$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF428/35EB13485DD811ECB9B4D630C4F9AE02/D254B444679111EF8A2C9062C4F9AE02.roa File: D254B444679111EF8A2C9062C4F9AE02.roa (raw, json) Hash identifier: KIM/sEwaQaYFPC8qF/5+qRUkUFtySui4RoXzgpLXzmc= Subject key identifier: FD:6F:C9:C2:A0:F6:F3:5D:EE:5C:B1:E4:E2:1A:8C:C3:E2:DB:21:48 Certificate issuer: /CN=A91FF428/serialNumber=BE852A8B3B7EA5C5AC5A52AACB852A01A4CDD082 Certificate serial: 0416 Authority key identifier: BE:85:2A:8B:3B:7E:A5:C5:AC:5A:52:AA:CB:85:2A:01:A4:CD:D0:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/voUqizt-pcWsWlKqy4UqAaTN0II.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF428/35EB13485DD811ECB9B4D630C4F9AE02/D254B444679111EF8A2C9062C4F9AE02.roa Signing time: Thu 09 Jan 2025 00:14:30 +0000 ROA not before: Thu 09 Jan 2025 00:14:30 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 134788 IP address blocks: 103.178.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF428/35EB13485DD811ECB9B4D630C4F9AE02/voUqizt-pcWsWlKqy4UqAaTN0II.crl rsync://rpki.apnic.net/member_repository/A91FF428/35EB13485DD811ECB9B4D630C4F9AE02/voUqizt-pcWsWlKqy4UqAaTN0II.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/voUqizt-pcWsWlKqy4UqAaTN0II.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:08:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1046 (0x416) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF428, serialNumber=BE852A8B3B7EA5C5AC5A52AACB852A01A4CDD082 Validity Not Before: Jan 9 00:14:30 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=677f14e6-7b3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d8:76:7c:88:2c:83:2b:6c:e7:d7:c1:32:0b: fd:73:d0:7c:01:21:4c:9c:ab:32:12:3d:72:cc:b5: c5:16:3d:e4:c0:12:d7:20:ba:0b:bf:df:8c:72:5e: 86:ee:8f:65:b9:a6:d1:e1:77:75:b9:92:31:5e:f6: 11:1b:54:d9:6f:c5:c6:a8:87:fb:93:7d:60:aa:e4: de:eb:fc:0f:86:7b:f2:c3:36:4d:8b:a9:a6:e3:58: 59:da:63:96:64:ea:f8:ed:87:76:64:34:1a:66:8f: 94:5f:2e:8f:af:8e:be:8c:13:40:a6:d1:02:1a:2b: 60:19:b2:14:d4:e8:3f:46:e4:92:bb:88:ec:c6:e3: 1d:56:bb:8a:da:7e:f3:15:82:57:81:1b:38:e1:06: cd:89:3b:a7:b0:3f:20:84:18:4f:16:38:1b:ab:7e: 5d:f1:53:01:04:2a:b4:53:46:96:79:0a:ef:e5:ce: f6:4a:77:b7:e6:27:81:e7:4f:17:59:7a:89:3c:36: 04:39:3b:3d:76:43:45:73:28:33:4e:f2:dd:f1:8a: 8a:cc:9f:d8:4a:97:6a:9e:5e:fe:f2:0a:0b:d7:88: c4:00:aa:bd:92:24:93:9c:19:45:80:24:2d:2d:8c: 3a:87:01:90:fa:c0:81:e8:20:ed:22:2f:c2:d5:c6: 94:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:6F:C9:C2:A0:F6:F3:5D:EE:5C:B1:E4:E2:1A:8C:C3:E2:DB:21:48 X509v3 Authority Key Identifier: keyid:BE:85:2A:8B:3B:7E:A5:C5:AC:5A:52:AA:CB:85:2A:01:A4:CD:D0:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF428/35EB13485DD811ECB9B4D630C4F9AE02/voUqizt-pcWsWlKqy4UqAaTN0II.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/voUqizt-pcWsWlKqy4UqAaTN0II.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF428/35EB13485DD811ECB9B4D630C4F9AE02/D254B444679111EF8A2C9062C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.178.27.0/24 Signature Algorithm: sha256WithRSAEncryption 00:3d:9b:8a:b2:7e:2a:2a:ad:e0:7b:8c:0e:5f:fd:98:d5:7d: 0b:47:f9:6e:76:4e:9f:fe:f5:93:9e:f9:4b:52:19:67:67:a3: 15:c2:bb:c0:bb:b5:70:c1:d6:af:7f:3b:0c:54:80:b5:fd:68: a4:5d:81:87:95:f0:ba:17:d9:6a:66:d2:01:45:39:96:a6:fd: 32:0f:64:25:46:e2:de:ee:2e:39:ab:f3:4e:d7:a9:1f:c6:90: 0d:57:af:db:20:b5:99:b5:50:9c:d5:c5:fa:57:65:f2:9a:38: 5b:be:8d:5c:eb:ed:2b:5e:13:8b:10:a9:46:39:25:d5:ba:23: f9:ff:30:c1:ae:34:40:08:60:f0:cd:9e:14:a2:8c:67:01:8e: 42:38:49:cd:b9:f0:f5:2a:e1:90:80:25:02:fe:fd:ed:d7:b6: 87:6b:d2:b9:55:3e:4c:f7:f9:5b:12:75:29:23:14:86:7d:20: f5:8a:18:1e:37:6f:4f:76:17:36:ad:d9:60:d3:9c:23:16:07: 16:31:2a:d3:86:75:15:f1:8a:33:e5:15:3c:e5:89:88:1e:c4: b4:87:25:0b:66:93:b5:e5:cc:6a:26:3e:d9:1c:dc:c4:0a:d4: f9:07:79:95:ea:8e:05:27:17:cb:9f:3f:f6:8a:13:35:95:c5: 90:d9:3b:40 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY0MjgxMTAvBgNVBAUTKEJFODUyQThCM0I3RUE1QzVBQzVBNTJBQUNCODUyQTAx QTRDREQwODIwHhcNMjUwMTA5MDAxNDMwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdmMTRlNi03YjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNh2fIgsgyts59fBMgv9c9B8ASFMnKsyEj1yzLXFFj3kwBLXILoLv9+Mcl6G 7o9luabR4Xd1uZIxXvYRG1TZb8XGqIf7k31gquTe6/wPhnvywzZNi6mm41hZ2mOW ZOr47Yd2ZDQaZo+UXy6Pr46+jBNAptECGitgGbIU1Og/RuSSu4jsxuMdVruK2n7z FYJXgRs44QbNiTunsD8ghBhPFjgbq35d8VMBBCq0U0aWeQrv5c72Sne35ieB508X WXqJPDYEOTs9dkNFcygzTvLd8YqKzJ/YSpdqnl7+8goL14jEAKq9kiSTnBlFgCQt LYw6hwGQ+sCB6CDtIi/C1caU/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFP1vycKg 9vNd7lyx5OIajMPi2yFIMB8GA1UdIwQYMBaAFL6FKos7fqXFrFpSqsuFKgGkzdCC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjQyOC8zNUVCMTM0ODVE RDgxMUVDQjlCNEQ2MzBDNEY5QUUwMi92b1VxaXp0LXBjV3NXbEtxeTRVcUFhVE4w SUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZvVXFpenQtcGNXc1dsS3F5NFVxQWFUTjBJSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkY0MjgvMzVFQjEzNDg1REQ4MTFFQ0I5QjRENjMwQzRGOUFFMDIvRDI1NEI0NDQ2 NzkxMTFFRjhBMkM5MDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnshswDQYJKoZIhvcNAQELBQADggEBAAA9m4qyfioqreB7 jA5f/ZjVfQtH+W52Tp/+9ZOe+UtSGWdnoxXCu8C7tXDB1q9/OwxUgLX9aKRdgYeV 8LoX2Wpm0gFFOZam/TIPZCVG4t7uLjmr807XqR/GkA1Xr9sgtZm1UJzVxfpXZfKa OFu+jVzr7SteE4sQqUY5JdW6I/n/MMGuNEAIYPDNnhSijGcBjkI4Sc258PUq4ZCA JQL+/e3Xtodr0rlVPkz3+VsSdSkjFIZ9IPWKGB43b092Fzat2WDTnCMWBxYxKtOG dRXxijPlFTzliYgexLSHJQtmk7XlzGomPtkc3MQK1PkHeZXqjgUnF8ufP/aKEzWV xZDZO0A= -----END CERTIFICATE-----Generated at Sat Apr 26 17:22:17 2025 by rpki-client