$ rpki-client -vvf rpki.apnic.net/member_repository/A91F724B/1BC71A62168911E68EEFD97BC4F9AE02/D6702FB2C51411E7A0AC1A77C4F9AE02.roa File: D6702FB2C51411E7A0AC1A77C4F9AE02.roa (raw, json) Hash identifier: dRYh9WAvcIumZjCZ5S62u32XoLkiqwXXygrg2DE1FBI= Subject key identifier: F3:5D:66:20:D2:C1:C2:CC:C6:A1:EC:57:63:54:C1:F9:9A:27:0F:8B Certificate issuer: /CN=A91F724B/serialNumber=E8EDA71C8964D29F06C24A2B6D1B77153CA8F389 Certificate serial: 2057 Authority key identifier: E8:ED:A7:1C:89:64:D2:9F:06:C2:4A:2B:6D:1B:77:15:3C:A8:F3:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6O2nHIlk0p8GwkorbRt3FTyo84k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F724B/1BC71A62168911E68EEFD97BC4F9AE02/D6702FB2C51411E7A0AC1A77C4F9AE02.roa Signing time: Wed 12 Mar 2025 16:13:44 +0000 ROA not before: Wed 12 Mar 2025 16:13:44 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 131310 IP address blocks: 103.246.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F724B/1BC71A62168911E68EEFD97BC4F9AE02/6O2nHIlk0p8GwkorbRt3FTyo84k.crl rsync://rpki.apnic.net/member_repository/A91F724B/1BC71A62168911E68EEFD97BC4F9AE02/6O2nHIlk0p8GwkorbRt3FTyo84k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6O2nHIlk0p8GwkorbRt3FTyo84k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:59:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8279 (0x2057) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F724B, serialNumber=E8EDA71C8964D29F06C24A2B6D1B77153CA8F389 Validity Not Before: Mar 12 16:13:44 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67d1b2b8-ddfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:1d:91:bf:d2:7e:31:0c:0f:cd:b3:2b:6a:51: 12:e4:f6:88:d5:dd:7f:71:27:ab:c8:2b:fc:fa:05: 3d:f2:44:df:6d:9c:a3:e0:08:e5:fc:46:e1:19:52: 82:27:79:12:c1:81:ba:f2:93:ce:8a:d6:e9:1c:5d: 00:b6:1d:b4:8f:a3:1f:62:40:00:70:6b:14:67:64: 84:bf:27:71:c4:b1:06:8b:2d:3b:b8:e5:95:07:45: fd:a8:16:74:b6:01:80:83:26:0b:6e:11:af:38:9d: c0:eb:c1:49:ea:8c:fd:dc:a9:3b:4d:e9:7b:50:bb: 4c:d5:75:ff:71:fc:17:eb:21:d9:88:b8:7a:ba:b6: 85:61:3b:d5:e4:0f:25:b1:24:00:81:d5:2c:72:da: 27:3c:79:cc:77:d1:5a:2e:8e:57:a2:32:dc:d7:b3: 6b:6b:b8:62:10:ad:c3:aa:55:a7:81:47:e4:ed:ef: 2f:b7:b4:46:c8:db:d6:ea:67:49:f6:67:14:c9:4d: 86:d5:3e:e5:c7:1f:94:93:9f:d1:58:a2:fd:0c:51: 10:8f:b8:6a:55:aa:71:f5:ad:33:2e:3a:2f:30:75: 14:ea:c9:06:3f:3a:9c:02:fb:7f:4b:9d:d0:c3:1f: 4b:b6:ad:74:7f:16:bc:c7:2c:df:85:6b:32:86:5c: 77:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:5D:66:20:D2:C1:C2:CC:C6:A1:EC:57:63:54:C1:F9:9A:27:0F:8B X509v3 Authority Key Identifier: keyid:E8:ED:A7:1C:89:64:D2:9F:06:C2:4A:2B:6D:1B:77:15:3C:A8:F3:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F724B/1BC71A62168911E68EEFD97BC4F9AE02/6O2nHIlk0p8GwkorbRt3FTyo84k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6O2nHIlk0p8GwkorbRt3FTyo84k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F724B/1BC71A62168911E68EEFD97BC4F9AE02/D6702FB2C51411E7A0AC1A77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.246.217.0/24 Signature Algorithm: sha256WithRSAEncryption 07:f8:05:b7:78:06:0d:26:f6:c2:6b:68:ee:2f:63:df:c3:3d: a5:93:83:e1:04:bf:6f:9e:63:58:d8:56:6d:36:3d:c8:ee:15: e5:fa:2d:e5:92:50:19:ce:b8:57:bb:fa:1b:f9:6e:fe:33:98: de:98:b0:8c:64:bb:35:61:6a:7d:b1:0b:ff:c6:67:95:36:45: 9e:0a:08:53:8c:5b:8b:b1:d5:41:8d:56:62:50:6d:0e:12:80: 12:a5:99:d5:30:12:ce:b7:b2:d9:35:f7:94:1d:b0:72:32:d4: e5:b8:8b:06:2c:c7:15:63:0b:2b:67:2a:02:40:39:b4:69:8c: ba:b5:12:73:9d:2b:b4:4b:76:84:e2:1d:09:81:0b:ce:95:dc: a4:db:a7:c7:f0:16:f9:84:2f:da:cb:18:c3:59:7f:26:f9:28: 26:eb:94:fd:bc:82:b7:80:10:48:4b:e3:fe:ec:82:aa:93:c1: 49:c9:d3:9b:fb:93:5e:41:ed:17:b9:c3:12:b1:de:81:b5:86: 1a:dc:12:84:93:86:d4:7e:af:44:08:54:28:9e:fb:52:1e:db: 59:15:c6:f9:e9:70:41:95:6f:d5:ee:1b:d8:ca:d4:c4:96:fb: e9:02:67:1f:57:d5:62:17:4c:aa:c9:01:1c:85:be:ee:44:c6: 05:54:0e:37 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjcyNEIxMTAvBgNVBAUTKEU4RURBNzFDODk2NEQyOUYwNkMyNEEyQjZEMUI3NzE1 M0NBOEYzODkwHhcNMjUwMzEyMTYxMzQ0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2QxYjJiOC1kZGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApB2Rv9J+MQwPzbMralES5PaI1d1/cSeryCv8+gU98kTfbZyj4Ajl/EbhGVKC J3kSwYG68pPOitbpHF0Ath20j6MfYkAAcGsUZ2SEvydxxLEGiy07uOWVB0X9qBZ0 tgGAgyYLbhGvOJ3A68FJ6oz93Kk7Tel7ULtM1XX/cfwX6yHZiLh6uraFYTvV5A8l sSQAgdUsctonPHnMd9FaLo5XojLc17Nra7hiEK3DqlWngUfk7e8vt7RGyNvW6mdJ 9mcUyU2G1T7lxx+Uk5/RWKL9DFEQj7hqVapx9a0zLjovMHUU6skGPzqcAvt/S53Q wx9Ltq10fxa8xyzfhWsyhlx31wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPNdZiDS wcLMxqHsV2NUwfmaJw+LMB8GA1UdIwQYMBaAFOjtpxyJZNKfBsJKK20bdxU8qPOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzI0Qi8xQkM3MUE2MjE2 ODkxMUU2OEVFRkQ5N0JDNEY5QUUwMi82TzJuSElsazBwOEd3a29yYlJ0M0ZUeW84 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZPMm5ISWxrMHA4R3drb3JiUnQzRlR5bzg0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjcyNEIvMUJDNzFBNjIxNjg5MTFFNjhFRUZEOTdCQzRGOUFFMDIvRDY3MDJGQjJD NTE0MTFFN0EwQUMxQTc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn9tkwDQYJKoZIhvcNAQELBQADggEBAAf4Bbd4Bg0m9sJr aO4vY9/DPaWTg+EEv2+eY1jYVm02PcjuFeX6LeWSUBnOuFe7+hv5bv4zmN6YsIxk uzVhan2xC//GZ5U2RZ4KCFOMW4ux1UGNVmJQbQ4SgBKlmdUwEs63stk195QdsHIy 1OW4iwYsxxVjCytnKgJAObRpjLq1EnOdK7RLdoTiHQmBC86V3KTbp8fwFvmEL9rL GMNZfyb5KCbrlP28greAEEhL4/7sgqqTwUnJ05v7k15B7Re5wxKx3oG1hhrcEoST htR+r0QIVCie+1Ie21kVxvnpcEGVb9XuG9jK1MSW++kCZx9X1WIXTKrJARyFvu5E xgVUDjc= -----END CERTIFICATE-----Generated at Sat Apr 26 07:45:27 2025 by rpki-client