$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB924/FED23D821D8B11E286A2E5E608B02CD2/DF502EECD44511E984021644C4F9AE02.roa File: DF502EECD44511E984021644C4F9AE02.roa (raw, json) Hash identifier: lhTwffgGoDZ+11LSS1CyopFlM7JUjXizmn+X+Kky/Wk= Subject key identifier: 12:43:AC:E7:65:5F:FE:56:0B:BE:DA:63:EE:DB:3E:96:A0:25:79:AB Certificate issuer: /CN=A91FB924/serialNumber=B2AA3E3A5B29E0F41CDD5A617F7FB6A37A1B9011 Certificate serial: 3448 Authority key identifier: B2:AA:3E:3A:5B:29:E0:F4:1C:DD:5A:61:7F:7F:B6:A3:7A:1B:90:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqo-Olsp4PQc3Vphf3-2o3obkBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB924/FED23D821D8B11E286A2E5E608B02CD2/DF502EECD44511E984021644C4F9AE02.roa Signing time: Thu 02 Jan 2025 14:50:35 +0000 ROA not before: Thu 02 Jan 2025 14:50:35 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 56055 IP address blocks: 103.17.44.0/22 maxlen: 22 118.179.224.0/19 maxlen: 19 163.47.248.0/22 maxlen: 22 202.22.224.0/20 maxlen: 20 203.80.48.0/21 maxlen: 21 2407:4a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB924/FED23D821D8B11E286A2E5E608B02CD2/sqo-Olsp4PQc3Vphf3-2o3obkBE.crl rsync://rpki.apnic.net/member_repository/A91FB924/FED23D821D8B11E286A2E5E608B02CD2/sqo-Olsp4PQc3Vphf3-2o3obkBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqo-Olsp4PQc3Vphf3-2o3obkBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:35:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13384 (0x3448) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB924, serialNumber=B2AA3E3A5B29E0F41CDD5A617F7FB6A37A1B9011 Validity Not Before: Jan 2 14:50:35 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6776a7bb-ad08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9d:c7:76:57:5d:e2:01:55:83:18:e0:3c:92: df:d0:1a:4b:97:87:95:6f:84:65:28:74:34:19:ae: e1:ba:bd:ee:a7:e7:5a:0a:39:cb:3a:c8:a0:bc:68: a3:9a:6d:d2:6d:c7:cb:c3:84:b4:80:1c:74:c3:d3: 98:a8:38:6a:9a:1a:1b:f0:7e:ab:a8:be:5c:18:6c: 51:29:eb:1b:a2:7f:1a:15:8f:62:94:90:fe:1a:2b: ce:01:b9:02:23:18:7e:72:eb:b5:7a:20:f2:55:32: 6c:41:dd:e5:3b:5b:90:e3:25:3f:79:fe:8e:ac:5b: 72:83:b1:9a:31:35:32:ec:db:cd:81:50:e0:3f:65: 1e:1a:dd:1f:c6:2b:4b:22:97:6a:f6:42:21:f4:81: c7:65:46:7e:92:69:c2:b1:e2:a8:2a:03:27:06:63: e9:c9:72:fb:e5:2c:5d:05:1e:6c:08:ec:17:72:ba: 62:bf:c1:cc:50:6c:3c:f0:ca:4c:b9:ed:fb:0a:da: d6:b9:da:38:0f:c1:05:37:4b:92:4b:07:cc:0c:fe: 6a:fa:d3:9f:95:b8:f3:37:29:c3:7f:ba:91:2b:d1: 5a:36:5d:3e:f1:8c:de:41:af:d9:eb:fc:81:30:aa: 55:7f:96:8e:3e:88:96:d2:a9:d8:be:a2:3d:f4:0f: 10:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:43:AC:E7:65:5F:FE:56:0B:BE:DA:63:EE:DB:3E:96:A0:25:79:AB X509v3 Authority Key Identifier: keyid:B2:AA:3E:3A:5B:29:E0:F4:1C:DD:5A:61:7F:7F:B6:A3:7A:1B:90:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB924/FED23D821D8B11E286A2E5E608B02CD2/sqo-Olsp4PQc3Vphf3-2o3obkBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqo-Olsp4PQc3Vphf3-2o3obkBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB924/FED23D821D8B11E286A2E5E608B02CD2/DF502EECD44511E984021644C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.17.44.0/22 118.179.224.0/19 163.47.248.0/22 202.22.224.0/20 203.80.48.0/21 IPv6: 2407:4a00::/32 Signature Algorithm: sha256WithRSAEncryption d6:5a:80:07:5a:02:f2:88:dc:91:6a:80:fc:e3:aa:1e:07:a1: 9b:7b:9d:16:92:61:78:d8:18:6d:3e:89:d4:5c:19:24:a3:9f: 25:b6:7e:03:54:3e:10:10:48:65:2e:fc:27:b4:91:9b:3b:70: bb:22:fd:ac:3f:f1:7e:5c:00:5b:3b:e4:6e:2f:d1:b0:be:b6: 59:39:f9:9c:91:7f:8c:20:31:6c:ed:ab:61:13:a4:e2:b6:4b: 03:78:b0:49:ed:f4:76:5e:d9:0c:b4:fa:c9:2e:5d:60:a6:48: f5:23:da:44:21:04:93:2d:a7:e4:c5:7d:8f:fe:bc:1d:c5:94: 8e:bb:5b:83:31:b3:b5:e8:b2:47:eb:15:93:81:3a:bc:0b:be: 86:ba:b6:b9:33:f7:7e:55:c0:39:6a:9a:68:8c:12:60:39:5f: 6c:a5:5a:9a:bb:3c:93:f6:17:8f:36:0b:d2:b2:3d:98:42:01: b7:28:b7:9b:52:ba:9e:31:b2:4e:fc:f1:3e:f5:31:d2:e5:4f: 6a:25:1a:f3:8d:ad:41:47:87:40:73:b3:a6:48:82:31:a1:00: 02:bb:95:2c:5a:02:f4:33:1c:a7:cf:bb:13:88:02:f8:47:59: a9:62:ac:63:ea:b8:a8:5b:60:74:51:6b:e8:b6:26:6e:c6:96: 9a:11:00:87 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICNEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkI5MjQxMTAvBgNVBAUTKEIyQUEzRTNBNUIyOUUwRjQxQ0RENUE2MTdGN0ZCNkEz N0ExQjkwMTEwHhcNMjUwMTAyMTQ1MDM1WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc2YTdiYi1hZDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt53Hdldd4gFVgxjgPJLf0BpLl4eVb4RlKHQ0Ga7hur3up+daCjnLOsigvGij mm3SbcfLw4S0gBx0w9OYqDhqmhob8H6rqL5cGGxRKesbon8aFY9ilJD+GivOAbkC Ixh+cuu1eiDyVTJsQd3lO1uQ4yU/ef6OrFtyg7GaMTUy7NvNgVDgP2UeGt0fxitL Ipdq9kIh9IHHZUZ+kmnCseKoKgMnBmPpyXL75SxdBR5sCOwXcrpiv8HMUGw88MpM ue37CtrWudo4D8EFN0uSSwfMDP5q+tOflbjzNynDf7qRK9FaNl0+8YzeQa/Z6/yB MKpVf5aOPoiW0qnYvqI99A8QYQIDAQABo4ICvDCCArgwHQYDVR0OBBYEFBJDrOdl X/5WC77aY+7bPpagJXmrMB8GA1UdIwQYMBaAFLKqPjpbKeD0HN1aYX9/tqN6G5AR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjkyNC9GRUQyM0Q4MjFE OEIxMUUyODZBMkU1RTYwOEIwMkNEMi9zcW8tT2xzcDRQUWMzVnBoZjMtMm8zb2Jr QkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Nxby1PbHNwNFBRYzNWcGhmMy0ybzNvYmtCRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkI5MjQvRkVEMjNEODIxRDhCMTFFMjg2QTJFNUU2MDhCMDJDRDIvREY1MDJFRUNE NDQ1MTFFOTg0MDIxNjQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAJnESwDBAV2s+ADBAKjL/gDBATKFuADBAPLUDAwDQQCAAIw BwMFACQHSgAwDQYJKoZIhvcNAQELBQADggEBANZagAdaAvKI3JFqgPzjqh4HoZt7 nRaSYXjYGG0+idRcGSSjnyW2fgNUPhAQSGUu/Ce0kZs7cLsi/aw/8X5cAFs75G4v 0bC+tlk5+ZyRf4wgMWztq2ETpOK2SwN4sEnt9HZe2Qy0+skuXWCmSPUj2kQhBJMt p+TFfY/+vB3FlI67W4Mxs7XoskfrFZOBOrwLvoa6trkz935VwDlqmmiMEmA5X2yl Wpq7PJP2F482C9KyPZhCAbcot5tSup4xsk788T71MdLlT2olGvONrUFHh0Bzs6ZI gjGhAAK7lSxaAvQzHKfPuxOIAvhHWalirGPquKhbYHRRa+i2Jm7GlpoRAIc= -----END CERTIFICATE-----Generated at Sat Apr 26 12:22:46 2025 by rpki-client