$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/A1C2C79680FE11E985D53F55C4F9AE02.roa File: A1C2C79680FE11E985D53F55C4F9AE02.roa (raw, json) Hash identifier: Ko3Luk3NXRMVTdrKjxB+T1Aq5Rz7BTBaPzcxuwLSdz4= Subject key identifier: 4C:06:59:01:34:10:6D:97:49:F3:4F:F9:6D:96:E0:A7:C2:06:4F:FC Certificate issuer: /CN=A91B8EF9/serialNumber=D32DA36E8821822E6BD3C82CFFA984E7A909C3F6 Certificate serial: 3375 Authority key identifier: D3:2D:A3:6E:88:21:82:2E:6B:D3:C8:2C:FF:A9:84:E7:A9:09:C3:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0y2jboghgi5r08gs_6mE56kJw_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/A1C2C79680FE11E985D53F55C4F9AE02.roa Signing time: Thu 12 Dec 2024 15:31:05 +0000 ROA not before: Thu 12 Dec 2024 15:31:05 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 132494 IP address blocks: 103.31.34.0/23 maxlen: 24 2001:df0:427::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/0y2jboghgi5r08gs_6mE56kJw_Y.crl rsync://rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/0y2jboghgi5r08gs_6mE56kJw_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0y2jboghgi5r08gs_6mE56kJw_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:20:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13173 (0x3375) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8EF9, serialNumber=D32DA36E8821822E6BD3C82CFFA984E7A909C3F6 Validity Not Before: Dec 12 15:31:05 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=675b01b8-35e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:97:b9:6f:91:ea:eb:5a:27:87:f6:d2:3b:ca: a9:d2:19:fc:d9:67:94:a9:42:3e:1b:63:9d:72:a0: d5:a6:b7:b3:0b:c7:01:06:ae:09:a2:f2:e6:5b:1a: a3:5d:da:75:83:68:56:71:ed:92:24:ad:0b:2a:2f: d7:70:04:44:08:11:31:60:3e:e8:cf:6d:d0:2a:6e: 4b:eb:1b:80:8c:81:e8:26:13:e9:87:37:96:ce:6f: 55:53:fe:b8:df:2c:d2:96:52:cd:38:85:b9:a6:88: 32:cf:5a:dc:c2:39:46:7e:ec:e2:e4:04:ce:27:c4: 60:78:b4:c5:b9:61:ce:36:9a:7c:6d:59:05:34:17: 7c:f7:51:92:5d:95:91:17:65:3c:33:61:69:5e:e3: 4d:ac:b4:77:ac:c6:77:bf:a1:be:f0:61:5a:65:14: 45:e9:08:12:7d:6f:92:2b:3e:88:af:bb:6a:cd:9f: 30:10:0e:c9:d7:d5:ae:26:0a:ab:5b:e1:29:cd:12: 8e:16:b2:46:da:9a:be:4e:19:22:b1:1e:9e:37:a0: b2:b0:17:b1:5a:f9:fa:66:89:ef:3e:2e:23:a5:9d: a2:78:5f:a4:c9:7a:ed:89:65:01:17:45:46:a8:a7: 5f:a8:b8:38:8a:91:03:5d:d0:4b:bc:d2:28:a2:64: 57:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:06:59:01:34:10:6D:97:49:F3:4F:F9:6D:96:E0:A7:C2:06:4F:FC X509v3 Authority Key Identifier: keyid:D3:2D:A3:6E:88:21:82:2E:6B:D3:C8:2C:FF:A9:84:E7:A9:09:C3:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/0y2jboghgi5r08gs_6mE56kJw_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0y2jboghgi5r08gs_6mE56kJw_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8EF9/44A805EE44C911E2B35AC4842979BB20/A1C2C79680FE11E985D53F55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.31.34.0/23 IPv6: 2001:df0:427::/48 Signature Algorithm: sha256WithRSAEncryption af:a4:0b:7b:02:b0:93:2a:0e:8a:50:1d:68:5d:cc:66:3b:23: 2c:57:41:03:76:c9:d7:c0:15:2e:b1:d1:ea:ce:9d:3e:66:c6: 49:a8:cc:86:a5:50:1d:6d:51:ea:82:89:df:a9:6f:11:2a:a2: 1a:6b:7d:e4:21:fe:f0:be:df:47:b6:4e:10:f6:50:f4:dd:55: 24:20:06:b3:70:5b:69:33:f9:90:c0:e2:06:aa:63:bc:a9:69: b0:25:b2:bb:be:6f:f7:52:c2:43:53:e5:be:87:0e:19:c1:24: 21:3d:38:b5:58:87:60:38:26:1b:a3:34:1c:d0:9f:ac:bf:db: b3:06:2a:21:d5:0a:26:4b:8b:44:1c:f5:46:d2:7f:93:2e:70: be:58:9c:8a:7e:fb:b5:42:ab:f0:83:f6:3b:2d:6e:b5:61:60: f7:0b:1b:28:65:bf:48:13:71:d9:cb:b8:2c:22:61:c5:42:52: 03:93:33:3d:8f:3f:96:db:04:b6:d1:bf:fb:04:99:e0:cf:a6: ef:b7:83:17:e1:5b:cc:1c:3f:94:4a:61:28:8b:80:d2:63:04: 0d:a7:ee:79:40:08:51:12:a7:46:ab:c3:83:56:25:ac:fc:3f: 12:46:95:c7:3e:83:96:90:b6:43:c4:d1:ec:60:1d:04:4a:23: f1:85:44:f1 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICM3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFRjkxMTAvBgNVBAUTKEQzMkRBMzZFODgyMTgyMkU2QkQzQzgyQ0ZGQTk4NEU3 QTkwOUMzRjYwHhcNMjQxMjEyMTUzMTA1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzViMDFiOC0zNWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn5e5b5Hq61onh/bSO8qp0hn82WeUqUI+G2OdcqDVprezC8cBBq4JovLmWxqj Xdp1g2hWce2SJK0LKi/XcARECBExYD7oz23QKm5L6xuAjIHoJhPphzeWzm9VU/64 3yzSllLNOIW5pogyz1rcwjlGfuzi5ATOJ8RgeLTFuWHONpp8bVkFNBd891GSXZWR F2U8M2FpXuNNrLR3rMZ3v6G+8GFaZRRF6QgSfW+SKz6Ir7tqzZ8wEA7J19WuJgqr W+EpzRKOFrJG2pq+ThkisR6eN6CysBexWvn6ZonvPi4jpZ2ieF+kyXrtiWUBF0VG qKdfqLg4ipEDXdBLvNIoomRXDQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEwGWQE0 EG2XSfNP+W2W4KfCBk/8MB8GA1UdIwQYMBaAFNMto26IIYIua9PILP+phOepCcP2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEVGOS80NEE4MDVFRTQ0 QzkxMUUyQjM1QUM0ODQyOTc5QkIyMC8weTJqYm9naGdpNXIwOGdzXzZtRTU2a0p3 X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB5Mmpib2doZ2k1cjA4Z3NfNm1FNTZrSndfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjhFRjkvNDRBODA1RUU0NEM5MTFFMkIzNUFDNDg0Mjk3OUJCMjAvQTFDMkM3OTY4 MEZFMTFFOTg1RDUzRjU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnHyIwDwQCAAIwCQMHACABDfAEJzANBgkqhkiG9w0BAQsF AAOCAQEAr6QLewKwkyoOilAdaF3MZjsjLFdBA3bJ18AVLrHR6s6dPmbGSajMhqVQ HW1R6oKJ36lvESqiGmt95CH+8L7fR7ZOEPZQ9N1VJCAGs3BbaTP5kMDiBqpjvKlp sCWyu75v91LCQ1PlvocOGcEkIT04tViHYDgmG6M0HNCfrL/bswYqIdUKJkuLRBz1 RtJ/ky5wvlicin77tUKr8IP2Oy1utWFg9wsbKGW/SBNx2cu4LCJhxUJSA5MzPY8/ ltsEttG/+wSZ4M+m77eDF+FbzBw/lEphKIuA0mMEDafueUAIURKnRqvDg1YlrPw/ EkaVxz6DlpC2Q8TR7GAdBEoj8YVE8Q== -----END CERTIFICATE-----Generated at Sat Apr 26 08:15:16 2025 by rpki-client