$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/7D745B8C800411EB9398C63EC4F9AE02.roa File: 7D745B8C800411EB9398C63EC4F9AE02.roa (raw, json) Hash identifier: JRI97yoxRtupHfmn7kbQDCY5sz6BBIJOh/q9HLp8tPI= Subject key identifier: C8:36:6E:7A:36:C4:34:5F:E5:79:0F:8F:89:00:FD:94:DE:7C:31:40 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 36C2 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/7D745B8C800411EB9398C63EC4F9AE02.roa Signing time: Sat 22 Mar 2025 15:01:11 +0000 ROA not before: Sat 22 Mar 2025 15:01:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141711 IP address blocks: 59.103.24.0/23 maxlen: 24 59.103.226.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:46:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14018 (0x36c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Mar 22 15:01:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ded0b7-6dde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:04:92:36:80:db:df:7f:ba:4f:82:07:39:04: 68:27:62:e5:91:e6:02:f1:14:45:d8:46:5b:35:d2: 1a:72:ce:63:90:da:89:b8:8a:5c:2c:6a:f9:1b:37: 44:83:b3:15:04:aa:95:ab:aa:5c:cb:71:77:83:ce: 64:ff:4e:ee:7d:40:ae:f7:d1:f8:4d:16:84:c4:1d: 95:f8:28:d3:75:1b:e3:a3:e0:31:98:65:5a:34:03: 4d:75:e0:9c:a5:76:f2:c5:a0:69:93:b6:7e:b6:63: 8e:b8:6b:11:88:a2:dc:3b:2c:0c:5d:58:bc:2a:ee: 95:c8:b8:e7:a3:ca:5f:04:d6:2f:d1:87:37:f1:e3: a4:a1:f5:4a:13:f7:b7:d8:3f:8d:8b:49:84:3d:7c: e8:33:d8:32:8e:58:c6:71:63:02:60:4e:c7:58:5c: 11:74:72:63:5b:50:7e:23:32:19:6d:20:2b:40:36: 88:81:b5:29:7b:a1:5d:91:d4:35:15:c7:35:26:88: ae:66:e5:bc:2e:58:fb:25:d0:14:66:20:f0:d5:c5: db:5d:88:f6:29:3e:20:92:2b:91:42:86:07:eb:d4: c0:f7:3d:34:86:7e:96:59:f8:1e:98:df:36:7a:72: 00:10:2c:4d:b9:11:0e:5f:19:c7:ac:e3:15:9d:69: 89:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:36:6E:7A:36:C4:34:5F:E5:79:0F:8F:89:00:FD:94:DE:7C:31:40 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/7D745B8C800411EB9398C63EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.103.24.0/23 59.103.226.0/23 Signature Algorithm: sha256WithRSAEncryption bb:cc:04:c0:e7:e6:66:d5:42:ab:49:bc:23:ce:2f:25:58:26: a8:42:b5:83:98:af:2a:c0:a1:60:f3:ca:c5:a1:b4:85:26:62: 94:77:f9:7f:d4:3f:bc:02:d5:dd:d9:cb:31:10:2b:ab:89:e5: 9b:c6:12:a6:90:ce:49:e6:21:40:60:41:88:65:0d:ad:d2:6e: ee:0b:5a:99:31:f1:34:99:a9:b4:62:39:57:ac:8e:dd:b8:1d: c7:02:50:04:e3:30:58:27:ea:26:b2:62:5e:ea:4a:56:13:59: 79:48:7d:73:63:d4:7f:b8:87:fd:60:d9:0f:91:28:c0:85:af: 07:b8:e3:90:57:59:1a:ef:fc:42:2d:76:c8:49:78:26:64:93: 57:83:88:7e:7b:8b:44:c6:49:7e:ac:91:ac:23:4a:5b:57:ba: fa:75:20:7e:4f:5e:ac:e3:fe:51:20:53:ca:f3:9d:8e:d9:a1: e9:cc:d5:7c:32:b6:ad:a3:9a:72:17:5d:27:92:ac:e8:97:42: 3c:d9:fb:d1:18:d5:40:20:96:26:ac:a3:f1:dc:94:ad:c0:2e: 52:da:c2:76:d9:05:78:8f:78:a5:f5:21:03:08:d3:1c:45:12: 5a:0e:b4:b6:2a:a0:e9:5d:44:bb:f8:29:6e:9d:0a:80:84:79: 8b:bd:56:cc -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwMzIyMTUwMTExWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RlZDBiNy02ZGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygSSNoDb33+6T4IHOQRoJ2LlkeYC8RRF2EZbNdIacs5jkNqJuIpcLGr5GzdE g7MVBKqVq6pcy3F3g85k/07ufUCu99H4TRaExB2V+CjTdRvjo+AxmGVaNANNdeCc pXbyxaBpk7Z+tmOOuGsRiKLcOywMXVi8Ku6VyLjno8pfBNYv0Yc38eOkofVKE/e3 2D+Ni0mEPXzoM9gyjljGcWMCYE7HWFwRdHJjW1B+IzIZbSArQDaIgbUpe6FdkdQ1 Fcc1JoiuZuW8Llj7JdAUZiDw1cXbXYj2KT4gkiuRQoYH69TA9z00hn6WWfgemN82 enIAECxNuREOXxnHrOMVnWmJNwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMg2bno2 xDRf5XkPj4kA/ZTefDFAMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvN0Q3NDVCOEM4 MDA0MTFFQjkzOThDNjNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAE7ZxgDBAE7Z+IwDQYJKoZIhvcNAQELBQADggEBALvMBMDn 5mbVQqtJvCPOLyVYJqhCtYOYryrAoWDzysWhtIUmYpR3+X/UP7wC1d3ZyzEQK6uJ 5ZvGEqaQzknmIUBgQYhlDa3Sbu4LWpkx8TSZqbRiOVesjt24HccCUATjMFgn6iay Yl7qSlYTWXlIfXNj1H+4h/1g2Q+RKMCFrwe445BXWRrv/EItdshJeCZkk1eDiH57 i0TGSX6skawjSltXuvp1IH5PXqzj/lEgU8rznY7ZoenM1Xwytq2jmnIXXSeSrOiX QjzZ+9EY1UAgliaso/HclK3ALlLawnbZBXiPeKX1IQMI0xxFEloOtLYqoOldRLv4 KW6dCoCEeYu9Vsw= -----END CERTIFICATE-----Generated at Sat Apr 26 08:10:47 2025 by rpki-client