$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/8628E1BA210611F082BE7E10C4F9AE02.roa File: 8628E1BA210611F082BE7E10C4F9AE02.roa (raw, json) Hash identifier: wGvigc7YwHG59J2rGqwJ7WYeY96T+112b/PUTqhl/lE= Subject key identifier: E0:6E:84:28:E1:F7:62:45:63:6B:78:0F:B9:E2:C4:56:58:98:15:BE Certificate issuer: /CN=A91E3814/serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Certificate serial: 0438 Authority key identifier: 91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/8628E1BA210611F082BE7E10C4F9AE02.roa Signing time: Thu 24 Apr 2025 12:20:35 +0000 ROA not before: Thu 24 Apr 2025 12:20:35 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152605 IP address blocks: 103.148.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:08:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1080 (0x438) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3814, serialNumber=9113A16869B7D01E789EE09FE26E6AFA37CF3E47 Validity Not Before: Apr 24 12:20:35 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=680a2c93-cea8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:83:1f:bc:14:ac:22:e9:bd:cc:15:d1:d5:b3: d2:13:9a:cc:6e:9f:26:b1:51:df:df:2f:42:cb:ce: 3e:3d:26:e7:ea:a1:bb:01:9e:16:28:8f:59:a8:41: 1d:67:41:54:71:3d:78:bd:6e:71:77:aa:af:de:e3: 6d:e8:e4:d1:2b:38:37:77:db:3d:fd:d7:e3:38:e2: 27:f0:b6:b1:78:5f:22:5b:87:bc:7b:83:98:5f:f3: 20:d5:0b:35:dd:7b:2e:2c:9e:6b:f9:25:30:6f:2b: e2:cd:88:cc:91:43:3f:6b:dc:90:37:4f:0e:9e:e6: c2:89:92:92:59:aa:4b:d6:c4:ec:20:ba:be:cf:83: e0:8d:3c:37:01:12:b0:67:47:48:87:ac:a2:1c:e2: 16:6e:bd:cb:80:c5:3a:cc:6f:f1:81:b9:e6:e0:47: 8f:aa:4f:ec:21:fb:07:6e:b7:21:75:7a:bc:66:b2: 1e:2d:ac:87:46:f9:49:a5:77:4d:8a:9c:fd:b1:18: 55:ce:11:3a:f0:01:3d:d1:16:36:51:f4:bf:94:c0: 0e:58:1b:ac:ea:00:e5:a2:5b:f1:ef:bf:b0:3e:75: ad:9b:10:d1:2d:7c:cf:2f:2a:e2:16:b3:0a:35:19: 86:6a:83:ac:f2:dd:4c:5f:fc:f6:2c:e9:5b:e0:42: 11:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:6E:84:28:E1:F7:62:45:63:6B:78:0F:B9:E2:C4:56:58:98:15:BE X509v3 Authority Key Identifier: keyid:91:13:A1:68:69:B7:D0:1E:78:9E:E0:9F:E2:6E:6A:FA:37:CF:3E:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/kROhaGm30B54nuCf4m5q-jfPPkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kROhaGm30B54nuCf4m5q-jfPPkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3814/2542B4225D7111EC9908914DC4F9AE02/8628E1BA210611F082BE7E10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.93.0/24 Signature Algorithm: sha256WithRSAEncryption ad:98:e0:db:08:c7:9a:4f:dc:69:2d:28:fa:80:e5:d7:7a:76: 19:88:b9:e7:38:8a:5a:89:75:cf:bd:5d:ea:43:6c:9b:4a:21: 86:e9:1c:ff:47:ff:d8:e1:b7:f8:b7:a3:a9:9c:d4:cf:8c:c1: bd:0c:46:fe:6d:33:32:13:7b:a7:cc:cd:3f:25:e3:4a:22:35: bd:aa:ae:c5:18:dd:cf:43:a3:31:1b:f5:78:6c:16:63:6b:62: 5e:25:e0:9d:85:a5:fe:54:72:2a:30:42:5f:ad:3a:35:50:0b: 37:41:31:a9:ce:55:2d:e3:4e:96:fd:97:fa:a1:e4:33:51:16: 9d:83:c5:b1:29:0d:af:b3:f2:e3:95:f5:4c:51:61:45:c3:5c: d1:82:2e:42:f0:81:17:50:d5:c0:bd:2e:77:71:ff:bf:e4:5d: 15:b5:20:3f:3d:d0:25:25:e1:a6:05:d0:e9:e6:de:eb:2b:a8: 05:d6:1a:1d:4b:a6:e5:1a:ce:a9:d3:c2:c1:c3:6b:ef:3a:c7: b8:18:34:2e:31:f0:ca:27:ca:a0:0f:c2:e0:41:55:98:ef:d7: 5e:29:19:1b:2c:8d:d3:3d:94:5c:9a:bb:24:2e:f8:ee:3e:95: 7e:60:35:39:ac:8a:cd:1e:be:0a:02:b0:9e:06:77:bf:58:44: a6:cb:b9:77 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4MTQxMTAvBgNVBAUTKDkxMTNBMTY4NjlCN0QwMUU3ODlFRTA5RkUyNkU2QUZB MzdDRjNFNDcwHhcNMjUwNDI0MTIyMDM1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODBhMmM5My1jZWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIMfvBSsIum9zBXR1bPSE5rMbp8msVHf3y9Cy84+PSbn6qG7AZ4WKI9ZqEEd Z0FUcT14vW5xd6qv3uNt6OTRKzg3d9s9/dfjOOIn8LaxeF8iW4e8e4OYX/Mg1Qs1 3XsuLJ5r+SUwbyvizYjMkUM/a9yQN08OnubCiZKSWapL1sTsILq+z4PgjTw3ARKw Z0dIh6yiHOIWbr3LgMU6zG/xgbnm4EePqk/sIfsHbrchdXq8ZrIeLayHRvlJpXdN ipz9sRhVzhE68AE90RY2UfS/lMAOWBus6gDlolvx77+wPnWtmxDRLXzPLyriFrMK NRmGaoOs8t1MX/z2LOlb4EIRJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOBuhCjh 92JFY2t4D7nixFZYmBW+MB8GA1UdIwQYMBaAFJEToWhpt9AeeJ7gn+Juavo3zz5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzgxNC8yNTQyQjQyMjVE NzExMUVDOTkwODkxNERDNEY5QUUwMi9rUk9oYUdtMzBCNTRudUNmNG01cS1qZlBQ a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tST2hhR20zMEI1NG51Q2Y0bTVxLWpmUFBrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTM4MTQvMjU0MkI0MjI1RDcxMTFFQzk5MDg5MTREQzRGOUFFMDIvODYyOEUxQkEy MTA2MTFGMDgyQkU3RTEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlF0wDQYJKoZIhvcNAQELBQADggEBAK2Y4NsIx5pP3Gkt KPqA5dd6dhmIuec4ilqJdc+9XepDbJtKIYbpHP9H/9jht/i3o6mc1M+Mwb0MRv5t MzITe6fMzT8l40oiNb2qrsUY3c9DozEb9XhsFmNrYl4l4J2Fpf5UciowQl+tOjVQ CzdBManOVS3jTpb9l/qh5DNRFp2DxbEpDa+z8uOV9UxRYUXDXNGCLkLwgRdQ1cC9 Lndx/7/kXRW1ID890CUl4aYF0Onm3usrqAXWGh1LpuUazqnTwsHDa+86x7gYNC4x 8MonyqAPwuBBVZjv114pGRssjdM9lFyauyQu+O4+lX5gNTmsis0evgoCsJ4Gd79Y RKbLuXc= -----END CERTIFICATE-----Generated at Sat Apr 26 14:01:34 2025 by rpki-client