$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/655B85F0225B11EFADDE6F63C4F9AE02.roa File: 655B85F0225B11EFADDE6F63C4F9AE02.roa (raw, json) Hash identifier: n2zLDtDaPNL3Ye6qBkwU/zpDC2mfhiqQ0N3aGF+8gOs= Subject key identifier: ED:C9:99:E0:25:0C:C9:D2:80:60:97:B1:95:6F:AD:86:3C:A7:46:A1 Certificate issuer: /CN=A91A8A52/serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Certificate serial: 0194 Authority key identifier: 71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/655B85F0225B11EFADDE6F63C4F9AE02.roa Signing time: Thu 19 Dec 2024 02:26:15 +0000 ROA not before: Thu 19 Dec 2024 02:26:15 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 150451 IP address blocks: 103.42.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8A52, serialNumber=712EB5A2D7069F18EE9C65F3B013271ADBF1F540 Validity Not Before: Dec 19 02:26:15 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67638447-4ff4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ac:01:40:a9:75:0b:86:7e:66:5b:e5:9e:01: d0:79:99:4d:be:ad:22:fc:44:bb:9a:f7:b7:0d:15: 21:a9:95:2b:91:7a:5a:19:41:db:6f:a8:7b:40:d4: bb:f8:f4:de:d8:96:18:b0:f9:34:8b:7f:02:82:2b: 83:ac:54:19:8b:2e:83:76:82:db:dc:b9:2d:5a:17: 01:fc:95:de:a5:03:ff:a1:aa:ad:2e:8c:ba:fe:0c: 14:e7:c7:71:b1:ba:f4:3e:91:fe:33:e8:6f:40:2c: 06:8f:05:73:8e:61:c1:37:e0:5f:71:30:1e:3b:2b: 1c:00:f5:12:d9:24:71:f7:a4:ef:33:b6:d6:12:41: e8:98:64:39:77:5a:fe:0a:c0:5b:69:ec:f9:79:c6: d2:f0:c1:a4:35:45:56:c7:d6:7a:60:55:84:6c:a1: 23:56:7e:59:11:8a:99:13:b1:ee:db:e3:ce:d0:b5: a2:93:f1:49:7e:53:46:62:a5:84:17:8d:d6:c0:26: c5:f6:f8:9e:0f:08:54:53:20:ca:7b:f2:0b:6d:4d: 08:02:d4:54:9c:72:d3:e2:99:4b:80:b3:b1:e6:75: 7e:27:62:b8:e2:5e:3e:b5:7a:51:84:a4:71:2d:f8: 2c:0a:9a:64:3c:0f:ff:22:35:23:f3:2a:28:84:cc: c6:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:C9:99:E0:25:0C:C9:D2:80:60:97:B1:95:6F:AD:86:3C:A7:46:A1 X509v3 Authority Key Identifier: keyid:71:2E:B5:A2:D7:06:9F:18:EE:9C:65:F3:B0:13:27:1A:DB:F1:F5:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/cS61otcGnxjunGXzsBMnGtvx9UA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cS61otcGnxjunGXzsBMnGtvx9UA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8A52/FB7E4BDE70B511ED93F0DD16C4F9AE02/655B85F0225B11EFADDE6F63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.229.0/24 Signature Algorithm: sha256WithRSAEncryption 65:92:c8:cb:9a:d8:9f:f8:00:7e:4a:0d:db:ca:dd:b1:c8:af: 5f:25:55:89:5b:c1:db:60:21:d5:54:cf:96:a3:6d:2f:58:e2: fb:b6:f3:27:6a:23:79:4f:57:b0:00:10:8b:7e:ce:62:04:01: 53:42:1b:92:39:03:04:bd:f0:67:b0:fb:d6:d2:ff:a4:69:5a: 8d:27:eb:e7:e8:4a:30:34:39:f9:27:21:ff:ff:19:78:75:9d: a2:7c:b9:6d:53:07:ad:ee:26:3d:6f:61:60:31:69:cc:0d:4b: 20:2e:9d:3f:0f:47:0f:f3:8a:0f:d0:7d:79:ff:e4:04:7b:fc: f1:7e:8a:fc:4a:a4:b9:f1:1f:95:d6:e3:35:f4:dd:25:29:94: 7c:ca:4b:4f:b3:8d:86:ec:35:07:5f:fc:0d:18:db:1e:7e:a5: 6d:5e:fb:f4:6a:81:5e:b5:23:8f:a8:b2:bc:b5:08:3c:52:11: 12:48:13:9c:ea:13:4f:85:04:15:94:b1:8e:78:70:4f:2f:1b: 94:1c:87:6a:b5:65:b3:4e:50:a4:bd:20:df:35:58:77:72:11: 71:10:7d:16:11:11:0d:5a:c7:54:41:3d:96:a4:b4:75:13:89: dd:21:cc:4c:37:f0:fd:51:2d:06:cd:21:5f:4c:a9:e1:83:eb: ff:36:dc:1d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThBNTIxMTAvBgNVBAUTKDcxMkVCNUEyRDcwNjlGMThFRTlDNjVGM0IwMTMyNzFB REJGMUY1NDAwHhcNMjQxMjE5MDIyNjE1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYzODQ0Ny00ZmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKwBQKl1C4Z+ZlvlngHQeZlNvq0i/ES7mve3DRUhqZUrkXpaGUHbb6h7QNS7 +PTe2JYYsPk0i38CgiuDrFQZiy6DdoLb3LktWhcB/JXepQP/oaqtLoy6/gwU58dx sbr0PpH+M+hvQCwGjwVzjmHBN+BfcTAeOyscAPUS2SRx96TvM7bWEkHomGQ5d1r+ CsBbaez5ecbS8MGkNUVWx9Z6YFWEbKEjVn5ZEYqZE7Hu2+PO0LWik/FJflNGYqWE F43WwCbF9vieDwhUUyDKe/ILbU0IAtRUnHLT4plLgLOx5nV+J2K44l4+tXpRhKRx LfgsCppkPA//IjUj8yoohMzGQwIDAQABo4IClTCCApEwHQYDVR0OBBYEFO3JmeAl DMnSgGCXsZVvrYY8p0ahMB8GA1UdIwQYMBaAFHEutaLXBp8Y7pxl87ATJxrb8fVA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOEE1Mi9GQjdFNEJERTcw QjUxMUVEOTNGMEREMTZDNEY5QUUwMi9jUzYxb3RjR254anVuR1h6c0JNbkd0dng5 VUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NTNjFvdGNHbnhqdW5HWHpzQk1uR3R2eDlVQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QThBNTIvRkI3RTRCREU3MEI1MTFFRDkzRjBERDE2QzRGOUFFMDIvNjU1Qjg1RjAy MjVCMTFFRkFEREU2RjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnKuUwDQYJKoZIhvcNAQELBQADggEBAGWSyMua2J/4AH5K DdvK3bHIr18lVYlbwdtgIdVUz5ajbS9Y4vu28ydqI3lPV7AAEIt+zmIEAVNCG5I5 AwS98Gew+9bS/6RpWo0n6+foSjA0OfknIf//GXh1naJ8uW1TB63uJj1vYWAxacwN SyAunT8PRw/zig/QfXn/5AR7/PF+ivxKpLnxH5XW4zX03SUplHzKS0+zjYbsNQdf /A0Y2x5+pW1e+/RqgV61I4+osry1CDxSERJIE5zqE0+FBBWUsY54cE8vG5Qch2q1 ZbNOUKS9IN81WHdyEXEQfRYREQ1ax1RBPZaktHUTid0hzEw38P1RLQbNIV9MqeGD 6/823B0= -----END CERTIFICATE-----Generated at Sat Apr 26 14:21:14 2025 by rpki-client