$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/521DCED89C5911EC97E58855C4F9AE02.roa File: 521DCED89C5911EC97E58855C4F9AE02.roa (raw, json) Hash identifier: K/6Sxmjn7Y9RMsh3D/CkcDPEvNJggoP2DR+Gq8xtxL8= Subject key identifier: 24:39:57:73:F2:E1:94:EF:AD:AF:A9:0A:DF:BB:30:4F:35:77:57:F9 Certificate issuer: /CN=A91D9E03/serialNumber=A30409541839054B1C3E15D1983D7DBD8A7D6482 Certificate serial: 0359 Authority key identifier: A3:04:09:54:18:39:05:4B:1C:3E:15:D1:98:3D:7D:BD:8A:7D:64:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owQJVBg5BUscPhXRmD19vYp9ZII.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/521DCED89C5911EC97E58855C4F9AE02.roa Signing time: Tue 21 Jan 2025 00:34:28 +0000 ROA not before: Tue 21 Jan 2025 00:34:28 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 138522 IP address blocks: 103.127.176.0/22 maxlen: 22 103.127.176.0/23 maxlen: 23 103.127.176.0/24 maxlen: 24 103.127.177.0/24 maxlen: 24 103.127.178.0/23 maxlen: 23 103.127.178.0/24 maxlen: 24 103.127.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.crl rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owQJVBg5BUscPhXRmD19vYp9ZII.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:35:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 857 (0x359) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9E03, serialNumber=A30409541839054B1C3E15D1983D7DBD8A7D6482 Validity Not Before: Jan 21 00:34:28 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=678eeb94-9b12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:27:f5:12:02:a1:5e:f4:0a:53:94:27:18:5f: 35:9c:96:0d:fd:64:1d:e1:6a:7a:54:7f:8e:ff:46: 27:34:0e:9c:3b:9a:f2:49:20:dc:fc:4a:d7:1d:99: 24:e5:08:6f:c5:86:53:2c:2d:53:27:2c:f6:52:fe: e3:8c:a2:5d:b8:ff:8b:50:e6:69:95:78:74:10:47: 16:3b:1f:ba:b4:86:76:b1:ef:4b:7d:7b:24:55:c5: 1e:78:cf:0f:2d:4a:cf:96:b2:de:8f:0e:00:4d:98: 28:87:c5:cd:c3:5b:db:6f:da:d0:1e:73:3d:a5:27: 54:29:5e:77:b3:32:10:1c:91:28:a7:4a:dd:be:ea: 50:27:3a:59:93:83:7e:33:93:4f:72:5e:1b:0e:7c: 5d:04:41:9c:a7:28:dc:5c:8a:0f:f9:92:a9:f8:1c: 43:13:48:4b:ea:d2:e7:c7:3d:bc:02:7c:56:d1:df: 6b:36:2d:b1:dc:5f:a4:b7:a7:ae:bf:8e:47:73:6c: 89:85:b8:e7:98:52:d2:45:07:b1:5b:78:e1:e8:df: ea:ba:7a:75:43:df:35:4f:40:40:72:e1:2a:a2:d3: 38:65:62:17:c9:21:9b:e8:9d:5d:f6:91:ab:5a:cf: 82:ee:b8:e7:59:93:77:a6:67:69:5d:b0:ba:4f:d8: bd:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:39:57:73:F2:E1:94:EF:AD:AF:A9:0A:DF:BB:30:4F:35:77:57:F9 X509v3 Authority Key Identifier: keyid:A3:04:09:54:18:39:05:4B:1C:3E:15:D1:98:3D:7D:BD:8A:7D:64:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/owQJVBg5BUscPhXRmD19vYp9ZII.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/owQJVBg5BUscPhXRmD19vYp9ZII.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9E03/996A7E889C5611ECBDEE0553C4F9AE02/521DCED89C5911EC97E58855C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.127.176.0/22 Signature Algorithm: sha256WithRSAEncryption 05:31:42:78:98:65:55:f4:b5:4b:f5:5b:fc:6c:ec:40:23:ee: a2:8e:5a:92:fa:03:2d:32:6e:65:3d:fa:08:a2:54:4a:11:76: aa:64:1d:70:71:85:a6:e6:2a:70:06:78:52:4b:78:cd:89:44: 1e:9f:d1:59:0a:f2:7b:7c:cb:fc:bd:85:36:19:f0:2d:04:74: e1:64:ee:3d:b5:f5:81:d2:b9:aa:f6:34:b2:61:5d:5f:9e:22: 31:65:53:7e:d8:54:e5:20:f7:26:88:b9:05:8b:2d:5f:7f:da: 42:5b:c4:6c:f2:9f:eb:df:1d:b9:7a:87:a4:dc:ac:a0:ba:33: 81:1c:3b:37:0c:bb:b5:ef:8d:bf:7e:ec:f5:8e:1d:a7:e6:34: 6e:d2:94:2b:6b:2b:44:42:c1:f2:29:f6:ec:de:96:2b:b0:bc: 16:40:a9:e5:ba:f0:3d:dc:49:ce:9d:04:c2:56:89:a1:0e:61: 52:85:2e:16:c7:75:d9:98:c6:77:60:58:21:88:52:88:5c:58: 0f:15:6a:8a:ae:c0:2b:4e:47:f0:ac:81:b3:5e:41:0e:cb:04: f8:1a:a0:df:9e:1f:68:a0:ee:dd:cd:8b:f4:e5:92:da:c6:f9: 18:d0:6b:74:cb:ce:95:f0:d5:c2:f7:94:56:c4:a4:6a:df:9c: ca:1c:41:3d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlFMDMxMTAvBgNVBAUTKEEzMDQwOTU0MTgzOTA1NEIxQzNFMTVEMTk4M0Q3REJE OEE3RDY0ODIwHhcNMjUwMTIxMDAzNDI4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzhlZWI5NC05YjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlyf1EgKhXvQKU5QnGF81nJYN/WQd4Wp6VH+O/0YnNA6cO5rySSDc/ErXHZkk 5QhvxYZTLC1TJyz2Uv7jjKJduP+LUOZplXh0EEcWOx+6tIZ2se9LfXskVcUeeM8P LUrPlrLejw4ATZgoh8XNw1vbb9rQHnM9pSdUKV53szIQHJEop0rdvupQJzpZk4N+ M5NPcl4bDnxdBEGcpyjcXIoP+ZKp+BxDE0hL6tLnxz28AnxW0d9rNi2x3F+kt6eu v45Hc2yJhbjnmFLSRQexW3jh6N/qunp1Q981T0BAcuEqotM4ZWIXySGb6J1d9pGr Ws+C7rjnWZN3pmdpXbC6T9i9aQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCQ5V3Py 4ZTvra+pCt+7ME81d1f5MB8GA1UdIwQYMBaAFKMECVQYOQVLHD4V0Zg9fb2KfWSC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUUwMy85OTZBN0U4ODlD NTYxMUVDQkRFRTA1NTNDNEY5QUUwMi9vd1FKVkJnNUJVc2NQaFhSbUQxOXZZcDla SUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL293UUpWQmc1QlVzY1BoWFJtRDE5dllwOVpJSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDlFMDMvOTk2QTdFODg5QzU2MTFFQ0JERUUwNTUzQzRGOUFFMDIvNTIxRENFRDg5 QzU5MTFFQzk3RTU4ODU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnf7AwDQYJKoZIhvcNAQELBQADggEBAAUxQniYZVX0tUv1 W/xs7EAj7qKOWpL6Ay0ybmU9+giiVEoRdqpkHXBxhabmKnAGeFJLeM2JRB6f0VkK 8nt8y/y9hTYZ8C0EdOFk7j219YHSuar2NLJhXV+eIjFlU37YVOUg9yaIuQWLLV9/ 2kJbxGzyn+vfHbl6h6TcrKC6M4EcOzcMu7Xvjb9+7PWOHafmNG7SlCtrK0RCwfIp 9uzeliuwvBZAqeW68D3cSc6dBMJWiaEOYVKFLhbHddmYxndgWCGIUohcWA8Vaoqu wCtOR/CsgbNeQQ7LBPgaoN+eH2ig7t3Ni/TlktrG+RjQa3TLzpXw1cL3lFbEpGrf nMocQT0= -----END CERTIFICATE-----Generated at Sat Apr 26 08:04:09 2025 by rpki-client