$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/D5C4A54A617B11EC82058668C4F9AE02.roa File: D5C4A54A617B11EC82058668C4F9AE02.roa (raw, json) Hash identifier: lRFgE9XZ6iDD+G2GlIBwvnuaHaRG9VvqEjSSiJJQVDA= Subject key identifier: 0D:FE:88:F6:85:BE:CF:37:E4:E3:F3:F8:C5:6F:90:4D:AC:41:23:67 Certificate issuer: /CN=A91DBB7D/serialNumber=DFBF5F830B50B3BFC1E5350B9C605BB756122E11 Certificate serial: 046C Authority key identifier: DF:BF:5F:83:0B:50:B3:BF:C1:E5:35:0B:9C:60:5B:B7:56:12:2E:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/D5C4A54A617B11EC82058668C4F9AE02.roa Signing time: Sun 08 Dec 2024 23:17:07 +0000 ROA not before: Sun 08 Dec 2024 23:17:07 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 147061 IP address blocks: 103.173.235.0/24 maxlen: 24 103.198.0.0/24 maxlen: 24 2001:df7:ae80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.crl rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:41:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1132 (0x46c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBB7D, serialNumber=DFBF5F830B50B3BFC1E5350B9C605BB756122E11 Validity Not Before: Dec 8 23:17:07 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=675628f3-5d52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:94:ec:7e:94:84:89:48:2d:d3:bc:ba:c8:87: e4:0e:4f:45:cd:13:b4:d4:a0:55:7c:2a:c3:59:46: 68:68:d2:aa:20:ba:aa:44:1b:93:34:01:33:25:fc: be:69:59:69:8a:7c:0f:44:c4:63:73:37:6f:d3:69: ce:42:30:84:d5:bc:1e:66:4a:0b:bb:80:40:94:b9: 5e:fc:a9:79:1d:97:84:e3:67:1c:6c:2d:da:0b:e5: 17:b7:a6:74:d3:53:b9:da:7d:72:cc:9a:a6:bd:15: 5d:64:03:b3:a1:71:84:0c:9a:e9:62:32:ce:dc:da: 1a:1d:10:b2:e4:82:a6:49:ed:56:cd:3d:ce:b7:76: 8f:49:13:90:77:98:fc:47:ab:05:b0:fc:0d:5e:75: 4b:25:5b:58:10:4b:1f:c5:4a:cc:3c:02:dd:a2:7e: 37:f1:da:ab:de:e8:1c:c6:d9:5a:88:e9:6e:9e:d1: b5:ac:d5:d9:31:5b:63:e4:d0:fc:dd:11:07:66:75: 53:81:c4:57:7f:58:72:58:d3:ed:50:0b:b1:85:3f: a0:a4:ce:f6:9c:40:1a:43:c0:2d:ff:2f:da:52:95: 74:aa:2e:f6:40:83:33:9e:9b:66:d7:ef:a6:e0:ae: a4:21:0d:af:7c:18:03:3a:ea:45:f0:b5:60:46:07: 84:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:FE:88:F6:85:BE:CF:37:E4:E3:F3:F8:C5:6F:90:4D:AC:41:23:67 X509v3 Authority Key Identifier: keyid:DF:BF:5F:83:0B:50:B3:BF:C1:E5:35:0B:9C:60:5B:B7:56:12:2E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/D5C4A54A617B11EC82058668C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.235.0/24 103.198.0.0/24 IPv6: 2001:df7:ae80::/48 Signature Algorithm: sha256WithRSAEncryption 26:1e:1a:ab:39:d2:cd:00:4b:73:41:cf:93:58:20:b2:fc:6e: eb:1f:c7:9a:cb:07:a4:23:8e:28:1a:58:fc:7c:62:2b:f5:ef: 5a:ab:37:ce:e7:72:b5:52:b3:2b:3a:4c:7c:43:9b:3c:c9:33: 89:7c:b2:55:54:f0:17:97:8c:78:1c:1d:9a:f2:35:da:ee:ee: 49:1b:4f:c7:87:82:37:55:30:9c:05:ec:96:5a:46:08:2e:24: 44:60:83:51:82:11:98:43:c8:cd:07:dc:f3:11:bc:73:0d:17: b2:4c:a6:d6:52:4c:ae:19:e4:37:94:25:10:15:60:f5:21:13: 11:6a:f2:1b:7e:ce:7a:58:d0:40:30:0c:e4:33:8e:76:39:e1: 99:f1:2e:3e:28:06:4f:4c:cc:aa:7d:84:82:17:f6:9d:8e:49: 57:96:6d:a0:55:be:04:c0:09:7c:4c:39:d8:12:d8:4a:0a:2c: ba:2c:88:d2:a6:43:22:7d:6d:b2:0f:ce:21:41:a6:69:17:97: 32:5c:43:3b:29:03:b4:4c:e4:8f:8a:f0:23:53:3b:87:4f:60: 2e:95:b7:93:70:48:eb:3d:68:7c:72:a9:77:15:ed:7f:75:d2: db:93:92:f1:e5:e4:29:f7:72:14:f1:e4:05:23:1f:7f:e5:30: 6e:2f:66:0e -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBGwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJCN0QxMTAvBgNVBAUTKERGQkY1RjgzMEI1MEIzQkZDMUU1MzUwQjlDNjA1QkI3 NTYxMjJFMTEwHhcNMjQxMjA4MjMxNzA3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU2MjhmMy01ZDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJTsfpSEiUgt07y6yIfkDk9FzRO01KBVfCrDWUZoaNKqILqqRBuTNAEzJfy+ aVlpinwPRMRjczdv02nOQjCE1bweZkoLu4BAlLle/Kl5HZeE42ccbC3aC+UXt6Z0 01O52n1yzJqmvRVdZAOzoXGEDJrpYjLO3NoaHRCy5IKmSe1WzT3Ot3aPSROQd5j8 R6sFsPwNXnVLJVtYEEsfxUrMPALdon438dqr3ugcxtlaiOluntG1rNXZMVtj5ND8 3REHZnVTgcRXf1hyWNPtUAuxhT+gpM72nEAaQ8At/y/aUpV0qi72QIMznptm1++m 4K6kIQ2vfBgDOupF8LVgRgeEPwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFA3+iPaF vs835OPz+MVvkE2sQSNnMB8GA1UdIwQYMBaAFN+/X4MLULO/weU1C5xgW7dWEi4R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkI3RC8zMDE3MDk2RTJC QjkxMUVDQjJCMzY3NEZDNEY5QUUwMi8zNzlmZ3d0UXM3X0I1VFVMbkdCYnQxWVNM aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM3OWZnd3RRczdfQjVUVUxuR0JidDFZU0xoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REJCN0QvMzAxNzA5NkUyQkI5MTFFQ0IyQjM2NzRGQzRGOUFFMDIvRDVDNEE1NEE2 MTdCMTFFQzgyMDU4NjY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnresDBABnxgAwDwQCAAIwCQMHACABDfeugDANBgkqhkiG 9w0BAQsFAAOCAQEAJh4aqznSzQBLc0HPk1ggsvxu6x/HmssHpCOOKBpY/HxiK/Xv Wqs3zudytVKzKzpMfEObPMkziXyyVVTwF5eMeBwdmvI12u7uSRtPx4eCN1UwnAXs llpGCC4kRGCDUYIRmEPIzQfc8xG8cw0Xskym1lJMrhnkN5QlEBVg9SETEWryG37O eljQQDAM5DOOdjnhmfEuPigGT0zMqn2Eghf2nY5JV5ZtoFW+BMAJfEw52BLYSgos uiyI0qZDIn1tsg/OIUGmaReXMlxDOykDtEzkj4rwI1M7h09gLpW3k3BI6z1ofHKp dxXtf3XS25OS8eXkKfdyFPHkBSMff+Uwbi9mDg== -----END CERTIFICATE-----Generated at Sat Apr 26 13:57:17 2025 by rpki-client