$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/2D613294CD7611EC83259862C4F9AE02.roa File: 2D613294CD7611EC83259862C4F9AE02.roa (raw, json) Hash identifier: HUqC6JNil8MpabByxXZUWUh1z061818LFUdkHBUaghY= Subject key identifier: 63:D3:CC:72:ED:DB:3A:F4:EF:D0:83:76:02:B8:0D:CD:D9:C6:DB:EE Certificate issuer: /CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Certificate serial: 0317 Authority key identifier: 3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/2D613294CD7611EC83259862C4F9AE02.roa Signing time: Wed 07 May 2025 01:07:57 +0000 ROA not before: Wed 07 May 2025 01:07:57 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.186.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 00:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 791 (0x317) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91772FA, serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Validity Not Before: May 7 01:07:57 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681ab26c-6b33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:85:bc:5d:4a:1c:22:7c:d5:5b:33:e0:56:00: c5:32:2b:81:5c:6a:45:f8:26:a5:30:9c:af:e6:b2: 6d:01:a0:89:35:40:f7:b9:46:d7:c9:be:42:0d:81: c4:59:20:3f:08:d8:20:e1:62:e8:41:77:b9:a8:a7: 87:39:aa:6e:e3:5d:02:d9:55:fd:fa:85:5e:c0:2f: 9a:e7:01:56:43:5f:e8:03:49:bf:89:47:d3:50:77: ef:7b:57:a7:b5:47:48:19:4c:b1:71:13:ff:22:53: 5d:04:1b:54:9e:c7:4d:e9:77:2f:61:14:08:fb:36: e7:2e:7e:67:37:5f:c1:6b:56:3e:55:d5:91:40:0d: ee:2e:83:f6:54:06:de:13:1a:f9:eb:2f:43:79:d9: b8:17:92:b7:bf:9e:1b:92:83:ec:8c:af:d9:60:6f: 6b:5f:4d:cb:a5:d9:31:38:45:d6:c4:1d:47:dd:41: ea:c1:8c:dc:33:68:7e:93:f4:ba:4c:18:0c:56:d6: 2d:9b:a4:a0:e1:49:df:8c:d5:92:ea:9d:5f:a3:76: 57:48:6d:84:83:bc:1e:26:9b:84:ab:39:97:12:fa: ba:4f:dd:6f:67:4f:0c:29:d5:46:86:de:d5:4d:d5: d7:45:ad:af:dc:3c:95:88:9b:ca:12:ea:02:a3:04: f6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:D3:CC:72:ED:DB:3A:F4:EF:D0:83:76:02:B8:0D:CD:D9:C6:DB:EE X509v3 Authority Key Identifier: keyid:3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/2D613294CD7611EC83259862C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.205.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:7f:29:03:dc:13:01:d3:50:a6:e2:df:a0:03:7c:43:c0:0c: 54:dd:c2:b3:5b:60:cb:81:8c:76:e6:c3:67:6c:ef:fa:07:63: ac:62:67:d0:37:34:0e:c3:df:21:10:fb:fb:fb:cf:54:8e:bf: 87:cc:6b:6a:01:4b:9c:3d:6a:e1:be:cc:95:ed:c6:28:c2:e0: bf:d3:8a:b8:ac:0b:63:d4:f3:87:92:cd:30:2b:3f:61:db:86: 5e:0e:00:f9:fa:f6:14:79:89:1f:4a:5e:a8:14:f8:5f:ac:65: 57:c8:41:a1:c8:c9:fe:9d:43:03:47:38:61:dc:33:8c:7c:f8: 35:57:24:9c:71:45:fd:d5:42:e9:fd:36:d1:c0:3c:d8:fe:97: 5b:fc:78:19:ac:fc:f7:53:2e:93:15:97:de:81:0f:55:4e:fa: 09:f7:ba:4b:fb:d1:0e:b1:36:b7:96:d1:99:39:94:69:1c:f9: 8a:13:e6:53:73:6d:82:30:1c:62:39:f6:d0:a6:d1:73:a3:9d: b6:12:11:73:b6:6a:4c:0b:67:3e:c1:8c:b8:cb:6b:3f:b5:ee: 1a:74:f6:47:8c:8a:08:be:b2:e3:b9:f7:10:d9:40:33:2e:8b: 4c:64:b3:86:dd:f9:93:2e:08:a1:3d:5e:ff:1b:ad:5a:bf:41: 0f:30:dd:75 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcyRkExMTAvBgNVBAUTKDNCMTY4OEE1RjdCNzI0QUFGQkU3ODIwQTJDNjNEOTdC MkVBOEU1MjIwHhcNMjUwNTA3MDEwNzU3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhYjI2Yy02YjMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4W8XUocInzVWzPgVgDFMiuBXGpF+CalMJyv5rJtAaCJNUD3uUbXyb5CDYHE WSA/CNgg4WLoQXe5qKeHOapu410C2VX9+oVewC+a5wFWQ1/oA0m/iUfTUHfve1en tUdIGUyxcRP/IlNdBBtUnsdN6XcvYRQI+zbnLn5nN1/Ba1Y+VdWRQA3uLoP2VAbe Exr56y9Dedm4F5K3v54bkoPsjK/ZYG9rX03LpdkxOEXWxB1H3UHqwYzcM2h+k/S6 TBgMVtYtm6Sg4UnfjNWS6p1fo3ZXSG2Eg7weJpuEqzmXEvq6T91vZ08MKdVGht7V TdXXRa2v3DyViJvKEuoCowT2FQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGPTzHLt 2zr079CDdgK4Dc3ZxtvuMB8GA1UdIwQYMBaAFDsWiKX3tySq++eCCixj2XsuqOUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzJGQS9ENzI0NDU2MkNE NzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pLcjc1NElLTEdQWmV5Nm81 U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL094YUlwZmUzSktyNzU0SUtMR1BaZXk2bzVTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzcyRkEvRDcyNDQ1NjJDRDczMTFFQ0EwQUE4MDYxQzRGOUFFMDIvMkQ2MTMyOTRD RDc2MTFFQzgzMjU5ODYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnus0wDQYJKoZIhvcNAQELBQADggEBADx/KQPcEwHTUKbi 36ADfEPADFTdwrNbYMuBjHbmw2ds7/oHY6xiZ9A3NA7D3yEQ+/v7z1SOv4fMa2oB S5w9auG+zJXtxijC4L/TirisC2PU84eSzTArP2Hbhl4OAPn69hR5iR9KXqgU+F+s ZVfIQaHIyf6dQwNHOGHcM4x8+DVXJJxxRf3VQun9NtHAPNj+l1v8eBms/PdTLpMV l96BD1VO+gn3ukv70Q6xNreW0Zk5lGkc+YoT5lNzbYIwHGI59tCm0XOjnbYSEXO2 akwLZz7BjLjLaz+17hp09keMigi+suO59xDZQDMui0xks4bd+ZMuCKE9Xv8brVq/ QQ8w3XU= -----END CERTIFICATE-----Generated at Mon May 12 22:43:06 2025 by rpki-client