$ rpki-client -vvf rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/5A67D452A12F11EF8CA59833C4F9AE02.roa File: 5A67D452A12F11EF8CA59833C4F9AE02.roa (raw, json) Hash identifier: u0zCnyDN76eHB+CmzgwmvJ+3FVkHG07LYemqATFaMtk= Subject key identifier: DF:65:09:FE:5B:E5:32:75:F0:92:4A:43:4F:99:F9:66:75:DF:C2:CC Certificate issuer: /CN=A91623B9/serialNumber=98E1ECBD45D7879F9BC9439F4C6C2F2714AD36F5 Certificate serial: 04A1 Authority key identifier: 98:E1:EC:BD:45:D7:87:9F:9B:C9:43:9F:4C:6C:2F:27:14:AD:36:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mOHsvUXXh5-byUOfTGwvJxStNvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/5A67D452A12F11EF8CA59833C4F9AE02.roa Signing time: Sun 08 Dec 2024 23:43:04 +0000 ROA not before: Sun 08 Dec 2024 23:43:04 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 400342 IP address blocks: 103.174.96.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/mOHsvUXXh5-byUOfTGwvJxStNvU.crl rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/mOHsvUXXh5-byUOfTGwvJxStNvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mOHsvUXXh5-byUOfTGwvJxStNvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1185 (0x4a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91623B9 Validity Not Before: Dec 8 23:43:04 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67562f08-aa7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2e:2c:c3:ef:c1:2a:fe:fe:fc:a1:32:6d:74: ca:1d:07:5c:d3:3a:81:56:9b:90:b3:2f:8f:1a:64: b7:14:b4:7b:ad:59:15:d1:16:64:fb:53:57:73:3b: c5:fc:a3:f2:46:28:2c:57:cf:f1:5f:dd:3d:c3:95: f6:36:b6:74:7d:30:92:39:8b:15:e3:69:e9:96:1c: f0:d1:ff:b3:49:bd:40:75:60:42:e2:fa:1e:2f:ec: 99:11:96:5f:c9:47:8c:b8:67:4b:dd:f4:51:37:f1: f1:c0:70:b4:a6:16:ee:05:50:82:73:a7:9b:57:96: bd:82:5d:3b:80:c3:2a:8e:3b:44:93:65:d2:79:f6: 96:b2:29:82:ea:91:a6:99:d7:dd:7b:88:59:cf:af: f9:c7:fd:d4:d3:2a:e0:dc:aa:5a:62:88:09:69:c2: 25:e9:f1:5d:4e:c1:88:b7:ad:54:c5:c2:3f:26:b2: 18:0d:45:3b:d7:21:7f:36:1e:64:75:d7:a0:1c:d0: d6:79:b8:b4:fb:ea:74:7a:d4:43:24:90:83:46:e9: 16:f7:17:d4:82:7a:ad:07:ce:30:d2:fb:6d:ad:46: d4:4e:fa:cd:6d:7d:e4:9e:e5:8d:53:26:5a:cc:5b: 00:d0:c4:51:59:2d:5b:af:5c:6a:9b:fd:00:aa:f0: 81:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:65:09:FE:5B:E5:32:75:F0:92:4A:43:4F:99:F9:66:75:DF:C2:CC X509v3 Authority Key Identifier: keyid:98:E1:EC:BD:45:D7:87:9F:9B:C9:43:9F:4C:6C:2F:27:14:AD:36:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/mOHsvUXXh5-byUOfTGwvJxStNvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mOHsvUXXh5-byUOfTGwvJxStNvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91623B9/78CEACBC2B3611ECAD595B7CC4F9AE02/5A67D452A12F11EF8CA59833C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.96.0/23 Signature Algorithm: sha256WithRSAEncryption 11:78:bb:4e:ad:06:8c:10:78:c1:67:3f:f1:86:0a:7e:f2:aa: fd:79:eb:a7:04:b4:2c:ca:51:49:c9:52:fb:fb:e5:4c:cd:09: 3e:28:ae:ec:29:e0:aa:4f:62:5b:22:ca:bc:71:7d:b2:a9:ab: ab:39:ef:aa:c9:ec:8e:f6:e0:70:7b:f7:71:4f:02:64:15:56: 92:b6:1f:50:70:a4:19:b6:32:27:5d:87:8f:dd:c9:3e:a0:13: 5e:37:05:98:ac:d8:49:97:37:eb:22:33:a3:ff:ff:eb:d1:3f: e1:c5:64:e4:b6:96:2f:cc:0e:f5:81:fb:43:c9:f6:75:9f:5d: d8:e2:ed:f9:15:34:15:97:34:12:4a:58:15:7e:74:fe:ff:df: e1:1e:05:28:6a:cf:b4:0a:0b:78:05:5c:12:d8:f8:3b:81:22: 8b:f8:fe:b7:11:03:10:8c:ff:ee:61:7d:15:3a:03:ec:e6:a5: 61:c0:b8:c9:e8:ca:c2:b5:f8:10:ec:3e:fb:a0:ae:bf:2d:12: 61:d6:8f:1e:ac:6e:35:f0:65:ac:ee:09:41:c7:b4:94:98:38: 15:26:d8:f6:5c:98:43:0e:ed:0d:37:5b:51:fd:98:17:d5:77: 07:01:4b:36:54:a5:74:d9:dd:72:30:39:99:8f:09:81:ae:dd: b1:5f:85:a0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIzQjkxMTAvBgNVBAUTKDk4RTFFQ0JENDVENzg3OUY5QkM5NDM5RjRDNkMyRjI3 MTRBRDM2RjUwHhcNMjQxMjA4MjM0MzA0WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU2MmYwOC1hYTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyy4sw+/BKv7+/KEybXTKHQdc0zqBVpuQsy+PGmS3FLR7rVkV0RZk+1NXczvF /KPyRigsV8/xX909w5X2NrZ0fTCSOYsV42nplhzw0f+zSb1AdWBC4voeL+yZEZZf yUeMuGdL3fRRN/HxwHC0phbuBVCCc6ebV5a9gl07gMMqjjtEk2XSefaWsimC6pGm mdfde4hZz6/5x/3U0yrg3KpaYogJacIl6fFdTsGIt61UxcI/JrIYDUU71yF/Nh5k ddegHNDWebi0++p0etRDJJCDRukW9xfUgnqtB84w0vttrUbUTvrNbX3knuWNUyZa zFsA0MRRWS1br1xqm/0AqvCB2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFN9lCf5b 5TJ18JJKQ0+Z+WZ138LMMB8GA1UdIwQYMBaAFJjh7L1F14efm8lDn0xsLycUrTb1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjNCOS83OENFQUNCQzJC MzYxMUVDQUQ1OTVCN0NDNEY5QUUwMi9tT0hzdlVYWGg1LWJ5VU9mVEd3dkp4U3RO dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21PSHN2VVhYaDUtYnlVT2ZUR3d2SnhTdE52VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjIzQjkvNzhDRUFDQkMyQjM2MTFFQ0FENTk1QjdDQzRGOUFFMDIvNUE2N0Q0NTJB MTJGMTFFRjhDQTU5ODMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrmAwDQYJKoZIhvcNAQELBQADggEBABF4u06tBowQeMFn P/GGCn7yqv1566cEtCzKUUnJUvv75UzNCT4oruwp4KpPYlsiyrxxfbKpq6s576rJ 7I724HB793FPAmQVVpK2H1BwpBm2Middh4/dyT6gE143BZis2EmXN+siM6P//+vR P+HFZOS2li/MDvWB+0PJ9nWfXdji7fkVNBWXNBJKWBV+dP7/3+EeBShqz7QKC3gF XBLY+DuBIov4/rcRAxCM/+5hfRU6A+zmpWHAuMnoysK1+BDsPvugrr8tEmHWjx6s bjXwZazuCUHHtJSYOBUm2PZcmEMO7Q03W1H9mBfVdwcBSzZUpXTZ3XIwOZmPCYGu 3bFfhaA= -----END CERTIFICATE-----Generated at Sat Apr 5 01:55:12 2025 by rpki-client