$ rpki-client -vvf rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/5D4B0B5E153611ECA897546BC4F9AE02.roa File: 5D4B0B5E153611ECA897546BC4F9AE02.roa (raw, json) Hash identifier: fYltceYUoBqgTTGDszHZ6k9POl5N1iPgLRw9G0J0Rws= Subject key identifier: 13:2B:F1:00:93:2A:F1:93:5A:FA:75:AF:9F:2F:21:7E:BB:89:A6:89 Certificate issuer: /CN=A91124CC/serialNumber=39BB0BFF14FB6B4B5F86137274D42513F3753A47 Certificate serial: 04C8 Authority key identifier: 39:BB:0B:FF:14:FB:6B:4B:5F:86:13:72:74:D4:25:13:F3:75:3A:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ObsL_xT7a0tfhhNydNQlE_N1Okc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/5D4B0B5E153611ECA897546BC4F9AE02.roa Signing time: Mon 03 Mar 2025 13:44:44 +0000 ROA not before: Mon 03 Mar 2025 13:44:44 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 140927 IP address blocks: 103.152.216.0/23 maxlen: 23 103.152.216.0/24 maxlen: 24 103.152.217.0/24 maxlen: 24 2001:df4:4680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.crl rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ObsL_xT7a0tfhhNydNQlE_N1Okc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1224 (0x4c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91124CC Validity Not Before: Mar 3 13:44:44 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67c5b24c-3c22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:1a:ad:58:50:12:11:f7:79:2b:65:60:fe:fc: 54:42:2f:70:fa:b6:19:ba:70:52:db:21:09:25:07: 45:71:48:60:e6:9b:68:b7:60:4f:8b:26:e9:23:2c: f5:4a:6d:f0:49:fe:ae:9f:56:f1:f2:1f:96:a0:4a: a2:26:79:41:8e:1a:bf:cc:f0:b8:d4:a5:93:87:0a: dc:76:7a:e3:b4:04:c5:01:ae:7c:95:9e:50:fe:7a: d7:13:05:74:4d:7d:0d:7b:23:3b:f3:7a:57:d0:48: fc:78:71:be:70:d0:d2:9e:99:ac:4f:9f:9d:9e:2b: 43:55:ae:c3:db:39:da:3a:29:3b:76:e0:25:8e:26: a5:e1:0d:84:32:28:66:99:10:ba:24:2d:f4:08:e3: 04:5f:9c:92:c6:aa:c5:74:30:ec:fc:44:29:4e:00: c6:69:0c:92:d6:14:e1:f1:c6:4b:28:1a:03:5d:ee: 3a:62:b6:0e:75:73:be:86:74:a1:f6:9e:c3:e1:77: 14:e2:0f:c9:ce:9e:d8:f1:2e:ae:08:9b:3e:88:a9: 09:f7:7a:6d:da:cd:51:0c:8f:ab:f1:30:17:75:e1: 3e:04:34:0c:c5:7d:fb:ec:30:ee:7f:83:6b:3e:a5: 4a:92:7f:ce:30:ab:7a:65:bc:c0:01:38:53:00:8d: eb:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:2B:F1:00:93:2A:F1:93:5A:FA:75:AF:9F:2F:21:7E:BB:89:A6:89 X509v3 Authority Key Identifier: keyid:39:BB:0B:FF:14:FB:6B:4B:5F:86:13:72:74:D4:25:13:F3:75:3A:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/ObsL_xT7a0tfhhNydNQlE_N1Okc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ObsL_xT7a0tfhhNydNQlE_N1Okc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91124CC/F89C3EB6153111ECB594FB7DC4F9AE02/5D4B0B5E153611ECA897546BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.216.0/23 IPv6: 2001:df4:4680::/48 Signature Algorithm: sha256WithRSAEncryption 91:0f:da:45:e1:e2:f4:8c:8c:eb:81:d4:f7:23:bd:65:45:69: 2d:bc:c2:9a:e1:09:10:3d:df:9d:bd:2b:30:f1:45:a3:f8:f2: 28:a3:f6:7e:9b:e8:64:85:f8:54:2b:e6:8f:6d:b6:67:39:78: c9:79:86:fa:bf:72:25:04:01:a6:2b:b5:d8:20:bb:75:1d:f4: f0:49:a6:2c:f5:aa:00:20:d1:eb:f2:64:14:01:20:68:df:81: bd:97:b8:8d:c0:2a:de:8a:4d:2c:fb:41:f6:6f:1e:7d:da:65: 52:08:5e:51:d8:45:98:d5:4d:70:f4:a3:09:e2:fb:bf:54:36: 38:41:c5:8d:ca:15:58:1e:6b:71:c0:35:bd:34:ea:b9:f6:b1: e7:01:26:7e:e9:da:1a:8f:98:fc:ed:e9:a6:7e:26:ed:22:f8: 5d:15:b8:a9:d0:d0:20:6e:53:fb:75:9d:09:12:6a:af:39:ec: 79:6c:95:26:74:58:0a:b8:32:ed:cb:14:3a:e7:6e:c0:b2:3c: 7e:73:f2:c0:75:c6:c4:25:d8:ad:83:2d:35:fc:0f:02:65:e4: ce:a5:90:36:ec:a9:28:37:ff:31:34:48:14:bb:12:c1:cc:7e: 52:1d:10:97:0d:d5:b6:b2:e0:10:62:59:a1:dd:dc:77:44:7f: 4d:07:9f:97 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI0Q0MxMTAvBgNVBAUTKDM5QkIwQkZGMTRGQjZCNEI1Rjg2MTM3Mjc0RDQyNTEz RjM3NTNBNDcwHhcNMjUwMzAzMTM0NDQ0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M1YjI0Yy0zYzIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphqtWFASEfd5K2Vg/vxUQi9w+rYZunBS2yEJJQdFcUhg5ptot2BPiybpIyz1 Sm3wSf6un1bx8h+WoEqiJnlBjhq/zPC41KWThwrcdnrjtATFAa58lZ5Q/nrXEwV0 TX0NeyM783pX0Ej8eHG+cNDSnpmsT5+dnitDVa7D2znaOik7duAljial4Q2EMihm mRC6JC30COMEX5ySxqrFdDDs/EQpTgDGaQyS1hTh8cZLKBoDXe46YrYOdXO+hnSh 9p7D4XcU4g/Jzp7Y8S6uCJs+iKkJ93pt2s1RDI+r8TAXdeE+BDQMxX377DDuf4Nr PqVKkn/OMKt6ZbzAAThTAI3rDQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBMr8QCT KvGTWvp1r58vIX67iaaJMB8GA1UdIwQYMBaAFDm7C/8U+2tLX4YTcnTUJRPzdTpH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjRDQy9GODlDM0VCNjE1 MzExMUVDQjU5NEZCN0RDNEY5QUUwMi9PYnNMX3hUN2EwdGZoaE55ZE5RbEVfTjFP a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09ic0xfeFQ3YTB0ZmhoTnlkTlFsRV9OMU9rYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI0Q0MvRjg5QzNFQjYxNTMxMTFFQ0I1OTRGQjdEQzRGOUFFMDIvNUQ0QjBCNUUx NTM2MTFFQ0E4OTc1NDZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnmNgwDwQCAAIwCQMHACABDfRGgDANBgkqhkiG9w0BAQsF AAOCAQEAkQ/aReHi9IyM64HU9yO9ZUVpLbzCmuEJED3fnb0rMPFFo/jyKKP2fpvo ZIX4VCvmj222Zzl4yXmG+r9yJQQBpiu12CC7dR308EmmLPWqACDR6/JkFAEgaN+B vZe4jcAq3opNLPtB9m8efdplUgheUdhFmNVNcPSjCeL7v1Q2OEHFjcoVWB5rccA1 vTTqufax5wEmfunaGo+Y/O3ppn4m7SL4XRW4qdDQIG5T+3WdCRJqrznseWyVJnRY Crgy7csUOuduwLI8fnPywHXGxCXYrYMtNfwPAmXkzqWQNuypKDf/MTRIFLsSwcx+ Uh0Qlw3VtrLgEGJZod3cd0R/TQeflw== -----END CERTIFICATE-----Generated at Sun Apr 6 04:37:27 2025 by rpki-client