$ rpki-client -vvf rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/D0F245E0D76711EE99C72C29C4F9AE02.roa File: D0F245E0D76711EE99C72C29C4F9AE02.roa (raw, json) Hash identifier: 9VKla165NEuwDujrYh1FdBvK2ZH/U/K5NZJL+RjIV7c= Subject key identifier: 4A:31:AD:47:C0:4E:80:1A:D0:0A:22:62:FF:15:90:E7:53:87:63:93 Certificate issuer: /CN=A91650EA/serialNumber=4B25B14720F0444BB3D668F963584354F7FAC213 Certificate serial: 90 Authority key identifier: 4B:25:B1:47:20:F0:44:4B:B3:D6:68:F9:63:58:43:54:F7:FA:C2:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/D0F245E0D76711EE99C72C29C4F9AE02.roa Signing time: Thu 05 Dec 2024 04:49:15 +0000 ROA not before: Thu 05 Dec 2024 04:49:15 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 149018 IP address blocks: 103.88.89.0/24 maxlen: 24 103.176.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.crl rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 04:34:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650EA Validity Not Before: Dec 5 04:49:15 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=675130cb-fe82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:81:80:75:c8:09:61:81:27:d1:52:c0:df:0a: c3:07:83:6c:9c:e6:42:4d:99:b5:26:a6:b6:74:8e: 57:ee:ed:22:aa:8d:05:06:22:c6:b1:f2:b5:28:d2: 4c:a3:24:88:5e:20:7e:9b:01:e0:ee:c8:54:d2:9b: e7:7f:29:03:83:bd:cc:82:ad:b9:80:c5:f7:ff:7b: 3c:76:25:37:87:b7:d6:59:77:73:04:3d:e1:9a:bd: dd:0d:9b:16:6b:d4:6d:52:7f:ba:a1:54:2f:09:c7: be:9d:bd:18:c8:95:af:33:85:5b:c2:05:59:92:61: 5b:40:82:34:99:ab:36:5d:04:02:39:ff:d4:cd:e4: 1f:12:30:d8:0e:cf:72:c5:5c:b5:0e:bd:bb:0c:59: 35:a6:e6:11:24:01:f5:80:84:86:83:eb:a1:7b:f5: d3:a2:e8:e3:a3:c0:69:8e:16:8e:be:44:f1:e1:36: 46:40:74:99:83:8c:28:26:57:8e:70:c4:e8:69:b1: c1:ff:dc:ee:2d:83:62:0b:75:0a:fc:0e:cf:92:c4: 32:13:e4:37:b7:e5:78:11:66:88:50:60:1f:ea:bb: f3:62:69:a6:cd:bd:8c:05:e7:87:6b:38:b1:7f:4f: 40:52:ba:e8:5c:d6:c8:80:c1:41:6f:e6:d0:e9:57: d6:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:31:AD:47:C0:4E:80:1A:D0:0A:22:62:FF:15:90:E7:53:87:63:93 X509v3 Authority Key Identifier: keyid:4B:25:B1:47:20:F0:44:4B:B3:D6:68:F9:63:58:43:54:F7:FA:C2:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/SyWxRyDwREuz1mj5Y1hDVPf6whM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SyWxRyDwREuz1mj5Y1hDVPf6whM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650EA/521D1AD8D76711EEAF22C066C4F9AE02/D0F245E0D76711EE99C72C29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.89.0/24 103.176.118.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:fd:eb:55:f7:cd:96:ea:2b:6b:94:2b:89:24:b9:2a:c4:4d: c1:7d:cc:75:6a:cf:b1:12:6a:4a:06:de:dc:2e:47:fd:29:57: c7:78:ac:5b:c5:b9:1c:00:b2:2c:76:fa:63:e4:62:68:5b:c5: 61:cc:ed:3a:86:d4:34:12:77:8e:1b:d0:4d:f6:77:11:34:a4: 23:0f:fe:68:12:93:2e:89:e8:e8:38:5b:25:ab:28:e6:45:ee: 45:43:8d:14:6c:fb:83:5f:04:54:7c:85:8b:d7:d1:5d:3e:38: 22:08:2c:5b:c6:76:3a:48:12:f3:03:bc:ab:28:1d:cf:5e:1a: 59:69:fa:7e:88:4f:bc:3f:cc:c6:76:82:b3:30:f7:8f:94:ca: 70:0d:c4:fc:07:6d:de:1a:fd:47:b8:30:79:db:0b:a4:01:5e: e0:9f:d2:ad:67:89:98:ac:07:c2:36:5b:84:c0:f3:55:41:e1: 7b:fd:dc:95:de:65:9c:76:55:9a:48:f1:ba:b9:26:a6:99:c3: a0:af:8f:12:05:fe:5a:68:39:de:4b:07:fe:71:2a:fa:fa:e6: 63:fb:b1:fc:d6:ef:6c:d7:b5:77:52:7c:13:7b:13:15:05:24: 3b:c2:0a:7f:c0:0c:63:7f:35:be:67:d2:b8:d4:f1:03:71:6e: 3d:f3:0f:a1 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwRUExMTAvBgNVBAUTKDRCMjVCMTQ3MjBGMDQ0NEJCM0Q2NjhGOTYzNTg0MzU0 RjdGQUMyMTMwHhcNMjQxMjA1MDQ0OTE1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUxMzBjYi1mZTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4GAdcgJYYEn0VLA3wrDB4NsnOZCTZm1Jqa2dI5X7u0iqo0FBiLGsfK1KNJM oySIXiB+mwHg7shU0pvnfykDg73Mgq25gMX3/3s8diU3h7fWWXdzBD3hmr3dDZsW a9RtUn+6oVQvCce+nb0YyJWvM4VbwgVZkmFbQII0mas2XQQCOf/UzeQfEjDYDs9y xVy1Dr27DFk1puYRJAH1gISGg+uhe/XToujjo8BpjhaOvkTx4TZGQHSZg4woJleO cMToabHB/9zuLYNiC3UK/A7PksQyE+Q3t+V4EWaIUGAf6rvzYmmmzb2MBeeHazix f09AUrroXNbIgMFBb+bQ6VfWMwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEoxrUfA ToAa0AoiYv8VkOdTh2OTMB8GA1UdIwQYMBaAFEslsUcg8ERLs9Zo+WNYQ1T3+sIT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBFQS81MjFEMUFEOEQ3 NjcxMUVFQUYyMkMwNjZDNEY5QUUwMi9TeVd4UnlEd1JFdXoxbWo1WTFoRFZQZjZ3 aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1N5V3hSeUR3UkV1ejFtajVZMWhEVlBmNndoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjUwRUEvNTIxRDFBRDhENzY3MTFFRUFGMjJDMDY2QzRGOUFFMDIvRDBGMjQ1RTBE NzY3MTFFRTk5QzcyQzI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnWFkDBABnsHYwDQYJKoZIhvcNAQELBQADggEBAAr961X3 zZbqK2uUK4kkuSrETcF9zHVqz7ESakoG3twuR/0pV8d4rFvFuRwAsix2+mPkYmhb xWHM7TqG1DQSd44b0E32dxE0pCMP/mgSky6J6Og4WyWrKOZF7kVDjRRs+4NfBFR8 hYvX0V0+OCIILFvGdjpIEvMDvKsoHc9eGllp+n6IT7w/zMZ2grMw94+UynANxPwH bd4a/Ue4MHnbC6QBXuCf0q1niZisB8I2W4TA81VB4Xv93JXeZZx2VZpI8bq5JqaZ w6CvjxIF/lpoOd5LB/5xKvr65mP7sfzW72zXtXdSfBN7ExUFJDvCCn/ADGN/Nb5n 0rjU8QNxbj3zD6E= -----END CERTIFICATE-----Generated at Fri Apr 11 20:40:32 2025 by rpki-client