$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57C9/9C6EF74EF9D511ECB6DCAD54C4F9AE02/2B658C44F9D911ECBC381559C4F9AE02.roa File: 2B658C44F9D911ECBC381559C4F9AE02.roa (raw, json) Hash identifier: M9uQ6pPxIBbjIwPVgVR3Gml4RjG64rh15R2Po2BA/0U= Subject key identifier: 63:6B:E3:90:61:1B:FB:E7:C4:3B:0C:5C:33:57:6D:AE:61:BF:46:F0 Certificate issuer: /CN=A91E57C9/serialNumber=9A54D10175019CF8086B30B31E652AE0602FF6BC Certificate serial: 02A6 Authority key identifier: 9A:54:D1:01:75:01:9C:F8:08:6B:30:B3:1E:65:2A:E0:60:2F:F6:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mlTRAXUBnPgIazCzHmUq4GAv9rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57C9/9C6EF74EF9D511ECB6DCAD54C4F9AE02/2B658C44F9D911ECBC381559C4F9AE02.roa Signing time: Wed 07 May 2025 01:38:43 +0000 ROA not before: Wed 07 May 2025 01:38:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 149788 IP address blocks: 103.186.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57C9/9C6EF74EF9D511ECB6DCAD54C4F9AE02/mlTRAXUBnPgIazCzHmUq4GAv9rw.crl rsync://rpki.apnic.net/member_repository/A91E57C9/9C6EF74EF9D511ECB6DCAD54C4F9AE02/mlTRAXUBnPgIazCzHmUq4GAv9rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mlTRAXUBnPgIazCzHmUq4GAv9rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 01:03:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 678 (0x2a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57C9, serialNumber=9A54D10175019CF8086B30B31E652AE0602FF6BC Validity Not Before: May 7 01:38:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681ab9a3-9b4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ff:b5:68:8b:32:de:24:08:85:39:62:71:46: c4:94:c1:33:89:91:99:1e:46:2f:9f:d3:31:20:70: 09:3b:cd:73:4f:c2:c6:58:0e:b5:b2:5d:a3:7b:8d: 38:90:d8:5f:46:37:d2:d4:4a:f8:69:db:7a:58:70: 74:4b:5a:cc:bc:11:08:6c:f8:07:a8:b4:b1:f2:cd: ba:5e:0e:30:6c:fd:b3:b4:32:66:d1:43:4c:12:e3: 41:ce:0e:f1:ea:50:ad:8c:d1:01:bf:67:c4:03:40: 68:69:76:28:49:ec:ec:2d:48:72:99:62:1d:1f:be: 51:44:50:09:a2:dd:8c:85:1c:45:52:14:a3:b0:fe: 9a:3c:1f:d8:bd:02:41:4b:fb:4c:2e:59:83:a8:ea: 67:59:83:eb:38:ed:c8:f4:98:b3:dd:b9:76:cc:a3: 7b:cb:47:36:07:00:b6:b4:42:8e:39:3a:db:7a:da: 22:36:91:85:ee:43:8a:43:d9:d7:8c:2e:44:1e:44: 98:9a:15:81:28:d1:3e:8c:2d:40:86:62:4d:3f:20: 2f:39:7f:e7:50:7a:e5:41:71:2c:a4:b8:fa:4d:66: d3:2b:3d:cd:5c:78:a5:9d:76:75:09:a8:31:5a:b6: 34:47:67:a0:9f:35:60:b0:2e:ef:a1:eb:65:28:82: b1:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:6B:E3:90:61:1B:FB:E7:C4:3B:0C:5C:33:57:6D:AE:61:BF:46:F0 X509v3 Authority Key Identifier: keyid:9A:54:D1:01:75:01:9C:F8:08:6B:30:B3:1E:65:2A:E0:60:2F:F6:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57C9/9C6EF74EF9D511ECB6DCAD54C4F9AE02/mlTRAXUBnPgIazCzHmUq4GAv9rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mlTRAXUBnPgIazCzHmUq4GAv9rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57C9/9C6EF74EF9D511ECB6DCAD54C4F9AE02/2B658C44F9D911ECBC381559C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.78.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:2a:cd:ed:ac:fc:86:27:ac:ab:36:a6:5d:29:45:50:de:75: 11:44:40:ad:13:92:81:33:d4:a4:53:51:7a:0d:94:51:63:27: 25:f1:75:ea:eb:3e:8d:af:42:c4:a8:a3:0f:b9:bb:de:23:1b: a5:48:de:b8:fe:e1:61:a5:10:24:1a:a2:46:6b:8d:31:3b:15: b2:fe:e5:59:24:5b:d4:fd:37:3e:5b:bc:cb:0d:ac:2c:2c:47: 58:1d:80:7e:10:ad:49:df:18:2f:c2:7f:b0:ed:82:f4:de:69: 80:6c:f4:d2:66:05:47:11:5f:5a:cf:10:39:ae:c7:93:bf:b3: 2f:a1:82:da:11:cb:1d:b4:ba:c1:3d:e6:0a:73:77:1d:61:1d: 49:17:d3:5c:ec:ba:d6:89:63:78:9a:f0:e9:30:00:f1:47:07: aa:cf:9c:5f:19:11:69:a6:99:b1:67:3c:f6:62:60:5c:f0:8e: cb:8f:8b:d6:a0:65:02:1d:89:73:a1:60:ba:f1:0a:e2:25:f0: 63:e7:2f:0c:aa:e5:ae:1e:e7:f4:2a:2a:42:89:5a:7b:fc:9c: 0d:d3:3b:77:a8:1f:68:84:9b:a2:85:7e:01:b6:0b:32:11:2c: a1:05:5c:93:35:84:12:db:53:a4:0b:cf:1b:05:f1:86:7c:3f: 96:a5:67:03 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3QzkxMTAvBgNVBAUTKDlBNTREMTAxNzUwMTlDRjgwODZCMzBCMzFFNjUyQUUw NjAyRkY2QkMwHhcNMjUwNTA3MDEzODQzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhYjlhMy05YjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/+1aIsy3iQIhTlicUbElMEziZGZHkYvn9MxIHAJO81zT8LGWA61sl2je404 kNhfRjfS1Er4adt6WHB0S1rMvBEIbPgHqLSx8s26Xg4wbP2ztDJm0UNMEuNBzg7x 6lCtjNEBv2fEA0BoaXYoSezsLUhymWIdH75RRFAJot2MhRxFUhSjsP6aPB/YvQJB S/tMLlmDqOpnWYPrOO3I9Jiz3bl2zKN7y0c2BwC2tEKOOTrbetoiNpGF7kOKQ9nX jC5EHkSYmhWBKNE+jC1AhmJNPyAvOX/nUHrlQXEspLj6TWbTKz3NXHilnXZ1Cagx WrY0R2egnzVgsC7voetlKIKx0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFGNr45Bh G/vnxDsMXDNXba5hv0bwMB8GA1UdIwQYMBaAFJpU0QF1AZz4CGswsx5lKuBgL/a8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdDOS85QzZFRjc0RUY5 RDUxMUVDQjZEQ0FENTRDNEY5QUUwMi9tbFRSQVhVQm5QZ0lhekN6SG1VcTRHQXY5 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21sVFJBWFVCblBnSWF6Q3pIbVVxNEdBdjlydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU3QzkvOUM2RUY3NEVGOUQ1MTFFQ0I2RENBRDU0QzRGOUFFMDIvMkI2NThDNDRG OUQ5MTFFQ0JDMzgxNTU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnuk4wDQYJKoZIhvcNAQELBQADggEBAA0qze2s/IYnrKs2 pl0pRVDedRFEQK0TkoEz1KRTUXoNlFFjJyXxderrPo2vQsSoow+5u94jG6VI3rj+ 4WGlECQaokZrjTE7FbL+5VkkW9T9Nz5bvMsNrCwsR1gdgH4QrUnfGC/Cf7DtgvTe aYBs9NJmBUcRX1rPEDmux5O/sy+hgtoRyx20usE95gpzdx1hHUkX01zsutaJY3ia 8OkwAPFHB6rPnF8ZEWmmmbFnPPZiYFzwjsuPi9agZQIdiXOhYLrxCuIl8GPnLwyq 5a4e5/QqKkKJWnv8nA3TO3eoH2iEm6KFfgG2CzIRLKEFXJM1hBLbU6QLzxsF8YZ8 P5alZwM= -----END CERTIFICATE-----Generated at Mon May 12 22:08:06 2025 by rpki-client