$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/AC8A67CA100311F085EE3D29C4F9AE02.roa File: AC8A67CA100311F085EE3D29C4F9AE02.roa (raw, json) Hash identifier: GNpuswIm+G6D5OwUx8uxAOUcNrCwK1Z/Tj1cmKrG5Uc= Subject key identifier: A8:38:56:96:DA:29:04:37:56:6C:A4:20:80:24:9A:B9:6D:8F:CD:76 Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 35BA Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/AC8A67CA100311F085EE3D29C4F9AE02.roa Signing time: Wed 02 Apr 2025 20:47:21 +0000 ROA not before: Wed 02 Apr 2025 20:47:21 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 396356 IP address blocks: 103.68.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:47:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13754 (0x35ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90, serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Apr 2 20:47:21 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67eda259-3005 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:41:b9:1c:0d:d0:a3:4a:d7:f4:0a:8b:37:9d: 91:82:2e:cf:ed:2d:79:00:30:86:4b:de:c5:da:d2: 8b:7b:80:7b:b6:b9:fe:49:41:02:ff:3f:aa:50:0f: 10:7c:5c:8b:d2:29:be:a0:8d:ec:8b:a1:bb:d4:f6: e1:c8:90:62:f5:5e:9c:cd:10:91:28:45:c1:55:ca: ed:de:d4:76:45:fb:2f:5a:dc:38:b3:d7:4a:b1:27: 78:3a:0e:e3:9f:ea:b8:99:ed:6d:d9:9a:2f:27:aa: 73:76:83:d5:19:3c:04:6c:e9:48:0c:5b:66:1a:01: 7a:59:e4:f5:e8:4f:5c:ff:24:79:f6:6e:07:0a:90: 3d:99:cc:17:fc:55:7b:15:75:20:27:ce:2f:6b:5c: 37:d3:d1:d3:ef:e5:03:d3:09:38:93:40:a1:48:d9: de:0f:60:04:19:0f:03:93:4c:32:15:f5:a8:9d:f7: 9b:3c:7f:8e:95:09:a5:d1:47:bf:6a:07:0c:d2:5f: f2:5f:e7:c9:6f:44:b0:c7:28:2a:c5:2b:a6:1d:40: fc:f8:c2:27:08:36:07:75:9d:eb:7b:48:0c:bc:7d: 46:ec:a9:62:74:d0:b1:a9:ed:cb:dc:72:a0:8e:22: df:d9:2f:af:7a:b0:39:c0:13:0c:53:76:15:bb:5c: f5:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:38:56:96:DA:29:04:37:56:6C:A4:20:80:24:9A:B9:6D:8F:CD:76 X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/AC8A67CA100311F085EE3D29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.120.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:3e:64:88:8d:5c:f4:b1:82:e6:1d:5a:eb:af:38:8e:d0:51: 7a:ba:f1:51:69:b6:51:40:49:02:ca:d7:bf:3e:b8:70:b3:5d: 9e:df:d4:aa:05:a6:5c:d3:50:af:c4:61:2f:65:08:28:20:fe: 72:33:f9:5f:fb:59:81:cb:dd:79:12:c7:42:23:12:87:ab:24: b6:35:42:5f:bf:4c:09:24:90:2f:72:0a:df:29:4f:20:ea:73: 1a:b8:1e:1e:c5:92:60:0f:c5:ff:ab:7b:f0:5f:4d:95:e2:7b: fe:f4:42:5c:6c:5d:46:a1:48:80:77:4c:55:73:04:dc:77:6d: c5:01:21:82:d9:dd:21:e4:2e:f6:bb:85:4d:0f:01:38:d6:ff: 5c:af:06:a0:59:1b:e5:12:b4:68:3b:e8:42:e6:60:ad:69:20: 71:af:67:60:9d:82:1d:48:57:b2:e6:96:9e:e2:48:bb:06:fa: f0:59:77:eb:de:26:81:bb:d3:07:f4:0c:d7:82:b0:64:33:6e: 08:e4:b7:f2:b9:40:50:18:8d:b6:81:e1:4a:c9:5c:2c:e4:d9: bb:7b:5e:19:c0:64:d2:f3:36:90:ac:d4:3c:54:30:f5:57:a9: 4c:3c:54:6f:6c:f4:7a:20:c6:57:88:32:af:b5:88:aa:a3:35: 8b:4b:97:19 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjUwNDAyMjA0NzIxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkYTI1OS0zMDA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvkG5HA3Qo0rX9AqLN52Rgi7P7S15ADCGS97F2tKLe4B7trn+SUEC/z+qUA8Q fFyL0im+oI3si6G71PbhyJBi9V6czRCRKEXBVcrt3tR2RfsvWtw4s9dKsSd4Og7j n+q4me1t2ZovJ6pzdoPVGTwEbOlIDFtmGgF6WeT16E9c/yR59m4HCpA9mcwX/FV7 FXUgJ84va1w309HT7+UD0wk4k0ChSNneD2AEGQ8Dk0wyFfWonfebPH+OlQml0Ue/ agcM0l/yX+fJb0SwxygqxSumHUD8+MInCDYHdZ3re0gMvH1G7KlidNCxqe3L3HKg jiLf2S+verA5wBMMU3YVu1z1fQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKg4Vpba KQQ3VmykIIAkmrltj812MB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvQUM4QTY3Q0Ex MDAzMTFGMDg1RUUzRDI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnRHgwDQYJKoZIhvcNAQELBQADggEBAG4+ZIiNXPSxguYd WuuvOI7QUXq68VFptlFASQLK178+uHCzXZ7f1KoFplzTUK/EYS9lCCgg/nIz+V/7 WYHL3XkSx0IjEoerJLY1Ql+/TAkkkC9yCt8pTyDqcxq4Hh7FkmAPxf+re/BfTZXi e/70QlxsXUahSIB3TFVzBNx3bcUBIYLZ3SHkLva7hU0PATjW/1yvBqBZG+UStGg7 6ELmYK1pIHGvZ2Cdgh1IV7Lmlp7iSLsG+vBZd+veJoG70wf0DNeCsGQzbgjkt/K5 QFAYjbaB4UrJXCzk2bt7XhnAZNLzNpCs1DxUMPVXqUw8VG9s9HogxleIMq+1iKqj NYtLlxk= -----END CERTIFICATE-----Generated at Sat Apr 26 12:21:02 2025 by rpki-client