$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/C78C216A070211EDB5178252C4F9AE02.roa File: C78C216A070211EDB5178252C4F9AE02.roa (raw, json) Hash identifier: SRhZlpn7+MBKLxOuK/LxQ3OpeiTq/ZO5FLcjac1mcNc= Subject key identifier: 5D:4C:D5:3C:94:65:01:69:F5:03:30:98:95:3D:05:A1:EF:C6:7F:8E Certificate issuer: /CN=A91A3873/serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1 Certificate serial: 02A2 Authority key identifier: 3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/C78C216A070211EDB5178252C4F9AE02.roa Signing time: Wed 07 May 2025 01:38:50 +0000 ROA not before: Wed 07 May 2025 01:38:50 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 13631 IP address blocks: 103.187.70.0/23 maxlen: 24 202.130.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:20:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 674 (0x2a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3873, serialNumber=3B47AA0D03209195F0555C60ADE3294F2D37A2A1 Validity Not Before: May 7 01:38:50 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681ab9a9-557a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5f:05:ba:0b:c4:77:d1:c4:07:81:47:19:a1: e3:3a:be:c3:11:82:c1:32:18:3a:62:b8:cc:9e:76: 97:64:25:53:8c:90:65:ab:8d:cc:d4:9e:18:b4:ef: 2d:28:97:21:7f:87:c0:1e:a1:79:aa:1c:34:8e:93: 87:4c:47:a7:53:62:17:80:02:41:27:17:e4:9f:13: 8d:34:5b:c7:82:22:4e:44:a9:1a:94:f4:ce:eb:27: dc:4f:89:54:4a:28:ba:08:5e:be:da:0f:20:86:02: c0:cf:52:88:18:5e:2d:23:e3:08:70:43:a4:4b:de: 08:a1:ac:82:09:f9:3d:0e:03:f3:d7:78:54:ba:c6: 4a:9a:9f:e0:d9:dc:0e:f9:79:c9:b7:c0:71:31:85: 20:4f:9d:ac:fc:72:f5:92:38:75:9c:44:dd:cd:0e: be:84:c0:18:d4:96:ea:3e:fe:cd:a1:a8:fa:7a:2b: 08:62:04:6b:02:1b:26:07:42:d1:33:1d:41:ee:b8: fb:63:37:5b:20:9f:95:0b:1d:2b:64:6a:12:b1:3b: da:f1:ec:2c:60:94:68:36:0d:a0:32:12:96:c3:cc: 8f:27:34:fc:96:ab:ca:4d:38:15:f6:7b:8a:06:92: 59:70:7d:c6:12:68:10:41:84:72:27:16:18:4c:f2: 0d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:4C:D5:3C:94:65:01:69:F5:03:30:98:95:3D:05:A1:EF:C6:7F:8E X509v3 Authority Key Identifier: keyid:3B:47:AA:0D:03:20:91:95:F0:55:5C:60:AD:E3:29:4F:2D:37:A2:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/O0eqDQMgkZXwVVxgreMpTy03oqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0eqDQMgkZXwVVxgreMpTy03oqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3873/112EC196FDB811EC8E386913C4F9AE02/C78C216A070211EDB5178252C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.70.0/23 202.130.214.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:d6:d7:aa:bd:5f:cd:7e:60:5b:24:7b:20:ef:61:21:da:ed: 9b:21:e1:e9:25:d8:e9:99:68:46:31:85:05:47:35:5a:55:9c: 56:dc:30:f4:9c:3b:0f:25:aa:bd:c7:fa:07:f0:93:e0:67:55: 8c:e8:d2:06:30:4e:7b:79:34:32:e1:c2:7a:50:03:a1:7e:13: 84:65:22:f3:b9:a7:3b:3d:6c:3d:7a:3c:d9:11:40:4b:96:01: 88:69:bf:14:ec:c2:67:fa:c8:df:93:14:5e:6c:67:b8:f4:46: c1:f0:c4:a2:9b:49:80:32:3b:ce:af:b4:34:5c:03:f8:53:d2: 69:30:46:b5:ee:c0:fd:f2:ea:37:6a:a3:6c:14:95:92:d6:f2: 3a:f4:07:7d:e9:ea:ae:47:11:2f:8a:df:e4:09:3d:eb:be:fe: 7b:80:30:ba:23:a2:58:3c:82:02:d3:c7:ac:9b:ef:ee:3d:89: ea:0d:94:48:62:36:67:3d:95:fa:e9:ae:d9:98:36:92:e4:05: 72:2b:e1:f0:36:1f:f5:c6:f3:1c:93:62:3d:21:a4:91:69:9e: d3:39:d1:fb:e4:34:64:87:e8:ab:9b:11:4b:17:f2:c7:a0:96: d4:e4:85:25:0a:e6:94:e6:08:e6:ba:72:60:72:aa:05:81:65: f6:ad:ee:a5 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM4NzMxMTAvBgNVBAUTKDNCNDdBQTBEMDMyMDkxOTVGMDU1NUM2MEFERTMyOTRG MkQzN0EyQTEwHhcNMjUwNTA3MDEzODUwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhYjlhOS01NTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqF8FugvEd9HEB4FHGaHjOr7DEYLBMhg6YrjMnnaXZCVTjJBlq43M1J4YtO8t KJchf4fAHqF5qhw0jpOHTEenU2IXgAJBJxfknxONNFvHgiJORKkalPTO6yfcT4lU Sii6CF6+2g8ghgLAz1KIGF4tI+MIcEOkS94IoayCCfk9DgPz13hUusZKmp/g2dwO +XnJt8BxMYUgT52s/HL1kjh1nETdzQ6+hMAY1JbqPv7Noaj6eisIYgRrAhsmB0LR Mx1B7rj7YzdbIJ+VCx0rZGoSsTva8ewsYJRoNg2gMhKWw8yPJzT8lqvKTTgV9nuK BpJZcH3GEmgQQYRyJxYYTPINrwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFF1M1TyU ZQFp9QMwmJU9BaHvxn+OMB8GA1UdIwQYMBaAFDtHqg0DIJGV8FVcYK3jKU8tN6Kh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzg3My8xMTJFQzE5NkZE QjgxMUVDOEUzODY5MTNDNEY5QUUwMi9PMGVxRFFNZ2taWHdWVnhncmVNcFR5MDNv cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08wZXFEUU1na1pYd1ZWeGdyZU1wVHkwM29xRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTM4NzMvMTEyRUMxOTZGREI4MTFFQzhFMzg2OTEzQzRGOUFFMDIvQzc4QzIxNkEw NzAyMTFFREI1MTc4MjUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnu0YDBADKgtYwDQYJKoZIhvcNAQELBQADggEBAB3W16q9 X81+YFskeyDvYSHa7Zsh4ekl2OmZaEYxhQVHNVpVnFbcMPScOw8lqr3H+gfwk+Bn VYzo0gYwTnt5NDLhwnpQA6F+E4RlIvO5pzs9bD16PNkRQEuWAYhpvxTswmf6yN+T FF5sZ7j0RsHwxKKbSYAyO86vtDRcA/hT0mkwRrXuwP3y6jdqo2wUlZLW8jr0B33p 6q5HES+K3+QJPeu+/nuAMLojolg8ggLTx6yb7+49ieoNlEhiNmc9lfrprtmYNpLk BXIr4fA2H/XG8xyTYj0hpJFpntM50fvkNGSH6KubEUsX8segltTkhSUK5pTmCOa6 cmByqgWBZfat7qU= -----END CERTIFICATE-----Generated at Wed May 14 13:26:48 2025 by rpki-client