$ rpki-client -vvf rpki.apnic.net/member_repository/A91F18DE/EEA13C9C75DA11EAB493F049C4F9AE02/8880996075DC11EA84E0A94CC4F9AE02.roa File: 8880996075DC11EA84E0A94CC4F9AE02.roa (raw, json) Hash identifier: ssJ1fisDF6kXo2lAemHozKuEtDu93oVtWqiWY4t+lWY= Subject key identifier: 2B:9C:39:E8:2C:00:5E:5D:0A:A5:29:D7:00:F8:4D:63:88:AF:F2:0E Certificate issuer: /CN=A91F18DE/serialNumber=F0FDA24882C675A3C601DBFA5C0263C23A692A22 Certificate serial: 09EB Authority key identifier: F0:FD:A2:48:82:C6:75:A3:C6:01:DB:FA:5C:02:63:C2:3A:69:2A:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8P2iSILGdaPGAdv6XAJjwjppKiI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F18DE/EEA13C9C75DA11EAB493F049C4F9AE02/8880996075DC11EA84E0A94CC4F9AE02.roa Signing time: Sun 06 Apr 2025 20:00:00 +0000 ROA not before: Sun 06 Apr 2025 20:00:00 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 140090 IP address blocks: 103.148.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F18DE/EEA13C9C75DA11EAB493F049C4F9AE02/8P2iSILGdaPGAdv6XAJjwjppKiI.crl rsync://rpki.apnic.net/member_repository/A91F18DE/EEA13C9C75DA11EAB493F049C4F9AE02/8P2iSILGdaPGAdv6XAJjwjppKiI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8P2iSILGdaPGAdv6XAJjwjppKiI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2539 (0x9eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F18DE, serialNumber=F0FDA24882C675A3C601DBFA5C0263C23A692A22 Validity Not Before: Apr 6 20:00:00 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f2dd40-31c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:95:59:cc:a4:05:c0:74:b7:01:ca:ea:57:0f: e5:93:f9:37:85:8c:82:ee:90:6e:ca:a6:67:ad:f9: 71:53:0d:be:e0:3a:27:70:21:cb:cb:76:34:1b:69: f7:11:fd:20:ef:a0:8d:f1:9b:d9:29:aa:b8:3b:03: 58:99:75:d3:c5:8f:de:ee:99:5c:00:40:f6:43:27: 7b:b0:97:48:a4:1e:fd:71:2e:b1:6d:08:04:46:7f: 4d:a3:54:a1:5e:39:8a:4d:6c:56:5d:b5:6c:bd:14: 42:5d:ad:39:6e:4b:25:99:fd:d6:c3:26:e3:75:47: 0d:95:d6:5f:da:83:2e:4c:e5:78:9c:e2:80:ac:24: 3d:ca:ac:66:f9:f2:5c:2c:58:98:b0:42:69:5a:87: 1e:fb:3e:80:a4:1a:68:8b:cd:31:5d:46:91:c2:be: c0:ab:f1:1c:2f:3b:4a:0b:43:9d:c4:f4:4f:17:5a: a9:86:b0:b0:be:6a:9a:1d:08:a3:fd:8b:9a:ce:82: 8e:a8:77:5c:df:1c:e1:d4:b6:47:c6:3d:01:f2:33: 17:42:3e:79:6e:db:b5:03:f5:cd:f7:08:2a:09:90: e7:5f:87:81:56:28:5d:e7:3a:d3:23:70:3b:cd:e9: 27:a9:4e:c6:2b:08:2e:a9:a3:44:dd:04:fe:d5:d6: c2:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:9C:39:E8:2C:00:5E:5D:0A:A5:29:D7:00:F8:4D:63:88:AF:F2:0E X509v3 Authority Key Identifier: keyid:F0:FD:A2:48:82:C6:75:A3:C6:01:DB:FA:5C:02:63:C2:3A:69:2A:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F18DE/EEA13C9C75DA11EAB493F049C4F9AE02/8P2iSILGdaPGAdv6XAJjwjppKiI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8P2iSILGdaPGAdv6XAJjwjppKiI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F18DE/EEA13C9C75DA11EAB493F049C4F9AE02/8880996075DC11EA84E0A94CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.98.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:b9:1f:80:cf:f4:18:c5:63:dd:61:fb:6b:3b:b7:10:19:c3: db:f0:4a:c1:7a:b7:7a:b4:40:4a:83:86:1b:5c:c7:5c:de:2c: 19:b9:08:c1:2c:9c:49:98:52:a5:a1:e4:a2:3a:12:54:56:a5: bc:6d:77:1e:8f:82:21:cb:e6:58:13:a6:f2:e4:4e:4a:2b:2d: fb:4c:f5:fd:11:14:49:7a:3b:e6:cf:9d:3d:ed:82:0e:ea:1d: 84:87:4c:05:f4:e9:c0:6b:7a:0c:95:db:40:dd:e4:3d:67:39: 37:1e:cb:34:5d:21:bf:89:92:e2:ac:21:a7:11:22:7d:17:47: ec:fc:62:88:72:b3:c8:50:48:ab:9b:01:53:29:07:38:b5:95: 28:85:1d:d4:a8:c5:fe:af:d3:a9:93:ad:83:2c:e9:32:5a:c4: bd:bc:90:50:6e:ec:d4:29:00:87:6d:26:0b:df:a7:51:32:0d: 46:5d:01:f5:85:3f:e8:41:26:1d:6f:78:17:f9:62:d3:9e:92: 54:33:a0:8e:d4:8e:87:96:e9:79:0e:b1:8f:41:44:79:0a:f6: 43:b8:5a:4a:b6:c4:fa:9e:62:9e:6c:e8:b7:85:ad:01:05:6d: ff:37:c8:e9:61:fd:2b:bd:f3:c1:20:06:b7:38:1a:bf:b0:4d: 4b:e7:4f:54 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE4REUxMTAvBgNVBAUTKEYwRkRBMjQ4ODJDNjc1QTNDNjAxREJGQTVDMDI2M0My M0E2OTJBMjIwHhcNMjUwNDA2MjAwMDAwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2YyZGQ0MC0zMWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ZVZzKQFwHS3AcrqVw/lk/k3hYyC7pBuyqZnrflxUw2+4DoncCHLy3Y0G2n3 Ef0g76CN8ZvZKaq4OwNYmXXTxY/e7plcAED2Qyd7sJdIpB79cS6xbQgERn9No1Sh XjmKTWxWXbVsvRRCXa05bkslmf3WwybjdUcNldZf2oMuTOV4nOKArCQ9yqxm+fJc LFiYsEJpWoce+z6ApBpoi80xXUaRwr7Aq/EcLztKC0OdxPRPF1qphrCwvmqaHQij /YuazoKOqHdc3xzh1LZHxj0B8jMXQj55btu1A/XN9wgqCZDnX4eBVihd5zrTI3A7 zeknqU7GKwguqaNE3QT+1dbCPQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCucOegs AF5dCqUp1wD4TWOIr/IOMB8GA1UdIwQYMBaAFPD9okiCxnWjxgHb+lwCY8I6aSoi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMThERS9FRUExM0M5Qzc1 REExMUVBQjQ5M0YwNDlDNEY5QUUwMi84UDJpU0lMR2RhUEdBZHY2WEFKandqcHBL aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhQMmlTSUxHZGFQR0FkdjZYQUpqd2pwcEtpSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE4REUvRUVBMTNDOUM3NURBMTFFQUI0OTNGMDQ5QzRGOUFFMDIvODg4MDk5NjA3 NURDMTFFQTg0RTBBOTRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlGIwDQYJKoZIhvcNAQELBQADggEBAFq5H4DP9BjFY91h +2s7txAZw9vwSsF6t3q0QEqDhhtcx1zeLBm5CMEsnEmYUqWh5KI6ElRWpbxtdx6P giHL5lgTpvLkTkorLftM9f0RFEl6O+bPnT3tgg7qHYSHTAX06cBregyV20Dd5D1n OTceyzRdIb+JkuKsIacRIn0XR+z8Yohys8hQSKubAVMpBzi1lSiFHdSoxf6v06mT rYMs6TJaxL28kFBu7NQpAIdtJgvfp1EyDUZdAfWFP+hBJh1veBf5YtOeklQzoI7U joeW6XkOsY9BRHkK9kO4Wkq2xPqeYp5s6LeFrQEFbf83yOlh/Su988EgBrc4Gr+w TUvnT1Q= -----END CERTIFICATE-----Generated at Sat Apr 26 08:05:04 2025 by rpki-client