$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/57BAE77C517D11EB8949D438C4F9AE02.roa File: 57BAE77C517D11EB8949D438C4F9AE02.roa (raw, json) Hash identifier: W8Pbilr3L/+CfQDONlD1s3S+g13SAXBwRt28BIl7t2I= Subject key identifier: 5E:83:8E:D4:B8:BC:F3:DE:F2:7C:82:A3:73:58:A9:46:04:47:65:F8 Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Certificate serial: 0691 Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/57BAE77C517D11EB8949D438C4F9AE02.roa Signing time: Sun 08 Dec 2024 22:00:28 +0000 ROA not before: Sun 08 Dec 2024 22:00:28 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 139816 IP address blocks: 103.159.114.0/23 maxlen: 23 103.159.114.0/24 maxlen: 24 103.159.115.0/24 maxlen: 24 2407:340::/32 maxlen: 32 2407:340::/48 maxlen: 48 2407:340:1::/48 maxlen: 48 2407:340:2::/48 maxlen: 48 2407:340:3::/48 maxlen: 48 2407:340:4::/48 maxlen: 48 2407:340:5::/48 maxlen: 48 2407:340:6::/48 maxlen: 48 2407:340:7::/48 maxlen: 48 2407:340:8::/48 maxlen: 48 2407:340:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 21:43:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1681 (0x691) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276A3 Validity Not Before: Dec 8 22:00:28 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=675616fb-7750 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:85:7c:10:1c:73:d3:12:23:00:1c:4e:06:19: fa:46:16:94:ae:55:a2:ee:19:c8:64:50:b4:30:c7: 02:df:de:86:cf:40:7e:99:e7:8d:7f:e9:08:5d:13: 74:26:a1:f3:a0:6b:e0:7d:84:b0:97:af:e6:c4:db: 02:1f:a3:2a:14:8b:10:30:34:58:aa:23:50:cf:4b: 76:d2:b0:87:06:26:ec:05:55:e6:6c:48:ec:7c:f1: 55:e7:85:56:bf:cd:3e:5a:b3:ef:41:0e:a2:1a:d9: 1f:e5:5b:8c:24:46:9f:f7:60:48:86:c8:77:ad:69: ef:73:c1:88:de:c6:95:b5:38:e2:27:f6:af:03:97: 89:02:ab:9b:e4:41:d3:4c:61:9c:31:9a:be:7a:22: e9:9c:74:91:98:44:08:f9:90:11:5c:52:94:30:99: 6a:ff:6d:e9:f3:41:d0:91:8d:17:cf:9b:16:1f:0b: 85:d1:e6:26:bc:ef:5f:87:d8:43:1f:57:68:e3:86: 76:a4:57:25:d4:28:bf:e2:3d:4c:41:3c:08:27:b5: 5a:05:24:15:87:68:43:82:8f:91:99:15:35:2b:5b: 89:65:db:ac:42:80:fb:5a:61:a5:60:53:db:d8:00: 0f:94:14:8e:48:5c:29:34:71:be:c5:79:e8:22:61: ea:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:83:8E:D4:B8:BC:F3:DE:F2:7C:82:A3:73:58:A9:46:04:47:65:F8 X509v3 Authority Key Identifier: keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/57BAE77C517D11EB8949D438C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.114.0/23 IPv6: 2407:340::/32 Signature Algorithm: sha256WithRSAEncryption 1d:de:c2:06:f0:82:91:33:d5:a4:03:96:53:d4:ff:5a:e9:d0: 8e:5a:d1:eb:5f:10:f4:8f:ba:c5:41:e9:3e:68:70:1e:6d:b0: a2:7c:67:80:af:03:2b:f4:7e:c2:5b:de:29:05:f0:90:f0:1b: 1b:fd:84:bc:b2:ab:ee:80:29:f0:72:f8:44:da:07:d2:ed:fc: f6:36:e8:31:5f:b0:36:b8:7e:85:f6:ed:32:69:29:f3:6c:a7: 0b:38:45:2d:34:2b:d0:2b:cc:54:af:a9:75:35:47:f3:8b:d3: ad:3a:e1:1f:4e:78:2a:cb:cb:e4:87:72:66:fc:8e:9b:f4:50: ef:6a:8d:c9:ab:85:11:62:4d:91:05:d8:ca:5e:20:37:f0:31: b6:01:25:66:31:b3:9f:a7:21:ee:93:b6:bf:1a:47:1c:8a:3c: 8f:14:79:25:08:1c:54:ca:04:78:fe:67:70:68:16:85:a2:5d: 2a:e2:ce:72:ce:31:ea:92:1c:22:a5:11:2b:bf:ab:51:ba:e9: 05:2d:d3:ac:84:f2:57:3f:b3:a0:53:56:f0:f3:7f:33:a3:01: 49:67:bd:20:f2:4f:a8:ba:5c:f3:2d:75:34:bd:b6:5d:bb:5d: 94:eb:d2:db:4f:a1:93:bd:d1:de:45:f9:ae:b1:af:b2:dc:19: 8a:26:d8:67 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBpEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw NjY5NjQ4M0QwHhcNMjQxMjA4MjIwMDI4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU2MTZmYi03NzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyIV8EBxz0xIjABxOBhn6RhaUrlWi7hnIZFC0MMcC396Gz0B+meeNf+kIXRN0 JqHzoGvgfYSwl6/mxNsCH6MqFIsQMDRYqiNQz0t20rCHBibsBVXmbEjsfPFV54VW v80+WrPvQQ6iGtkf5VuMJEaf92BIhsh3rWnvc8GI3saVtTjiJ/avA5eJAqub5EHT TGGcMZq+eiLpnHSRmEQI+ZARXFKUMJlq/23p80HQkY0Xz5sWHwuF0eYmvO9fh9hD H1do44Z2pFcl1Ci/4j1MQTwIJ7VaBSQVh2hDgo+RmRU1K1uJZdusQoD7WmGlYFPb 2AAPlBSOSFwpNHG+xXnoImHqgQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFF6DjtS4 vPPe8nyCo3NYqUYER2X4MB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc2QTMvODMyMEJEMUM1MTdCMTFFQjg2QzJENzM2QzRGOUFFMDIvNTdCQUU3N0M1 MTdEMTFFQjg5NDlENDM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnn3IwDQQCAAIwBwMFACQHA0AwDQYJKoZIhvcNAQELBQAD ggEBAB3ewgbwgpEz1aQDllPU/1rp0I5a0etfEPSPusVB6T5ocB5tsKJ8Z4CvAyv0 fsJb3ikF8JDwGxv9hLyyq+6AKfBy+ETaB9Lt/PY26DFfsDa4foX27TJpKfNspws4 RS00K9ArzFSvqXU1R/OL06064R9OeCrLy+SHcmb8jpv0UO9qjcmrhRFiTZEF2Mpe IDfwMbYBJWYxs5+nIe6Ttr8aRxyKPI8UeSUIHFTKBHj+Z3BoFoWiXSriznLOMeqS HCKlESu/q1G66QUt06yE8lc/s6BTVvDzfzOjAUlnvSDyT6i6XPMtdTS9tl27XZTr 0ttPoZO90d5F+a6xr7LcGYom2Gc= -----END CERTIFICATE-----Generated at Tue Apr 8 20:30:38 2025 by rpki-client