$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/0D2573FA173E11EA947B2976C4F9AE02.roa File: 0D2573FA173E11EA947B2976C4F9AE02.roa (raw, json) Hash identifier: LIAL0RVUWvTNgpPqawClJ1GtfpOkeD0nFPnq/+uTw9c= Subject key identifier: 45:EA:3C:55:C6:5A:6A:66:E4:BE:13:B7:B1:C6:38:F5:A2:4B:5F:81 Certificate issuer: /CN=A91F2046/serialNumber=894809630956924382CC39D460FA4764B0175934 Certificate serial: 0BAD Authority key identifier: 89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/0D2573FA173E11EA947B2976C4F9AE02.roa Signing time: Thu 02 Jan 2025 19:07:17 +0000 ROA not before: Thu 02 Jan 2025 19:07:17 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 139832 IP address blocks: 103.146.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:42:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2989 (0xbad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2046, serialNumber=894809630956924382CC39D460FA4764B0175934 Validity Not Before: Jan 2 19:07:17 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6776e3e5-a4a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:97:41:67:d3:1a:41:4a:8f:bd:bc:41:ec:f7: 57:a3:f4:b1:32:84:28:67:0a:d7:16:05:bb:7d:52: 4a:c4:ad:f1:57:80:e8:23:88:39:a7:2a:43:d5:b4: 02:4d:aa:2d:1f:f0:23:22:8c:89:9a:86:b5:e2:80: 4c:75:6b:92:77:6c:90:cb:47:c3:d4:54:cb:f5:dd: 64:31:e3:97:ce:03:5e:49:db:46:84:04:d3:dd:f5: 25:fe:5e:1b:d4:03:fa:81:d9:49:13:26:ae:4d:74: 60:9a:15:01:6a:6b:88:7c:19:4c:04:7d:b0:06:64: 88:0d:b5:64:0f:3a:4f:85:75:3f:32:33:24:fe:00: 5f:c5:78:33:e3:e6:9e:76:9e:4c:56:6a:d6:54:42: 29:e8:29:fd:29:5c:22:1d:5a:e6:f6:81:c0:8e:97: 92:17:c7:cb:7d:78:4f:30:d6:12:83:70:cc:67:eb: 00:e8:83:9e:41:f1:60:c4:c0:76:94:55:ef:91:1a: 6a:7c:35:a7:b5:d9:1c:52:3c:67:ea:03:9b:be:5d: 7c:62:0a:80:34:f5:9d:b7:80:3d:36:38:78:43:c2: db:1f:8b:48:9a:b6:ca:aa:a0:5a:a8:a6:ca:c1:85: 15:b0:aa:51:c5:f6:03:d8:42:5e:48:06:af:af:34: bd:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:EA:3C:55:C6:5A:6A:66:E4:BE:13:B7:B1:C6:38:F5:A2:4B:5F:81 X509v3 Authority Key Identifier: keyid:89:48:09:63:09:56:92:43:82:CC:39:D4:60:FA:47:64:B0:17:59:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUgJYwlWkkOCzDnUYPpHZLAXWTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2046/3FB02AE214D511EA8126400DC4F9AE02/0D2573FA173E11EA947B2976C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.2.0/23 Signature Algorithm: sha256WithRSAEncryption 44:a2:82:af:00:bb:9d:77:ea:6f:18:1b:87:65:da:53:3c:56: ed:4c:7f:bd:a7:a8:52:f6:a2:ae:c7:80:ac:75:ff:5f:31:49: c1:b2:29:88:a2:24:61:50:11:99:0d:39:e2:48:bd:ff:00:cb: 3c:8a:5b:7c:87:ff:36:a2:8a:81:48:22:ae:d8:cb:36:26:b4: 17:35:dd:88:1e:24:96:20:8c:91:84:17:55:7b:7d:04:26:7f: e9:16:2f:c8:2e:99:2b:c9:9e:9c:dc:c0:1c:e3:2c:56:9a:a8: 93:02:67:0a:61:aa:b6:f9:5d:53:20:67:c6:d8:b7:11:ae:38: 0f:d6:c7:62:f3:4b:80:29:a4:7a:10:06:9b:fd:df:23:12:19: b4:1b:02:65:54:05:4a:51:39:a6:29:8a:43:de:cb:45:5b:6f: 9b:42:e9:6a:38:f8:90:54:d2:d4:6f:76:b0:c9:88:c0:01:8b: c0:de:30:24:65:7c:79:e4:c9:46:77:d5:cf:b7:b3:ab:30:1f: 9b:17:64:65:77:0b:63:53:77:5a:3a:17:0d:ac:fa:1f:2a:2e: 6d:4d:67:e9:1c:1a:b6:6d:a7:ef:40:61:a3:5f:3e:9f:51:53: 7e:81:00:01:7b:a5:bc:cf:05:29:58:fd:1d:39:25:34:b4:7c: 15:b1:40:c0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjIwNDYxMTAvBgNVBAUTKDg5NDgwOTYzMDk1NjkyNDM4MkNDMzlENDYwRkE0NzY0 QjAxNzU5MzQwHhcNMjUwMTAyMTkwNzE3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc2ZTNlNS1hNGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwpdBZ9MaQUqPvbxB7PdXo/SxMoQoZwrXFgW7fVJKxK3xV4DoI4g5pypD1bQC TaotH/AjIoyJmoa14oBMdWuSd2yQy0fD1FTL9d1kMeOXzgNeSdtGhATT3fUl/l4b 1AP6gdlJEyauTXRgmhUBamuIfBlMBH2wBmSIDbVkDzpPhXU/MjMk/gBfxXgz4+ae dp5MVmrWVEIp6Cn9KVwiHVrm9oHAjpeSF8fLfXhPMNYSg3DMZ+sA6IOeQfFgxMB2 lFXvkRpqfDWntdkcUjxn6gObvl18YgqANPWdt4A9Njh4Q8LbH4tImrbKqqBaqKbK wYUVsKpRxfYD2EJeSAavrzS9kwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEXqPFXG Wmpm5L4Tt7HGOPWiS1+BMB8GA1UdIwQYMBaAFIlICWMJVpJDgsw51GD6R2SwF1k0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjA0Ni8zRkIwMkFFMjE0 RDUxMUVBODEyNjQwMERDNEY5QUUwMi9pVWdKWXdsV2trT0N6RG5VWVBwSFpMQVhX VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lVZ0pZd2xXa2tPQ3pEblVZUHBIWkxBWFdUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjIwNDYvM0ZCMDJBRTIxNEQ1MTFFQTgxMjY0MDBEQzRGOUFFMDIvMEQyNTczRkEx NzNFMTFFQTk0N0IyOTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkgIwDQYJKoZIhvcNAQELBQADggEBAESigq8Au5136m8Y G4dl2lM8Vu1Mf72nqFL2oq7HgKx1/18xScGyKYiiJGFQEZkNOeJIvf8AyzyKW3yH /zaiioFIIq7YyzYmtBc13YgeJJYgjJGEF1V7fQQmf+kWL8gumSvJnpzcwBzjLFaa qJMCZwphqrb5XVMgZ8bYtxGuOA/Wx2LzS4AppHoQBpv93yMSGbQbAmVUBUpROaYp ikPey0Vbb5tC6Wo4+JBU0tRvdrDJiMABi8DeMCRlfHnkyUZ31c+3s6swH5sXZGV3 C2NTd1o6Fw2s+h8qLm1NZ+kcGrZtp+9AYaNfPp9RU36BAAF7pbzPBSlY/R05JTS0 fBWxQMA= -----END CERTIFICATE-----Generated at Sat Apr 26 08:16:43 2025 by rpki-client