$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/2998A0E0F99011EF89B2363DC4F9AE02.roa File: 2998A0E0F99011EF89B2363DC4F9AE02.roa (raw, json) Hash identifier: KstFse9DL+Lpk2UJhsRfTukB1/IV52HFgYreP0UKdGE= Subject key identifier: 24:28:8E:18:1F:86:00:22:91:75:54:DA:75:97:52:B9:E7:AB:54:BB Certificate issuer: /CN=A91E3731/serialNumber=BC3A8BB0CDD08B6E3721B2C1D21A81714C3B2142 Certificate serial: 0365 Authority key identifier: BC:3A:8B:B0:CD:D0:8B:6E:37:21:B2:C1:D2:1A:81:71:4C:3B:21:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vDqLsM3Qi243IbLB0hqBcUw7IUI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/2998A0E0F99011EF89B2363DC4F9AE02.roa Signing time: Tue 29 Apr 2025 02:08:43 +0000 ROA not before: Tue 29 Apr 2025 02:08:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151636 IP address blocks: 103.184.92.0/24 maxlen: 24 103.184.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/vDqLsM3Qi243IbLB0hqBcUw7IUI.crl rsync://rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/vDqLsM3Qi243IbLB0hqBcUw7IUI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vDqLsM3Qi243IbLB0hqBcUw7IUI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:05:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 869 (0x365) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3731, serialNumber=BC3A8BB0CDD08B6E3721B2C1D21A81714C3B2142 Validity Not Before: Apr 29 02:08:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681034aa-d0d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:be:dc:e8:8b:25:ef:e6:61:89:f1:0e:53:8a: ae:75:e9:29:3b:f1:df:60:89:e7:60:13:a8:28:b7: 33:e1:5a:53:26:29:ee:ba:be:3b:30:e0:57:41:d7: 84:3d:4e:af:63:1f:81:04:46:5a:9d:64:4a:28:a8: 74:3b:5a:ed:bb:72:2f:4a:d8:24:e5:cf:0f:86:20: 0d:39:38:c6:a5:90:da:cf:a9:fb:aa:ec:dd:77:4f: 02:44:29:f3:95:4d:ba:c3:a7:0a:16:d2:d9:92:6a: 64:e5:91:da:86:db:a5:c8:1e:54:c6:41:5a:3c:0d: ac:de:ad:8f:43:69:8c:8b:49:84:1e:cf:26:6e:13: 28:0e:33:c5:fb:8f:7a:98:a6:2c:a8:ad:79:9e:00: 90:4e:cb:49:48:a6:18:4c:98:6f:8e:a5:f5:24:57: 24:d3:6b:d8:b9:db:77:54:3b:cd:35:2d:72:43:7c: bc:f8:2c:1b:09:22:34:04:f3:7b:84:35:6d:b1:55: f0:99:68:01:8e:27:ba:51:30:cb:2a:d7:c0:10:c3: 51:4f:58:bd:78:e2:85:be:c2:dc:0a:ef:09:c0:84: b7:e6:8c:44:2c:2e:22:2f:49:68:20:3b:5b:f4:00: 9c:d9:ea:fe:58:66:a1:50:5a:cc:e1:a2:96:bc:c6: 8f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:28:8E:18:1F:86:00:22:91:75:54:DA:75:97:52:B9:E7:AB:54:BB X509v3 Authority Key Identifier: keyid:BC:3A:8B:B0:CD:D0:8B:6E:37:21:B2:C1:D2:1A:81:71:4C:3B:21:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/vDqLsM3Qi243IbLB0hqBcUw7IUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vDqLsM3Qi243IbLB0hqBcUw7IUI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3731/55B223EAC02211EC9265DA5DC4F9AE02/2998A0E0F99011EF89B2363DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.184.92.0/23 Signature Algorithm: sha256WithRSAEncryption 27:bc:d8:7b:ab:c5:cc:89:e1:2d:97:9f:c6:00:fa:d8:e1:52: e8:27:9a:f5:7e:33:24:80:91:94:0b:a9:f6:37:64:55:cc:cc: 11:63:0a:fa:6c:cd:4a:7a:6d:a5:91:de:4d:8e:61:33:87:24: 34:6c:3a:9c:ec:96:5b:f9:16:8c:38:55:bd:87:a2:9f:cc:a2: 81:e3:d2:ad:28:65:ff:0e:3e:b7:0d:f0:7c:be:26:f6:6b:39: 7a:cb:b5:6d:53:ef:e1:0f:39:7a:04:72:5f:c3:af:ef:3e:29: fd:cb:c9:aa:be:97:11:58:1f:10:c3:9b:c8:25:0c:8a:7c:39: 8a:66:d5:ec:66:32:70:03:85:84:42:7b:13:17:aa:d1:9c:b3: f7:78:40:c9:85:a5:47:1c:49:a1:fd:35:bd:67:d5:01:a3:0b: d6:61:63:52:46:73:e1:80:f4:73:ff:6e:c9:54:5e:b5:00:23: 23:ef:d9:ed:a6:7e:a2:0e:39:5d:f6:12:43:18:3c:dc:85:6b: f6:ec:f9:aa:37:49:53:28:da:d1:19:43:ec:c9:c6:92:33:15: 3e:53:c2:30:56:21:29:a8:2b:d2:ea:67:ec:9f:57:0c:54:d3: f6:46:66:f0:82:d1:bc:cf:01:a9:2c:f4:1b:35:7b:47:0f:25: 11:2c:9f:b8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM3MzExMTAvBgNVBAUTKEJDM0E4QkIwQ0REMDhCNkUzNzIxQjJDMUQyMUE4MTcx NEMzQjIxNDIwHhcNMjUwNDI5MDIwODQzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwMzRhYS1kMGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxr7c6Isl7+ZhifEOU4qudekpO/HfYInnYBOoKLcz4VpTJinuur47MOBXQdeE PU6vYx+BBEZanWRKKKh0O1rtu3IvStgk5c8PhiANOTjGpZDaz6n7quzdd08CRCnz lU26w6cKFtLZkmpk5ZHahtulyB5UxkFaPA2s3q2PQ2mMi0mEHs8mbhMoDjPF+496 mKYsqK15ngCQTstJSKYYTJhvjqX1JFck02vYudt3VDvNNS1yQ3y8+CwbCSI0BPN7 hDVtsVXwmWgBjie6UTDLKtfAEMNRT1i9eOKFvsLcCu8JwIS35oxELC4iL0loIDtb 9ACc2er+WGahUFrM4aKWvMaPlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCQojhgf hgAikXVU2nWXUrnnq1S7MB8GA1UdIwQYMBaAFLw6i7DN0ItuNyGywdIagXFMOyFC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzczMS81NUIyMjNFQUMw MjIxMUVDOTI2NURBNURDNEY5QUUwMi92RHFMc00zUWkyNDNJYkxCMGhxQmNVdzdJ VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZEcUxzTTNRaTI0M0liTEIwaHFCY1V3N0lVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTM3MzEvNTVCMjIzRUFDMDIyMTFFQzkyNjVEQTVEQzRGOUFFMDIvMjk5OEEwRTBG OTkwMTFFRjg5QjIzNjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnuFwwDQYJKoZIhvcNAQELBQADggEBACe82HurxcyJ4S2X n8YA+tjhUugnmvV+MySAkZQLqfY3ZFXMzBFjCvpszUp6baWR3k2OYTOHJDRsOpzs llv5Fow4Vb2Hop/MooHj0q0oZf8OPrcN8Hy+JvZrOXrLtW1T7+EPOXoEcl/Dr+8+ Kf3Lyaq+lxFYHxDDm8glDIp8OYpm1exmMnADhYRCexMXqtGcs/d4QMmFpUccSaH9 Nb1n1QGjC9ZhY1JGc+GA9HP/bslUXrUAIyPv2e2mfqIOOV32EkMYPNyFa/bs+ao3 SVMo2tEZQ+zJxpIzFT5TwjBWISmoK9LqZ+yfVwxU0/ZGZvCC0bzPAaks9Bs1e0cP JREsn7g= -----END CERTIFICATE-----Generated at Fri May 16 18:17:23 2025 by rpki-client