$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/971B23D236EA11EE802E9246C4F9AE02.roa File: 971B23D236EA11EE802E9246C4F9AE02.roa (raw, json) Hash identifier: 4S5HT3Umab8tv1JR8LX9cjuccjEduaZGTp680hfQmts= Subject key identifier: A1:A4:F9:B6:7E:97:B2:A6:F4:C0:22:E2:CD:C4:3E:12:41:B9:DB:54 Certificate issuer: /CN=A91AF145/serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA Certificate serial: 010D Authority key identifier: 70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/971B23D236EA11EE802E9246C4F9AE02.roa Signing time: Fri 27 Dec 2024 14:31:32 +0000 ROA not before: Fri 27 Dec 2024 14:31:32 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 141212 IP address blocks: 103.156.136.0/24 maxlen: 24 103.156.137.0/24 maxlen: 24 2001:df2:e1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.crl rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:27:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF145, serialNumber=70DA459191E90686BDB0AC47ABDA30A9C3E174FA Validity Not Before: Dec 27 14:31:32 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=676eba44-58d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:0e:f4:c5:3e:1b:67:7f:3f:84:c5:bf:6f:1c: c5:68:13:17:de:5a:46:43:d4:bd:dd:a7:9a:f0:2e: 2c:16:d6:10:e5:63:1f:7d:d3:b2:75:aa:59:96:5f: 5f:56:b7:e4:41:0c:bd:8f:fd:85:a9:07:9f:da:62: 68:2a:cf:93:53:55:9d:f5:56:cd:84:bb:18:bb:fc: 9d:c7:8d:65:7c:3c:01:ee:5d:ab:cd:6b:90:19:39: 9d:26:e5:4d:a2:c8:94:be:41:95:cc:f9:fb:73:17: ab:6d:1f:ea:fc:08:44:1a:b1:c9:61:ce:0a:4f:60: 8b:8d:bd:42:a8:bc:8d:5d:18:f1:80:01:84:b2:5c: 96:67:cf:2b:e0:17:c5:1b:98:19:5c:2e:85:b9:c6: 9e:36:26:15:5b:89:94:6c:74:8f:34:4a:e8:4f:6a: 77:cc:be:4e:d0:b3:87:f1:54:c4:50:de:b4:d0:66: 47:ae:07:e4:82:12:58:af:f1:40:27:5b:11:de:2f: 56:68:6e:9b:83:4c:8c:5e:41:d9:1c:01:57:cb:ff: f0:28:be:46:f2:c4:06:9b:b3:05:66:ef:62:0b:db: 5f:e5:9b:ed:4a:45:42:17:4b:b0:df:a4:46:ff:61: d2:15:4c:2a:8f:9f:cb:1d:e8:0a:ad:e0:b4:e5:68: e1:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:A4:F9:B6:7E:97:B2:A6:F4:C0:22:E2:CD:C4:3E:12:41:B9:DB:54 X509v3 Authority Key Identifier: keyid:70:DA:45:91:91:E9:06:86:BD:B0:AC:47:AB:DA:30:A9:C3:E1:74:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/cNpFkZHpBoa9sKxHq9owqcPhdPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNpFkZHpBoa9sKxHq9owqcPhdPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF145/278073CE36EA11EEAE10AA45C4F9AE02/971B23D236EA11EE802E9246C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.136.0/23 IPv6: 2001:df2:e1c0::/48 Signature Algorithm: sha256WithRSAEncryption 0c:17:a0:9d:10:af:46:7b:1f:e2:d8:cc:36:d7:97:23:fb:45: 1c:5c:3d:d6:6b:35:2a:29:aa:31:cb:de:2b:35:e9:41:01:ef: a3:87:9f:3c:dd:01:a4:c0:27:83:e1:ab:96:50:04:9a:fe:7b: 12:b9:05:98:b2:8c:71:5c:6b:b3:97:62:14:d1:9e:0d:17:3c: cc:7a:38:40:a7:74:2f:4b:48:46:d8:34:26:58:4b:6a:cb:c8: e3:78:d6:e8:25:d1:c1:07:90:fc:e3:f4:e6:d4:5d:c2:b6:fc: 4d:8e:a4:ec:bd:31:dd:5c:f8:ef:25:74:05:eb:49:0c:11:ba: 12:4f:7e:89:95:68:30:ab:fd:ba:91:cf:73:85:dd:94:af:4f: a8:f9:8f:86:09:c3:f8:39:65:04:9e:4a:a4:13:53:39:7e:d5: de:41:97:18:60:55:64:73:10:10:65:85:86:8e:fd:bb:e9:1f: e9:ef:ba:30:74:43:16:33:25:47:4d:42:63:b9:1c:42:ef:c6: ef:da:4a:f4:35:a7:47:6d:e3:c4:b4:4a:a1:f1:35:da:68:c8: b1:0f:e3:4b:71:8c:0f:fc:f6:bf:c0:61:55:cd:5a:35:42:fb: 27:14:19:b6:41:29:5b:c2:41:6f:05:95:91:8a:db:a3:de:b7: bd:1c:b6:a3 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYxNDUxMTAvBgNVBAUTKDcwREE0NTkxOTFFOTA2ODZCREIwQUM0N0FCREEzMEE5 QzNFMTc0RkEwHhcNMjQxMjI3MTQzMTMyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzZlYmE0NC01OGQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Q70xT4bZ38/hMW/bxzFaBMX3lpGQ9S93aea8C4sFtYQ5WMffdOydapZll9f VrfkQQy9j/2FqQef2mJoKs+TU1Wd9VbNhLsYu/ydx41lfDwB7l2rzWuQGTmdJuVN osiUvkGVzPn7cxerbR/q/AhEGrHJYc4KT2CLjb1CqLyNXRjxgAGEslyWZ88r4BfF G5gZXC6FucaeNiYVW4mUbHSPNEroT2p3zL5O0LOH8VTEUN600GZHrgfkghJYr/FA J1sR3i9WaG6bg0yMXkHZHAFXy//wKL5G8sQGm7MFZu9iC9tf5ZvtSkVCF0uw36RG /2HSFUwqj5/LHegKreC05WjhxQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKGk+bZ+ l7Km9MAi4s3EPhJBudtUMB8GA1UdIwQYMBaAFHDaRZGR6QaGvbCsR6vaMKnD4XT6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjE0NS8yNzgwNzNDRTM2 RUExMUVFQUUxMEFBNDVDNEY5QUUwMi9jTnBGa1pIcEJvYTlzS3hIcTlvd3FjUGhk UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NOcEZrWkhwQm9hOXNLeEhxOW93cWNQaGRQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUYxNDUvMjc4MDczQ0UzNkVBMTFFRUFFMTBBQTQ1QzRGOUFFMDIvOTcxQjIzRDIz NkVBMTFFRTgwMkU5MjQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnnIgwDwQCAAIwCQMHACABDfLhwDANBgkqhkiG9w0BAQsF AAOCAQEADBegnRCvRnsf4tjMNteXI/tFHFw91ms1KimqMcveKzXpQQHvo4efPN0B pMAng+GrllAEmv57ErkFmLKMcVxrs5diFNGeDRc8zHo4QKd0L0tIRtg0JlhLasvI 43jW6CXRwQeQ/OP05tRdwrb8TY6k7L0x3Vz47yV0BetJDBG6Ek9+iZVoMKv9upHP c4XdlK9PqPmPhgnD+DllBJ5KpBNTOX7V3kGXGGBVZHMQEGWFho79u+kf6e+6MHRD FjMlR01CY7kcQu/G79pK9DWnR23jxLRKofE12mjIsQ/jS3GMD/z2v8BhVc1aNUL7 JxQZtkEpW8JBbwWVkYrbo963vRy2ow== -----END CERTIFICATE-----Generated at Sat Apr 26 12:36:38 2025 by rpki-client