$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/52DF0E62B2FA11EFA36E0387C4F9AE02.roa File: 52DF0E62B2FA11EFA36E0387C4F9AE02.roa (raw, json) Hash identifier: Es9pKOD8mSWZed849uffE6lhUB5WDPjyB7dm14eKTpA= Subject key identifier: D5:F5:22:31:E1:3E:33:4E:9B:52:79:97:D5:C5:A4:46:49:10:53:21 Certificate issuer: /CN=A91EAD80/serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Certificate serial: 17 Authority key identifier: A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/52DF0E62B2FA11EFA36E0387C4F9AE02.roa Signing time: Thu 05 Dec 2024 11:16:07 +0000 ROA not before: Thu 05 Dec 2024 11:16:07 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 55720 IP address blocks: 103.187.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:05:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAD80, serialNumber=A1147E847BCFEEEADD9E89A97A8D9F33679CA7E2 Validity Not Before: Dec 5 11:16:07 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67518b77-8436 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:15:96:6e:8b:e7:89:7d:15:0b:a6:9e:63:0a: 21:df:6e:e3:b9:06:85:57:f5:82:e5:a1:05:7b:77: 73:51:3b:0c:18:9a:38:bb:d5:da:36:cd:f0:2f:41: 41:03:fb:d6:66:88:63:bd:65:40:12:93:36:2a:69: f1:33:d6:3f:a2:c0:aa:40:b4:84:90:8b:93:2e:e1: 6d:bc:d5:f0:da:b4:91:cf:5b:2b:88:56:ed:62:f5: 43:ce:2b:8a:30:02:04:65:f6:a6:5e:f3:3f:a4:75: f4:3e:9b:4b:55:c1:4b:83:d6:cb:87:84:b0:7f:ce: 6d:94:1d:08:db:62:02:0a:3e:97:33:43:ab:e0:3a: aa:f0:26:8e:d8:11:47:e2:80:83:54:9a:c0:8b:30: dc:c4:58:eb:ab:72:09:bb:47:9d:33:87:d8:4e:2a: 93:b0:f5:78:91:f1:e9:ef:ba:a0:75:d5:52:c2:de: 6f:33:60:a7:96:57:1c:d2:5a:86:c4:3a:46:98:7b: 93:e0:ed:e0:be:09:48:8a:31:c2:25:96:17:54:25: 80:8a:43:4d:5a:c9:8b:cf:fb:33:2c:21:a0:fa:dd: ba:85:1b:32:2b:06:a4:e0:9c:08:7a:40:26:55:39: 03:9e:b0:8b:01:89:a7:ee:06:dc:91:cc:69:a5:c4: af:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:F5:22:31:E1:3E:33:4E:9B:52:79:97:D5:C5:A4:46:49:10:53:21 X509v3 Authority Key Identifier: keyid:A1:14:7E:84:7B:CF:EE:EA:DD:9E:89:A9:7A:8D:9F:33:67:9C:A7:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/oRR-hHvP7urdnompeo2fM2ecp-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oRR-hHvP7urdnompeo2fM2ecp-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAD80/D223C5AE94C911EF92CD7258C4F9AE02/52DF0E62B2FA11EFA36E0387C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.27.0/24 Signature Algorithm: sha256WithRSAEncryption 42:6b:8c:fb:c1:b0:f2:49:2d:48:dc:b9:b5:07:50:91:b8:b5: b9:7a:51:5d:33:10:2d:20:3a:c6:d9:ec:a3:2c:7b:1c:7b:39: f9:e3:25:3a:b2:c1:01:18:d1:d3:ce:bd:78:5b:c9:42:e9:e2: 16:08:d4:ae:83:55:8a:91:45:92:8b:50:88:11:3b:af:1a:05: 5f:f5:22:b9:91:2a:91:6d:23:da:c7:29:7a:c9:a4:2d:9b:ab: ab:b8:64:e9:d1:a6:2a:eb:f8:20:65:14:05:9f:6d:c0:e6:74: 3e:d6:af:39:49:46:19:7b:ce:a9:18:8a:a2:83:b0:60:bf:ba: 37:16:e9:63:39:ec:3e:39:04:3a:73:04:00:be:b2:72:b4:85: 33:8b:4a:2d:c4:02:e6:92:aa:68:84:1d:71:11:ea:c9:32:50: 12:51:14:d8:57:31:bd:e3:de:a1:7c:fd:46:2c:61:a2:81:ab: 57:06:70:24:cf:b0:d8:d8:c4:11:cc:68:08:f8:d3:e0:18:b1: 01:0c:1c:65:2c:f7:90:94:2e:e4:a1:65:5f:6f:01:6e:51:14: 9b:c3:5a:78:bf:06:25:53:ad:19:e2:a0:39:29:21:55:8f:4d: c3:70:b1:32:2a:db:17:b1:4c:df:48:3a:03:0d:dc:ac:75:e8: f0:d3:55:0c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QUQ4MDExMC8GA1UEBRMoQTExNDdFODQ3QkNGRUVFQUREOUU4OUE5N0E4RDlGMzM2 NzlDQTdFMjAeFw0yNDEyMDUxMTE2MDdaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NTE4Yjc3LTg0MzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMFZZui+eJfRULpp5jCiHfbuO5BoVX9YLloQV7d3NROwwYmji71do2zfAvQUED +9ZmiGO9ZUASkzYqafEz1j+iwKpAtISQi5Mu4W281fDatJHPWyuIVu1i9UPOK4ow AgRl9qZe8z+kdfQ+m0tVwUuD1suHhLB/zm2UHQjbYgIKPpczQ6vgOqrwJo7YEUfi gINUmsCLMNzEWOurcgm7R50zh9hOKpOw9XiR8envuqB11VLC3m8zYKeWVxzSWobE OkaYe5Pg7eC+CUiKMcIllhdUJYCKQ01ayYvP+zMsIaD63bqFGzIrBqTgnAh6QCZV OQOesIsBiafuBtyRzGmlxK/nAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU1fUiMeE+ M06bUnmX1cWkRkkQUyEwHwYDVR0jBBgwFoAUoRR+hHvP7urdnompeo2fM2ecp+Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBRDgwL0QyMjNDNUFFOTRD OTExRUY5MkNENzI1OEM0RjlBRTAyL29SUi1oSHZQN3VyZG5vbXBlbzJmTTJlY3At SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1JSLWhIdlA3dXJkbm9tcGVvMmZNMmVjcC1JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUQ4MC9EMjIzQzVBRTk0QzkxMUVGOTJDRDcyNThDNEY5QUUwMi81MkRGMEU2MkIy RkExMUVGQTM2RTAzODdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGe7GzANBgkqhkiG9w0BAQsFAAOCAQEAQmuM+8Gw8kktSNy5 tQdQkbi1uXpRXTMQLSA6xtnsoyx7HHs5+eMlOrLBARjR0869eFvJQuniFgjUroNV ipFFkotQiBE7rxoFX/UiuZEqkW0j2scpesmkLZurq7hk6dGmKuv4IGUUBZ9twOZ0 PtavOUlGGXvOqRiKooOwYL+6NxbpYznsPjkEOnMEAL6ycrSFM4tKLcQC5pKqaIQd cRHqyTJQElEU2FcxvePeoXz9RixhooGrVwZwJM+w2NjEEcxoCPjT4BixAQwcZSz3 kJQu5KFlX28BblEUm8NaeL8GJVOtGeKgOSkhVY9Nw3CxMirbF7FM30g6Aw3crHXo 8NNVDA== -----END CERTIFICATE-----Generated at Sat Apr 26 14:12:49 2025 by rpki-client