$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83B3/A3D3D8228A0D11EAA5059714C4F9AE02/B01A5D448A0E11EAA8C40916C4F9AE02.roa File: B01A5D448A0E11EAA8C40916C4F9AE02.roa (raw, json) Hash identifier: 5OuJk3wuVixq/unKPrRmS/rEXR6rqWNJ7lk0q2nqJD4= Subject key identifier: 3E:0C:77:84:23:49:25:F5:F5:42:A0:C7:66:EC:81:DD:BF:33:A4:07 Certificate issuer: /CN=A91D83B3/serialNumber=5E057446C4961E4D26C37FFEA8AC3F7AADD83B32 Certificate serial: 093F Authority key identifier: 5E:05:74:46:C4:96:1E:4D:26:C3:7F:FE:A8:AC:3F:7A:AD:D8:3B:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XgV0RsSWHk0mw3_-qKw_eq3YOzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83B3/A3D3D8228A0D11EAA5059714C4F9AE02/B01A5D448A0E11EAA8C40916C4F9AE02.roa Signing time: Sat 30 Nov 2024 20:09:59 +0000 ROA not before: Sat 30 Nov 2024 20:09:59 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 58895 IP address blocks: 103.129.140.0/22 maxlen: 22 103.129.140.0/24 maxlen: 24 103.129.141.0/24 maxlen: 24 103.129.142.0/24 maxlen: 24 103.129.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83B3/A3D3D8228A0D11EAA5059714C4F9AE02/XgV0RsSWHk0mw3_-qKw_eq3YOzI.crl rsync://rpki.apnic.net/member_repository/A91D83B3/A3D3D8228A0D11EAA5059714C4F9AE02/XgV0RsSWHk0mw3_-qKw_eq3YOzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XgV0RsSWHk0mw3_-qKw_eq3YOzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:00:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2367 (0x93f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83B3, serialNumber=5E057446C4961E4D26C37FFEA8AC3F7AADD83B32 Validity Not Before: Nov 30 20:09:59 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=674b7116-9379 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:30:e8:78:48:76:21:44:80:0c:a9:a7:5a:7e: 32:d6:4c:4c:3c:44:79:a7:45:3a:45:cf:50:be:42: 91:78:5b:0c:e7:e7:72:a1:aa:79:50:df:2b:d7:b6: 85:61:db:02:8a:dd:4a:61:08:8a:df:ab:63:cf:30: aa:d9:70:c4:ef:17:20:56:f3:49:72:05:be:f4:24: 62:e4:3d:7b:a7:0e:bf:61:e4:34:3e:94:dc:85:90: d8:eb:0c:31:f6:7a:58:20:e5:4e:13:0b:68:bc:a4: 5f:ad:3e:8a:6a:65:67:a3:f8:82:10:9d:13:c6:3f: 31:54:d7:79:c1:51:82:32:15:e7:fc:7c:13:0d:d5: 2a:a5:fd:b5:b8:0f:5c:76:1d:e0:f2:2b:f8:a8:b6: ca:6c:ce:f5:2e:73:15:4e:96:c4:c2:f9:d5:b4:35: b3:eb:cf:68:7b:65:83:ed:38:96:f4:dc:ca:36:71: 6b:27:ed:ee:36:ba:84:4c:e8:ae:ae:79:e9:7c:02: b3:34:25:c1:22:d7:94:00:65:85:a6:69:e1:86:8a: a6:f1:cd:f8:ca:c0:b3:77:c1:3c:29:c6:7c:9e:04: 5f:d3:7e:94:d7:33:94:6a:75:81:df:d2:1a:ef:3a: e0:ef:af:f3:76:aa:7c:d3:05:8e:8c:9d:e9:78:9f: 77:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:0C:77:84:23:49:25:F5:F5:42:A0:C7:66:EC:81:DD:BF:33:A4:07 X509v3 Authority Key Identifier: keyid:5E:05:74:46:C4:96:1E:4D:26:C3:7F:FE:A8:AC:3F:7A:AD:D8:3B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83B3/A3D3D8228A0D11EAA5059714C4F9AE02/XgV0RsSWHk0mw3_-qKw_eq3YOzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XgV0RsSWHk0mw3_-qKw_eq3YOzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83B3/A3D3D8228A0D11EAA5059714C4F9AE02/B01A5D448A0E11EAA8C40916C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.140.0/22 Signature Algorithm: sha256WithRSAEncryption 4a:e7:b9:c7:05:9f:2b:cb:88:30:a3:54:53:43:25:20:35:ef: ae:29:b7:2e:1f:d6:15:f7:91:a5:8f:7b:7e:87:54:0f:f8:ab: 63:70:19:b2:f9:da:fc:f7:e2:5b:80:b9:37:7b:e8:7c:c6:72: a7:52:0f:80:48:42:f9:5f:96:46:34:2d:3c:18:de:1b:bd:99: ff:61:4e:f5:bb:fc:67:0c:88:61:2f:fe:41:05:77:ae:43:45: a0:45:c4:3d:12:a3:e6:e7:82:f8:4d:cb:e1:9e:3a:1a:e0:29: 8d:90:18:74:d1:ce:67:66:b6:aa:62:78:d3:64:45:db:1d:32: 77:b2:3f:66:5c:56:50:46:1c:7b:5c:ad:66:ae:11:7c:51:f1: 1a:7c:09:b1:86:e5:36:90:94:56:e6:62:c5:c1:ec:9a:a4:8d: 2c:13:0b:83:ce:55:d7:42:a8:5f:57:57:5f:4b:2f:f2:c5:7d: 8a:d3:bb:61:3d:e2:5f:50:d5:05:b9:71:eb:66:88:04:4a:04: 42:66:6f:fb:e8:78:e2:66:d4:58:69:79:55:ae:96:a7:50:22: 16:79:e4:b6:6b:26:4e:24:31:75:a4:0e:68:47:8b:8d:c3:21: 87:4b:c7:42:f8:af:2e:f9:31:bc:bb:39:6e:a9:25:7d:aa:82: b8:e6:56:29 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzQjMxMTAvBgNVBAUTKDVFMDU3NDQ2QzQ5NjFFNEQyNkMzN0ZGRUE4QUMzRjdB QUREODNCMzIwHhcNMjQxMTMwMjAwOTU5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRiNzExNi05Mzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujDoeEh2IUSADKmnWn4y1kxMPER5p0U6Rc9QvkKReFsM5+dyoap5UN8r17aF YdsCit1KYQiK36tjzzCq2XDE7xcgVvNJcgW+9CRi5D17pw6/YeQ0PpTchZDY6wwx 9npYIOVOEwtovKRfrT6KamVno/iCEJ0Txj8xVNd5wVGCMhXn/HwTDdUqpf21uA9c dh3g8iv4qLbKbM71LnMVTpbEwvnVtDWz689oe2WD7TiW9NzKNnFrJ+3uNrqETOiu rnnpfAKzNCXBIteUAGWFpmnhhoqm8c34ysCzd8E8KcZ8ngRf036U1zOUanWB39Ia 7zrg76/zdqp80wWOjJ3peJ93pwIDAQABo4IClTCCApEwHQYDVR0OBBYEFD4Md4Qj SSX19UKgx2bsgd2/M6QHMB8GA1UdIwQYMBaAFF4FdEbElh5NJsN//qisP3qt2Dsy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNCMy9BM0QzRDgyMjhB MEQxMUVBQTUwNTk3MTRDNEY5QUUwMi9YZ1YwUnNTV0hrMG13M18tcUt3X2VxM1lP ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hnVjBSc1NXSGswbXczXy1xS3dfZXEzWU96SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgzQjMvQTNEM0Q4MjI4QTBEMTFFQUE1MDU5NzE0QzRGOUFFMDIvQjAxQTVENDQ4 QTBFMTFFQUE4QzQwOTE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJngYwwDQYJKoZIhvcNAQELBQADggEBAErnuccFnyvLiDCj VFNDJSA1764pty4f1hX3kaWPe36HVA/4q2NwGbL52vz34luAuTd76HzGcqdSD4BI QvlflkY0LTwY3hu9mf9hTvW7/GcMiGEv/kEFd65DRaBFxD0So+bngvhNy+GeOhrg KY2QGHTRzmdmtqpieNNkRdsdMneyP2ZcVlBGHHtcrWauEXxR8Rp8CbGG5TaQlFbm YsXB7JqkjSwTC4POVddCqF9XV19LL/LFfYrTu2E94l9Q1QW5cetmiARKBEJmb/vo eOJm1FhpeVWulqdQIhZ55LZrJk4kMXWkDmhHi43DIYdLx0L4ry75Mby7OW6pJX2q grjmVik= -----END CERTIFICATE-----Generated at Sat Apr 26 07:53:15 2025 by rpki-client