$ rpki-client -vvf rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/66864FCE688011ECAA829E31C4F9AE02.roa File: 66864FCE688011ECAA829E31C4F9AE02.roa (raw, json) Hash identifier: w5bL3BxYC2VJUK/MoXPR18n/PN4tqZHifWiPk20fkzI= Subject key identifier: 89:BE:88:68:C8:A6:9E:5D:3A:DF:4A:ED:0D:59:F0:5E:B9:D2:D1:43 Certificate issuer: /CN=A916A5CD/serialNumber=BDB5926A896BB651A0E7540A398CD5EF0714171F Certificate serial: 03C6 Authority key identifier: BD:B5:92:6A:89:6B:B6:51:A0:E7:54:0A:39:8C:D5:EF:07:14:17:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbWSaolrtlGg51QKOYzV7wcUFx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/66864FCE688011ECAA829E31C4F9AE02.roa Signing time: Thu 05 Dec 2024 00:33:23 +0000 ROA not before: Thu 05 Dec 2024 00:33:23 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 149307 IP address blocks: 103.178.96.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.crl rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbWSaolrtlGg51QKOYzV7wcUFx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:13:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 966 (0x3c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A5CD, serialNumber=BDB5926A896BB651A0E7540A398CD5EF0714171F Validity Not Before: Dec 5 00:33:23 2024 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6750f4d3-1d85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:8b:9d:67:ca:96:fb:b3:c1:5b:e4:d2:4c:00: ba:6d:d4:9a:e7:e0:d8:f3:22:06:98:3f:a4:5f:e6: 1a:d9:c2:f4:18:be:78:3d:b6:d5:39:0b:41:92:1d: 70:59:f8:cd:3b:02:04:58:3c:99:0a:c0:5d:27:2f: ac:ee:4d:ff:ea:3b:06:86:d2:fd:87:37:06:98:70: 92:e1:b7:fb:5b:6e:8d:ec:b1:34:85:c6:e7:b5:f4: 84:12:76:c4:20:ea:bf:13:81:51:cc:a3:6f:ab:88: c6:19:24:d6:0e:54:97:1d:96:f7:23:c3:41:d9:f4: b5:42:fa:42:59:90:e1:b9:ca:49:e6:dd:1a:66:cd: 13:36:7d:18:1b:b6:5d:21:8b:38:71:a2:32:53:ad: d0:26:a3:35:29:4d:9c:1c:6e:a4:63:aa:60:61:02: e1:1e:37:59:bc:4e:01:45:71:10:b8:05:12:57:70: 4a:4f:68:b5:8d:32:1e:3e:18:b9:17:c6:2f:71:5b: 84:7e:48:8b:e3:da:6b:61:94:79:46:dd:ac:4c:a8: 29:be:80:19:b7:cc:5f:66:86:d8:2f:34:62:b3:a0: 80:14:1a:e3:e9:56:ab:b1:39:d4:d6:34:8f:69:a2: 6c:6a:4a:82:4f:02:e2:c3:cd:39:76:58:85:39:c7: 5d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:BE:88:68:C8:A6:9E:5D:3A:DF:4A:ED:0D:59:F0:5E:B9:D2:D1:43 X509v3 Authority Key Identifier: keyid:BD:B5:92:6A:89:6B:B6:51:A0:E7:54:0A:39:8C:D5:EF:07:14:17:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/vbWSaolrtlGg51QKOYzV7wcUFx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vbWSaolrtlGg51QKOYzV7wcUFx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A5CD/29436FCE687C11ECAA26B959C4F9AE02/66864FCE688011ECAA829E31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.178.96.0/24 Signature Algorithm: sha256WithRSAEncryption 33:5a:4a:aa:8c:0e:03:13:4d:73:4a:cb:ef:b4:c5:bd:07:84: 3f:bb:9e:1f:38:c6:1c:51:4b:46:06:76:84:f1:eb:e9:b9:d2: bb:c4:a0:a5:25:2d:7a:09:4e:54:45:d1:32:74:bb:1a:d8:27: d3:33:7b:08:d9:54:5c:2a:1a:85:6d:43:e6:26:f1:d9:79:5d: ab:1b:b6:ab:df:c4:95:e4:f1:d1:84:ce:56:46:1c:aa:96:7a: e8:ba:46:03:3f:8b:13:d0:53:0c:d3:67:3d:ab:96:0d:3f:f5: 48:a0:f9:da:f1:4e:60:c2:ac:7e:47:1e:e6:17:38:94:55:65: 42:3a:4d:98:8f:5a:12:6a:00:e0:cf:09:bf:ac:53:b3:51:dd: a9:1e:46:dc:15:fa:78:6e:df:99:f9:1f:61:fa:9f:df:05:fb: 62:2d:9c:56:97:39:e2:1a:1a:5f:30:c0:79:0c:1e:11:34:96: 27:c1:0d:c3:57:aa:af:0d:d9:76:cb:83:c3:89:ee:16:ec:b0: 2f:db:1f:12:c0:48:3d:99:4a:29:e8:72:42:28:fb:36:ba:53: 0c:25:2f:85:dd:64:96:36:c6:b2:eb:5d:31:0d:86:dd:0a:4b: de:4f:52:0f:4c:68:f7:b8:2a:0b:61:9e:d7:64:44:c1:9c:fb: a8:1a:67:eb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE1Q0QxMTAvBgNVBAUTKEJEQjU5MjZBODk2QkI2NTFBMEU3NTQwQTM5OENENUVG MDcxNDE3MUYwHhcNMjQxMjA1MDAzMzIzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUwZjRkMy0xZDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4YudZ8qW+7PBW+TSTAC6bdSa5+DY8yIGmD+kX+Ya2cL0GL54PbbVOQtBkh1w WfjNOwIEWDyZCsBdJy+s7k3/6jsGhtL9hzcGmHCS4bf7W26N7LE0hcbntfSEEnbE IOq/E4FRzKNvq4jGGSTWDlSXHZb3I8NB2fS1QvpCWZDhucpJ5t0aZs0TNn0YG7Zd IYs4caIyU63QJqM1KU2cHG6kY6pgYQLhHjdZvE4BRXEQuAUSV3BKT2i1jTIePhi5 F8YvcVuEfkiL49prYZR5Rt2sTKgpvoAZt8xfZobYLzRis6CAFBrj6VarsTnU1jSP aaJsakqCTwLiw805dliFOcddiwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIm+iGjI pp5dOt9K7Q1Z8F650tFDMB8GA1UdIwQYMBaAFL21kmqJa7ZRoOdUCjmM1e8HFBcf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTVDRC8yOTQzNkZDRTY4 N0MxMUVDQUEyNkI5NTlDNEY5QUUwMi92YldTYW9scnRsR2c1MVFLT1l6Vjd3Y1VG eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZiV1Nhb2xydGxHZzUxUUtPWXpWN3djVUZ4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE1Q0QvMjk0MzZGQ0U2ODdDMTFFQ0FBMjZCOTU5QzRGOUFFMDIvNjY4NjRGQ0U2 ODgwMTFFQ0FBODI5RTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnsmAwDQYJKoZIhvcNAQELBQADggEBADNaSqqMDgMTTXNK y++0xb0HhD+7nh84xhxRS0YGdoTx6+m50rvEoKUlLXoJTlRF0TJ0uxrYJ9MzewjZ VFwqGoVtQ+Ym8dl5XasbtqvfxJXk8dGEzlZGHKqWeui6RgM/ixPQUwzTZz2rlg0/ 9Uig+drxTmDCrH5HHuYXOJRVZUI6TZiPWhJqAODPCb+sU7NR3akeRtwV+nhu35n5 H2H6n98F+2ItnFaXOeIaGl8wwHkMHhE0lifBDcNXqq8N2XbLg8OJ7hbssC/bHxLA SD2ZSinockIo+za6UwwlL4XdZJY2xrLrXTENht0KS95PUg9MaPe4KgthntdkRMGc +6gaZ+s= -----END CERTIFICATE-----Generated at Sat Apr 26 08:16:51 2025 by rpki-client