$ rpki-client -vvf rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/A1D479B878D411EAA8C57711C4F9AE02.roa File: A1D479B878D411EAA8C57711C4F9AE02.roa (raw, json) Hash identifier: OYgq0o9dgNrqTYjdakq5qNzK/yt9wMabsIU2jLZbz/U= Subject key identifier: 11:51:97:32:39:7A:D6:86:F8:0F:0A:5A:19:E1:7B:18:70:B4:F0:8A Certificate issuer: /CN=A91233D4/serialNumber=2A93E1459766506195DFFC99B523362BE5AC0D6B Certificate serial: 0A1B Authority key identifier: 2A:93:E1:45:97:66:50:61:95:DF:FC:99:B5:23:36:2B:E5:AC:0D:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpPhRZdmUGGV3_yZtSM2K-WsDWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/A1D479B878D411EAA8C57711C4F9AE02.roa Signing time: Fri 14 Feb 2025 21:09:36 +0000 ROA not before: Fri 14 Feb 2025 21:09:36 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 135026 IP address blocks: 14.192.8.0/24 maxlen: 24 14.192.9.0/24 maxlen: 24 14.192.10.0/24 maxlen: 24 14.192.11.0/24 maxlen: 24 103.17.93.0/24 maxlen: 24 103.17.94.0/24 maxlen: 24 103.17.95.0/24 maxlen: 24 103.206.120.0/24 maxlen: 24 103.206.121.0/24 maxlen: 24 103.206.122.0/24 maxlen: 24 103.206.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.crl rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpPhRZdmUGGV3_yZtSM2K-WsDWs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:57:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2587 (0xa1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91233D4 Validity Not Before: Feb 14 21:09:36 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67afb110-83df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ae:0b:08:a1:53:6e:5a:cc:1b:93:3e:9c:00: c4:f4:b3:69:f5:42:f8:49:9b:2d:27:30:0d:52:32: 85:10:2f:84:31:5d:91:e0:83:3e:25:df:88:d0:51: 91:61:42:1c:30:60:31:05:b6:9a:70:24:23:a6:12: ca:02:0f:88:41:ee:8c:df:0c:24:f8:c1:d3:e8:b3: fb:ec:98:4a:0c:d6:d9:e1:c2:6f:57:7d:48:0f:bd: de:79:56:4b:b0:eb:3d:3c:64:7a:85:87:3d:f8:db: 48:bd:10:85:89:ee:30:7b:6c:d5:2e:91:7c:64:9b: c0:57:e8:29:f1:07:f2:e4:e1:0f:a4:6b:25:a8:41: 7d:b4:83:93:dc:db:2d:a9:70:d1:34:59:cd:57:e5: d2:2d:d7:55:de:64:3f:50:6e:d0:bc:ed:ee:6b:9c: cd:ba:dc:6a:69:0a:a9:bd:a5:d2:76:84:c1:58:01: 23:41:b0:99:18:ae:77:82:ae:b2:78:2d:ca:27:fe: 88:ff:35:5a:88:27:5a:82:91:9c:ef:e4:fc:ed:3d: 98:ac:a0:f8:5a:ae:7d:9b:70:26:c8:25:50:28:e9: a6:95:84:8c:19:de:fd:d2:08:8c:1d:32:17:02:d3: 92:d9:05:3f:57:96:4d:99:6c:d3:e5:3e:be:3b:11: c9:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:51:97:32:39:7A:D6:86:F8:0F:0A:5A:19:E1:7B:18:70:B4:F0:8A X509v3 Authority Key Identifier: keyid:2A:93:E1:45:97:66:50:61:95:DF:FC:99:B5:23:36:2B:E5:AC:0D:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpPhRZdmUGGV3_yZtSM2K-WsDWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/A1D479B878D411EAA8C57711C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.8.0/22 103.17.93.0-103.17.95.255 103.206.120.0/22 Signature Algorithm: sha256WithRSAEncryption 93:46:70:7a:f5:4f:69:54:94:ef:8d:74:19:0e:28:54:d0:c3: 05:ed:74:53:66:d4:7a:4f:27:af:36:4b:0f:1f:df:f9:08:3b: 1c:88:a5:44:7d:71:79:ea:29:3f:0e:98:34:89:db:3a:9a:8e: f1:4e:98:a0:54:65:9a:0d:2c:b8:41:85:99:49:41:12:a4:80: b7:e8:d7:40:75:17:3c:2b:3a:e4:55:d9:ca:4c:70:57:87:00: 4a:20:fb:53:2d:21:b3:f8:28:db:77:59:34:0f:9c:d5:ef:a1: d8:c6:52:c5:1d:82:1c:d0:d8:79:31:4a:0f:e6:6b:aa:0e:70: 89:0f:3f:7b:06:95:d6:6f:ad:d5:ac:cc:64:f1:3a:db:c2:b2: 18:3f:60:bb:49:f6:1c:ba:4e:00:bc:c8:66:8a:28:9a:44:eb: c0:ce:5c:0b:0b:a0:7e:3f:79:3b:4c:e8:4c:b1:e6:a0:5c:0e: c9:87:33:f8:bb:ea:b9:60:73:11:34:91:f3:bf:eb:c7:a5:0f: 82:6c:70:01:07:ba:41:cf:75:40:8a:5d:fa:aa:f7:b1:d8:dc: c1:9b:d7:52:e5:f7:12:66:89:3d:91:5b:8a:b9:38:fc:e0:f5: f5:54:d8:ca:d5:b2:f0:cc:cc:b2:ed:2c:22:45:a0:3d:ad:2e: 6b:d3:6b:ec -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICChswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMzRDQxMTAvBgNVBAUTKDJBOTNFMTQ1OTc2NjUwNjE5NURGRkM5OUI1MjMzNjJC RTVBQzBENkIwHhcNMjUwMjE0MjEwOTM2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FmYjExMC04M2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4K4LCKFTblrMG5M+nADE9LNp9UL4SZstJzANUjKFEC+EMV2R4IM+Jd+I0FGR YUIcMGAxBbaacCQjphLKAg+IQe6M3wwk+MHT6LP77JhKDNbZ4cJvV31ID73eeVZL sOs9PGR6hYc9+NtIvRCFie4we2zVLpF8ZJvAV+gp8Qfy5OEPpGslqEF9tIOT3Nst qXDRNFnNV+XSLddV3mQ/UG7QvO3ua5zNutxqaQqpvaXSdoTBWAEjQbCZGK53gq6y eC3KJ/6I/zVaiCdagpGc7+T87T2YrKD4Wq59m3AmyCVQKOmmlYSMGd790giMHTIX AtOS2QU/V5ZNmWzT5T6+OxHJ/wIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFBFRlzI5 etaG+A8KWhnhexhwtPCKMB8GA1UdIwQYMBaAFCqT4UWXZlBhld/8mbUjNivlrA1r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzNENC8yNUEwNjE4MDZC MUYxMUVBODEzMEE2NUZDNEY5QUUwMi9LcFBoUlpkbVVHR1YzX3ladFNNMkstV3NE V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0twUGhSWmRtVUdHVjNfeVp0U00ySy1Xc0RXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjMzRDQvMjVBMDYxODA2QjFGMTFFQTgxMzBBNjVGQzRGOUFFMDIvQTFENDc5Qjg3 OEQ0MTFFQUE4QzU3NzExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBAIOwAgwDAMEAGcRXQMEBWcRQAMEAmfOeDANBgkqhkiG9w0B AQsFAAOCAQEAk0ZwevVPaVSU7410GQ4oVNDDBe10U2bUek8nrzZLDx/f+Qg7HIil RH1xeeopPw6YNInbOpqO8U6YoFRlmg0suEGFmUlBEqSAt+jXQHUXPCs65FXZykxw V4cASiD7Uy0hs/go23dZNA+c1e+h2MZSxR2CHNDYeTFKD+Zrqg5wiQ8/ewaV1m+t 1azMZPE628KyGD9gu0n2HLpOALzIZooomkTrwM5cCwugfj95O0zoTLHmoFwOyYcz +LvquWBzETSR87/rx6UPgmxwAQe6Qc91QIpd+qr3sdjcwZvXUuX3EmaJPZFbirk4 /OD19VTYytWy8MzMsu0sIkWgPa0ua9Nr7A== -----END CERTIFICATE-----Generated at Sun Apr 6 01:44:17 2025 by rpki-client