$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2176/88AB8E94C6FF11EA8252E109C4F9AE02/4A9F953EE29611EF8E06890AC4F9AE02.roa File: 4A9F953EE29611EF8E06890AC4F9AE02.roa (raw, json) Hash identifier: 75Xx9HK/DSb6cqMFmlY3w1Yvea4hRHDh6jcfeq7uocg= Subject key identifier: 6C:94:12:42:52:38:CF:DB:33:84:1B:25:59:C3:B6:B2:A5:11:58:68 Certificate issuer: /CN=A91E2176/serialNumber=C09D12C7CA2EB4D35CA50A939D3D9CBE817E39AD Certificate serial: 0821 Authority key identifier: C0:9D:12:C7:CA:2E:B4:D3:5C:A5:0A:93:9D:3D:9C:BE:81:7E:39:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJ0Sx8outNNcpQqTnT2cvoF-Oa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2176/88AB8E94C6FF11EA8252E109C4F9AE02/4A9F953EE29611EF8E06890AC4F9AE02.roa Signing time: Tue 04 Feb 2025 01:21:00 +0000 ROA not before: Tue 04 Feb 2025 01:21:00 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140999 IP address blocks: 103.153.18.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2176/88AB8E94C6FF11EA8252E109C4F9AE02/wJ0Sx8outNNcpQqTnT2cvoF-Oa0.crl rsync://rpki.apnic.net/member_repository/A91E2176/88AB8E94C6FF11EA8252E109C4F9AE02/wJ0Sx8outNNcpQqTnT2cvoF-Oa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJ0Sx8outNNcpQqTnT2cvoF-Oa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:35:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2081 (0x821) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2176, serialNumber=C09D12C7CA2EB4D35CA50A939D3D9CBE817E39AD Validity Not Before: Feb 4 01:21:00 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=67a16b7b-42f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c3:1b:11:ea:b4:c0:39:21:be:e4:43:a2:8e: e6:bb:19:22:35:66:6a:8b:7c:8b:77:75:94:80:b8: f6:71:23:05:59:a2:c9:03:33:67:b3:7e:7b:70:f5: e7:07:b2:35:60:c2:d4:cf:89:90:c9:d6:d1:27:a4: 44:5d:96:81:ba:3b:76:7e:38:a3:fa:c5:f8:c0:91: 39:21:a1:e4:c3:d9:bc:47:9f:cb:fa:65:75:c4:8f: fc:8c:a8:5b:66:f0:ec:a7:9a:bf:7e:cd:cb:21:94: 72:44:2f:81:71:94:4e:63:22:c3:cd:b8:85:17:58: 35:f3:2e:9d:5f:0f:b7:7b:93:e9:73:85:1b:b5:b9: b5:28:46:63:07:98:77:a6:f9:02:06:17:78:27:b0: 6e:f9:22:de:86:da:64:3e:fe:bf:51:60:a2:ff:41: 4c:25:ae:9e:2a:76:ef:fe:9d:26:06:3c:df:a0:b6: 5d:ce:40:8d:ef:01:20:ba:4a:a1:f3:93:d8:e1:f6: 11:20:ef:8d:1b:8e:19:e7:ed:df:85:3a:24:8f:bb: 5f:08:e5:c4:be:de:b9:4b:47:76:33:5d:96:be:7e: b4:05:df:be:b4:da:6f:a3:55:09:f7:a7:6b:87:4b: 1b:a4:90:ab:06:2d:48:82:bf:39:c1:f3:cc:62:1a: bf:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:94:12:42:52:38:CF:DB:33:84:1B:25:59:C3:B6:B2:A5:11:58:68 X509v3 Authority Key Identifier: keyid:C0:9D:12:C7:CA:2E:B4:D3:5C:A5:0A:93:9D:3D:9C:BE:81:7E:39:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2176/88AB8E94C6FF11EA8252E109C4F9AE02/wJ0Sx8outNNcpQqTnT2cvoF-Oa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wJ0Sx8outNNcpQqTnT2cvoF-Oa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2176/88AB8E94C6FF11EA8252E109C4F9AE02/4A9F953EE29611EF8E06890AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.18.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:55:80:61:29:14:77:30:fe:15:48:25:26:83:d9:44:ba:0f: c0:8f:f7:5c:ca:ce:5a:77:42:00:90:a1:e9:d7:6c:5f:e8:c1: 28:7f:f5:a7:3f:71:2f:7f:5b:58:e8:68:31:dc:40:84:00:d7: 08:fa:05:c0:04:c5:8d:a1:e0:85:8a:ff:94:37:cb:9b:90:80: 3f:f3:84:52:4c:63:1b:90:a9:9e:e0:2e:3e:86:59:05:6c:b6: 0f:fa:6f:e2:22:69:a8:fc:f8:42:b7:14:05:2f:8c:c7:85:92: 03:76:78:b3:5f:4f:7f:a7:40:a2:38:63:81:54:ae:fc:cc:eb: 95:75:78:ca:cf:72:3c:2e:18:28:35:3d:84:bb:49:a7:39:f1: 65:ba:54:b0:4f:74:78:de:cc:0d:52:fa:b8:00:dd:07:1b:39: 31:99:0b:51:6d:09:ba:d2:c5:e7:66:08:2f:62:a7:bd:ef:09: 0c:c5:8e:a3:15:3f:af:0c:d2:4a:e2:01:ab:ad:0b:f4:90:44: b6:5d:42:7f:34:0c:e8:90:a0:30:a6:85:b8:2e:cf:31:ea:3d: f2:b3:fd:9d:6b:0a:f0:4e:df:f5:ef:18:70:5e:a3:cc:5f:f5: b1:ad:31:f2:37:d2:5f:48:70:de:42:3e:ee:83:18:7f:f2:e9: 5a:ab:9f:30 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTIxNzYxMTAvBgNVBAUTKEMwOUQxMkM3Q0EyRUI0RDM1Q0E1MEE5MzlEM0Q5Q0JF ODE3RTM5QUQwHhcNMjUwMjA0MDEyMTAwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ExNmI3Yi00MmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcMbEeq0wDkhvuRDoo7muxkiNWZqi3yLd3WUgLj2cSMFWaLJAzNns357cPXn B7I1YMLUz4mQydbRJ6REXZaBujt2fjij+sX4wJE5IaHkw9m8R5/L+mV1xI/8jKhb ZvDsp5q/fs3LIZRyRC+BcZROYyLDzbiFF1g18y6dXw+3e5Ppc4Ubtbm1KEZjB5h3 pvkCBhd4J7Bu+SLehtpkPv6/UWCi/0FMJa6eKnbv/p0mBjzfoLZdzkCN7wEgukqh 85PY4fYRIO+NG44Z5+3fhTokj7tfCOXEvt65S0d2M12Wvn60Bd++tNpvo1UJ96dr h0sbpJCrBi1Igr85wfPMYhq/+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFGyUEkJS OM/bM4QbJVnDtrKlEVhoMB8GA1UdIwQYMBaAFMCdEsfKLrTTXKUKk509nL6Bfjmt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjE3Ni84OEFCOEU5NEM2 RkYxMUVBODI1MkUxMDlDNEY5QUUwMi93SjBTeDhvdXROTmNwUXFUblQyY3ZvRi1P YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dKMFN4OG91dE5OY3BRcVRuVDJjdm9GLU9hMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTIxNzYvODhBQjhFOTRDNkZGMTFFQTgyNTJFMTA5QzRGOUFFMDIvNEE5Rjk1M0VF Mjk2MTFFRjhFMDY4OTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmRIwDQYJKoZIhvcNAQELBQADggEBAA5VgGEpFHcw/hVI JSaD2US6D8CP91zKzlp3QgCQoenXbF/owSh/9ac/cS9/W1joaDHcQIQA1wj6BcAE xY2h4IWK/5Q3y5uQgD/zhFJMYxuQqZ7gLj6GWQVstg/6b+Iiaaj8+EK3FAUvjMeF kgN2eLNfT3+nQKI4Y4FUrvzM65V1eMrPcjwuGCg1PYS7Sac58WW6VLBPdHjezA1S +rgA3QcbOTGZC1FtCbrSxedmCC9ip73vCQzFjqMVP68M0kriAautC/SQRLZdQn80 DOiQoDCmhbguzzHqPfKz/Z1rCvBO3/XvGHBeo8xf9bGtMfI30l9IcN5CPu6DGH/y 6VqrnzA= -----END CERTIFICATE-----Generated at Sat Apr 26 08:21:29 2025 by rpki-client