$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/456CD12E5F0111ECAE4F0286C4F9AE02.roa File: 456CD12E5F0111ECAE4F0286C4F9AE02.roa (raw, json) Hash identifier: Yvl58W31jTaXrFpKwLiylkuL3NEb2f8QrSD0rbbSX2w= Subject key identifier: 9E:0F:4D:30:3D:54:92:AA:E0:93:30:25:02:A3:26:34:DD:EA:02:F4 Certificate issuer: /CN=A91C7991/serialNumber=4C2699D213DD5D599B0EC0E463B9484FDB22F427 Certificate serial: 0820 Authority key identifier: 4C:26:99:D2:13:DD:5D:59:9B:0E:C0:E4:63:B9:48:4F:DB:22:F4:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/456CD12E5F0111ECAE4F0286C4F9AE02.roa Signing time: Wed 04 Dec 2024 20:49:10 +0000 ROA not before: Wed 04 Dec 2024 20:49:10 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 64053 IP address blocks: 103.198.168.0/22 maxlen: 24 2401:f1c0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:33:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2080 (0x820) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7991, serialNumber=4C2699D213DD5D599B0EC0E463B9484FDB22F427 Validity Not Before: Dec 4 20:49:10 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6750c046-0e13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:78:fb:d7:9f:93:d4:c2:aa:e3:ad:e9:af:d9: e3:ec:f9:36:fc:02:87:8e:70:e3:eb:40:e1:c1:1a: 33:68:8b:be:70:e8:06:2b:8d:46:20:cc:a6:14:b5: cd:49:38:ec:16:49:fb:e9:7a:cd:45:87:9c:c6:ee: 29:78:29:c1:76:fa:73:d9:96:22:61:44:97:59:a2: 97:64:a0:d5:df:5d:f6:31:96:16:34:4d:49:06:26: ed:69:2a:f8:9d:9a:27:95:9c:c9:0e:1a:b0:72:79: 00:5e:14:1d:df:4d:b6:fb:3b:05:af:8d:c5:91:2d: 1d:7e:f0:2f:ff:ba:dd:2e:aa:99:8f:ab:31:85:be: 82:f8:a9:76:c0:5f:5a:ba:28:2e:8f:a7:45:ef:d9: 50:cf:fa:47:19:50:2c:09:d9:a0:e9:ac:a9:e8:47: 0d:e3:02:25:3a:ac:ba:13:e1:1e:fb:51:37:28:ff: 79:ff:ef:05:7a:15:fd:5f:77:9a:11:11:0f:06:1c: 72:85:e5:04:5c:cd:a4:a6:0f:58:af:fb:25:5a:11: 2c:d2:bd:cb:7d:26:bb:fb:14:8f:bd:67:8b:0b:7e: ce:4a:68:31:42:e8:42:26:a5:65:f4:0f:2a:f7:a4: 87:ff:97:b7:9d:19:74:9a:41:0d:42:0f:cc:de:e2: bc:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:0F:4D:30:3D:54:92:AA:E0:93:30:25:02:A3:26:34:DD:EA:02:F4 X509v3 Authority Key Identifier: keyid:4C:26:99:D2:13:DD:5D:59:9B:0E:C0:E4:63:B9:48:4F:DB:22:F4:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TCaZ0hPdXVmbDsDkY7lIT9si9Cc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7991/7C7B1F66C35A11EAA8ECB67FC4F9AE02/456CD12E5F0111ECAE4F0286C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.198.168.0/22 IPv6: 2401:f1c0::/32 Signature Algorithm: sha256WithRSAEncryption 8c:f5:47:63:57:a2:86:1e:a7:8a:6c:b4:2d:8e:8b:c3:cd:21: 2f:7f:c2:1d:3a:14:86:94:6b:44:63:92:77:e5:34:cc:35:59: e2:da:62:f1:04:f7:82:de:39:75:e3:94:02:23:73:0a:7d:41: 6e:dc:7a:19:8e:a2:b7:af:1c:1a:b5:e2:be:d8:e7:cf:13:85: 01:21:44:fe:d0:41:b7:09:e9:ff:d4:f9:53:34:58:76:6f:f9: b1:74:7b:a5:e3:9d:f3:c7:e5:57:20:a4:7e:d0:a4:de:db:b7: 09:98:9e:a5:d1:b1:b0:dc:c7:90:43:4b:b4:66:b4:7e:13:7a: 4e:9b:ae:d8:20:29:6e:a4:e8:57:bd:de:b0:a0:f3:79:2d:f7: e7:ad:7f:ef:5b:1a:65:2a:79:1a:6c:43:24:51:d9:95:9d:2a: a6:d2:77:e8:f0:dc:54:96:53:bd:5e:eb:22:96:e2:1c:9f:76: 6e:0b:a7:1e:3c:ad:c9:09:54:ee:06:8b:eb:bc:cc:6b:fa:d4: 56:13:ce:1d:81:ff:f1:d1:98:27:47:41:43:83:e7:57:ae:b1: ce:8d:a1:76:1e:13:43:3f:62:a8:9c:21:e8:20:93:54:1b:8e: b5:cb:b7:d1:44:59:72:fd:fe:a2:24:50:4c:e1:44:51:ca:b1: 62:de:f0:ca -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5OTExMTAvBgNVBAUTKDRDMjY5OUQyMTNERDVENTk5QjBFQzBFNDYzQjk0ODRG REIyMkY0MjcwHhcNMjQxMjA0MjA0OTEwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUwYzA0Ni0wZTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXj715+T1MKq463pr9nj7Pk2/AKHjnDj60DhwRozaIu+cOgGK41GIMymFLXN STjsFkn76XrNRYecxu4peCnBdvpz2ZYiYUSXWaKXZKDV3132MZYWNE1JBibtaSr4 nZonlZzJDhqwcnkAXhQd3022+zsFr43FkS0dfvAv/7rdLqqZj6sxhb6C+Kl2wF9a uiguj6dF79lQz/pHGVAsCdmg6ayp6EcN4wIlOqy6E+Ee+1E3KP95/+8FehX9X3ea EREPBhxyheUEXM2kpg9Yr/slWhEs0r3LfSa7+xSPvWeLC37OSmgxQuhCJqVl9A8q 96SH/5e3nRl0mkENQg/M3uK8oQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJ4PTTA9 VJKq4JMwJQKjJjTd6gL0MB8GA1UdIwQYMBaAFEwmmdIT3V1Zmw7A5GO5SE/bIvQn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzk5MS83QzdCMUY2NkMz NUExMUVBQThFQ0I2N0ZDNEY5QUUwMi9UQ2FaMGhQZFhWbWJEc0RrWTdsSVQ5c2k5 Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RDYVowaFBkWFZtYkRzRGtZN2xJVDlzaTlDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzc5OTEvN0M3QjFGNjZDMzVBMTFFQUE4RUNCNjdGQzRGOUFFMDIvNDU2Q0QxMkU1 RjAxMTFFQ0FFNEYwMjg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnxqgwDQQCAAIwBwMFACQB8cAwDQYJKoZIhvcNAQELBQAD ggEBAIz1R2NXooYep4pstC2Oi8PNIS9/wh06FIaUa0RjknflNMw1WeLaYvEE94Le OXXjlAIjcwp9QW7cehmOorevHBq14r7Y588ThQEhRP7QQbcJ6f/U+VM0WHZv+bF0 e6XjnfPH5VcgpH7QpN7btwmYnqXRsbDcx5BDS7RmtH4Tek6brtggKW6k6Fe93rCg 83kt9+etf+9bGmUqeRpsQyRR2ZWdKqbSd+jw3FSWU71e6yKW4hyfdm4Lpx48rckJ VO4Gi+u8zGv61FYTzh2B//HRmCdHQUOD51eusc6NoXYeE0M/YqicIeggk1QbjrXL t9FEWXL9/qIkUEzhRFHKsWLe8Mo= -----END CERTIFICATE-----Generated at Sat Apr 26 06:40:16 2025 by rpki-client