A3:D1:5E:C3:92:AD:06:D6:08:37:70:46:25:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mPVq6odEo9Few5KtBtYIN3BGJUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D774B/8FAB216643B111EC9A51A52EC4F9AE02/30B8A186DBEF11EFAF6FF37AC4F9AE02.roa Signing time: Sun 26 Jan 2025 14:09:43 +0000 ROA not before: Sun 26 Jan 2025 14:09:43 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 136997 IP address blocks: 103.175.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D774B/8FAB216643B111EC9A51A52EC4F9AE02/mPVq6odEo9Few5KtBtYIN3BGJUE.crl rsync://rpki.apnic.net/member_repository/A91D774B/8FAB216643B111EC9A51A52EC4F9AE02/mPVq6odEo9Few5KtBtYIN3BGJUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mPVq6odEo9Few5KtBtYIN3BGJUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:54:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1102 (0x44e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D774B, serialNumber=98F56AEA8744A3D15EC392AD06D6083770462541 Validity Not Before: Jan 26 14:09:43 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67964227-4cb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c4:eb:9e:bd:e1:62:86:ee:ae:b3:80:63:04: 0f:ab:4e:b0:93:b7:e7:0b:3c:a2:9b:23:32:18:64: 71:d4:bb:10:8a:ce:61:ac:69:5a:07:ca:e1:98:4a: 2d:c6:22:1d:f3:1e:7f:70:4f:98:f1:0c:86:a7:0d: 83:d1:9d:ff:93:1e:e5:34:80:27:c3:67:68:8d:f1: 4b:2f:b5:f8:c7:89:e1:7d:ee:3a:46:de:8a:60:9d: 1a:25:e2:a7:82:f3:e5:1f:ca:5f:27:ae:9a:e3:d0: 72:4b:b7:bb:c6:36:f6:da:58:da:df:ca:c8:12:fc: 64:72:39:b7:c5:42:ee:a0:16:78:1e:3d:bd:7b:b0: a0:8a:10:36:27:e6:f4:fa:63:a7:f4:69:a7:61:a3: b4:02:0a:be:6d:81:5b:4a:98:1b:ce:4c:fe:89:89: 72:05:d6:0e:d3:19:6f:a1:48:7e:ea:b0:3d:44:f3: 80:db:89:b0:98:19:14:d5:cc:13:cb:25:fa:08:6b: 4e:49:12:ae:7c:c3:3e:e8:95:05:58:c8:64:1e:98: f5:aa:c7:6f:fb:5f:56:d0:61:eb:c1:95:08:51:b0: d8:f7:df:63:96:f5:22:2e:6b:18:e1:24:74:30:bb: c0:c2:87:0f:e7:e5:cf:80:e1:ee:b4:22:aa:3f:39: 34:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:65:78:07:F7:96:50:0E:6E:83:CD:6C:0C:3B:CF:C1:03:57:72:D7 X509v3 Authority Key Identifier: keyid:98:F5:6A:EA:87:44:A3:D1:5E:C3:92:AD:06:D6:08:37:70:46:25:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D774B/8FAB216643B111EC9A51A52EC4F9AE02/mPVq6odEo9Few5KtBtYIN3BGJUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mPVq6odEo9Few5KtBtYIN3BGJUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D774B/8FAB216643B111EC9A51A52EC4F9AE02/30B8A186DBEF11EFAF6FF37AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.244.0/24 Signature Algorithm: sha256WithRSAEncryption 88:21:44:df:e6:7e:bf:60:a9:91:14:46:dd:aa:c7:71:5d:fe: 39:f2:d0:38:07:09:29:ee:bb:d8:68:9f:05:2f:e9:54:17:3b: 21:e7:1a:d6:8c:f4:64:1c:29:4c:12:4b:2f:c0:7f:79:d7:79: dd:8a:01:00:d3:d9:65:f8:03:6a:b2:91:83:eb:02:84:27:c4: 6c:6c:93:53:24:c1:a8:53:97:88:e1:3e:16:13:ef:ea:a1:69: 18:56:db:ed:bc:74:ca:0c:a5:a0:dc:fe:d4:6b:c6:6d:f5:ac: 24:a5:ac:e3:17:8c:0b:fd:46:16:24:74:20:57:62:50:cc:3c: 5f:ec:7e:3c:94:af:ce:4d:5b:1c:99:11:ae:ee:ba:8c:78:56: d4:31:2e:f9:42:05:bc:00:17:bc:ad:5b:63:37:bc:7d:47:bb: 26:ca:2e:25:ea:06:6b:1d:c4:62:84:e9:0b:0e:41:32:25:1a: b4:f3:ee:45:ff:40:3c:aa:06:6e:30:95:72:b4:46:95:60:95: 80:af:70:8b:71:96:cc:44:36:56:26:77:58:84:f5:3a:b3:48: d5:ff:69:3e:19:8a:d9:d4:18:bc:c2:03:36:b7:c6:d0:97:eb: 29:46:13:b2:16:7e:08:74:7f:99:22:b5:5b:29:bf:9d:e4:b7: 82:29:79:fd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc3NEIxMTAvBgNVBAUTKDk4RjU2QUVBODc0NEEzRDE1RUMzOTJBRDA2RDYwODM3 NzA0NjI1NDEwHhcNMjUwMTI2MTQwOTQzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk2NDIyNy00Y2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApcTrnr3hYoburrOAYwQPq06wk7fnCzyimyMyGGRx1LsQis5hrGlaB8rhmEot xiId8x5/cE+Y8QyGpw2D0Z3/kx7lNIAnw2dojfFLL7X4x4nhfe46Rt6KYJ0aJeKn gvPlH8pfJ66a49ByS7e7xjb22lja38rIEvxkcjm3xULuoBZ4Hj29e7CgihA2J+b0 +mOn9GmnYaO0Agq+bYFbSpgbzkz+iYlyBdYO0xlvoUh+6rA9RPOA24mwmBkU1cwT yyX6CGtOSRKufMM+6JUFWMhkHpj1qsdv+19W0GHrwZUIUbDY999jlvUiLmsY4SR0 MLvAwocP5+XPgOHutCKqPzk0lwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAlleAf3 llAOboPNbAw7z8EDV3LXMB8GA1UdIwQYMBaAFJj1auqHRKPRXsOSrQbWCDdwRiVB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzc0Qi84RkFCMjE2NjQz QjExMUVDOUE1MUE1MkVDNEY5QUUwMi9tUFZxNm9kRW85RmV3NUt0QnRZSU4zQkdK VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21QVnE2b2RFbzlGZXc1S3RCdFlJTjNCR0pVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDc3NEIvOEZBQjIxNjY0M0IxMTFFQzlBNTFBNTJFQzRGOUFFMDIvMzBCOEExODZE QkVGMTFFRkFGNkZGMzdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnr/QwDQYJKoZIhvcNAQELBQADggEBAIghRN/mfr9gqZEU Rt2qx3Fd/jny0DgHCSnuu9honwUv6VQXOyHnGtaM9GQcKUwSSy/Af3nXed2KAQDT 2WX4A2qykYPrAoQnxGxsk1MkwahTl4jhPhYT7+qhaRhW2+28dMoMpaDc/tRrxm31 rCSlrOMXjAv9RhYkdCBXYlDMPF/sfjyUr85NWxyZEa7uuox4VtQxLvlCBbwAF7yt W2M3vH1HuybKLiXqBmsdxGKE6QsOQTIlGrTz7kX/QDyqBm4wlXK0RpVglYCvcItx lsxENlYmd1iE9TqzSNX/aT4ZitnUGLzCAza3xtCX6ylGE7IWfgh0f5kitVspv53k t4Ipef0= -----END CERTIFICATE-----Generated at Sat Apr 26 12:24:33 2025 by rpki-client