$ rpki-client -vvf rpki.apnic.net/member_repository/A91868EC/E057E2B0ADB411EEBEA7E563C4F9AE02/8BDE35DAADB511EEA223FA64C4F9AE02.roa File: 8BDE35DAADB511EEA223FA64C4F9AE02.roa (raw, json) Hash identifier: 5Euxmdyfg42rk8kh2tCEWEITcp7TGJlbx40uBqp19vc= Subject key identifier: 96:89:CF:4A:9B:A3:2B:6F:45:7F:41:D7:FB:75:D8:CC:48:79:25:05 Certificate issuer: /CN=A91868EC/serialNumber=0BA8BA40F89734CC3F3AE3ED6774CBD843E2E772 Certificate serial: FC Authority key identifier: 0B:A8:BA:40:F8:97:34:CC:3F:3A:E3:ED:67:74:CB:D8:43:E2:E7:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6i6QPiXNMw_OuPtZ3TL2EPi53I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91868EC/E057E2B0ADB411EEBEA7E563C4F9AE02/8BDE35DAADB511EEA223FA64C4F9AE02.roa Signing time: Sat 03 May 2025 04:41:27 +0000 ROA not before: Sat 03 May 2025 04:41:27 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135396 IP address blocks: 103.217.74.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91868EC/E057E2B0ADB411EEBEA7E563C4F9AE02/C6i6QPiXNMw_OuPtZ3TL2EPi53I.crl rsync://rpki.apnic.net/member_repository/A91868EC/E057E2B0ADB411EEBEA7E563C4F9AE02/C6i6QPiXNMw_OuPtZ3TL2EPi53I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6i6QPiXNMw_OuPtZ3TL2EPi53I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 03:57:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91868EC, serialNumber=0BA8BA40F89734CC3F3AE3ED6774CBD843E2E772 Validity Not Before: May 3 04:41:27 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68159e77-44aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c9:27:37:6d:37:eb:aa:e1:62:24:d1:67:37: c6:47:34:a7:4e:b3:f6:07:e0:d3:78:ab:51:ec:4b: f0:ea:53:4c:00:81:46:89:8d:53:3e:c5:d2:49:3d: 01:3d:2e:a1:1d:a3:89:15:76:96:64:8b:b0:1c:8b: f8:e4:02:16:fe:8a:e9:ed:26:57:e8:a8:9b:7a:46: 22:52:40:ae:52:17:fd:ec:65:6f:af:14:e5:4c:01: 3f:9f:b1:8c:b2:a5:94:49:dc:9d:87:7e:59:84:2b: 46:c3:8c:25:04:7b:82:de:4f:c2:49:b4:16:26:c2: b9:3a:12:b1:f0:6f:c2:b9:eb:95:98:31:20:23:50: dc:13:a9:5f:93:45:3a:de:24:46:3c:2a:52:a6:87: 5f:f5:3d:c8:56:ed:2a:6a:e2:c3:2c:7a:bb:35:82: e7:0b:a1:ab:9e:d4:c6:19:13:e7:9c:22:6a:8b:98: 7c:f3:05:39:8f:bf:9a:b4:2f:c7:9a:89:fe:0b:01: fa:eb:85:62:47:51:04:ee:10:c1:af:df:da:61:98: 6c:34:2f:b4:9f:4a:a6:fb:17:bc:0c:ff:44:c4:0b: cf:17:c7:0e:c1:43:c1:cc:b6:2a:f5:ea:99:97:f4: de:23:8b:11:b5:ac:e2:1b:b1:e7:c5:e4:8b:bb:69: 18:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:89:CF:4A:9B:A3:2B:6F:45:7F:41:D7:FB:75:D8:CC:48:79:25:05 X509v3 Authority Key Identifier: keyid:0B:A8:BA:40:F8:97:34:CC:3F:3A:E3:ED:67:74:CB:D8:43:E2:E7:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91868EC/E057E2B0ADB411EEBEA7E563C4F9AE02/C6i6QPiXNMw_OuPtZ3TL2EPi53I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6i6QPiXNMw_OuPtZ3TL2EPi53I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91868EC/E057E2B0ADB411EEBEA7E563C4F9AE02/8BDE35DAADB511EEA223FA64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.217.74.0/23 Signature Algorithm: sha256WithRSAEncryption 24:d0:f0:1a:da:c0:86:8c:49:5b:c1:61:3d:1d:87:da:f5:a2: 54:c3:0f:c6:42:b5:7b:79:43:fb:b5:46:ad:c4:b6:63:04:c5: 80:53:a8:ef:dc:62:9c:1b:41:66:3b:82:82:ef:e3:33:0b:93: 5d:f1:c7:2f:9d:ab:48:fd:5f:1d:6f:b6:f4:43:3f:37:24:d6: ad:c4:38:16:d6:fa:58:29:00:13:ad:7e:17:b9:86:c1:ad:96: d5:da:70:1d:f6:4b:37:47:d7:9b:10:07:2b:6c:6e:b3:89:22: 0c:a9:e7:c5:a3:08:ba:e4:be:24:7d:53:25:1d:67:c3:fd:7d: c8:d2:30:32:46:f9:22:2b:8a:b1:69:f0:17:23:d8:84:7e:4f: ca:59:c7:2a:42:1a:2b:b2:d9:d4:12:86:ec:99:6e:5a:85:4c: 0c:66:77:93:83:77:c3:b7:a5:b4:d7:14:2b:09:ae:f4:8f:87: 3b:89:35:f1:6c:bc:6a:0c:6e:8f:ce:26:f3:59:87:14:97:2b: d1:56:29:fb:02:05:03:a5:d2:ac:c2:7f:38:ae:84:88:fd:7a: 2c:7b:05:5e:87:be:f0:dd:de:95:5b:7f:a4:08:bb:ef:5c:e4: 1c:f5:1e:4b:30:31:4f:54:fc:48:35:7a:c1:37:76:1c:7f:4a: 18:51:da:67 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY4RUMxMTAvBgNVBAUTKDBCQThCQTQwRjg5NzM0Q0MzRjNBRTNFRDY3NzRDQkQ4 NDNFMkU3NzIwHhcNMjUwNTAzMDQ0MTI3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1OWU3Ny00NGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMknN20366rhYiTRZzfGRzSnTrP2B+DTeKtR7Evw6lNMAIFGiY1TPsXSST0B PS6hHaOJFXaWZIuwHIv45AIW/orp7SZX6KibekYiUkCuUhf97GVvrxTlTAE/n7GM sqWUSdydh35ZhCtGw4wlBHuC3k/CSbQWJsK5OhKx8G/CueuVmDEgI1DcE6lfk0U6 3iRGPCpSpodf9T3IVu0qauLDLHq7NYLnC6GrntTGGRPnnCJqi5h88wU5j7+atC/H mon+CwH664ViR1EE7hDBr9/aYZhsNC+0n0qm+xe8DP9ExAvPF8cOwUPBzLYq9eqZ l/TeI4sRtaziG7HnxeSLu2kYKwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJaJz0qb oytvRX9B1/t12MxIeSUFMB8GA1UdIwQYMBaAFAuoukD4lzTMPzrj7Wd0y9hD4udy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjhFQy9FMDU3RTJCMEFE QjQxMUVFQkVBN0U1NjNDNEY5QUUwMi9DNmk2UVBpWE5Nd19PdVB0WjNUTDJFUGk1 M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M2aTZRUGlYTk13X091UHRaM1RMMkVQaTUzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODY4RUMvRTA1N0UyQjBBREI0MTFFRUJFQTdFNTYzQzRGOUFFMDIvOEJERTM1REFB REI1MTFFRUEyMjNGQTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn2UowDQYJKoZIhvcNAQELBQADggEBACTQ8BrawIaMSVvB YT0dh9r1olTDD8ZCtXt5Q/u1Rq3EtmMExYBTqO/cYpwbQWY7goLv4zMLk13xxy+d q0j9Xx1vtvRDPzck1q3EOBbW+lgpABOtfhe5hsGtltXacB32SzdH15sQBytsbrOJ Igyp58WjCLrkviR9UyUdZ8P9fcjSMDJG+SIrirFp8Bcj2IR+T8pZxypCGiuy2dQS huyZblqFTAxmd5ODd8O3pbTXFCsJrvSPhzuJNfFsvGoMbo/OJvNZhxSXK9FWKfsC BQOl0qzCfziuhIj9eix7BV6HvvDd3pVbf6QIu+9c5Bz1HkswMU9U/Eg1esE3dhx/ ShhR2mc= -----END CERTIFICATE-----Generated at Tue May 13 02:12:27 2025 by rpki-client