$ rpki-client -vvf rpki.apnic.net/member_repository/A91164FE/B826CA8076BF11EEB14F2D72C4F9AE02/63EC7E9476C211EE9FDED166C4F9AE02.roa File: 63EC7E9476C211EE9FDED166C4F9AE02.roa (raw, json) Hash identifier: VIpTaiDF//T8jK4C9n6iwAX2TMSKtXEtM34C7KtsS6o= Subject key identifier: BC:ED:C4:B1:3A:25:80:54:8E:C6:27:55:26:2C:6A:A7:60:1D:17:A0 Certificate issuer: /CN=A91164FE/serialNumber=E6F086C05C5E04DD96AE0E5FC9039791A37560FE Certificate serial: D7 Authority key identifier: E6:F0:86:C0:5C:5E:04:DD:96:AE:0E:5F:C9:03:97:91:A3:75:60:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vCGwFxeBN2Wrg5fyQOXkaN1YP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91164FE/B826CA8076BF11EEB14F2D72C4F9AE02/63EC7E9476C211EE9FDED166C4F9AE02.roa Signing time: Fri 13 Dec 2024 04:08:36 +0000 ROA not before: Fri 13 Dec 2024 04:08:36 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 7387 IP address blocks: 103.255.192.0/23 maxlen: 24 2001:df3:12c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91164FE/B826CA8076BF11EEB14F2D72C4F9AE02/5vCGwFxeBN2Wrg5fyQOXkaN1YP4.crl rsync://rpki.apnic.net/member_repository/A91164FE/B826CA8076BF11EEB14F2D72C4F9AE02/5vCGwFxeBN2Wrg5fyQOXkaN1YP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vCGwFxeBN2Wrg5fyQOXkaN1YP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 03:51:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91164FE Validity Not Before: Dec 13 04:08:36 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=675bb343-3d86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4a:36:a1:ae:84:88:ac:8f:25:41:64:8b:13: d7:c4:60:ef:af:f5:02:99:b3:89:7a:f8:e3:e6:22: e4:04:39:0c:ba:e4:8a:c5:e6:a8:a6:5b:21:ea:de: b6:34:82:b9:ed:36:1e:63:6b:3b:a6:7e:02:cc:7f: c3:95:5c:ec:1a:08:8e:d4:ab:40:64:37:bd:62:8c: e0:b3:39:0e:bd:6d:f6:d1:12:f2:e5:6e:2e:f4:68: 72:fb:82:31:43:4d:8a:2c:cd:c6:fc:77:f2:2e:b2: 03:a8:fc:f5:aa:79:d5:1d:55:bd:bc:6e:c7:68:4e: 5b:c2:70:c9:80:84:7e:b0:18:a9:97:c2:a6:7d:ef: 6e:17:71:86:a9:bd:21:b7:53:ed:3c:e3:d2:0f:a3: da:ac:6c:c6:45:3b:ae:5e:a9:8c:7e:74:7d:c2:77: c8:f8:f7:7e:b5:b5:dc:36:6d:8e:bf:f7:60:88:bc: ae:0f:03:fa:67:c9:25:39:13:95:53:cf:17:26:2c: 30:95:05:57:3e:da:d9:30:26:a2:13:28:f1:d0:35: 38:7e:9c:5b:3d:d7:ba:1a:25:92:32:e9:03:4d:8c: 61:e6:35:f5:76:84:56:8a:fe:e1:4c:d7:6c:db:de: 3b:88:18:c8:7a:02:9c:e9:4c:d6:83:55:6c:7b:55: a2:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:ED:C4:B1:3A:25:80:54:8E:C6:27:55:26:2C:6A:A7:60:1D:17:A0 X509v3 Authority Key Identifier: keyid:E6:F0:86:C0:5C:5E:04:DD:96:AE:0E:5F:C9:03:97:91:A3:75:60:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91164FE/B826CA8076BF11EEB14F2D72C4F9AE02/5vCGwFxeBN2Wrg5fyQOXkaN1YP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vCGwFxeBN2Wrg5fyQOXkaN1YP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91164FE/B826CA8076BF11EEB14F2D72C4F9AE02/63EC7E9476C211EE9FDED166C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.192.0/23 IPv6: 2001:df3:12c0::/48 Signature Algorithm: sha256WithRSAEncryption 55:b8:f7:29:8f:63:10:83:b0:c3:b0:b3:55:1c:a2:fb:f7:2e: a4:41:e0:f7:d0:14:b8:20:b5:9c:8c:b2:6d:42:29:a0:d3:78: 9f:58:c6:35:dd:a9:8b:0e:8a:c8:a1:41:52:e7:ae:66:a8:8e: a2:5d:14:d0:78:b5:33:b9:69:0a:48:c3:d6:bf:07:9d:b9:b4: ff:3e:0c:e9:a3:8c:03:ec:d3:13:ed:16:2b:6d:96:f4:ab:ea: 2f:2a:5d:d3:b2:c9:aa:19:6e:39:86:9d:de:2d:85:02:3b:0c: 8c:05:ed:cb:7e:1a:93:7c:86:53:d0:38:b1:4b:74:9f:f0:5c: 91:1a:a6:35:76:99:2f:35:7a:18:7e:ac:76:1a:17:e6:5e:9c: 56:41:26:fa:4e:db:d1:00:cd:4b:70:4e:04:e5:77:a7:4e:17: 52:f6:07:7d:54:1f:a9:f7:d4:4e:db:68:92:68:23:84:63:58: 5b:b2:49:90:63:85:72:57:bb:4f:90:2a:02:9c:be:aa:b6:f4: 05:35:f2:23:ca:24:c4:76:9a:d9:55:5c:ab:3d:54:a9:89:19: 26:d0:ba:04:d2:25:c8:4c:23:3d:b0:b8:79:93:f4:27:c9:96: d2:d6:a5:f4:a8:91:b6:9d:a0:84:42:7a:47:06:e1:14:c4:80: 7d:1b:ae:15 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0RkUxMTAvBgNVBAUTKEU2RjA4NkMwNUM1RTA0REQ5NkFFMEU1RkM5MDM5Nzkx QTM3NTYwRkUwHhcNMjQxMjEzMDQwODM2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzViYjM0My0zZDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0o2oa6EiKyPJUFkixPXxGDvr/UCmbOJevjj5iLkBDkMuuSKxeaoplsh6t62 NIK57TYeY2s7pn4CzH/DlVzsGgiO1KtAZDe9YozgszkOvW320RLy5W4u9Ghy+4Ix Q02KLM3G/HfyLrIDqPz1qnnVHVW9vG7HaE5bwnDJgIR+sBipl8Kmfe9uF3GGqb0h t1PtPOPSD6ParGzGRTuuXqmMfnR9wnfI+Pd+tbXcNm2Ov/dgiLyuDwP6Z8klOROV U88XJiwwlQVXPtrZMCaiEyjx0DU4fpxbPde6GiWSMukDTYxh5jX1doRWiv7hTNds 2947iBjIegKc6UzWg1Vse1WiDwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLztxLE6 JYBUjsYnVSYsaqdgHRegMB8GA1UdIwQYMBaAFObwhsBcXgTdlq4OX8kDl5GjdWD+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjRGRS9CODI2Q0E4MDc2 QkYxMUVFQjE0RjJENzJDNEY5QUUwMi81dkNHd0Z4ZUJOMldyZzVmeVFPWGthTjFZ UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2Q0d3RnhlQk4yV3JnNWZ5UU9Ya2FOMVlQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY0RkUvQjgyNkNBODA3NkJGMTFFRUIxNEYyRDcyQzRGOUFFMDIvNjNFQzdFOTQ3 NkMyMTFFRTlGREVEMTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn/8AwDwQCAAIwCQMHACABDfMSwDANBgkqhkiG9w0BAQsF AAOCAQEAVbj3KY9jEIOww7CzVRyi+/cupEHg99AUuCC1nIyybUIpoNN4n1jGNd2p iw6KyKFBUueuZqiOol0U0Hi1M7lpCkjD1r8Hnbm0/z4M6aOMA+zTE+0WK22W9Kvq Lypd07LJqhluOYad3i2FAjsMjAXty34ak3yGU9A4sUt0n/BckRqmNXaZLzV6GH6s dhoX5l6cVkEm+k7b0QDNS3BOBOV3p04XUvYHfVQfqffUTttokmgjhGNYW7JJkGOF cle7T5AqApy+qrb0BTXyI8okxHaa2VVcqz1UqYkZJtC6BNIlyEwjPbC4eZP0J8mW 0tal9KiRtp2ghEJ6RwbhFMSAfRuuFQ== -----END CERTIFICATE-----Generated at Tue Apr 8 21:21:16 2025 by rpki-client