$ rpki-client -vvf rpki.apnic.net/member_repository/A91E90DD/6D87ED024DE411ECA317915DC4F9AE02/7112985C4DE711EC92010E61C4F9AE02.roa File: 7112985C4DE711EC92010E61C4F9AE02.roa (raw, json) Hash identifier: +fO5Boo5Ka6tNlBReSpJLtITheTtisuQT78+GLLRRv8= Subject key identifier: 01:9D:E3:7E:B0:5B:CB:D5:08:6A:4A:2D:CA:A1:1E:E8:F7:2D:EF:A3 Certificate issuer: /CN=A91E90DD/serialNumber=1AB89EF5B28EC82D6AE210FC29BDE8A71756B1B0 Certificate serial: 0412 Authority key identifier: 1A:B8:9E:F5:B2:8E:C8:2D:6A:E2:10:FC:29:BD:E8:A7:17:56:B1:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Grie9bKOyC1q4hD8Kb3opxdWsbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E90DD/6D87ED024DE411ECA317915DC4F9AE02/7112985C4DE711EC92010E61C4F9AE02.roa Signing time: Thu 19 Dec 2024 00:33:26 +0000 ROA not before: Thu 19 Dec 2024 00:33:26 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 137078 IP address blocks: 103.175.130.0/23 maxlen: 23 103.175.130.0/24 maxlen: 24 103.175.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E90DD/6D87ED024DE411ECA317915DC4F9AE02/Grie9bKOyC1q4hD8Kb3opxdWsbA.crl rsync://rpki.apnic.net/member_repository/A91E90DD/6D87ED024DE411ECA317915DC4F9AE02/Grie9bKOyC1q4hD8Kb3opxdWsbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Grie9bKOyC1q4hD8Kb3opxdWsbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:58:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1042 (0x412) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E90DD, serialNumber=1AB89EF5B28EC82D6AE210FC29BDE8A71756B1B0 Validity Not Before: Dec 19 00:33:26 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=676369d6-5307 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:bf:76:fe:55:df:e5:52:fd:3b:6e:26:aa:60: 2b:30:d7:c6:7a:9d:0b:3c:3b:05:f5:33:04:e6:00: 3f:61:61:e5:26:9d:39:91:f1:5f:b8:af:f6:7d:7a: 40:1f:b4:94:ed:2b:32:2e:5e:e1:73:ee:dd:54:1d: f9:ed:84:18:fc:09:d6:ff:60:15:ef:e2:08:15:43: 67:aa:ef:cc:08:6a:b2:14:92:d5:74:15:70:e4:f4: 76:34:a2:35:8d:d2:b1:ad:79:55:e8:32:5b:72:08: e8:b8:91:ad:69:2c:cd:d1:31:b1:cb:e9:22:5b:73: 47:a6:c7:ba:fd:76:58:c0:7a:71:9e:37:d3:74:ee: af:03:8b:92:02:1b:17:d4:b8:44:1b:2b:32:7e:81: 63:2c:d8:a0:76:93:04:73:94:ef:96:71:d9:8a:d3: ee:d6:c7:e3:ad:d5:d8:da:81:81:4e:78:9f:1f:f6: bc:5b:89:68:04:ea:ac:ca:22:9e:3f:4e:d6:b9:8a: 62:c0:ac:ff:8e:41:01:ef:41:71:dc:63:c0:62:28: 95:96:da:f8:68:59:32:e1:6c:3b:ec:fc:30:f2:a8: ab:88:6f:06:77:08:f1:51:17:f9:b4:f4:a3:6f:a2: 3c:69:2a:fd:b1:4c:68:dc:d6:eb:67:f0:b3:dd:b0: 0b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:9D:E3:7E:B0:5B:CB:D5:08:6A:4A:2D:CA:A1:1E:E8:F7:2D:EF:A3 X509v3 Authority Key Identifier: keyid:1A:B8:9E:F5:B2:8E:C8:2D:6A:E2:10:FC:29:BD:E8:A7:17:56:B1:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E90DD/6D87ED024DE411ECA317915DC4F9AE02/Grie9bKOyC1q4hD8Kb3opxdWsbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Grie9bKOyC1q4hD8Kb3opxdWsbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E90DD/6D87ED024DE411ECA317915DC4F9AE02/7112985C4DE711EC92010E61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.130.0/23 Signature Algorithm: sha256WithRSAEncryption a4:fe:d0:df:7f:58:c0:e1:30:eb:40:c1:71:ee:20:8c:fd:cf: dc:0d:49:cc:fc:09:48:37:51:dd:8e:60:f9:a3:4f:67:9d:75: 04:1e:45:87:02:4b:b9:29:2a:77:32:fd:20:e0:be:90:05:58: ea:f2:c7:6f:67:06:8f:63:48:92:90:06:c2:5a:99:9b:0e:c7: dc:b0:15:b6:72:68:3e:71:ad:cb:a8:34:c7:48:6d:ed:8c:2c: c4:7d:97:91:ea:d9:07:50:cf:5c:0f:22:80:8b:63:3a:ac:51: 86:f1:dd:d6:20:55:ef:55:3b:7b:3c:2e:d8:2a:13:4b:11:ab: d2:10:13:45:b2:26:b1:1d:79:c1:9b:dc:4c:65:ab:5b:5c:25: 5a:f3:b5:bd:52:26:df:b9:99:6d:68:cb:6c:9d:53:c0:26:3f: c8:1d:0a:49:58:6b:8a:92:ee:9b:75:64:a4:73:af:9c:11:70: 18:7d:54:5e:dd:91:4d:fc:f8:a2:a3:8c:a4:43:70:5f:99:48: 9d:b5:e8:63:e5:65:58:c2:52:97:01:4b:7e:a4:6c:0c:79:1d: 88:86:3f:4a:80:2b:14:1c:ea:ad:e5:a8:df:dd:be:88:98:99: 77:df:f1:36:f8:0d:93:fb:f8:fe:e7:01:ca:94:63:05:4d:43: e5:4f:5c:31 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTkwREQxMTAvBgNVBAUTKDFBQjg5RUY1QjI4RUM4MkQ2QUUyMTBGQzI5QkRFOEE3 MTc1NkIxQjAwHhcNMjQxMjE5MDAzMzI2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYzNjlkNi01MzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzr92/lXf5VL9O24mqmArMNfGep0LPDsF9TME5gA/YWHlJp05kfFfuK/2fXpA H7SU7SsyLl7hc+7dVB357YQY/AnW/2AV7+IIFUNnqu/MCGqyFJLVdBVw5PR2NKI1 jdKxrXlV6DJbcgjouJGtaSzN0TGxy+kiW3NHpse6/XZYwHpxnjfTdO6vA4uSAhsX 1LhEGysyfoFjLNigdpMEc5TvlnHZitPu1sfjrdXY2oGBTnifH/a8W4loBOqsyiKe P07WuYpiwKz/jkEB70Fx3GPAYiiVltr4aFky4Ww77Pww8qiriG8GdwjxURf5tPSj b6I8aSr9sUxo3NbrZ/Cz3bAL1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFAGd436w W8vVCGpKLcqhHuj3Le+jMB8GA1UdIwQYMBaAFBq4nvWyjsgtauIQ/Cm96KcXVrGw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTBERC82RDg3RUQwMjRE RTQxMUVDQTMxNzkxNURDNEY5QUUwMi9HcmllOWJLT3lDMXE0aEQ4S2Izb3B4ZFdz YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dyaWU5YktPeUMxcTRoRDhLYjNvcHhkV3NiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTkwREQvNkQ4N0VEMDI0REU0MTFFQ0EzMTc5MTVEQzRGOUFFMDIvNzExMjk4NUM0 REU3MTFFQzkyMDEwRTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnr4IwDQYJKoZIhvcNAQELBQADggEBAKT+0N9/WMDhMOtA wXHuIIz9z9wNScz8CUg3Ud2OYPmjT2eddQQeRYcCS7kpKncy/SDgvpAFWOryx29n Bo9jSJKQBsJamZsOx9ywFbZyaD5xrcuoNMdIbe2MLMR9l5Hq2QdQz1wPIoCLYzqs UYbx3dYgVe9VO3s8LtgqE0sRq9IQE0WyJrEdecGb3Exlq1tcJVrztb1SJt+5mW1o y2ydU8AmP8gdCklYa4qS7pt1ZKRzr5wRcBh9VF7dkU38+KKjjKRDcF+ZSJ216GPl ZVjCUpcBS36kbAx5HYiGP0qAKxQc6q3lqN/dvoiYmXff8Tb4DZP7+P7nAcqUYwVN Q+VPXDE= -----END CERTIFICATE-----Generated at Sat Apr 26 12:36:46 2025 by rpki-client