$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/B84B847AEF3911EBACC9E938C4F9AE02.roa File: B84B847AEF3911EBACC9E938C4F9AE02.roa (raw, json) Hash identifier: bEuAdA3yRgHUx1B8M9eSaNpdhvP9aDsmMm6seL8p7oY= Subject key identifier: E7:E9:B9:23:2E:53:B7:C5:3C:FF:D1:AF:CB:EF:D4:97:52:C4:0B:D3 Certificate issuer: /CN=A91D3ED4/serialNumber=C2C3BA882EC3DCFC27F13CE87225607DAAA1784D Certificate serial: 04CB Authority key identifier: C2:C3:BA:88:2E:C3:DC:FC:27:F1:3C:E8:72:25:60:7D:AA:A1:78:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsO6iC7D3Pwn8TzociVgfaqheE0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/B84B847AEF3911EBACC9E938C4F9AE02.roa Signing time: Tue 27 Aug 2024 00:34:12 +0000 ROA not before: Tue 27 Aug 2024 00:34:12 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 132849 IP address blocks: 103.170.102.0/23 maxlen: 23 103.170.102.0/24 maxlen: 24 103.170.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.crl rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsO6iC7D3Pwn8TzociVgfaqheE0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:14:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1227 (0x4cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3ED4, serialNumber=C2C3BA882EC3DCFC27F13CE87225607DAAA1784D Validity Not Before: Aug 27 00:34:12 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66cd1f04-edcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:55:0b:f3:ec:f4:6d:36:4e:2e:33:83:b8:ff: 91:57:65:e7:d4:76:17:f1:cb:29:3f:62:b7:e1:f6: c6:d2:c4:a9:ae:8f:95:0c:ae:35:aa:5a:9b:00:51: ca:81:ef:a4:05:7d:91:75:ac:bd:af:fe:57:71:49: 4c:3a:36:36:72:e5:f9:2c:5d:86:83:c6:e1:a5:c5: c8:16:9a:4b:c6:54:21:a5:e2:0e:1e:2f:f2:66:66: ab:ac:87:94:f7:e0:24:c2:4f:a5:2c:7d:19:e1:b5: 2f:85:ca:74:b0:49:cc:39:d5:8c:eb:c6:a1:d7:66: 0e:09:75:06:1c:ca:1a:19:1a:f8:00:8f:e2:fa:ff: dc:b0:d2:c5:c3:f8:c0:f8:03:26:51:21:c7:13:a8: 11:45:fc:fd:18:32:ce:51:04:03:4d:77:0c:87:f1: 02:bb:ca:b1:1f:99:b9:8c:6d:0b:2e:85:21:b8:51: ab:a4:ec:8e:33:09:a8:c1:5c:cd:5a:12:7c:6e:10: 90:30:97:7c:1c:43:d6:5c:38:62:6c:af:d9:8d:d5: 33:be:47:50:aa:24:0a:a8:2d:89:a3:15:14:dc:c7: 2b:e7:68:4b:05:c9:ab:a4:b1:45:97:09:d8:43:35: ff:51:5d:b2:aa:57:a6:98:09:e3:56:e4:76:7e:6d: a5:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:E9:B9:23:2E:53:B7:C5:3C:FF:D1:AF:CB:EF:D4:97:52:C4:0B:D3 X509v3 Authority Key Identifier: keyid:C2:C3:BA:88:2E:C3:DC:FC:27:F1:3C:E8:72:25:60:7D:AA:A1:78:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/wsO6iC7D3Pwn8TzociVgfaqheE0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wsO6iC7D3Pwn8TzociVgfaqheE0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3ED4/29078A72EF3711EB91768A36C4F9AE02/B84B847AEF3911EBACC9E938C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.102.0/23 Signature Algorithm: sha256WithRSAEncryption b8:b2:fb:87:9c:ca:ea:1f:9e:45:63:5b:d5:c4:66:c1:a2:7a: d6:6a:1f:79:d2:52:a1:db:06:1c:f6:83:fa:c7:35:7d:f0:77: ec:a8:62:3d:ae:bd:64:b6:1a:86:42:fc:9d:ac:5b:b2:4e:41: ee:3f:d7:31:3f:a7:e9:76:fe:ad:5e:a1:82:ae:b9:de:d2:df: 76:9d:eb:9a:27:3e:ec:60:36:17:96:18:76:e7:dc:08:de:07: 23:14:37:75:f8:69:2b:c6:36:93:6f:86:a3:03:0a:d1:ce:a7: 13:89:4b:66:bf:0c:30:65:15:71:0e:38:30:91:3f:ec:5f:a0: 12:5c:63:19:0c:02:c2:bb:8e:e1:33:04:7c:9f:df:30:e8:25: 58:af:b4:c5:2b:81:90:00:c9:8c:39:88:cc:83:e5:e8:8e:c0: cd:14:21:11:04:19:75:e7:1c:c1:4f:4d:57:4c:33:66:06:c9: 44:e2:f4:42:d5:c9:e0:eb:a4:10:a3:59:ea:a9:19:1d:2d:dc: a6:7e:94:22:b3:83:db:ed:dd:54:12:4f:18:4f:9c:17:a7:6e: e4:a9:5b:a9:d5:b7:98:3d:0e:36:92:11:0f:3b:32:9d:b3:a9: a4:52:5e:62:f5:94:71:46:a1:47:f2:14:7b:69:2c:b2:36:5c: 7f:f7:0a:3b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDNFRDQxMTAvBgNVBAUTKEMyQzNCQTg4MkVDM0RDRkMyN0YxM0NFODcyMjU2MDdE QUFBMTc4NEQwHhcNMjQwODI3MDAzNDEyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNkMWYwNC1lZGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApVUL8+z0bTZOLjODuP+RV2Xn1HYX8cspP2K34fbG0sSpro+VDK41qlqbAFHK ge+kBX2Rday9r/5XcUlMOjY2cuX5LF2Gg8bhpcXIFppLxlQhpeIOHi/yZmarrIeU 9+Akwk+lLH0Z4bUvhcp0sEnMOdWM68ah12YOCXUGHMoaGRr4AI/i+v/csNLFw/jA +AMmUSHHE6gRRfz9GDLOUQQDTXcMh/ECu8qxH5m5jG0LLoUhuFGrpOyOMwmowVzN WhJ8bhCQMJd8HEPWXDhibK/ZjdUzvkdQqiQKqC2JoxUU3Mcr52hLBcmrpLFFlwnY QzX/UV2yqlemmAnjVuR2fm2lmwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOfpuSMu U7fFPP/Rr8vv1JdSxAvTMB8GA1UdIwQYMBaAFMLDuoguw9z8J/E86HIlYH2qoXhN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEM0VENC8yOTA3OEE3MkVG MzcxMUVCOTE3NjhBMzZDNEY5QUUwMi93c082aUM3RDNQd244VHpvY2lWZ2ZhcWhl RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dzTzZpQzdEM1B3bjhUem9jaVZnZmFxaGVFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDNFRDQvMjkwNzhBNzJFRjM3MTFFQjkxNzY4QTM2QzRGOUFFMDIvQjg0Qjg0N0FF RjM5MTFFQkFDQzlFOTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqmYwDQYJKoZIhvcNAQELBQADggEBALiy+4ecyuofnkVj W9XEZsGietZqH3nSUqHbBhz2g/rHNX3wd+yoYj2uvWS2GoZC/J2sW7JOQe4/1zE/ p+l2/q1eoYKuud7S33ad65onPuxgNheWGHbn3AjeByMUN3X4aSvGNpNvhqMDCtHO pxOJS2a/DDBlFXEOODCRP+xfoBJcYxkMAsK7juEzBHyf3zDoJVivtMUrgZAAyYw5 iMyD5eiOwM0UIREEGXXnHMFPTVdMM2YGyUTi9ELVyeDrpBCjWeqpGR0t3KZ+lCKz g9vt3VQSTxhPnBenbuSpW6nVt5g9DjaSEQ87Mp2zqaRSXmL1lHFGoUfyFHtpLLI2 XH/3Cjs= -----END CERTIFICATE-----Generated at Sat Apr 26 15:22:19 2025 by rpki-client