$ rpki-client -vvf rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/5B17230CDE9B11EC9AE23269C4F9AE02.roa File: 5B17230CDE9B11EC9AE23269C4F9AE02.roa (raw, json) Hash identifier: iXt8wY4xDmSntkF4mr4ren6r7L4k9/tTpksHGcZedNM= Subject key identifier: 25:A1:D0:D2:80:25:63:69:6D:1F:E4:6E:78:3C:AD:84:1B:7E:F4:EB Certificate issuer: /CN=A91398A3/serialNumber=775FE5A1F61A7408DFEED47F1447E3464DA50B2A Certificate serial: 03D1 Authority key identifier: 77:5F:E5:A1:F6:1A:74:08:DF:EE:D4:7F:14:47:E3:46:4D:A5:0B:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d1_lofYadAjf7tR_FEfjRk2lCyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/5B17230CDE9B11EC9AE23269C4F9AE02.roa Signing time: Tue 17 Dec 2024 00:14:38 +0000 ROA not before: Tue 17 Dec 2024 00:14:38 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 3786 IP address blocks: 103.80.133.0/24 maxlen: 24 103.80.134.0/24 maxlen: 24 182.161.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/d1_lofYadAjf7tR_FEfjRk2lCyo.crl rsync://rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/d1_lofYadAjf7tR_FEfjRk2lCyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d1_lofYadAjf7tR_FEfjRk2lCyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:37:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 977 (0x3d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91398A3 Validity Not Before: Dec 17 00:14:38 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6760c26e-3ba5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:9b:e5:09:95:a3:0d:92:50:f9:99:61:9c:09: 11:0b:b5:47:e3:9e:ea:79:9c:29:9e:7d:6d:91:02: 69:72:33:e4:39:57:58:2c:9f:da:c9:ed:f7:bb:b1: 7b:6a:94:13:2a:54:0a:7d:19:d9:2b:3a:1e:e4:22: 98:fb:2c:d1:51:cb:fd:82:c7:30:3a:94:40:4e:f2: 02:f8:e7:e6:ea:74:24:e2:59:c6:62:57:85:8a:04: 99:00:68:f5:b1:be:7e:4d:66:1e:63:4c:76:f6:fc: 70:ca:3a:32:23:ef:fc:c1:f5:33:53:cb:be:32:c2: 0e:02:07:92:9e:fa:fd:c9:21:4d:8c:13:3b:8f:d6: 53:31:d3:69:85:b8:9a:19:1f:ff:fc:4c:45:e1:79: 21:65:ff:f5:72:b7:4a:d6:e3:68:f5:9a:55:64:af: 8d:f4:0b:13:c9:bf:13:7e:f7:1d:7a:74:4c:c2:5c: 34:50:cd:63:61:c3:5a:2e:22:a4:3c:3f:6c:60:47: 34:47:e7:95:9d:12:96:05:0f:85:ae:c4:3a:79:5c: a8:fb:60:10:3a:44:a0:8b:c5:98:c5:a8:61:08:f5: da:2c:0e:80:9e:a5:bb:4f:33:c4:52:58:d8:6a:4b: 80:13:cb:03:0a:c8:1d:b6:0d:24:7b:ea:2d:46:10: 0c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:A1:D0:D2:80:25:63:69:6D:1F:E4:6E:78:3C:AD:84:1B:7E:F4:EB X509v3 Authority Key Identifier: keyid:77:5F:E5:A1:F6:1A:74:08:DF:EE:D4:7F:14:47:E3:46:4D:A5:0B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/d1_lofYadAjf7tR_FEfjRk2lCyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d1_lofYadAjf7tR_FEfjRk2lCyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91398A3/E219B61C711311ECBC308919C4F9AE02/5B17230CDE9B11EC9AE23269C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.80.133.0-103.80.134.255 182.161.66.0/24 Signature Algorithm: sha256WithRSAEncryption 48:05:dc:50:e4:35:92:7e:4e:73:be:df:1b:99:0a:7f:26:a2: 8f:41:60:d7:4f:37:ed:59:97:b6:df:50:67:4c:05:26:52:6f: 55:e0:42:a8:a2:85:0e:60:69:3f:9a:7c:15:e9:65:52:19:f8: aa:50:82:7e:11:6e:98:6e:62:4e:ff:90:1e:46:1d:14:f8:18: 66:90:fc:b2:f0:82:a6:2a:fc:f7:2f:8e:69:dd:de:9b:00:7a: 7b:75:9d:7d:68:c4:af:62:a6:ca:b0:39:4b:71:ca:9e:cc:2f: 27:96:0c:c5:67:fa:6b:46:93:c6:31:2f:00:f4:88:cd:3a:8b: 07:92:6f:c2:6e:6f:bd:ab:47:ad:68:62:ed:1a:36:e7:4e:3d: 39:3e:78:5f:b9:5a:f3:d2:01:6a:7a:52:00:18:c0:ea:8a:28: 14:1c:d6:02:ff:2d:28:66:8e:c9:8d:41:61:bd:d9:27:06:bd: cb:8d:bd:8c:1e:49:5e:0b:58:9a:9a:3e:26:3b:c6:91:35:ff: 15:fa:f2:51:05:86:81:89:a9:08:c3:c5:ed:1e:e2:fb:97:ad: 01:3a:a6:68:3b:34:59:19:f2:6b:a1:d3:94:00:99:15:2b:79: d8:1a:71:ca:51:80:5e:59:0b:ac:32:99:dd:5e:20:3f:83:82: ca:c8:ca:bf -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICA9EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk4QTMxMTAvBgNVBAUTKDc3NUZFNUExRjYxQTc0MDhERkVFRDQ3RjE0NDdFMzQ2 NERBNTBCMkEwHhcNMjQxMjE3MDAxNDM4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYwYzI2ZS0zYmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ZvlCZWjDZJQ+ZlhnAkRC7VH457qeZwpnn1tkQJpcjPkOVdYLJ/aye33u7F7 apQTKlQKfRnZKzoe5CKY+yzRUcv9gscwOpRATvIC+Ofm6nQk4lnGYleFigSZAGj1 sb5+TWYeY0x29vxwyjoyI+/8wfUzU8u+MsIOAgeSnvr9ySFNjBM7j9ZTMdNphbia GR///ExF4XkhZf/1crdK1uNo9ZpVZK+N9AsTyb8TfvcdenRMwlw0UM1jYcNaLiKk PD9sYEc0R+eVnRKWBQ+FrsQ6eVyo+2AQOkSgi8WYxahhCPXaLA6AnqW7TzPEUljY akuAE8sDCsgdtg0ke+otRhAMjQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFCWh0NKA JWNpbR/kbng8rYQbfvTrMB8GA1UdIwQYMBaAFHdf5aH2GnQI3+7UfxRH40ZNpQsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOThBMy9FMjE5QjYxQzcx MTMxMUVDQkMzMDg5MTlDNEY5QUUwMi9kMV9sb2ZZYWRBamY3dFJfRkVmalJrMmxD eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QxX2xvZllhZEFqZjd0Ul9GRWZqUmsybEN5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzk4QTMvRTIxOUI2MUM3MTEzMTFFQ0JDMzA4OTE5QzRGOUFFMDIvNUIxNzIzMENE RTlCMTFFQzlBRTIzMjY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAGdQhQMEAGdQhgMEALahQjANBgkqhkiG9w0BAQsFAAOC AQEASAXcUOQ1kn5Oc77fG5kKfyaij0Fg10837VmXtt9QZ0wFJlJvVeBCqKKFDmBp P5p8FellUhn4qlCCfhFumG5iTv+QHkYdFPgYZpD8svCCpir89y+Oad3emwB6e3Wd fWjEr2KmyrA5S3HKnswvJ5YMxWf6a0aTxjEvAPSIzTqLB5Jvwm5vvatHrWhi7Ro2 5049OT54X7la89IBanpSABjA6oooFBzWAv8tKGaOyY1BYb3ZJwa9y429jB5JXgtY mpo+JjvGkTX/FfryUQWGgYmpCMPF7R7i+5etATqmaDs0WRnya6HTlACZFSt52Bpx ylGAXlkLrDKZ3V4gP4OCysjKvw== -----END CERTIFICATE-----Generated at Sat Apr 5 17:11:57 2025 by rpki-client