$ rpki-client -vvf rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/278EE7F0F4FD11EB975E376BC4F9AE02.roa File: 278EE7F0F4FD11EB975E376BC4F9AE02.roa (raw, json) Hash identifier: nnEDrBs5N1TINTxavJXzYMTFVmRpWUpTfX0eoMA2f+w= Subject key identifier: 69:E5:73:FE:FA:39:96:D7:FC:39:39:66:E8:0B:E9:B6:61:0B:A8:93 Certificate issuer: /CN=A91A45C3/serialNumber=01080E242E450460656FFFF9E6AA432E1D40E25C Certificate serial: 0542 Authority key identifier: 01:08:0E:24:2E:45:04:60:65:6F:FF:F9:E6:AA:43:2E:1D:40:E2:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQgOJC5FBGBlb__55qpDLh1A4lw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/278EE7F0F4FD11EB975E376BC4F9AE02.roa Signing time: Sat 03 May 2025 00:05:08 +0000 ROA not before: Sat 03 May 2025 00:05:08 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135158 IP address blocks: 103.211.92.0/22 maxlen: 22 160.202.56.0/22 maxlen: 22 160.202.56.0/24 maxlen: 24 160.202.57.0/24 maxlen: 24 160.202.58.0/23 maxlen: 23 160.202.58.0/24 maxlen: 24 160.202.59.0/24 maxlen: 24 2404:8380::/32 maxlen: 32 2404:8380::/36 maxlen: 36 2404:8380:1000::/36 maxlen: 36 2404:8380:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.crl rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQgOJC5FBGBlb__55qpDLh1A4lw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:16:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1346 (0x542) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A45C3, serialNumber=01080E242E450460656FFFF9E6AA432E1D40E25C Validity Not Before: May 3 00:05:08 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68155db4-f7ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:41:ba:47:bf:fc:95:47:cf:2b:4d:28:ba:24: c6:c1:f9:2b:7d:c1:07:d5:cf:08:eb:13:a1:06:e8: c4:cb:34:3d:99:bc:4f:17:75:e5:45:2c:2c:66:15: ec:36:1d:13:7c:d1:d3:ad:4d:e7:28:9f:04:42:69: ed:ae:87:c7:f9:ee:62:f4:0d:bb:50:37:91:bf:ac: c8:6c:14:2c:81:b9:99:be:28:d8:f2:22:ad:d2:3f: 04:0b:52:af:34:13:af:ab:6d:d5:43:70:7f:57:4c: 9f:81:66:a8:31:16:a5:b8:7d:66:de:bd:ae:8e:f1: 30:a0:21:04:10:f2:dc:d0:78:99:38:44:b7:f8:81: 55:00:ae:12:82:02:70:06:e8:93:b8:ae:b3:89:f4: 19:1f:ac:16:53:fd:ac:89:da:88:e1:a4:37:31:0a: af:70:4c:39:bd:a5:b6:c0:68:13:92:cc:61:fe:ab: 74:f2:1d:a7:b3:6c:03:7d:2e:a4:ea:5e:9a:00:0c: 48:2d:9a:1d:43:67:4f:2d:ba:38:a7:20:db:f7:a8: dc:0a:2f:3a:39:4a:3a:a7:60:6f:e8:3e:6d:f2:e7: 19:f5:ae:6f:96:14:e1:81:b5:5a:7f:4b:25:19:0f: bf:2a:84:08:fa:de:82:c6:31:e7:76:c0:df:11:3a: a9:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:E5:73:FE:FA:39:96:D7:FC:39:39:66:E8:0B:E9:B6:61:0B:A8:93 X509v3 Authority Key Identifier: keyid:01:08:0E:24:2E:45:04:60:65:6F:FF:F9:E6:AA:43:2E:1D:40:E2:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/AQgOJC5FBGBlb__55qpDLh1A4lw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQgOJC5FBGBlb__55qpDLh1A4lw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A45C3/8A33D720F4F911EB912C2B20C4F9AE02/278EE7F0F4FD11EB975E376BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.211.92.0/22 160.202.56.0/22 IPv6: 2404:8380::/32 Signature Algorithm: sha256WithRSAEncryption 21:22:24:dc:47:ba:20:05:f3:06:6f:60:a3:2f:d1:52:be:c3: f0:10:da:3e:f5:5c:cf:64:3f:c8:01:7e:91:c7:b3:84:7a:2c: 27:d3:cd:87:25:5c:d4:1b:62:90:37:9c:3a:a5:32:3b:40:ac: 0f:d7:30:98:d4:3c:db:02:a9:5c:c7:3c:34:c9:5d:c7:57:2e: e0:99:af:30:cb:fc:bb:b1:e6:6a:10:ab:0e:35:58:db:ec:3a: 4a:05:86:82:85:94:18:87:9f:b4:42:32:bd:59:15:dd:db:7a: bf:f4:9d:89:5d:14:e7:ec:dc:21:bd:f2:ae:cc:51:b3:5c:cb: df:f4:93:83:40:d4:cd:57:67:ef:34:57:c5:80:fa:b9:37:7e: 74:3b:80:be:cc:5a:ee:84:95:cd:2c:2f:70:8d:32:72:a6:30: 48:1e:01:2d:bf:40:07:b7:7f:ed:ae:5a:1b:65:77:d4:9d:81: 76:83:a7:c7:42:c3:18:21:1e:91:2f:d1:dc:54:45:3e:ec:7d: 53:1b:f3:25:6d:af:69:cc:11:3d:ce:0d:b5:f2:57:4e:ac:3e: 1b:70:88:f8:aa:c4:c5:5c:55:77:31:ad:8c:14:9f:00:e5:e6: fc:6d:63:d2:22:dc:3b:53:08:8f:80:80:36:1d:79:24:1c:d9: 95:f5:fc:f0 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ1QzMxMTAvBgNVBAUTKDAxMDgwRTI0MkU0NTA0NjA2NTZGRkZGOUU2QUE0MzJF MUQ0MEUyNUMwHhcNMjUwNTAzMDAwNTA4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1NWRiNC1mN2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk0G6R7/8lUfPK00ouiTGwfkrfcEH1c8I6xOhBujEyzQ9mbxPF3XlRSwsZhXs Nh0TfNHTrU3nKJ8EQmntrofH+e5i9A27UDeRv6zIbBQsgbmZvijY8iKt0j8EC1Kv NBOvq23VQ3B/V0yfgWaoMRaluH1m3r2ujvEwoCEEEPLc0HiZOES3+IFVAK4SggJw BuiTuK6zifQZH6wWU/2sidqI4aQ3MQqvcEw5vaW2wGgTksxh/qt08h2ns2wDfS6k 6l6aAAxILZodQ2dPLbo4pyDb96jcCi86OUo6p2Bv6D5t8ucZ9a5vlhThgbVaf0sl GQ+/KoQI+t6CxjHndsDfETqpxQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFGnlc/76 OZbX/Dk5ZugL6bZhC6iTMB8GA1UdIwQYMBaAFAEIDiQuRQRgZW//+eaqQy4dQOJc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDVDMy84QTMzRDcyMEY0 RjkxMUVCOTEyQzJCMjBDNEY5QUUwMi9BUWdPSkM1RkJHQmxiX181NXFwRExoMUE0 bHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRZ09KQzVGQkdCbGJfXzU1cXBETGgxQTRsdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ1QzMvOEEzM0Q3MjBGNEY5MTFFQjkxMkMyQjIwQzRGOUFFMDIvMjc4RUU3RjBG NEZEMTFFQjk3NUUzNzZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn01wDBAKgyjgwDQQCAAIwBwMFACQEg4AwDQYJKoZIhvcN AQELBQADggEBACEiJNxHuiAF8wZvYKMv0VK+w/AQ2j71XM9kP8gBfpHHs4R6LCfT zYclXNQbYpA3nDqlMjtArA/XMJjUPNsCqVzHPDTJXcdXLuCZrzDL/Lux5moQqw41 WNvsOkoFhoKFlBiHn7RCMr1ZFd3ber/0nYldFOfs3CG98q7MUbNcy9/0k4NA1M1X Z+80V8WA+rk3fnQ7gL7MWu6Elc0sL3CNMnKmMEgeAS2/QAe3f+2uWhtld9SdgXaD p8dCwxghHpEv0dxURT7sfVMb8yVtr2nMET3ODbXyV06sPhtwiPiqxMVcVXcxrYwU nwDl5vxtY9Ii3DtTCI+AgDYdeSQc2ZX1/PA= -----END CERTIFICATE-----Generated at Tue May 13 05:17:17 2025 by rpki-client