$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0B65/E6E422A6156111E9934B1B36C4F9AE02/CA7A6F1A157C11E9BB547B7AC4F9AE02.roa File: CA7A6F1A157C11E9BB547B7AC4F9AE02.roa (raw, json) Hash identifier: tE2E6js3kYa62zkqmiLT/NNljtVICethnlU6hDIPGMU= Subject key identifier: 96:EF:06:27:D8:52:A9:9F:FE:1B:19:57:04:E1:7F:59:C6:EC:13:E3 Certificate issuer: /CN=A91B0B65/serialNumber=C057119CA45DD314215C61E09BF871D48ABB5F9B Certificate serial: 10CA Authority key identifier: C0:57:11:9C:A4:5D:D3:14:21:5C:61:E0:9B:F8:71:D4:8A:BB:5F:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wFcRnKRd0xQhXGHgm_hx1Iq7X5s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0B65/E6E422A6156111E9934B1B36C4F9AE02/CA7A6F1A157C11E9BB547B7AC4F9AE02.roa Signing time: Tue 26 Nov 2024 17:35:29 +0000 ROA not before: Tue 26 Nov 2024 17:35:29 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 138359 IP address blocks: 103.130.153.0/24 maxlen: 24 103.143.219.0/24 maxlen: 24 2001:df6:e100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0B65/E6E422A6156111E9934B1B36C4F9AE02/wFcRnKRd0xQhXGHgm_hx1Iq7X5s.crl rsync://rpki.apnic.net/member_repository/A91B0B65/E6E422A6156111E9934B1B36C4F9AE02/wFcRnKRd0xQhXGHgm_hx1Iq7X5s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wFcRnKRd0xQhXGHgm_hx1Iq7X5s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:18:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4298 (0x10ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0B65, serialNumber=C057119CA45DD314215C61E09BF871D48ABB5F9B Validity Not Before: Nov 26 17:35:29 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674606e1-b919 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b9:a9:12:5b:9e:fd:21:a5:37:5f:47:b4:ed: 71:8a:5b:3d:25:73:d4:01:b5:2b:3e:3e:88:8d:64: 3f:92:9f:b7:e5:c0:ca:d4:ca:9b:7f:ef:96:cc:b7: c0:72:d3:a1:be:8c:34:38:a0:3e:ef:5d:2e:d6:8a: 02:33:89:fd:61:c2:d8:b2:e9:e5:7f:58:cd:d1:73: fb:0b:3c:51:a1:7a:c6:61:7e:04:e2:1c:f2:2d:f7: b0:96:1e:ff:95:85:ea:39:d3:23:88:e5:66:92:60: c6:c4:ad:38:9e:96:85:2c:62:88:31:b4:11:89:b0: bb:de:bb:4b:51:26:43:f1:80:e0:db:cf:03:f6:5c: ba:f0:d6:50:cb:17:5b:11:f0:5d:5a:90:f0:0d:4e: 4b:e6:35:8f:80:4b:06:a5:60:ab:f5:87:65:65:e3: 4c:96:66:bc:c0:44:65:6f:1a:13:a8:7c:f6:46:34: d1:15:df:e2:b7:cb:c1:0f:ff:2c:55:0d:08:04:d9: bf:1d:ea:62:ee:fb:85:0c:ba:1b:e3:3a:d3:a2:4e: 1e:22:15:8f:c5:c5:1f:ca:df:1d:4e:c7:cd:52:5a: a8:6c:d6:28:ab:17:0c:d4:6e:14:40:92:62:f5:ca: 4d:32:85:3f:c4:8c:bf:4f:41:9e:27:a6:cf:cc:5c: f4:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:EF:06:27:D8:52:A9:9F:FE:1B:19:57:04:E1:7F:59:C6:EC:13:E3 X509v3 Authority Key Identifier: keyid:C0:57:11:9C:A4:5D:D3:14:21:5C:61:E0:9B:F8:71:D4:8A:BB:5F:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0B65/E6E422A6156111E9934B1B36C4F9AE02/wFcRnKRd0xQhXGHgm_hx1Iq7X5s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wFcRnKRd0xQhXGHgm_hx1Iq7X5s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0B65/E6E422A6156111E9934B1B36C4F9AE02/CA7A6F1A157C11E9BB547B7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.130.153.0/24 103.143.219.0/24 IPv6: 2001:df6:e100::/48 Signature Algorithm: sha256WithRSAEncryption a7:5c:42:04:49:19:13:97:d9:61:9c:a4:31:01:d1:4c:7a:00: 9f:16:cf:60:03:64:b2:ce:c8:b4:af:e4:6c:b7:c1:ca:eb:7f: f1:ec:35:85:77:38:62:fc:07:1e:1d:f5:b5:2a:04:cb:91:7c: 2d:5f:e4:5d:be:e7:6b:3e:83:45:5c:2a:77:67:1c:8f:c8:72: ba:40:0b:d8:d3:db:83:ba:14:1c:75:70:e8:16:e8:da:97:b1: 04:7c:a7:d3:f3:60:fc:f3:29:50:fa:de:28:eb:11:ea:39:d1: b7:e8:50:6a:85:fa:df:50:b9:6b:61:27:61:0a:52:c0:1d:66: 7d:2c:1b:3d:87:fc:ac:37:25:14:ff:6c:ab:35:b8:2d:10:e5: d9:c4:b5:1e:9d:ef:fa:5a:af:d7:bc:70:f8:91:0d:76:f4:12: 7d:11:b8:a6:34:d9:56:83:55:4d:53:b5:2b:9e:e2:4d:0f:f6: 69:5c:ce:c2:02:c4:f8:41:e7:0c:78:2c:ca:2d:fb:0f:aa:45: bf:49:02:ba:d2:ca:67:98:44:9e:71:25:ee:27:f9:cd:b3:cb: b1:98:01:0c:40:9c:f5:b9:65:83:c7:29:0f:4e:5a:89:1f:d6: f6:cb:95:fd:5f:e3:a8:23:64:57:05:dc:9e:f1:72:a9:b8:b1: e5:3b:e0:cb -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICEMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBCNjUxMTAvBgNVBAUTKEMwNTcxMTlDQTQ1REQzMTQyMTVDNjFFMDlCRjg3MUQ0 OEFCQjVGOUIwHhcNMjQxMTI2MTczNTI5WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ2MDZlMS1iOTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLmpElue/SGlN19HtO1xils9JXPUAbUrPj6IjWQ/kp+35cDK1Mqbf++WzLfA ctOhvow0OKA+710u1ooCM4n9YcLYsunlf1jN0XP7CzxRoXrGYX4E4hzyLfewlh7/ lYXqOdMjiOVmkmDGxK04npaFLGKIMbQRibC73rtLUSZD8YDg288D9ly68NZQyxdb EfBdWpDwDU5L5jWPgEsGpWCr9YdlZeNMlma8wERlbxoTqHz2RjTRFd/it8vBD/8s VQ0IBNm/Hepi7vuFDLob4zrTok4eIhWPxcUfyt8dTsfNUlqobNYoqxcM1G4UQJJi 9cpNMoU/xIy/T0GeJ6bPzFz0GQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFJbvBifY Uqmf/hsZVwThf1nG7BPjMB8GA1UdIwQYMBaAFMBXEZykXdMUIVxh4Jv4cdSKu1+b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMEI2NS9FNkU0MjJBNjE1 NjExMUU5OTM0QjFCMzZDNEY5QUUwMi93RmNSbktSZDB4UWhYR0hnbV9oeDFJcTdY NXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dGY1JuS1JkMHhRaFhHSGdtX2h4MUlxN1g1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjBCNjUvRTZFNDIyQTYxNTYxMTFFOTkzNEIxQjM2QzRGOUFFMDIvQ0E3QTZGMUEx NTdDMTFFOUJCNTQ3QjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABngpkDBABnj9swDwQCAAIwCQMHACABDfbhADANBgkqhkiG 9w0BAQsFAAOCAQEAp1xCBEkZE5fZYZykMQHRTHoAnxbPYANkss7ItK/kbLfByut/ 8ew1hXc4YvwHHh31tSoEy5F8LV/kXb7naz6DRVwqd2ccj8hyukAL2NPbg7oUHHVw 6Bbo2pexBHyn0/Ng/PMpUPreKOsR6jnRt+hQaoX631C5a2EnYQpSwB1mfSwbPYf8 rDclFP9sqzW4LRDl2cS1Hp3v+lqv17xw+JENdvQSfRG4pjTZVoNVTVO1K57iTQ/2 aVzOwgLE+EHnDHgsyi37D6pFv0kCutLKZ5hEnnEl7if5zbPLsZgBDECc9bllg8cp D05aiR/W9suV/V/jqCNkVwXcnvFyqbix5Tvgyw== -----END CERTIFICATE-----Generated at Sat Apr 26 17:16:20 2025 by rpki-client