$ rpki-client -vvf rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/551036FCF1CA11EFA1495230C4F9AE02.roa File: 551036FCF1CA11EFA1495230C4F9AE02.roa (raw, json) Hash identifier: arzezzJwAi/t7BgHje9UcAsQE7JCDVVYoepFJmOQbF8= Subject key identifier: D8:7A:ED:C4:2B:8E:E1:D7:25:B1:29:A3:3C:0F:A2:57:C1:AD:7B:FC Certificate issuer: /CN=A911ED2C/serialNumber=9D3414283B227B8F512F305F2ACDB43CDE9E4D12 Certificate serial: 011D Authority key identifier: 9D:34:14:28:3B:22:7B:8F:51:2F:30:5F:2A:CD:B4:3C:DE:9E:4D:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/551036FCF1CA11EFA1495230C4F9AE02.roa Signing time: Sun 23 Feb 2025 09:41:18 +0000 ROA not before: Sun 23 Feb 2025 09:41:18 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 40676 IP address blocks: 103.79.76.0/22 maxlen: 22 103.79.76.0/24 maxlen: 24 103.79.77.0/24 maxlen: 24 103.79.78.0/24 maxlen: 24 103.79.79.0/24 maxlen: 24 103.79.118.0/24 maxlen: 24 103.91.144.0/24 maxlen: 24 103.91.145.0/24 maxlen: 24 202.91.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.crl rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:34:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ED2C Validity Not Before: Feb 23 09:41:18 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67baed3e-13cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:17:dc:22:40:2a:b7:84:f2:fb:8e:1b:65:6a: e3:8f:c8:55:84:bc:91:0e:0b:37:40:c5:f6:ce:71: 72:2c:63:89:d9:3f:52:a4:35:56:51:6d:63:82:e4: 8f:7e:89:f6:46:06:ae:42:55:c4:f0:31:f1:e9:1c: 20:9e:c3:f5:be:97:30:50:62:12:4e:0e:ad:9e:6b: 6d:bd:a7:6b:2a:3b:b3:4b:7f:b6:cd:9e:21:52:06: 1e:19:58:28:e6:62:25:a2:c4:90:75:c6:ce:d5:c1: da:0f:ad:a2:2f:d1:1e:5d:aa:c7:9f:27:e2:f5:1e: b9:27:d4:2c:18:41:64:3a:e6:75:e2:86:ca:16:6f: 32:4a:38:b7:f5:17:56:06:ab:f9:5b:0e:d5:bf:60: 69:f1:08:f9:08:94:e6:13:86:4b:a8:a0:ba:b5:ab: 7d:fb:90:fb:01:17:17:2a:1e:f7:bf:e4:73:85:41: 5b:1c:3d:8b:9e:bc:a4:1c:de:5b:63:4f:c9:b1:f1: 4f:ae:ff:84:8d:1a:af:aa:0e:29:5b:db:c2:cd:f6: a7:b4:e5:f7:84:ec:1c:10:af:57:40:0d:e8:9d:05: 4e:a1:a4:f1:e4:f4:07:ac:a5:4b:4a:2e:1a:1d:56: aa:6b:3b:0d:4a:63:a6:cf:9a:df:36:bc:a7:d6:5b: 79:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:7A:ED:C4:2B:8E:E1:D7:25:B1:29:A3:3C:0F:A2:57:C1:AD:7B:FC X509v3 Authority Key Identifier: keyid:9D:34:14:28:3B:22:7B:8F:51:2F:30:5F:2A:CD:B4:3C:DE:9E:4D:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/551036FCF1CA11EFA1495230C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.76.0/22 103.79.118.0/24 103.91.144.0/23 202.91.32.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:8d:aa:88:21:51:cf:4d:98:5f:df:7c:a8:ce:ba:48:ba:09: c5:14:e7:aa:32:c7:c9:d0:ac:c6:fb:d7:e4:a4:26:3c:1d:69: 88:f6:eb:f4:28:92:47:c7:9b:96:06:c5:6b:cc:f3:fc:43:13: 8b:4f:34:56:3f:27:b9:18:9c:77:40:76:4a:74:d1:56:05:f9: 19:87:7d:1f:68:90:f9:31:76:5c:ca:26:fa:6d:dd:92:06:58: 27:68:e1:42:24:9d:2f:6e:0c:eb:67:ef:15:12:de:89:3c:ab: 5a:06:f8:f1:12:3c:0c:29:c1:50:d4:be:8b:32:ad:90:3e:43: 1c:3d:d4:d3:5a:13:57:c5:d5:91:8c:2a:ae:2c:97:44:de:e4: be:c8:58:df:0e:1e:98:88:12:e7:24:c7:8d:11:35:dc:e7:b3: 4f:98:9f:20:f2:3b:67:56:f5:6e:05:0a:3a:3f:9c:f7:2a:01: c5:96:1c:37:6e:0a:5f:a9:3f:bd:66:59:6e:8d:20:cb:0c:6e: cd:09:61:6f:18:18:fe:6d:b5:59:e0:56:f8:0f:55:83:4c:50: e5:f2:cd:0f:e8:50:4b:e9:be:11:f9:12:a5:56:34:0b:b2:2f: 7c:28:27:4f:e2:17:68:6d:48:2f:1c:8d:fe:11:06:c9:b2:87: f6:fc:49:07 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVEMkMxMTAvBgNVBAUTKDlEMzQxNDI4M0IyMjdCOEY1MTJGMzA1RjJBQ0RCNDND REU5RTREMTIwHhcNMjUwMjIzMDk0MTE4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JhZWQzZS0xM2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApBfcIkAqt4Ty+44bZWrjj8hVhLyRDgs3QMX2znFyLGOJ2T9SpDVWUW1jguSP fon2RgauQlXE8DHx6RwgnsP1vpcwUGISTg6tnmttvadrKjuzS3+2zZ4hUgYeGVgo 5mIlosSQdcbO1cHaD62iL9EeXarHnyfi9R65J9QsGEFkOuZ14obKFm8ySji39RdW Bqv5Ww7Vv2Bp8Qj5CJTmE4ZLqKC6tat9+5D7ARcXKh73v+RzhUFbHD2LnrykHN5b Y0/JsfFPrv+EjRqvqg4pW9vCzfantOX3hOwcEK9XQA3onQVOoaTx5PQHrKVLSi4a HVaqazsNSmOmz5rfNryn1lt51wIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFNh67cQr juHXJbEpozwPolfBrXv8MB8GA1UdIwQYMBaAFJ00FCg7InuPUS8wXyrNtDzenk0S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUQyQy8wMDM3M0M2QzlC QkMxMUVFODUxQURENTBDNEY5QUUwMi9uVFFVS0RzaWU0OVJMekJmS3MyMFBONmVU UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UUVVLRHNpZTQ5Ukx6QmZLczIwUE42ZVRSSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUVEMkMvMDAzNzNDNkM5QkJDMTFFRTg1MUFERDUwQzRGOUFFMDIvNTUxMDM2RkNG MUNBMTFFRkExNDk1MjMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAJnT0wDBABnT3YDBAFnW5ADBADKWyAwDQYJKoZIhvcNAQEL BQADggEBAE+NqoghUc9NmF/ffKjOuki6CcUU56oyx8nQrMb71+SkJjwdaYj26/Qo kkfHm5YGxWvM8/xDE4tPNFY/J7kYnHdAdkp00VYF+RmHfR9okPkxdlzKJvpt3ZIG WCdo4UIknS9uDOtn7xUS3ok8q1oG+PESPAwpwVDUvosyrZA+Qxw91NNaE1fF1ZGM Kq4sl0Te5L7IWN8OHpiIEuckx40RNdzns0+YnyDyO2dW9W4FCjo/nPcqAcWWHDdu Cl+pP71mWW6NIMsMbs0JYW8YGP5ttVngVvgPVYNMUOXyzQ/oUEvpvhH5EqVWNAuy L3woJ0/iF2htSC8cjf4RBsmyh/b8SQc= -----END CERTIFICATE-----Generated at Sat Apr 5 06:57:43 2025 by rpki-client