$ rpki-client -vvf rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/D5D64BB0FB6811EC863B8150C4F9AE02.roa File: D5D64BB0FB6811EC863B8150C4F9AE02.roa (raw, json) Hash identifier: QqynXUFn2t2DwRQgssbkvYUHxaAcBlMuvOzz1OFVxaQ= Subject key identifier: 88:39:2F:42:A4:4C:EA:DD:8D:D0:DA:A2:61:6F:E8:B7:70:7A:BB:B7 Certificate issuer: /CN=A91B978D/serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Certificate serial: 0274 Authority key identifier: 14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/D5D64BB0FB6811EC863B8150C4F9AE02.roa Signing time: Mon 03 Feb 2025 01:35:37 +0000 ROA not before: Mon 03 Feb 2025 01:35:37 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 133212 IP address blocks: 103.224.104.0/24 maxlen: 24 2001:df0:ed40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:17:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 628 (0x274) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B978D, serialNumber=145FBF9EE31737E91C3CD484EC016AE3C8F3803C Validity Not Before: Feb 3 01:35:37 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a01d69-ec86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:65:a5:06:43:71:7c:a1:60:3a:13:4d:e5:29: ae:cb:5b:db:f5:8e:00:75:b8:cc:3a:c1:91:fd:bf: 73:83:58:ae:91:78:f1:f9:9a:21:2c:66:5e:28:df: 54:f1:15:38:b4:9c:33:7b:30:71:ef:e8:d0:34:3e: 22:40:9c:c4:31:4b:4c:9b:bc:b8:27:25:f7:a7:b6: 2c:59:04:e0:fd:a0:35:ac:2b:53:54:66:67:43:8d: 0f:bd:c2:97:43:f9:d4:2a:2b:90:da:fa:28:98:8d: 7e:1a:18:93:fe:d1:c9:ec:0d:73:65:48:44:f0:d9: 6e:c9:d9:88:4b:6e:1d:36:7e:a4:d1:99:b8:6b:84: df:60:f5:54:8d:af:f3:0f:3d:af:a8:fc:df:50:3c: c5:7f:22:71:64:ce:ce:2f:ca:3c:bc:92:52:19:bb: 53:14:74:2c:11:00:ed:24:30:8e:27:87:6f:e2:d9: 09:ae:41:68:30:8e:4f:26:46:17:5b:cb:22:83:43: c1:2b:b6:d0:cd:b8:e6:e0:ea:84:82:b0:3d:1c:0a: 8c:fe:cf:eb:a4:4d:9c:60:81:b3:41:61:3c:18:16: 40:73:83:09:92:47:56:42:68:2d:5e:bc:7c:d8:f6: 23:34:13:72:51:9b:8c:8a:32:ab:58:b2:53:c1:64: b6:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:39:2F:42:A4:4C:EA:DD:8D:D0:DA:A2:61:6F:E8:B7:70:7A:BB:B7 X509v3 Authority Key Identifier: keyid:14:5F:BF:9E:E3:17:37:E9:1C:3C:D4:84:EC:01:6A:E3:C8:F3:80:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/FF-_nuMXN-kcPNSE7AFq48jzgDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FF-_nuMXN-kcPNSE7AFq48jzgDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B978D/67B44828FB6611ECABA1014FC4F9AE02/D5D64BB0FB6811EC863B8150C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.224.104.0/24 IPv6: 2001:df0:ed40::/48 Signature Algorithm: sha256WithRSAEncryption 16:89:63:8e:50:65:c5:e4:cb:a5:db:68:28:1d:6c:22:09:a6: 75:9d:16:df:eb:2d:16:5a:d0:f3:69:16:0c:5c:62:da:71:b4: b5:51:ae:7e:94:5b:15:0c:a9:f7:9c:bc:a6:5c:23:b9:5d:3a: 61:d5:5b:b6:c5:37:8b:be:09:48:32:ff:eb:a2:f8:a3:a5:fc: 39:1a:9e:0b:f1:d5:a1:ee:70:cf:ac:dc:d1:20:69:1f:c2:29: 42:b6:42:e2:a7:c6:96:48:fa:4d:0b:d7:75:72:b5:be:da:84: b4:7c:c6:59:e5:08:e8:2d:c1:28:5b:35:9f:ca:9c:29:ec:1e: ef:37:21:f8:15:f8:0b:74:ac:09:0c:ab:29:66:c3:10:f2:f2: 59:31:8b:b5:41:96:51:de:47:c7:d7:41:08:b2:d2:3a:fe:f7: 19:40:24:cc:98:d4:5c:eb:05:7b:41:d0:8d:a0:56:f1:da:68: 8c:c3:07:d1:63:4f:3d:19:cb:b2:13:a5:bd:8d:d0:3c:a1:dd: 5e:37:7a:05:04:2b:e2:b6:5f:dd:bd:27:ad:8f:cc:b8:bc:80: c1:61:83:11:98:c9:91:d8:50:59:5f:05:9a:d9:ce:12:ad:58: 58:fc:fb:a8:0f:c6:0a:ef:cf:27:7e:27:46:5d:69:d7:bc:b9: 4a:20:93:99 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3OEQxMTAvBgNVBAUTKDE0NUZCRjlFRTMxNzM3RTkxQzNDRDQ4NEVDMDE2QUUz QzhGMzgwM0MwHhcNMjUwMjAzMDEzNTM3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EwMWQ2OS1lYzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1WWlBkNxfKFgOhNN5Smuy1vb9Y4AdbjMOsGR/b9zg1iukXjx+ZohLGZeKN9U 8RU4tJwzezBx7+jQND4iQJzEMUtMm7y4JyX3p7YsWQTg/aA1rCtTVGZnQ40PvcKX Q/nUKiuQ2voomI1+GhiT/tHJ7A1zZUhE8NluydmIS24dNn6k0Zm4a4TfYPVUja/z Dz2vqPzfUDzFfyJxZM7OL8o8vJJSGbtTFHQsEQDtJDCOJ4dv4tkJrkFoMI5PJkYX W8sig0PBK7bQzbjm4OqEgrA9HAqM/s/rpE2cYIGzQWE8GBZAc4MJkkdWQmgtXrx8 2PYjNBNyUZuMijKrWLJTwWS2kQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIg5L0Kk TOrdjdDaomFv6Ldweru3MB8GA1UdIwQYMBaAFBRfv57jFzfpHDzUhOwBauPI84A8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTc4RC82N0I0NDgyOEZC NjYxMUVDQUJBMTAxNEZDNEY5QUUwMi9GRi1fbnVNWE4ta2NQTlNFN0FGcTQ4anpn RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZGLV9udU1YTi1rY1BOU0U3QUZxNDhqemdEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjk3OEQvNjdCNDQ4MjhGQjY2MTFFQ0FCQTEwMTRGQzRGOUFFMDIvRDVENjRCQjBG QjY4MTFFQzg2M0I4MTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn4GgwDwQCAAIwCQMHACABDfDtQDANBgkqhkiG9w0BAQsF AAOCAQEAFoljjlBlxeTLpdtoKB1sIgmmdZ0W3+stFlrQ82kWDFxi2nG0tVGufpRb FQyp95y8plwjuV06YdVbtsU3i74JSDL/66L4o6X8ORqeC/HVoe5wz6zc0SBpH8Ip QrZC4qfGlkj6TQvXdXK1vtqEtHzGWeUI6C3BKFs1n8qcKewe7zch+BX4C3SsCQyr KWbDEPLyWTGLtUGWUd5Hx9dBCLLSOv73GUAkzJjUXOsFe0HQjaBW8dpojMMH0WNP PRnLshOlvY3QPKHdXjd6BQQr4rZf3b0nrY/MuLyAwWGDEZjJkdhQWV8FmtnOEq1Y WPz7qA/GCu/PJ34nRl1p17y5SiCTmQ== -----END CERTIFICATE-----Generated at Sat Apr 26 12:32:05 2025 by rpki-client