$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57C9/9C6EF74EF9D511ECB6DCAD54C4F9AE02/2AEC4C4EF9D911ECBC381559C4F9AE02.roa File: 2AEC4C4EF9D911ECBC381559C4F9AE02.roa (raw, json) Hash identifier: mXf2uQ5mcSdD+NErxrFlghuWQs3NGoZkupDcd+zBXVE= Subject key identifier: F7:91:30:08:00:B8:7C:CB:07:56:C1:92:51:62:22:BB:E1:AE:17:69 Certificate issuer: /CN=A91E57C9/serialNumber=9A54D10175019CF8086B30B31E652AE0602FF6BC Certificate serial: 02A5 Authority key identifier: 9A:54:D1:01:75:01:9C:F8:08:6B:30:B3:1E:65:2A:E0:60:2F:F6:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mlTRAXUBnPgIazCzHmUq4GAv9rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57C9/9C6EF74EF9D511ECB6DCAD54C4F9AE02/2AEC4C4EF9D911ECBC381559C4F9AE02.roa Signing time: Wed 07 May 2025 01:38:43 +0000 ROA not before: Wed 07 May 2025 01:38:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141020 IP address blocks: 103.186.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57C9/9C6EF74EF9D511ECB6DCAD54C4F9AE02/mlTRAXUBnPgIazCzHmUq4GAv9rw.crl rsync://rpki.apnic.net/member_repository/A91E57C9/9C6EF74EF9D511ECB6DCAD54C4F9AE02/mlTRAXUBnPgIazCzHmUq4GAv9rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mlTRAXUBnPgIazCzHmUq4GAv9rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 01:18:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 677 (0x2a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57C9, serialNumber=9A54D10175019CF8086B30B31E652AE0602FF6BC Validity Not Before: May 7 01:38:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681ab9a2-7bcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:eb:e8:97:81:6a:4d:05:71:e7:3a:db:67:88: ec:26:c3:dc:25:51:e9:96:8f:44:b7:42:b7:17:9a: f1:14:12:5f:b7:92:da:ca:9c:97:12:98:72:6c:3b: 1f:30:b4:a8:1e:d9:d1:bc:34:e6:79:f9:df:33:12: ca:e4:9c:37:47:62:5f:fb:72:29:dc:90:96:50:2e: 60:df:94:29:4a:6e:94:f6:66:e3:d8:50:d9:53:49: 26:6c:90:c7:a0:72:c2:9b:79:d1:8e:c2:d6:e7:bd: c0:5f:52:5b:9d:37:ae:32:d4:d8:b2:fb:0a:7e:12: b8:e9:13:24:73:b4:52:cc:b9:ea:0a:59:96:ca:a6: 08:02:8d:51:ce:fc:14:5d:7a:53:ae:ab:f8:b3:3e: 00:dd:78:bb:6e:42:f6:e8:71:bb:c5:55:40:74:77: db:e0:32:7a:a5:93:2e:ec:8b:fa:eb:29:0c:d4:d5: 2f:e9:e7:f4:03:e0:fb:f7:5e:8f:4c:b8:e5:05:1f: 47:cb:d8:55:31:c0:af:87:64:8f:6a:1a:76:09:30: 8e:05:12:6f:ea:79:e4:a4:d5:c7:6e:70:7b:55:65: 72:22:b6:67:e5:82:ae:d9:5b:eb:a3:72:30:e4:32: 35:29:0d:14:68:ba:39:15:6d:04:0f:55:fa:f5:3d: a7:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:91:30:08:00:B8:7C:CB:07:56:C1:92:51:62:22:BB:E1:AE:17:69 X509v3 Authority Key Identifier: keyid:9A:54:D1:01:75:01:9C:F8:08:6B:30:B3:1E:65:2A:E0:60:2F:F6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57C9/9C6EF74EF9D511ECB6DCAD54C4F9AE02/mlTRAXUBnPgIazCzHmUq4GAv9rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mlTRAXUBnPgIazCzHmUq4GAv9rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57C9/9C6EF74EF9D511ECB6DCAD54C4F9AE02/2AEC4C4EF9D911ECBC381559C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.79.0/24 Signature Algorithm: sha256WithRSAEncryption 98:35:d6:df:ef:2d:8d:fb:d5:c8:77:3f:b6:1d:c0:9d:17:bc: 83:13:f1:88:b7:59:00:82:67:3a:ab:b0:ef:f2:80:a3:a9:e1: 75:26:5a:2f:1a:a3:17:56:b3:14:a7:3b:04:67:74:20:91:46: 2a:32:73:61:ff:48:81:e7:51:61:40:00:83:61:19:6f:00:85: 80:e0:47:ef:06:7c:96:af:87:00:ac:a6:fa:c3:2e:c5:8a:17: 20:05:ab:a4:23:cc:10:ca:c2:fa:a0:d6:53:79:43:82:c3:33: 81:58:04:63:4c:f1:10:38:e8:a0:1d:c2:1a:7f:3f:67:cb:f4: d9:7d:cf:41:fb:b9:d0:5e:2d:14:d9:c6:c0:5f:12:10:eb:fb: 25:c9:98:8b:a3:be:02:ac:28:56:9d:bb:c9:c0:b3:18:f8:2d: ac:9e:09:20:99:ff:31:e7:3b:70:e8:cd:96:77:d4:0d:30:32: ca:cf:73:33:85:db:29:67:0b:cd:85:49:6a:ef:37:58:d1:4a: 83:d4:eb:f5:4a:f5:7c:87:b9:d3:cf:f8:15:20:77:0e:c3:97: 90:e9:7a:6c:2e:c7:25:ed:03:f6:3e:f9:c3:96:2b:f5:1e:c2: 12:72:67:e0:da:58:78:3f:84:56:ab:8c:6c:e9:50:1d:c7:c8: 0c:a8:f5:16 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3QzkxMTAvBgNVBAUTKDlBNTREMTAxNzUwMTlDRjgwODZCMzBCMzFFNjUyQUUw NjAyRkY2QkMwHhcNMjUwNTA3MDEzODQzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhYjlhMi03YmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7+vol4FqTQVx5zrbZ4jsJsPcJVHplo9Et0K3F5rxFBJft5LaypyXEphybDsf MLSoHtnRvDTmefnfMxLK5Jw3R2Jf+3Ip3JCWUC5g35QpSm6U9mbj2FDZU0kmbJDH oHLCm3nRjsLW573AX1JbnTeuMtTYsvsKfhK46RMkc7RSzLnqClmWyqYIAo1RzvwU XXpTrqv4sz4A3Xi7bkL26HG7xVVAdHfb4DJ6pZMu7Iv66ykM1NUv6ef0A+D7916P TLjlBR9Hy9hVMcCvh2SPahp2CTCOBRJv6nnkpNXHbnB7VWVyIrZn5YKu2Vvro3Iw 5DI1KQ0UaLo5FW0ED1X69T2nJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPeRMAgA uHzLB1bBklFiIrvhrhdpMB8GA1UdIwQYMBaAFJpU0QF1AZz4CGswsx5lKuBgL/a8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdDOS85QzZFRjc0RUY5 RDUxMUVDQjZEQ0FENTRDNEY5QUUwMi9tbFRSQVhVQm5QZ0lhekN6SG1VcTRHQXY5 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21sVFJBWFVCblBnSWF6Q3pIbVVxNEdBdjlydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU3QzkvOUM2RUY3NEVGOUQ1MTFFQ0I2RENBRDU0QzRGOUFFMDIvMkFFQzRDNEVG OUQ5MTFFQ0JDMzgxNTU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnuk8wDQYJKoZIhvcNAQELBQADggEBAJg11t/vLY371ch3 P7YdwJ0XvIMT8Yi3WQCCZzqrsO/ygKOp4XUmWi8aoxdWsxSnOwRndCCRRioyc2H/ SIHnUWFAAINhGW8AhYDgR+8GfJavhwCspvrDLsWKFyAFq6QjzBDKwvqg1lN5Q4LD M4FYBGNM8RA46KAdwhp/P2fL9Nl9z0H7udBeLRTZxsBfEhDr+yXJmIujvgKsKFad u8nAsxj4LayeCSCZ/zHnO3DozZZ31A0wMsrPczOF2ylnC82FSWrvN1jRSoPU6/VK 9XyHudPP+BUgdw7Dl5DpemwuxyXtA/Y++cOWK/UewhJyZ+DaWHg/hFarjGzpUB3H yAyo9RY= -----END CERTIFICATE-----Generated at Tue May 13 09:25:31 2025 by rpki-client