$ rpki-client -vvf rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/59230714DE9B11EC9AE23269C4F9AE02.roa File: 59230714DE9B11EC9AE23269C4F9AE02.roa (raw, json) Hash identifier: D86sbiTviOSy/5MbuHJAROiiKuXxKjWRrOsJTtvytBU= Subject key identifier: CF:67:49:23:7D:F8:FE:37:19:5C:0F:30:7D:21:E3:DF:FA:F4:90:B3 Certificate issuer: /CN=A91398A3/serialNumber=775FE5A1F61A7408DFEED47F1447E3464DA50B2A Certificate serial: 03CF Authority key identifier: 77:5F:E5:A1:F6:1A:74:08:DF:EE:D4:7F:14:47:E3:46:4D:A5:0B:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d1_lofYadAjf7tR_FEfjRk2lCyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/59230714DE9B11EC9AE23269C4F9AE02.roa Signing time: Tue 17 Dec 2024 00:14:37 +0000 ROA not before: Tue 17 Dec 2024 00:14:37 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 205960 IP address blocks: 103.80.132.0/24 maxlen: 24 103.80.133.0/24 maxlen: 24 103.80.134.0/24 maxlen: 24 103.80.135.0/24 maxlen: 24 182.161.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/d1_lofYadAjf7tR_FEfjRk2lCyo.crl rsync://rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/d1_lofYadAjf7tR_FEfjRk2lCyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d1_lofYadAjf7tR_FEfjRk2lCyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:37:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 975 (0x3cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398A3 Validity Not Before: Dec 17 00:14:37 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6760c26c-84e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b3:e7:e1:d1:1b:4e:0e:87:ad:ac:17:7c:a8: f6:b3:f4:a1:7b:d9:36:f4:75:02:d2:0c:b1:60:60: dd:f6:a9:d2:9e:a9:34:b5:15:35:4e:f8:11:f9:4a: 83:71:f6:dc:63:8c:13:a8:c6:44:77:d2:4f:42:db: 2f:5f:74:86:dc:50:2e:5e:3a:b2:a7:d3:53:c9:48: 1e:e0:eb:76:8a:e1:c8:75:f3:3f:0c:cb:39:fe:df: 14:95:c9:75:a2:cd:d1:e8:fa:e4:75:52:0d:91:13: d9:9a:09:47:40:84:b4:08:ae:54:26:60:02:08:a2: 83:56:b2:1a:02:eb:30:8a:68:c5:18:21:03:10:3e: 27:95:00:02:e4:e7:f5:3c:ec:f3:b8:ee:1f:84:9c: 41:80:f2:a5:5c:7b:c8:1a:eb:22:dd:c1:64:20:6f: 17:a7:20:23:ea:3d:1e:d8:32:0d:85:18:12:0d:9e: 8c:95:26:a1:f1:81:1c:71:04:3a:0e:51:60:8a:5e: 94:32:db:9d:8b:1c:2e:29:10:7a:d8:47:78:67:44: d8:a7:07:bb:da:2d:09:f1:76:ac:61:26:24:0c:4a: a3:4e:e5:74:59:7d:7c:8b:31:86:d6:32:8f:f1:07: 01:07:6b:a9:d3:8a:2f:0a:07:90:f1:d6:5d:8d:cd: a4:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:67:49:23:7D:F8:FE:37:19:5C:0F:30:7D:21:E3:DF:FA:F4:90:B3 X509v3 Authority Key Identifier: keyid:77:5F:E5:A1:F6:1A:74:08:DF:EE:D4:7F:14:47:E3:46:4D:A5:0B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/d1_lofYadAjf7tR_FEfjRk2lCyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d1_lofYadAjf7tR_FEfjRk2lCyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/59230714DE9B11EC9AE23269C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.80.132.0/22 182.161.66.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:fb:9d:1a:db:e1:a9:0c:8f:68:d7:52:27:30:f9:c1:21:5b: 23:5d:ef:6f:ce:1a:0d:0b:5a:d7:1b:c5:b5:1f:c1:fa:2d:75: 3b:29:d5:84:5b:19:72:bb:c7:17:f1:39:8d:51:60:39:6c:d8: d8:a9:a3:19:8d:79:a6:47:fe:a1:b4:73:c1:8e:11:e8:49:cc: a5:d1:2f:ea:2d:97:66:19:68:8d:a6:ca:80:68:bb:84:b3:4c: fe:42:20:b5:1b:0d:b7:78:7f:3a:3d:1c:53:29:f9:ec:25:e1: 36:38:aa:5a:68:69:47:dd:26:4a:ab:51:e3:b4:7e:dd:8f:31: b3:fc:1d:1e:4b:91:31:b6:12:60:ef:ff:f2:3e:a7:56:b1:b2: ae:ea:c2:cb:76:6f:b6:0b:96:b3:d9:ce:ff:f4:c7:b6:31:8c: c8:56:0d:b2:31:c5:44:09:b9:3f:a4:b0:06:67:70:8f:e8:bc: 5e:60:fc:5f:af:d9:c9:83:68:46:20:69:30:5a:d9:cc:79:e3: 3c:da:e5:c3:e9:62:e3:0c:51:a1:6a:39:60:98:a2:be:66:a9: 59:88:db:ec:e0:3e:14:81:2a:d0:9c:54:94:9f:df:9d:54:58: 7c:ee:53:a7:2c:10:f5:6e:55:77:79:94:d5:f8:b9:fc:c6:37: 88:61:a5:65 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4QTMxMTAvBgNVBAUTKDc3NUZFNUExRjYxQTc0MDhERkVFRDQ3RjE0NDdFMzQ2 NERBNTBCMkEwHhcNMjQxMjE3MDAxNDM3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYwYzI2Yy04NGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrPn4dEbTg6HrawXfKj2s/She9k29HUC0gyxYGDd9qnSnqk0tRU1TvgR+UqD cfbcY4wTqMZEd9JPQtsvX3SG3FAuXjqyp9NTyUge4Ot2iuHIdfM/DMs5/t8Ulcl1 os3R6PrkdVINkRPZmglHQIS0CK5UJmACCKKDVrIaAuswimjFGCEDED4nlQAC5Of1 POzzuO4fhJxBgPKlXHvIGusi3cFkIG8XpyAj6j0e2DINhRgSDZ6MlSah8YEccQQ6 DlFgil6UMtudixwuKRB62Ed4Z0TYpwe72i0J8XasYSYkDEqjTuV0WX18izGG1jKP 8QcBB2up04ovCgeQ8dZdjc2k7QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFM9nSSN9 +P43GVwPMH0h49/69JCzMB8GA1UdIwQYMBaAFHdf5aH2GnQI3+7UfxRH40ZNpQsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThBMy9FMjE5QjYxQzcx MTMxMUVDQkMzMDg5MTlDNEY5QUUwMi9kMV9sb2ZZYWRBamY3dFJfRkVmalJrMmxD eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QxX2xvZllhZEFqZjd0Ul9GRWZqUmsybEN5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzk4QTMvRTIxOUI2MUM3MTEzMTFFQ0JDMzA4OTE5QzRGOUFFMDIvNTkyMzA3MTRE RTlCMTFFQzlBRTIzMjY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnUIQDBAC2oUIwDQYJKoZIhvcNAQELBQADggEBAJr7nRrb 4akMj2jXUicw+cEhWyNd72/OGg0LWtcbxbUfwfotdTsp1YRbGXK7xxfxOY1RYDls 2NipoxmNeaZH/qG0c8GOEehJzKXRL+otl2YZaI2myoBou4SzTP5CILUbDbd4fzo9 HFMp+ewl4TY4qlpoaUfdJkqrUeO0ft2PMbP8HR5LkTG2EmDv//I+p1axsq7qwst2 b7YLlrPZzv/0x7YxjMhWDbIxxUQJuT+ksAZncI/ovF5g/F+v2cmDaEYgaTBa2cx5 4zza5cPpYuMMUaFqOWCYor5mqVmI2+zgPhSBKtCcVJSf351UWHzuU6csEPVuVXd5 lNX4ufzGN4hhpWU= -----END CERTIFICATE-----Generated at Sat Apr 5 23:11:02 2025 by rpki-client