$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/728139D62FA311F0A9129814C4F9AE02.roa File: 728139D62FA311F0A9129814C4F9AE02.roa (raw, json) Hash identifier: guIJtqQN+EFa/f6cWPw4iUlLONR7odnIq46PWDEQXBE= Subject key identifier: 52:36:A0:5D:79:EA:C0:72:34:C8:D5:14:A0:80:AA:8F:64:54:7A:C6 Certificate issuer: /CN=A91DB8D9/serialNumber=5ECEEF5F28F2F365053DFB8CEFCD16E1C3DE84AE Certificate serial: 03A3 Authority key identifier: 5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/728139D62FA311F0A9129814C4F9AE02.roa Signing time: Tue 13 May 2025 02:39:10 +0000 ROA not before: Tue 13 May 2025 02:39:10 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 214143 IP address blocks: 103.163.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 24 May 2025 01:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 931 (0x3a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB8D9, serialNumber=5ECEEF5F28F2F365053DFB8CEFCD16E1C3DE84AE Validity Not Before: May 13 02:39:10 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6822b0cd-14cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2c:46:b5:2f:3a:b7:8b:b3:f1:0b:24:b4:8d: a9:0f:eb:19:ec:f0:30:9c:20:36:d4:25:a4:7a:b0: 37:e0:51:61:0c:6d:00:9e:13:cc:40:95:a4:a5:7a: 78:e6:c2:10:57:3d:13:7b:63:c1:35:15:18:36:ac: 76:60:4c:fe:fc:fa:5b:b3:48:ef:97:fc:bc:ef:cc: 75:ac:04:05:15:d2:f2:db:b2:fc:dd:45:e8:4b:27: b1:b7:22:85:3f:10:9b:24:51:dc:3d:c6:ab:61:9b: 8a:e8:ac:96:fa:cb:e7:1a:83:a8:12:76:e4:5e:b3: 74:b4:6e:26:4e:57:5e:af:13:1d:09:8b:66:cf:30: de:7b:28:d9:d3:63:11:6d:a6:e0:63:da:03:f8:0f: 7f:7e:85:1b:7e:89:bc:78:45:34:c4:4c:e4:19:3b: f9:70:ff:78:84:56:2b:a8:07:f0:1f:95:8d:96:ff: 0a:3e:59:95:b9:ab:30:65:26:2a:6b:dc:69:68:ef: f6:e6:51:fa:0c:a5:58:7d:88:a4:f8:2a:02:1f:7c: 94:ee:ca:ae:e5:5c:1d:10:d5:47:60:08:ef:b5:fe: 2d:b4:da:71:86:2d:a5:c4:f7:12:58:c3:76:3d:10: ff:cf:68:fa:62:39:ea:a9:68:b8:61:f0:88:84:e1: e7:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:36:A0:5D:79:EA:C0:72:34:C8:D5:14:A0:80:AA:8F:64:54:7A:C6 X509v3 Authority Key Identifier: keyid:5E:CE:EF:5F:28:F2:F3:65:05:3D:FB:8C:EF:CD:16:E1:C3:DE:84:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/Xs7vXyjy82UFPfuM780W4cPehK4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xs7vXyjy82UFPfuM780W4cPehK4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB8D9/8B0023769A0211EC8B817785C4F9AE02/728139D62FA311F0A9129814C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.155.0/24 Signature Algorithm: sha256WithRSAEncryption 88:14:5f:e2:92:b0:2e:08:d2:98:14:a8:d4:7e:53:ca:d6:58: 03:c3:8b:53:e2:37:64:fd:68:45:a1:5b:10:fb:ea:57:fe:66: 46:50:b4:6e:78:d8:af:02:05:d6:b0:6b:2d:53:11:b2:f0:8a: 55:a4:4f:5d:c5:19:4b:7d:08:6f:94:3d:e6:7a:fd:9c:ce:91: c6:3f:c2:57:32:e0:8f:b4:02:da:ce:d1:15:ca:75:89:ae:8c: e1:27:84:24:16:54:66:f5:f6:b4:f6:09:fe:ff:29:e3:98:b3: f7:25:c6:03:2a:86:a1:fc:28:5f:43:57:28:35:15:cf:b3:c2: 0d:8b:39:5f:ba:a8:06:9b:ef:67:76:b9:b9:18:14:fa:eb:88: ac:1a:5f:67:95:38:7c:dc:a0:26:90:4e:20:82:68:a7:ee:c0: 93:f2:c4:bd:c1:1c:d8:e0:79:58:31:96:bf:95:7a:01:06:e1: 8f:d7:b0:af:27:b0:39:c8:91:2b:f9:d1:0b:76:ac:44:35:e5: e1:81:f2:cf:30:4d:b1:f7:cf:1c:7d:a0:26:a3:d7:58:f8:6f: e7:54:96:67:fc:36:d1:6c:e4:4b:32:d9:9f:34:6d:94:a3:23: d2:db:dd:59:ec:ce:5e:99:13:80:3b:e0:26:3b:13:4b:36:a4: 0a:63:e0:d5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI4RDkxMTAvBgNVBAUTKDVFQ0VFRjVGMjhGMkYzNjUwNTNERkI4Q0VGQ0QxNkUx QzNERTg0QUUwHhcNMjUwNTEzMDIzOTEwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODIyYjBjZC0xNGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0SxGtS86t4uz8QsktI2pD+sZ7PAwnCA21CWkerA34FFhDG0AnhPMQJWkpXp4 5sIQVz0Te2PBNRUYNqx2YEz+/Ppbs0jvl/y878x1rAQFFdLy27L83UXoSyextyKF PxCbJFHcPcarYZuK6KyW+svnGoOoEnbkXrN0tG4mTlderxMdCYtmzzDeeyjZ02MR babgY9oD+A9/foUbfom8eEU0xEzkGTv5cP94hFYrqAfwH5WNlv8KPlmVuaswZSYq a9xpaO/25lH6DKVYfYik+CoCH3yU7squ5VwdENVHYAjvtf4ttNpxhi2lxPcSWMN2 PRD/z2j6YjnqqWi4YfCIhOHnpQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFI2oF15 6sByNMjVFKCAqo9kVHrGMB8GA1UdIwQYMBaAFF7O718o8vNlBT37jO/NFuHD3oSu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjhEOS84QjAwMjM3NjlB MDIxMUVDOEI4MTc3ODVDNEY5QUUwMi9Yczd2WHlqeTgyVUZQZnVNNzgwVzRjUGVo SzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzN3ZYeWp5ODJVRlBmdU03ODBXNGNQZWhLNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REI4RDkvOEIwMDIzNzY5QTAyMTFFQzhCODE3Nzg1QzRGOUFFMDIvNzI4MTM5RDYy RkEzMTFGMEE5MTI5ODE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABno5swDQYJKoZIhvcNAQELBQADggEBAIgUX+KSsC4I0pgU qNR+U8rWWAPDi1PiN2T9aEWhWxD76lf+ZkZQtG542K8CBdaway1TEbLwilWkT13F GUt9CG+UPeZ6/ZzOkcY/wlcy4I+0AtrO0RXKdYmujOEnhCQWVGb19rT2Cf7/KeOY s/clxgMqhqH8KF9DVyg1Fc+zwg2LOV+6qAab72d2ubkYFPrriKwaX2eVOHzcoCaQ TiCCaKfuwJPyxL3BHNjgeVgxlr+VegEG4Y/XsK8nsDnIkSv50Qt2rEQ15eGB8s8w TbH3zxx9oCaj11j4b+dUlmf8NtFs5Esy2Z80bZSjI9Lb3Vnszl6ZE4A74CY7E0s2 pApj4NU= -----END CERTIFICATE-----Generated at Sat May 17 09:10:11 2025 by rpki-client