$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/5122B56A51F311E9AB54691EC4F9AE02.roa File: 5122B56A51F311E9AB54691EC4F9AE02.roa (raw, json) Hash identifier: 3BEJ1gCiaz/4ZdrE3qzkDJ5+ojL/iMHnMesKRyA+c6Q= Subject key identifier: 02:A0:13:B3:9A:6E:7E:4A:24:AC:62:84:25:2D:26:6F:E7:D3:88:F8 Certificate issuer: /CN=A91BFE6A/serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Certificate serial: 1281 Authority key identifier: EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/5122B56A51F311E9AB54691EC4F9AE02.roa Signing time: Wed 14 May 2025 17:38:54 +0000 ROA not before: Wed 14 May 2025 17:38:54 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 133219 IP address blocks: 103.14.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 17:38:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4737 (0x1281) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE6A, serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Validity Not Before: May 14 17:38:54 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6824d52e-bae0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d1:09:4f:54:11:68:75:29:15:b6:8e:2d:3b: b0:66:32:74:81:19:21:6e:b9:e7:20:14:c1:d3:ff: 1b:8d:f4:52:31:ed:5a:9d:1a:6b:86:13:53:fa:a9: e4:e9:e8:8b:62:b1:16:4f:62:37:e0:b6:4a:53:d4: 85:8f:22:c2:6b:a0:1f:5a:9a:3a:5f:71:8e:b2:ff: ef:49:9a:e8:ff:85:6c:bd:a7:59:87:5b:04:7e:3c: 32:fc:80:54:20:8f:a3:d2:5a:e4:bf:9b:06:4e:ae: 79:f3:91:82:7a:bf:7d:ab:13:8e:a4:15:09:52:4a: d7:36:ed:c1:f0:f2:b9:84:f4:06:d7:46:6d:ab:f3: 7f:9f:19:c2:7d:9e:74:14:5f:87:42:21:57:98:c0: d3:61:21:c1:a8:4c:c3:fb:b7:60:17:c9:a8:fc:b3: 3e:ae:39:a3:77:e3:2e:4b:a8:17:21:7c:63:e2:df: 37:27:73:23:64:1b:33:1c:b9:bd:5f:1f:7a:a0:31: 5b:8d:44:35:3c:3f:ce:9e:db:18:1e:e0:cf:d9:87: 9d:f7:b3:cc:4a:28:b8:6c:59:c5:bb:17:b8:7b:07: dc:5b:b8:68:d1:15:24:38:f9:d8:65:9c:63:94:97: 4b:c8:42:47:bc:38:39:78:d0:0a:6c:48:6d:f8:1f: 01:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:A0:13:B3:9A:6E:7E:4A:24:AC:62:84:25:2D:26:6F:E7:D3:88:F8 X509v3 Authority Key Identifier: keyid:EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/5122B56A51F311E9AB54691EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.78.0/24 Signature Algorithm: sha256WithRSAEncryption 77:8c:0b:d5:44:64:57:d3:0e:e6:ca:33:70:88:71:e4:33:a1: 9d:2e:cc:0e:39:88:e3:9a:d2:d4:41:c1:c3:b8:73:33:3a:6f: d6:49:d5:43:96:59:9e:6d:2c:82:44:e2:51:72:36:ba:5a:31: 6f:52:d4:e8:a9:84:1a:7e:d3:31:99:e5:e6:4e:70:55:47:9f: 3a:dc:92:19:22:b1:f9:e4:0e:cd:d3:ff:d6:c1:f8:15:8a:25: 1b:58:01:5f:fe:71:1a:cc:6b:a9:ed:52:34:e4:cd:9e:81:b4: dd:d4:62:a9:bb:7d:c4:a8:8c:0b:34:d5:44:57:ae:fd:50:dc: 92:0a:ab:21:0b:99:ca:72:63:7e:ea:ca:14:4a:ce:b2:fa:e2: cb:7b:de:9d:c3:f7:5c:98:c5:87:20:d5:86:29:b8:0a:12:07: f7:bd:d7:21:25:83:fe:88:a6:36:1c:69:68:7c:68:47:c8:3b: a9:37:06:a3:6e:7f:ec:b8:f5:b9:aa:76:3f:79:1b:23:a0:1f: 25:8d:45:0a:d1:f3:81:14:d3:02:54:81:33:4a:f5:b8:4a:d7: 9f:86:3e:b3:fa:91:31:54:4f:5a:14:7d:29:45:c2:49:42:9c: ef:a7:3f:d2:0b:e9:c7:46:71:0c:1a:22:d9:20:a8:30:72:d6: 49:33:65:3a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNkExMTAvBgNVBAUTKEVGNjJGMTU1QzE5NzFENTA0OTQxRjU3MUVFREZBQzBB RkNDNTI4NTkwHhcNMjUwNTE0MTczODU0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI0ZDUyZS1iYWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9EJT1QRaHUpFbaOLTuwZjJ0gRkhbrnnIBTB0/8bjfRSMe1anRprhhNT+qnk 6eiLYrEWT2I34LZKU9SFjyLCa6AfWpo6X3GOsv/vSZro/4VsvadZh1sEfjwy/IBU II+j0lrkv5sGTq5585GCer99qxOOpBUJUkrXNu3B8PK5hPQG10Ztq/N/nxnCfZ50 FF+HQiFXmMDTYSHBqEzD+7dgF8mo/LM+rjmjd+MuS6gXIXxj4t83J3MjZBszHLm9 Xx96oDFbjUQ1PD/OntsYHuDP2Yed97PMSii4bFnFuxe4ewfcW7ho0RUkOPnYZZxj lJdLyEJHvDg5eNAKbEht+B8BmwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAKgE7Oa bn5KJKxihCUtJm/n04j4MB8GA1UdIwQYMBaAFO9i8VXBlx1QSUH1ce7frAr8xShZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU2QS8xRDY0MzI4RUQz ODcxMUU4QkQ3MDc1NUNDNEY5QUUwMi83Mkx4VmNHWEhWQkpRZlZ4N3Qtc0N2ekZL RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyTHhWY0dYSFZCSlFmVng3dC1zQ3Z6RktGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkZFNkEvMUQ2NDMyOEVEMzg3MTFFOEJENzA3NTVDQzRGOUFFMDIvNTEyMkI1NkE1 MUYzMTFFOUFCNTQ2OTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnDk4wDQYJKoZIhvcNAQELBQADggEBAHeMC9VEZFfTDubK M3CIceQzoZ0uzA45iOOa0tRBwcO4czM6b9ZJ1UOWWZ5tLIJE4lFyNrpaMW9S1Oip hBp+0zGZ5eZOcFVHnzrckhkisfnkDs3T/9bB+BWKJRtYAV/+cRrMa6ntUjTkzZ6B tN3UYqm7fcSojAs01URXrv1Q3JIKqyELmcpyY37qyhRKzrL64st73p3D91yYxYcg 1YYpuAoSB/e91yElg/6IpjYcaWh8aEfIO6k3BqNuf+y49bmqdj95GyOgHyWNRQrR 84EU0wJUgTNK9bhK15+GPrP6kTFUT1oUfSlFwklCnO+nP9IL6cdGcQwaItkgqDBy 1kkzZTo= -----END CERTIFICATE-----Generated at Fri May 16 01:22:10 2025 by rpki-client