$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/5DA849821C1211EA819EA46EC4F9AE02.roa File: 5DA849821C1211EA819EA46EC4F9AE02.roa (raw, json) Hash identifier: uC/ySBud8URGaJBRTy6y4ruA2gtaltNx8FUR5phArUQ= Subject key identifier: B2:18:AE:6D:AB:FF:3C:0E:ED:6F:2C:36:42:AA:A9:B3:E2:DC:70:0E Certificate issuer: /CN=A91BC966/serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Certificate serial: 0BB8 Authority key identifier: B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/5DA849821C1211EA819EA46EC4F9AE02.roa Signing time: Tue 26 Nov 2024 18:57:35 +0000 ROA not before: Tue 26 Nov 2024 18:57:35 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 138546 IP address blocks: 43.243.96.0/22 maxlen: 24 103.38.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3000 (0xbb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC966, serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Validity Not Before: Nov 26 18:57:35 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67461a1f-ff24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5f:a8:ad:75:b5:e2:f0:71:fc:3c:1d:87:ac: 3d:8c:a9:28:e7:46:be:09:6b:48:e9:0b:93:51:ad: 62:ed:a8:2d:16:b4:e9:33:8b:40:1c:06:0e:3b:75: ec:ed:74:02:6c:b1:a8:d0:37:bc:57:6c:9f:a5:f3: 06:d7:e3:aa:4a:d6:e1:81:aa:02:bd:fe:22:ed:6e: 09:d0:bf:f0:aa:d9:ff:d4:bd:67:22:34:5e:07:50: 98:70:53:cc:21:a2:83:7b:ac:f7:be:6d:a9:d8:5b: a6:29:a2:84:bf:23:db:ca:c6:94:53:6d:4c:04:e0: 00:c9:05:e6:f9:95:74:b0:97:3b:27:f9:b0:2d:ca: a9:39:6f:60:42:23:92:0b:5c:a4:8d:ed:d8:24:e5: 40:22:58:97:fa:73:5f:75:bb:e2:45:b5:f1:a0:69: 4d:d5:cb:85:91:8f:e0:f8:c0:14:3d:2d:fc:99:b4: 81:01:f7:30:f2:4d:f9:24:38:99:db:41:62:c6:32: 95:0a:9a:9d:71:a7:d7:aa:0a:2a:c5:fb:90:6d:cd: 4c:33:58:c0:80:dc:2b:62:4f:01:8e:3a:d4:4c:aa: 0d:31:ce:18:f1:d9:48:a0:a0:a9:1a:a0:10:99:f9: c2:99:61:f8:32:d4:3a:cb:9d:29:40:ff:9d:c4:84: 7f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:18:AE:6D:AB:FF:3C:0E:ED:6F:2C:36:42:AA:A9:B3:E2:DC:70:0E X509v3 Authority Key Identifier: keyid:B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/5DA849821C1211EA819EA46EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.96.0/22 103.38.196.0/22 Signature Algorithm: sha256WithRSAEncryption 91:6f:3e:21:cb:30:22:c9:c2:39:83:93:8d:34:4f:36:75:63: 92:ed:2c:2d:30:db:12:78:b7:2e:94:f8:91:ab:ff:c5:77:00: 33:89:72:5b:c5:6c:99:b9:0c:aa:8b:07:b3:3f:0b:8c:0b:bd: 3e:3a:47:d1:42:84:16:17:e7:a7:fd:47:9c:90:38:5f:16:6b: 2d:9a:f6:c7:e4:3e:fc:c1:fa:47:6a:ec:9a:17:49:9f:1d:49: 2b:5b:6f:5a:62:c2:cd:42:07:19:3f:09:3e:7b:1f:04:24:db: a2:cb:a5:03:8c:bf:8c:e5:59:c0:94:a4:6a:ed:fb:ca:f5:d6: 65:5e:96:98:25:00:54:de:de:41:c8:08:0e:0c:14:4f:f6:05: 67:8e:31:59:4a:68:45:0b:f4:f5:b9:f0:3a:f7:8c:4f:97:03: e9:6f:95:7c:1e:e6:a0:37:23:bc:8c:c3:68:0f:52:11:34:5e: 26:a1:db:37:2f:3b:84:5c:ce:bc:3b:f4:a2:65:ae:4d:2d:12: e4:4d:57:79:ff:1a:33:5e:87:d9:48:c1:57:cc:52:8d:57:49: 01:16:12:69:13:79:90:f7:65:81:94:2b:9c:e2:17:46:18:2b: 09:de:05:05:ce:1b:16:a1:0f:73:89:34:cf:9b:dc:71:3d:90: af:b6:8b:83 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICC7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM5NjYxMTAvBgNVBAUTKEIyQTI1RERFMUE5RUM5MUI1OTk4NkE1MzJGNzg4MzU0 MzYxODMyNDgwHhcNMjQxMTI2MTg1NzM1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ2MWExZi1mZjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvV+orXW14vBx/Dwdh6w9jKko50a+CWtI6QuTUa1i7agtFrTpM4tAHAYOO3Xs 7XQCbLGo0De8V2yfpfMG1+OqStbhgaoCvf4i7W4J0L/wqtn/1L1nIjReB1CYcFPM IaKDe6z3vm2p2FumKaKEvyPbysaUU21MBOAAyQXm+ZV0sJc7J/mwLcqpOW9gQiOS C1ykje3YJOVAIliX+nNfdbviRbXxoGlN1cuFkY/g+MAUPS38mbSBAfcw8k35JDiZ 20FixjKVCpqdcafXqgoqxfuQbc1MM1jAgNwrYk8BjjrUTKoNMc4Y8dlIoKCpGqAQ mfnCmWH4MtQ6y50pQP+dxIR/VQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLIYrm2r /zwO7W8sNkKqqbPi3HAOMB8GA1UdIwQYMBaAFLKiXd4anskbWZhqUy94g1Q2GDJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzk2Ni9BMTk1MkJBMjFD MTExMUVBQjZDM0M3NkRDNEY5QUUwMi9zcUpkM2hxZXlSdFptR3BUTDNpRFZEWVlN a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxSmQzaHFleVJ0Wm1HcFRMM2lEVkRZWU1rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM5NjYvQTE5NTJCQTIxQzExMTFFQUI2QzNDNzZEQzRGOUFFMDIvNURBODQ5ODIx QzEyMTFFQTgxOUVBNDZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr82ADBAJnJsQwDQYJKoZIhvcNAQELBQADggEBAJFvPiHL MCLJwjmDk400TzZ1Y5LtLC0w2xJ4ty6U+JGr/8V3ADOJclvFbJm5DKqLB7M/C4wL vT46R9FChBYX56f9R5yQOF8Way2a9sfkPvzB+kdq7JoXSZ8dSStbb1piws1CBxk/ CT57HwQk26LLpQOMv4zlWcCUpGrt+8r11mVelpglAFTe3kHICA4MFE/2BWeOMVlK aEUL9PW58Dr3jE+XA+lvlXwe5qA3I7yMw2gPUhE0Xiah2zcvO4Rczrw79KJlrk0t EuRNV3n/GjNeh9lIwVfMUo1XSQEWEmkTeZD3ZYGUK5ziF0YYKwneBQXOGxahD3OJ NM+b3HE9kK+2i4M= -----END CERTIFICATE-----Generated at Sat Apr 26 13:49:30 2025 by rpki-client