$ rpki-client -vvf rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/0EE376F8BF7111EEA53E4981C4F9AE02.roa File: 0EE376F8BF7111EEA53E4981C4F9AE02.roa (raw, json) Hash identifier: KHuTzz/kFiU3cRoYtOMYxj6wU6aR+DEFWLsHndFiGX4= Subject key identifier: DB:70:52:05:BC:25:E9:38:F3:74:59:38:ED:F9:5C:B7:89:D6:96:AA Certificate issuer: /CN=A91187FD/serialNumber=68852AB7F2714FCF54D75F0AAE3068ADC38B35CC Certificate serial: 013C Authority key identifier: 68:85:2A:B7:F2:71:4F:CF:54:D7:5F:0A:AE:30:68:AD:C3:8B:35:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIUqt_JxT89U118KrjBorcOLNcw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/0EE376F8BF7111EEA53E4981C4F9AE02.roa Signing time: Fri 23 Aug 2024 05:07:26 +0000 ROA not before: Fri 23 Aug 2024 05:07:26 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 9928 IP address blocks: 103.115.3.0/24 maxlen: 24 2401:3fa0::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/aIUqt_JxT89U118KrjBorcOLNcw.crl rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/aIUqt_JxT89U118KrjBorcOLNcw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIUqt_JxT89U118KrjBorcOLNcw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 03:06:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 316 (0x13c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91187FD Validity Not Before: Aug 23 05:07:26 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66c8190e-ce7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:00:85:1d:67:3b:0a:40:9c:b0:1d:e5:b9:23: a3:26:49:79:94:53:f7:3c:3c:36:1d:2c:49:1b:b5: 70:5c:67:55:6b:e4:03:7c:e9:4d:8c:33:ad:0c:c9: 7c:cc:a2:5a:40:2d:ec:93:b3:38:c6:7f:b5:54:bc: 1a:0c:2a:ac:40:88:79:db:53:df:41:3e:47:07:8c: be:c6:bc:5f:ab:44:cc:7a:19:aa:25:48:82:59:28: e9:25:ef:59:6d:86:a1:66:09:4c:b7:7e:d3:a4:da: 54:15:27:7e:7b:83:7b:b4:51:db:9e:55:a1:a7:4b: 4e:32:fc:af:7a:ec:4c:f2:c8:e4:31:19:df:fa:03: d4:20:2f:92:84:1e:46:b0:6b:eb:7c:5c:4b:4f:6c: a5:98:48:18:2f:9d:e0:0a:74:3d:ca:37:2e:0e:a4: 74:94:0c:0b:cf:9f:5d:9b:75:b5:6e:b3:6a:f3:11: 97:26:16:8e:98:25:33:81:e3:1a:0b:1b:76:79:dc: 17:36:a1:6d:79:6c:1d:b5:36:f9:57:b0:36:1b:9a: 88:bd:a5:14:c7:3b:4d:2c:36:06:16:a6:50:17:f5: 8f:37:10:5d:10:52:9a:bf:08:cc:4d:dd:91:55:4f: 9a:3d:65:59:25:ee:9a:b0:22:a1:e4:a9:4f:fa:cc: 30:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:70:52:05:BC:25:E9:38:F3:74:59:38:ED:F9:5C:B7:89:D6:96:AA X509v3 Authority Key Identifier: keyid:68:85:2A:B7:F2:71:4F:CF:54:D7:5F:0A:AE:30:68:AD:C3:8B:35:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/aIUqt_JxT89U118KrjBorcOLNcw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIUqt_JxT89U118KrjBorcOLNcw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91187FD/55ED6A1610A011EE93493C52C4F9AE02/0EE376F8BF7111EEA53E4981C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.3.0/24 IPv6: 2401:3fa0::/64 Signature Algorithm: sha256WithRSAEncryption 85:83:59:f9:a5:55:51:2a:16:0a:81:76:cf:56:64:c1:49:7b: 7f:df:4e:11:eb:f6:db:55:47:3c:07:9c:9c:2e:ef:02:d7:fe: 98:84:be:66:38:bc:07:a7:d2:1c:52:f0:07:00:e9:4e:5c:f2: 58:1f:ba:39:d9:18:d3:28:7b:78:a3:b3:b6:c1:c4:a5:b7:f9: c6:07:30:3b:4d:19:60:65:88:fa:bf:6b:0c:6c:4a:eb:f2:7c: 01:48:cc:3d:34:2b:a3:0d:5d:3a:fb:bd:5a:b9:7c:0b:9d:f2: b3:bb:e9:5a:2b:9c:0a:cb:30:d2:43:11:b6:48:03:3e:b9:06: 26:aa:73:b8:73:bf:98:da:d4:dc:ab:9a:44:79:f0:d7:31:fe: fb:49:56:7d:74:1e:70:0c:4d:08:2f:97:85:39:8d:79:ee:9f: c5:4d:81:4b:23:d3:06:da:ea:ec:f2:4e:be:54:0b:41:36:7f: 06:52:d3:a6:1f:64:5c:b5:51:d3:8b:1b:3b:88:da:23:23:4e: ca:e6:37:fc:97:48:46:04:a5:be:92:a7:21:94:2b:cc:c9:d7: 81:e5:5c:46:cc:9e:f6:c4:dc:23:77:b2:cc:22:2a:d5:01:1b: fb:7b:a2:ef:a7:36:7c:ab:bc:c6:a5:81:bf:f9:41:1e:6c:e2: 50:cf:36:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg3RkQxMTAvBgNVBAUTKDY4ODUyQUI3RjI3MTRGQ0Y1NEQ3NUYwQUFFMzA2OEFE QzM4QjM1Q0MwHhcNMjQwODIzMDUwNzI2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM4MTkwZS1jZTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsACFHWc7CkCcsB3luSOjJkl5lFP3PDw2HSxJG7VwXGdVa+QDfOlNjDOtDMl8 zKJaQC3sk7M4xn+1VLwaDCqsQIh521PfQT5HB4y+xrxfq0TMehmqJUiCWSjpJe9Z bYahZglMt37TpNpUFSd+e4N7tFHbnlWhp0tOMvyveuxM8sjkMRnf+gPUIC+ShB5G sGvrfFxLT2ylmEgYL53gCnQ9yjcuDqR0lAwLz59dm3W1brNq8xGXJhaOmCUzgeMa Cxt2edwXNqFteWwdtTb5V7A2G5qIvaUUxztNLDYGFqZQF/WPNxBdEFKavwjMTd2R VU+aPWVZJe6asCKh5KlP+sww8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNtwUgW8 Jek483RZOO35XLeJ1paqMB8GA1UdIwQYMBaAFGiFKrfycU/PVNdfCq4waK3DizXM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODdGRC81NUVENkExNjEw QTAxMUVFOTM0OTNDNTJDNEY5QUUwMi9hSVVxdF9KeFQ4OVUxMThLcmpCb3JjT0xO Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJVXF0X0p4VDg5VTExOEtyakJvcmNPTE5jdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg3RkQvNTVFRDZBMTYxMEEwMTFFRTkzNDkzQzUyQzRGOUFFMDIvMEVFMzc2RjhC RjcxMTFFRUE1M0U0OTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMgYIKwYBBQUHAQcBAf8E IzAhMAwEAgABMAYDBABncwMwEQQCAAIwCwMJACQBP6AAAAAAMA0GCSqGSIb3DQEB CwUAA4IBAQCFg1n5pVVRKhYKgXbPVmTBSXt/304R6/bbVUc8B5ycLu8C1/6YhL5m OLwHp9IcUvAHAOlOXPJYH7o52RjTKHt4o7O2wcSlt/nGBzA7TRlgZYj6v2sMbErr 8nwBSMw9NCujDV06+71auXwLnfKzu+laK5wKyzDSQxG2SAM+uQYmqnO4c7+Y2tTc q5pEefDXMf77SVZ9dB5wDE0IL5eFOY157p/FTYFLI9MG2urs8k6+VAtBNn8GUtOm H2RctVHTixs7iNojI07K5jf8l0hGBKW+kqchlCvMydeB5VxGzJ72xNwjd7LMIirV ARv7e6LvpzZ8q7zGpYG/+UEebOJQzzai -----END CERTIFICATE-----Generated at Tue Apr 8 07:54:17 2025 by rpki-client