$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/E4A8C1240A3611F08B9CFD4FC4F9AE02.roa File: E4A8C1240A3611F08B9CFD4FC4F9AE02.roa (raw, json) Hash identifier: pW6ZkmsKrYO4khbqPdFp+1VATISq0kaXo2DoENq+wFM= Subject key identifier: B0:DC:79:47:BB:0B:73:99:3C:BC:59:88:88:E8:6D:DF:BB:B9:F5:79 Certificate issuer: /CN=A91F81D3/serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Certificate serial: 0AC5 Authority key identifier: 5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/E4A8C1240A3611F08B9CFD4FC4F9AE02.roa Signing time: Thu 10 Apr 2025 19:29:32 +0000 ROA not before: Thu 10 Apr 2025 19:29:32 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 58212 IP address blocks: 103.148.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:24:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2757 (0xac5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81D3, serialNumber=5E99D7087DD54EA2E7E75F5C8087071383E8B29E Validity Not Before: Apr 10 19:29:32 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f81c1c-eb79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:96:d1:d1:01:de:a3:0e:b4:cc:be:4b:2c:b1: fd:2a:b7:61:be:37:82:2d:a3:95:91:57:13:d6:30: e9:06:59:92:7d:2d:eb:f3:2d:65:94:dd:db:a6:d5: 2e:fd:0a:95:67:9c:45:fa:06:7a:17:f5:ac:ff:73: 4b:63:bc:8b:45:c6:32:b7:60:de:dc:50:2e:7d:ba: 88:f9:09:3f:65:56:fa:1d:fd:52:86:04:c7:dd:d0: d0:c6:7f:31:e9:26:36:9f:b8:8d:93:20:33:0e:3e: 0a:ba:1a:42:08:33:ac:ba:fd:73:fc:63:36:4f:da: 24:2b:4a:e4:a0:88:56:35:23:6c:23:82:ee:64:f1: af:32:88:01:1e:00:83:3c:ee:64:1c:52:41:6e:c1: 7a:ed:d1:67:fd:f4:7c:2f:a8:86:c4:41:2e:d0:aa: 4a:ee:da:6d:2f:32:bb:da:9a:82:73:fe:10:f7:2a: 41:ec:b4:c8:b1:65:f0:95:81:e2:37:ed:09:8f:3e: f6:ab:bf:ad:84:9f:22:be:76:9d:1e:74:93:33:dc: 12:f7:8a:81:c2:32:d5:ca:b5:15:99:d0:c0:e0:03: 9f:63:9f:81:f3:48:72:07:98:d7:3f:43:75:e2:f0: 51:d5:6c:e3:04:89:fb:54:58:48:1b:6f:59:f2:5f: 78:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:DC:79:47:BB:0B:73:99:3C:BC:59:88:88:E8:6D:DF:BB:B9:F5:79 X509v3 Authority Key Identifier: keyid:5E:99:D7:08:7D:D5:4E:A2:E7:E7:5F:5C:80:87:07:13:83:E8:B2:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/XpnXCH3VTqLn519cgIcHE4Posp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XpnXCH3VTqLn519cgIcHE4Posp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81D3/0A8459F4523511EA9A0CB273C4F9AE02/E4A8C1240A3611F08B9CFD4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.163.0/24 Signature Algorithm: sha256WithRSAEncryption 64:cf:a3:35:01:97:2a:86:7f:d7:d8:94:ab:35:49:c6:fc:65: e5:62:6a:ca:eb:b1:cc:2d:20:3d:24:55:75:ea:73:ce:99:a0: c2:8e:57:b0:fd:75:23:2c:73:25:bd:78:28:84:e2:c6:8c:64: f9:cd:91:75:da:8f:be:47:37:00:7b:91:24:c9:8e:8b:61:b9: 7e:fd:80:85:30:cb:1a:c7:ac:03:4a:ae:a3:20:40:7e:12:c7: a1:1b:35:87:6d:f8:8e:e2:48:13:79:92:44:1c:1e:85:7f:d3: 8f:f2:38:81:fb:f0:fb:72:e4:b9:8c:b2:ea:dd:d6:38:63:32: d4:eb:a6:77:1b:83:ce:d1:32:7b:52:9a:8c:b7:ad:98:cf:42: 0c:3e:2e:35:16:6f:f2:ed:d0:7c:ab:46:9e:82:22:b9:8a:e6: d7:f8:c2:d2:51:ad:d6:7f:0c:e1:f5:6f:c8:58:4f:41:a9:5c: e2:2e:1a:f2:ac:b4:80:33:ce:b0:f9:a3:91:ff:1c:6f:cf:36: 8e:c7:cd:37:7f:21:fa:5d:11:3c:51:4d:fa:24:0d:5a:f7:9f: 9e:55:98:57:93:15:86:32:7d:24:75:22:d1:15:82:bf:96:4c: fe:c1:c8:60:f1:37:cc:db:2c:96:b5:18:80:4d:76:09:ac:29: 13:ce:02:c2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxRDMxMTAvBgNVBAUTKDVFOTlENzA4N0RENTRFQTJFN0U3NUY1QzgwODcwNzEz ODNFOEIyOUUwHhcNMjUwNDEwMTkyOTMyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y4MWMxYy1lYjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5bR0QHeow60zL5LLLH9KrdhvjeCLaOVkVcT1jDpBlmSfS3r8y1llN3bptUu /QqVZ5xF+gZ6F/Ws/3NLY7yLRcYyt2De3FAufbqI+Qk/ZVb6Hf1ShgTH3dDQxn8x 6SY2n7iNkyAzDj4KuhpCCDOsuv1z/GM2T9okK0rkoIhWNSNsI4LuZPGvMogBHgCD PO5kHFJBbsF67dFn/fR8L6iGxEEu0KpK7tptLzK72pqCc/4Q9ypB7LTIsWXwlYHi N+0Jjz72q7+thJ8ivnadHnSTM9wS94qBwjLVyrUVmdDA4AOfY5+B80hyB5jXP0N1 4vBR1WzjBIn7VFhIG29Z8l94FwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLDceUe7 C3OZPLxZiIjobd+7ufV5MB8GA1UdIwQYMBaAFF6Z1wh91U6i5+dfXICHBxOD6LKe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFEMy8wQTg0NTlGNDUy MzUxMUVBOUEwQ0IyNzNDNEY5QUUwMi9YcG5YQ0gzVlRxTG41MTljZ0ljSEU0UG9z cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hwblhDSDNWVHFMbjUxOWNnSWNIRTRQb3NwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjgxRDMvMEE4NDU5RjQ1MjM1MTFFQTlBMENCMjczQzRGOUFFMDIvRTRBOEMxMjQw QTM2MTFGMDhCOUNGRDRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlKMwDQYJKoZIhvcNAQELBQADggEBAGTPozUBlyqGf9fY lKs1Scb8ZeViasrrscwtID0kVXXqc86ZoMKOV7D9dSMscyW9eCiE4saMZPnNkXXa j75HNwB7kSTJjothuX79gIUwyxrHrANKrqMgQH4Sx6EbNYdt+I7iSBN5kkQcHoV/ 04/yOIH78Pty5LmMsurd1jhjMtTrpncbg87RMntSmoy3rZjPQgw+LjUWb/Lt0Hyr Rp6CIrmK5tf4wtJRrdZ/DOH1b8hYT0GpXOIuGvKstIAzzrD5o5H/HG/PNo7HzTd/ IfpdETxRTfokDVr3n55VmFeTFYYyfSR1ItEVgr+WTP7ByGDxN8zbLJa1GIBNdgms KRPOAsI= -----END CERTIFICATE-----Generated at Fri Apr 25 00:08:34 2025 by rpki-client on console.sobornost.net