$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/261D3B8AEE4611ED9BEFED31C4F9AE02.roa File: 261D3B8AEE4611ED9BEFED31C4F9AE02.roa (raw, json) Hash identifier: HkCOmQRPg+yDDZPtodRzZcHCpOQoTEGcVWS7eV1BiSA= Subject key identifier: CA:89:F1:97:0B:63:1C:09:79:DA:F4:38:AF:3B:2C:75:52:F9:2C:BF Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: 017F Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/261D3B8AEE4611ED9BEFED31C4F9AE02.roa Signing time: Fri 25 Apr 2025 02:59:58 +0000 ROA not before: Fri 25 Apr 2025 02:59:58 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 23750 IP address blocks: 103.158.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 383 (0x17f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB, serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Apr 25 02:59:58 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680afaad-3a5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0d:c0:42:6a:fc:78:18:8a:a1:a4:b5:52:84: e5:a1:a4:15:75:f0:b9:79:1a:51:48:f9:b7:b0:8b: 4d:25:11:dd:74:ef:71:f1:c4:77:e5:5d:72:e3:df: 63:5f:11:8e:7e:f4:31:a1:0a:37:07:b1:9d:f4:5d: c2:5f:8c:c2:2d:97:e7:ac:86:ba:70:a0:e1:7a:c3: 82:a1:f8:c4:84:b0:94:9f:19:cd:0e:27:2b:4a:f8: 38:8e:c1:96:e8:bc:88:3d:93:7f:85:d8:c9:6e:12: 47:89:66:ee:9a:96:ce:33:28:5b:11:71:66:41:45: 1f:ba:68:74:b9:bf:49:13:aa:e6:ca:00:36:66:b6: 0a:fb:43:f2:65:64:b5:4e:b7:b2:6e:23:f1:35:42: 11:5f:15:2d:fc:7d:6f:4b:de:3c:22:16:ba:71:7e: 08:9f:5b:87:f1:8e:36:19:ee:20:ac:a5:82:03:5b: de:aa:79:ee:7b:48:04:92:c5:21:99:49:31:85:b2: b3:f1:61:41:eb:6d:92:db:89:45:95:55:fe:ec:88: 4c:ad:d1:8d:33:a5:17:17:46:c6:20:8f:fe:91:a9: 3f:32:6a:97:7f:e7:e5:e8:99:22:2d:e7:3e:51:45: 36:cf:30:13:08:f8:ae:a0:bb:cc:09:2a:9b:b7:ef: dc:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:89:F1:97:0B:63:1C:09:79:DA:F4:38:AF:3B:2C:75:52:F9:2C:BF X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/261D3B8AEE4611ED9BEFED31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.237.0/24 Signature Algorithm: sha256WithRSAEncryption 78:ea:9a:e1:c9:10:f0:90:7d:db:87:62:96:54:e9:8a:1d:75: ed:41:ff:d2:9a:a7:4a:f4:27:3d:e5:7a:5d:cd:55:68:1d:35: ba:84:2c:5f:cc:38:3e:1d:a0:91:57:b1:2a:b1:a7:cc:0e:2b: 98:e3:e0:bf:cf:08:32:2f:fc:63:ae:31:4c:52:dc:bd:22:e6: dc:e0:5a:ce:c8:0b:87:e8:7f:5a:dd:be:0d:29:45:f9:6c:ac: 23:bf:4e:3f:bf:94:a0:b5:eb:f9:06:73:3b:ed:a9:08:7a:6c: 48:5b:03:7b:2d:0b:c2:34:77:01:f9:f3:07:32:ba:57:40:0f: e1:ab:a0:4f:72:a4:5d:63:48:ce:03:d4:0e:87:68:2c:0f:f8: 15:ae:97:4f:56:21:97:27:23:90:74:4b:13:6f:ba:8e:a4:ba: 8a:86:87:39:6a:a9:49:fd:86:55:78:26:cf:3e:e2:bd:20:e5: ac:ea:a3:f4:96:e3:c4:08:79:03:16:b8:b0:31:41:84:f1:cb: d1:7e:87:03:e2:1e:70:43:08:03:69:7d:43:6d:6f:dc:4c:55: e6:f7:9f:54:82:e2:59:71:33:8c:97:4c:9f:4e:ba:bf:0a:d3: fa:85:4f:68:67:e8:20:c4:20:77:20:d2:78:ef:73:ad:ff:ed: 41:96:a7:96 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjUwNDI1MDI1OTU4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBhZmFhZC0zYTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwg3AQmr8eBiKoaS1UoTloaQVdfC5eRpRSPm3sItNJRHddO9x8cR35V1y499j XxGOfvQxoQo3B7Gd9F3CX4zCLZfnrIa6cKDhesOCofjEhLCUnxnNDicrSvg4jsGW 6LyIPZN/hdjJbhJHiWbumpbOMyhbEXFmQUUfumh0ub9JE6rmygA2ZrYK+0PyZWS1 TreybiPxNUIRXxUt/H1vS948Iha6cX4In1uH8Y42Ge4grKWCA1veqnnue0gEksUh mUkxhbKz8WFB622S24lFlVX+7IhMrdGNM6UXF0bGII/+kak/MmqXf+fl6JkiLec+ UUU2zzATCPiuoLvMCSqbt+/ceQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMqJ8ZcL YxwJedr0OK87LHVS+Sy/MB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkVGQkIvRDg5NkI1QzhFQTZBMTFFREI1QjZCNTVFQzRGOUFFMDIvMjYxRDNCOEFF RTQ2MTFFRDlCRUZFRDMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnnu0wDQYJKoZIhvcNAQELBQADggEBAHjqmuHJEPCQfduH YpZU6Yodde1B/9Kap0r0Jz3lel3NVWgdNbqELF/MOD4doJFXsSqxp8wOK5jj4L/P CDIv/GOuMUxS3L0i5tzgWs7IC4fof1rdvg0pRflsrCO/Tj+/lKC16/kGczvtqQh6 bEhbA3stC8I0dwH58wcyuldAD+GroE9ypF1jSM4D1A6HaCwP+BWul09WIZcnI5B0 SxNvuo6kuoqGhzlqqUn9hlV4Js8+4r0g5azqo/SW48QIeQMWuLAxQYTxy9F+hwPi HnBDCANpfUNtb9xMVeb3n1SC4llxM4yXTJ9Our8K0/qFT2hn6CDEIHcg0njvc63/ 7UGWp5Y= -----END CERTIFICATE-----Generated at Sat Apr 26 16:16:53 2025 by rpki-client