$ rpki-client -vvf rpki.apnic.net/member_repository/A91203DF/927397B4CA3411E996837E56C4F9AE02/8EB36E60E6FE11EE90BD3C1FC4F9AE02.roa File: 8EB36E60E6FE11EE90BD3C1FC4F9AE02.roa (raw, json) Hash identifier: JtyRZnFwPCNWdefnQqVRxz9abXZRf2IOClL/TIIj6MY= Subject key identifier: 11:24:DD:C7:74:D4:00:BF:CF:86:0A:3F:12:CE:C5:D4:80:02:43:D0 Certificate issuer: /CN=A91203DF/serialNumber=56790B8C9507D9D4F3900950D329E275747767AC Certificate serial: 0D36 Authority key identifier: 56:79:0B:8C:95:07:D9:D4:F3:90:09:50:D3:29:E2:75:74:77:67:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VnkLjJUH2dTzkAlQ0ynidXR3Z6w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91203DF/927397B4CA3411E996837E56C4F9AE02/8EB36E60E6FE11EE90BD3C1FC4F9AE02.roa Signing time: Mon 16 Dec 2024 17:55:46 +0000 ROA not before: Mon 16 Dec 2024 17:55:46 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 138397 IP address blocks: 103.124.110.0/23 maxlen: 23 103.124.111.0/24 maxlen: 24 2001:df1:d1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91203DF/927397B4CA3411E996837E56C4F9AE02/VnkLjJUH2dTzkAlQ0ynidXR3Z6w.crl rsync://rpki.apnic.net/member_repository/A91203DF/927397B4CA3411E996837E56C4F9AE02/VnkLjJUH2dTzkAlQ0ynidXR3Z6w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VnkLjJUH2dTzkAlQ0ynidXR3Z6w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 17:53:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3382 (0xd36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91203DF, serialNumber=56790B8C9507D9D4F3900950D329E275747767AC Validity Not Before: Dec 16 17:55:46 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=676069a2-5281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:fb:01:7e:d2:2c:21:35:d4:dd:b6:8f:0f:51: 21:b4:42:93:6f:ac:d6:2f:f3:da:b0:42:75:26:0d: 24:58:78:af:83:f8:59:92:09:a7:fb:da:8d:cc:c0: 48:1c:1d:2f:af:f9:4d:4c:e7:b8:ee:6a:cc:30:e6: da:3c:00:5f:7c:ff:a5:9a:0e:7c:fb:b4:59:e4:a4: 1c:b9:70:d8:f7:aa:47:d1:8d:b1:f2:52:56:95:f8: 44:df:07:f2:95:a1:f9:26:e4:55:b4:a8:33:72:d1: 1e:fc:e9:bd:01:52:da:c6:63:b6:e9:69:ad:8a:ff: c1:c6:2d:51:a8:2f:7f:f9:1e:79:42:5d:f9:a4:fe: ed:52:82:d7:d4:cc:ca:a2:dd:e5:f8:69:a1:96:c7: bd:1c:9f:38:32:e7:bf:55:de:9f:cb:83:a4:2c:49: e3:3e:c9:2e:e2:e5:c6:10:a3:b8:4d:97:73:46:a2: ef:77:f1:25:19:6f:c0:4a:af:ac:86:12:90:e6:f7: 5c:e1:cf:0c:f8:29:40:71:2a:94:fc:2d:cd:c5:e1: 75:31:ae:26:52:17:98:00:dd:13:b8:65:8f:b0:2d: 17:1e:fd:7c:61:59:e0:ee:d2:10:84:a4:d2:f4:bb: 87:a1:17:6d:a2:30:9f:05:2e:d0:d7:c4:45:f5:38: 8f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:24:DD:C7:74:D4:00:BF:CF:86:0A:3F:12:CE:C5:D4:80:02:43:D0 X509v3 Authority Key Identifier: keyid:56:79:0B:8C:95:07:D9:D4:F3:90:09:50:D3:29:E2:75:74:77:67:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91203DF/927397B4CA3411E996837E56C4F9AE02/VnkLjJUH2dTzkAlQ0ynidXR3Z6w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VnkLjJUH2dTzkAlQ0ynidXR3Z6w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91203DF/927397B4CA3411E996837E56C4F9AE02/8EB36E60E6FE11EE90BD3C1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.110.0/23 IPv6: 2001:df1:d1c0::/48 Signature Algorithm: sha256WithRSAEncryption ac:2c:a2:05:29:5b:d6:1f:d7:98:42:2d:59:de:c5:60:6c:a1: 85:15:5b:fd:27:b3:54:9e:c8:d2:fd:90:96:b5:a3:c2:6a:84: dc:80:e3:81:28:92:cf:17:2e:12:e1:39:0f:f0:82:8c:68:e3: 11:12:70:78:b4:61:f9:a3:ae:d9:fc:7a:46:5b:de:ae:ad:8a: 0f:01:16:a3:23:5c:be:ad:7d:21:f2:b4:9e:69:c7:36:63:b1: b0:3e:44:4e:ff:17:09:96:94:8d:76:d9:f4:74:07:9c:08:f0: 42:41:7d:b7:c6:9e:f2:ab:44:95:83:f3:54:64:15:af:80:46: 0e:f5:1e:5a:b7:32:8d:fa:7e:70:57:ea:81:c3:87:49:ad:93: 19:ab:bb:ef:34:e2:20:78:81:af:8c:8b:a3:6b:61:5e:a3:40: ce:57:bd:fd:83:4d:ac:98:2f:d3:b7:14:2e:dc:b7:16:96:a9: 47:a0:33:99:32:89:fb:7f:1f:0a:8b:07:e8:e5:8d:d3:e1:01: f4:59:12:f8:3c:36:aa:d4:6e:d6:45:e1:ea:6b:11:8b:d2:1b: 4e:f4:6f:6a:78:14:d1:9c:2f:f2:f5:43:6b:e8:7c:7d:61:87: 99:31:0e:3b:c9:5c:f0:53:4c:bc:5e:da:c0:1c:31:ab:66:dc: 58:a0:02:55 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDTYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAzREYxMTAvBgNVBAUTKDU2NzkwQjhDOTUwN0Q5RDRGMzkwMDk1MEQzMjlFMjc1 NzQ3NzY3QUMwHhcNMjQxMjE2MTc1NTQ2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYwNjlhMi01MjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfsBftIsITXU3baPD1EhtEKTb6zWL/PasEJ1Jg0kWHivg/hZkgmn+9qNzMBI HB0vr/lNTOe47mrMMObaPABffP+lmg58+7RZ5KQcuXDY96pH0Y2x8lJWlfhE3wfy laH5JuRVtKgzctEe/Om9AVLaxmO26Wmtiv/Bxi1RqC9/+R55Ql35pP7tUoLX1MzK ot3l+Gmhlse9HJ84Mue/Vd6fy4OkLEnjPsku4uXGEKO4TZdzRqLvd/ElGW/ASq+s hhKQ5vdc4c8M+ClAcSqU/C3NxeF1Ma4mUheYAN0TuGWPsC0XHv18YVng7tIQhKTS 9LuHoRdtojCfBS7Q18RF9TiPSwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBEk3cd0 1AC/z4YKPxLOxdSAAkPQMB8GA1UdIwQYMBaAFFZ5C4yVB9nU85AJUNMp4nV0d2es MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDNERi85MjczOTdCNENB MzQxMUU5OTY4MzdFNTZDNEY5QUUwMi9WbmtMakpVSDJkVHprQWxRMHluaWRYUjNa NncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Zua0xqSlVIMmRUemtBbFEweW5pZFhSM1o2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjAzREYvOTI3Mzk3QjRDQTM0MTFFOTk2ODM3RTU2QzRGOUFFMDIvOEVCMzZFNjBF NkZFMTFFRTkwQkQzQzFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnfG4wDwQCAAIwCQMHACABDfHRwDANBgkqhkiG9w0BAQsF AAOCAQEArCyiBSlb1h/XmEItWd7FYGyhhRVb/SezVJ7I0v2QlrWjwmqE3IDjgSiS zxcuEuE5D/CCjGjjERJweLRh+aOu2fx6Rlverq2KDwEWoyNcvq19IfK0nmnHNmOx sD5ETv8XCZaUjXbZ9HQHnAjwQkF9t8ae8qtElYPzVGQVr4BGDvUeWrcyjfp+cFfq gcOHSa2TGau77zTiIHiBr4yLo2thXqNAzle9/YNNrJgv07cULty3FpapR6AzmTKJ +38fCosH6OWN0+EB9FkS+Dw2qtRu1kXh6msRi9IbTvRvangU0Zwv8vVDa+h8fWGH mTEOO8lc8FNMvF7awBwxq2bcWKACVQ== -----END CERTIFICATE-----Generated at Sun Apr 13 02:29:27 2025 by rpki-client