$ rpki-client -vvf rpki.apnic.net/member_repository/A916AFF4/0E6228C459EE11EF91027B46C4F9AE02/59B897AE59EE11EFB2872947C4F9AE02.roa File: 59B897AE59EE11EFB2872947C4F9AE02.roa (raw, json) Hash identifier: 1pdOgF9NWhDTBBV9RWwEHphdN2HbfeFbB0PL1U6/RqA= Subject key identifier: 51:08:77:91:08:6D:2C:D5:A7:0E:DC:97:50:D4:67:9D:23:4A:0B:A0 Certificate issuer: /CN=A916AFF4/serialNumber=6724BF400FA6A41C78DE7031BFA4F9AFC83780CF Certificate serial: 58 Authority key identifier: 67:24:BF:40:0F:A6:A4:1C:78:DE:70:31:BF:A4:F9:AF:C8:37:80:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyS_QA-mpBx43nAxv6T5r8g3gM8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AFF4/0E6228C459EE11EF91027B46C4F9AE02/59B897AE59EE11EFB2872947C4F9AE02.roa Signing time: Thu 23 Jan 2025 05:38:51 +0000 ROA not before: Thu 23 Jan 2025 05:38:51 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 139876 IP address blocks: 103.146.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AFF4/0E6228C459EE11EF91027B46C4F9AE02/ZyS_QA-mpBx43nAxv6T5r8g3gM8.crl rsync://rpki.apnic.net/member_repository/A916AFF4/0E6228C459EE11EF91027B46C4F9AE02/ZyS_QA-mpBx43nAxv6T5r8g3gM8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyS_QA-mpBx43nAxv6T5r8g3gM8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AFF4 Validity Not Before: Jan 23 05:38:51 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6791d5ea-6294 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:7c:40:bf:b7:13:01:da:41:3f:b1:e2:ae:e5: 90:12:3c:e4:a3:ef:54:77:c3:18:4f:98:76:c7:32: 8e:a3:a6:2f:fd:41:e2:fa:05:26:89:6d:39:0e:49: 53:bf:01:41:fc:93:b0:bf:a1:90:9c:b5:f8:d7:99: fc:f9:94:fb:89:04:aa:38:6b:4b:11:4c:de:d7:b4: be:03:2f:79:43:a9:43:51:e0:6e:62:03:4d:93:19: 11:b5:56:ff:cf:8d:39:9f:0f:92:58:af:82:39:17: 23:03:6b:0f:54:6d:b7:d1:83:ff:05:7d:04:4d:6b: 38:16:b3:54:2a:0b:ce:22:80:d6:38:c3:88:bd:e3: 2e:b3:ce:0f:81:f7:31:d3:0c:5a:93:4e:cd:f6:ad: c8:07:0d:bb:74:73:f3:20:7d:05:4e:b0:96:9f:ae: 87:d3:b3:33:61:0f:04:f2:a9:58:58:f8:9d:1c:d6: 1d:84:10:87:e2:71:cd:c2:b0:33:4a:44:fd:07:88: c4:7f:a7:f7:e7:7e:32:b9:bd:fc:0c:d7:e3:68:d1: d7:a0:dd:87:a7:26:05:67:4b:a6:40:27:c8:94:3e: 5b:23:f5:61:d1:bd:18:e6:21:c5:08:bc:6a:9c:ec: be:52:84:00:97:a3:eb:bf:03:ee:4b:bb:eb:ca:37: f8:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:08:77:91:08:6D:2C:D5:A7:0E:DC:97:50:D4:67:9D:23:4A:0B:A0 X509v3 Authority Key Identifier: keyid:67:24:BF:40:0F:A6:A4:1C:78:DE:70:31:BF:A4:F9:AF:C8:37:80:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AFF4/0E6228C459EE11EF91027B46C4F9AE02/ZyS_QA-mpBx43nAxv6T5r8g3gM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZyS_QA-mpBx43nAxv6T5r8g3gM8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AFF4/0E6228C459EE11EF91027B46C4F9AE02/59B897AE59EE11EFB2872947C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.117.0/24 Signature Algorithm: sha256WithRSAEncryption 14:12:34:bd:3a:d5:64:86:88:c4:68:8e:b8:ed:90:ac:50:07: 3e:fd:4e:91:12:83:d8:4f:47:80:bc:07:06:74:43:c2:98:36: af:26:43:9b:0a:fa:cf:85:ce:45:51:ba:9c:db:ad:2b:aa:93: 47:73:da:84:39:68:89:2b:99:c1:95:c6:61:09:fc:1e:16:87: 52:90:5b:8b:d1:26:e5:7f:c5:12:38:7f:7c:de:c0:b8:5a:08: b3:a4:da:36:79:bc:08:b8:82:e3:7f:01:e3:b0:56:82:64:e6: 0e:cd:a2:3e:df:d5:b1:f1:50:d7:97:85:2d:aa:33:e8:9f:d8: 61:ef:7c:41:42:79:0f:34:0c:d0:f9:91:53:6b:8c:87:e0:3b: 86:23:8a:64:19:35:bc:0a:82:ae:b0:1c:36:48:81:81:fa:08: e4:c8:00:f3:99:10:ad:a4:e9:7d:63:2b:7f:63:48:a8:3a:6e: 41:87:30:a9:43:89:dc:48:45:80:13:50:fc:e8:8e:ce:46:eb: 01:77:a2:35:86:1c:53:bd:07:67:34:f1:56:8e:37:ad:ec:82: 2b:0e:ee:7e:45:46:01:9b:90:52:39:fa:0b:31:a5:2d:1a:13: 2d:28:d4:1a:1a:a0:9a:2e:a3:ad:7b:98:ac:a8:d5:f6:90:15: 1d:b7:b1:dd -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QUZGNDExMC8GA1UEBRMoNjcyNEJGNDAwRkE2QTQxQzc4REU3MDMxQkZBNEY5QUZD ODM3ODBDRjAeFw0yNTAxMjMwNTM4NTFaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3OTFkNWVhLTYyOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCWfEC/txMB2kE/seKu5ZASPOSj71R3wxhPmHbHMo6jpi/9QeL6BSaJbTkOSVO/ AUH8k7C/oZCctfjXmfz5lPuJBKo4a0sRTN7XtL4DL3lDqUNR4G5iA02TGRG1Vv/P jTmfD5JYr4I5FyMDaw9UbbfRg/8FfQRNazgWs1QqC84igNY4w4i94y6zzg+B9zHT DFqTTs32rcgHDbt0c/MgfQVOsJafrofTszNhDwTyqVhY+J0c1h2EEIficc3CsDNK RP0HiMR/p/fnfjK5vfwM1+No0deg3YenJgVnS6ZAJ8iUPlsj9WHRvRjmIcUIvGqc 7L5ShACXo+u/A+5Lu+vKN/g1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUUQh3kQht LNWnDtyXUNRnnSNKC6AwHwYDVR0jBBgwFoAUZyS/QA+mpBx43nAxv6T5r8g3gM8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBRkY0LzBFNjIyOEM0NTlF RTExRUY5MTAyN0I0NkM0RjlBRTAyL1p5U19RQS1tcEJ4NDNuQXh2NlQ1cjhnM2dN OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWnlTX1FBLW1wQng0M25BeHY2VDVyOGczZ004LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUZGNC8wRTYyMjhDNDU5RUUxMUVGOTEwMjdCNDZDNEY5QUUwMi81OUI4OTdBRTU5 RUUxMUVGQjI4NzI5NDdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeSdTANBgkqhkiG9w0BAQsFAAOCAQEAFBI0vTrVZIaIxGiO uO2QrFAHPv1OkRKD2E9HgLwHBnRDwpg2ryZDmwr6z4XORVG6nNutK6qTR3PahDlo iSuZwZXGYQn8HhaHUpBbi9Em5X/FEjh/fN7AuFoIs6TaNnm8CLiC438B47BWgmTm Ds2iPt/VsfFQ15eFLaoz6J/YYe98QUJ5DzQM0PmRU2uMh+A7hiOKZBk1vAqCrrAc NkiBgfoI5MgA85kQraTpfWMrf2NIqDpuQYcwqUOJ3EhFgBNQ/OiOzkbrAXeiNYYc U70HZzTxVo43reyCKw7ufkVGAZuQUjn6CzGlLRoTLSjUGhqgmi6jrXuYrKjV9pAV Hbex3Q== -----END CERTIFICATE-----Generated at Sat Apr 5 02:15:36 2025 by rpki-client