$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8CB9/C0D500F4E65511EBB0F29027C4F9AE02/BC009860E65811EBA233DC2DC4F9AE02.roa File: BC009860E65811EBA233DC2DC4F9AE02.roa (raw, json) Hash identifier: weE5Vxa+vgD5J5vHyy3fH69Amz9pD8FlnRPiDR0K214= Subject key identifier: 28:06:54:76:D4:05:52:C8:5D:07:8E:6F:5B:BD:63:09:18:73:35:18 Certificate issuer: /CN=A91A8CB9/serialNumber=13D64D5D8FB7B1CF893877011B80CF4016F61638 Certificate serial: 051B Authority key identifier: 13:D6:4D:5D:8F:B7:B1:CF:89:38:77:01:1B:80:CF:40:16:F6:16:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E9ZNXY-3sc-JOHcBG4DPQBb2Fjg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8CB9/C0D500F4E65511EBB0F29027C4F9AE02/BC009860E65811EBA233DC2DC4F9AE02.roa Signing time: Tue 31 Dec 2024 23:12:51 +0000 ROA not before: Tue 31 Dec 2024 23:12:51 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 138955 IP address blocks: 103.159.24.0/24 maxlen: 24 103.159.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8CB9/C0D500F4E65511EBB0F29027C4F9AE02/E9ZNXY-3sc-JOHcBG4DPQBb2Fjg.crl rsync://rpki.apnic.net/member_repository/A91A8CB9/C0D500F4E65511EBB0F29027C4F9AE02/E9ZNXY-3sc-JOHcBG4DPQBb2Fjg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E9ZNXY-3sc-JOHcBG4DPQBb2Fjg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:12:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1307 (0x51b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8CB9, serialNumber=13D64D5D8FB7B1CF893877011B80CF4016F61638 Validity Not Before: Dec 31 23:12:51 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67747a73-8d4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:48:ce:9b:f6:3e:d3:0d:f0:98:c2:1a:c5:0d: ae:31:63:ca:af:40:d4:78:f6:bf:f6:23:d6:98:d8: 62:45:79:e3:eb:20:91:df:f9:d4:07:8a:c8:80:7b: 34:bc:9e:50:bf:c5:a4:7a:23:53:ad:3b:88:a3:37: 9e:ff:c2:74:0d:99:9f:9c:05:7f:c3:11:50:93:12: 55:17:a6:2d:a2:ea:90:45:0b:8d:ab:15:c0:d6:6a: 91:f0:ee:45:69:27:af:ed:f7:f2:12:67:72:a9:e5: 6a:72:4d:aa:fe:b9:40:ba:15:63:a4:c2:ca:3e:15: 8f:56:95:0a:61:66:06:b8:74:e1:14:e9:23:74:bb: 65:a8:52:9f:a9:65:d6:ff:85:7d:98:5f:ab:f8:5a: 20:31:c1:76:29:69:ad:a3:95:78:6b:62:c6:43:1b: 86:e4:d2:30:07:4b:e7:87:02:91:41:35:5c:36:b4: 68:98:eb:4a:50:a1:33:1f:f1:30:e6:11:5a:d7:17: 15:97:b8:f2:d4:fa:7b:c9:c5:80:55:c0:59:9c:d4: 77:4e:97:b5:9b:39:14:62:f6:77:75:c9:43:3d:d7: 22:db:0e:df:07:82:00:cc:34:ae:5d:aa:3d:a7:f2: 04:6b:52:ac:4c:b4:21:29:97:aa:cd:03:76:1e:28: e1:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:06:54:76:D4:05:52:C8:5D:07:8E:6F:5B:BD:63:09:18:73:35:18 X509v3 Authority Key Identifier: keyid:13:D6:4D:5D:8F:B7:B1:CF:89:38:77:01:1B:80:CF:40:16:F6:16:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8CB9/C0D500F4E65511EBB0F29027C4F9AE02/E9ZNXY-3sc-JOHcBG4DPQBb2Fjg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E9ZNXY-3sc-JOHcBG4DPQBb2Fjg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8CB9/C0D500F4E65511EBB0F29027C4F9AE02/BC009860E65811EBA233DC2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.24.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:c2:9a:53:ad:da:0e:9b:52:b3:4a:46:a9:02:61:fc:e3:9d: 99:52:c0:5d:a1:c9:5b:3c:6b:b9:00:43:80:18:80:bc:7b:cd: 8e:9c:a9:34:4d:58:2f:0f:84:73:3c:13:83:2e:df:4c:2c:da: cf:d7:cf:ba:7a:55:25:39:e5:fc:e7:30:5a:96:c3:cc:19:ed: 71:7b:04:df:82:3c:8b:55:66:b1:d8:7a:1c:82:77:78:19:f5: 79:c9:11:22:cf:3d:6f:7e:81:2c:e9:7f:1c:0d:92:3f:32:21: be:83:47:85:50:3f:14:d1:3f:96:66:19:ac:0a:98:6a:26:9a: 19:7f:06:6b:31:15:c5:73:da:07:fe:f2:5e:71:82:fa:30:71: 1c:ac:61:04:dc:85:c6:bc:ff:c6:e5:99:93:0e:5c:ce:ef:17: 4a:9e:17:00:2f:d7:e2:0c:84:3a:43:20:96:42:24:3a:ae:ef: 1d:9c:39:4a:e9:a0:87:e7:cb:df:47:15:b6:88:36:ea:d6:3b: 7f:b3:1a:3b:64:d3:1e:0a:56:63:bb:57:e4:93:bf:ca:88:00: f5:9a:c0:3e:fd:13:bd:0b:bf:00:8b:0b:06:e0:a7:90:8d:87: bc:97:d6:83:7b:9b:fe:9c:9b:d4:bb:bb:ff:92:ce:db:fd:b8: 0e:1e:02:da -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBRswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QThDQjkxMTAvBgNVBAUTKDEzRDY0RDVEOEZCN0IxQ0Y4OTM4NzcwMTFCODBDRjQw MTZGNjE2MzgwHhcNMjQxMjMxMjMxMjUxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc0N2E3My04ZDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0jOm/Y+0w3wmMIaxQ2uMWPKr0DUePa/9iPWmNhiRXnj6yCR3/nUB4rIgHs0 vJ5Qv8WkeiNTrTuIozee/8J0DZmfnAV/wxFQkxJVF6YtouqQRQuNqxXA1mqR8O5F aSev7ffyEmdyqeVqck2q/rlAuhVjpMLKPhWPVpUKYWYGuHThFOkjdLtlqFKfqWXW /4V9mF+r+FogMcF2KWmto5V4a2LGQxuG5NIwB0vnhwKRQTVcNrRomOtKUKEzH/Ew 5hFa1xcVl7jy1Pp7ycWAVcBZnNR3Tpe1mzkUYvZ3dclDPdci2w7fB4IAzDSuXao9 p/IEa1KsTLQhKZeqzQN2HijhswIDAQABo4IClTCCApEwHQYDVR0OBBYEFCgGVHbU BVLIXQeOb1u9YwkYczUYMB8GA1UdIwQYMBaAFBPWTV2Pt7HPiTh3ARuAz0AW9hY4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOENCOS9DMEQ1MDBGNEU2 NTUxMUVCQjBGMjkwMjdDNEY5QUUwMi9FOVpOWFktM3NjLUpPSGNCRzREUFFCYjJG amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U5Wk5YWS0zc2MtSk9IY0JHNERQUUJiMkZqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QThDQjkvQzBENTAwRjRFNjU1MTFFQkIwRjI5MDI3QzRGOUFFMDIvQkMwMDk4NjBF NjU4MTFFQkEyMzNEQzJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnxgwDQYJKoZIhvcNAQELBQADggEBAC/CmlOt2g6bUrNK RqkCYfzjnZlSwF2hyVs8a7kAQ4AYgLx7zY6cqTRNWC8PhHM8E4Mu30ws2s/Xz7p6 VSU55fznMFqWw8wZ7XF7BN+CPItVZrHYehyCd3gZ9XnJESLPPW9+gSzpfxwNkj8y Ib6DR4VQPxTRP5ZmGawKmGommhl/BmsxFcVz2gf+8l5xgvowcRysYQTchca8/8bl mZMOXM7vF0qeFwAv1+IMhDpDIJZCJDqu7x2cOUrpoIfny99HFbaINurWO3+zGjtk 0x4KVmO7V+STv8qIAPWawD79E70LvwCLCwbgp5CNh7yX1oN7m/6cm9S7u/+Sztv9 uA4eAto= -----END CERTIFICATE-----Generated at Sat Apr 26 12:33:31 2025 by rpki-client