$ rpki-client -vvf rpki.apnic.net/member_repository/A916FA51/F925B350361011EA9BD17474C4F9AE02/A79D17F2361111EA95391375C4F9AE02.roa File: A79D17F2361111EA95391375C4F9AE02.roa (raw, json) Hash identifier: tDsZ4GzDIlAFVIQZZ0Fw0ct73AL//Nys5aPjeishX2s= Subject key identifier: E9:DC:34:46:0B:4B:3E:12:73:1C:91:8D:41:C4:80:48:33:8F:DB:48 Certificate issuer: /CN=A916FA51/serialNumber=F4ECB53EC230539C0B57E59B467D154FADEB3989 Certificate serial: 0B00 Authority key identifier: F4:EC:B5:3E:C2:30:53:9C:0B:57:E5:9B:46:7D:15:4F:AD:EB:39:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9Oy1PsIwU5wLV-WbRn0VT63rOYk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916FA51/F925B350361011EA9BD17474C4F9AE02/A79D17F2361111EA95391375C4F9AE02.roa Signing time: Tue 10 Dec 2024 19:18:21 +0000 ROA not before: Tue 10 Dec 2024 19:18:21 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 134749 IP address blocks: 103.199.152.0/24 maxlen: 24 103.199.153.0/24 maxlen: 24 103.199.154.0/24 maxlen: 24 103.199.155.0/24 maxlen: 24 203.78.144.0/24 maxlen: 24 203.78.145.0/24 maxlen: 24 203.78.146.0/24 maxlen: 24 203.78.147.0/24 maxlen: 24 2407:fe80::/32 maxlen: 32 2407:fe80::/40 maxlen: 40 2407:fe80:2::/48 maxlen: 48 2407:fe80:100::/40 maxlen: 40 2407:fe80:100::/48 maxlen: 48 2407:fe80:300::/40 maxlen: 40 2407:fe80:8100::/40 maxlen: 40 2407:fe80:8200::/40 maxlen: 40 2407:fe80:8300::/40 maxlen: 40 2407:fe80:8400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916FA51/F925B350361011EA9BD17474C4F9AE02/9Oy1PsIwU5wLV-WbRn0VT63rOYk.crl rsync://rpki.apnic.net/member_repository/A916FA51/F925B350361011EA9BD17474C4F9AE02/9Oy1PsIwU5wLV-WbRn0VT63rOYk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9Oy1PsIwU5wLV-WbRn0VT63rOYk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:18:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2816 (0xb00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916FA51 Validity Not Before: Dec 10 19:18:21 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=675893fc-bec3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:87:c7:fd:e2:50:bc:49:61:21:67:ca:96:3e: 3a:6d:b8:4e:e6:70:a3:cf:61:0c:32:56:41:a7:49: cd:ef:bc:60:cb:77:d1:a1:ba:be:ad:97:2f:95:ab: 1f:b9:9c:e0:47:46:10:ef:86:f9:e8:8f:6c:c6:59: 3d:1c:0d:69:94:33:75:07:59:8c:01:01:d4:da:c0: 00:1e:fe:1e:19:01:6e:fa:9b:b5:d2:be:33:d2:09: fd:85:3f:40:d6:17:c4:bc:ac:1a:5d:d8:00:d5:1e: d8:33:69:5a:01:ee:51:ff:f7:77:bb:8c:0a:a7:3e: 74:ed:41:28:32:26:c2:ad:f1:2d:60:cb:08:d6:27: 30:4d:02:44:f8:3d:e2:0f:7f:30:fd:99:d0:e0:0f: 3f:34:7d:81:9e:cf:d8:49:27:07:6d:b4:75:65:6d: 58:d0:ff:d3:75:75:ec:b7:e6:d0:f9:3a:a3:01:e7: 59:06:6f:af:d7:fe:39:20:0b:0a:fc:7f:73:e3:f9: c2:6b:94:3d:b2:07:b6:99:2a:0d:1a:61:b4:97:f3: ec:9f:c7:44:51:4f:38:2f:db:0b:c1:39:1f:68:93: e3:e2:cc:44:a7:a2:8f:a1:8e:83:69:82:96:74:7b: 8a:be:8b:1a:e5:6b:01:a9:f9:c9:a9:66:61:55:63: 89:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:DC:34:46:0B:4B:3E:12:73:1C:91:8D:41:C4:80:48:33:8F:DB:48 X509v3 Authority Key Identifier: keyid:F4:EC:B5:3E:C2:30:53:9C:0B:57:E5:9B:46:7D:15:4F:AD:EB:39:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916FA51/F925B350361011EA9BD17474C4F9AE02/9Oy1PsIwU5wLV-WbRn0VT63rOYk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9Oy1PsIwU5wLV-WbRn0VT63rOYk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916FA51/F925B350361011EA9BD17474C4F9AE02/A79D17F2361111EA95391375C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.199.152.0/22 203.78.144.0/22 IPv6: 2407:fe80::/32 Signature Algorithm: sha256WithRSAEncryption 50:a3:16:9c:de:be:da:f3:5e:00:db:b3:66:92:7d:dd:90:81: e2:47:bc:cb:5e:e3:e7:69:57:24:5e:24:a0:60:80:5d:bd:3e: f2:ac:18:d5:46:c0:95:a5:56:92:6c:8f:b1:4d:9c:34:7c:05: 79:fc:95:8c:6a:30:f5:c0:e1:8b:80:2a:9c:e7:54:7d:14:14: 3a:0d:ca:5e:49:2f:ad:a3:0b:83:7c:67:42:74:30:c7:f4:80: da:98:77:dd:83:f8:08:36:ca:53:8c:71:7f:4f:5d:fc:99:c1: d2:68:99:2f:82:9a:cb:6e:dd:15:82:12:68:c0:02:fa:bf:79: 53:39:ee:42:13:51:38:29:27:8a:76:61:f0:08:85:f5:57:9f: 12:1e:4f:14:3e:7a:90:eb:7f:d4:11:c5:ff:4f:71:6b:42:8e: 67:78:a0:8b:62:81:c2:ca:a2:97:fd:39:56:1b:e9:be:f7:44: 05:ed:5e:35:11:ec:02:4b:a0:5a:45:e9:7e:52:f3:06:b6:bf: f9:29:a9:06:4b:d2:e7:77:fd:22:32:85:71:1e:6a:a4:06:ee: 5e:1c:1b:72:e5:af:4e:4f:ca:f5:3a:03:fd:ef:89:5e:23:b6: 29:05:c0:ab:f5:0c:e3:2b:50:f5:8b:8e:2f:cd:d9:6d:da:b7: 18:0e:91:e6 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkZBNTExMTAvBgNVBAUTKEY0RUNCNTNFQzIzMDUzOUMwQjU3RTU5QjQ2N0QxNTRG QURFQjM5ODkwHhcNMjQxMjEwMTkxODIxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU4OTNmYy1iZWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14fH/eJQvElhIWfKlj46bbhO5nCjz2EMMlZBp0nN77xgy3fRobq+rZcvlasf uZzgR0YQ74b56I9sxlk9HA1plDN1B1mMAQHU2sAAHv4eGQFu+pu10r4z0gn9hT9A 1hfEvKwaXdgA1R7YM2laAe5R//d3u4wKpz507UEoMibCrfEtYMsI1icwTQJE+D3i D38w/ZnQ4A8/NH2Bns/YSScHbbR1ZW1Y0P/TdXXst+bQ+TqjAedZBm+v1/45IAsK /H9z4/nCa5Q9sge2mSoNGmG0l/Psn8dEUU84L9sLwTkfaJPj4sxEp6KPoY6DaYKW dHuKvosa5WsBqfnJqWZhVWOJbwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFOncNEYL Sz4ScxyRjUHEgEgzj9tIMB8GA1UdIwQYMBaAFPTstT7CMFOcC1flm0Z9FU+t6zmJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RkE1MS9GOTI1QjM1MDM2 MTAxMUVBOUJEMTc0NzRDNEY5QUUwMi85T3kxUHNJd1U1d0xWLVdiUm4wVlQ2M3JP WWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlPeTFQc0l3VTV3TFYtV2JSbjBWVDYzck9Zay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkZBNTEvRjkyNUIzNTAzNjEwMTFFQTlCRDE3NDc0QzRGOUFFMDIvQTc5RDE3RjIz NjExMTFFQTk1MzkxMzc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnx5gDBALLTpAwDQQCAAIwBwMFACQH/oAwDQYJKoZIhvcN AQELBQADggEBAFCjFpzevtrzXgDbs2aSfd2QgeJHvMte4+dpVyReJKBggF29PvKs GNVGwJWlVpJsj7FNnDR8BXn8lYxqMPXA4YuAKpznVH0UFDoNyl5JL62jC4N8Z0J0 MMf0gNqYd92D+Ag2ylOMcX9PXfyZwdJomS+Cmstu3RWCEmjAAvq/eVM57kITUTgp J4p2YfAIhfVXnxIeTxQ+epDrf9QRxf9PcWtCjmd4oItigcLKopf9OVYb6b73RAXt XjUR7AJLoFpF6X5S8wa2v/kpqQZL0ud3/SIyhXEeaqQG7l4cG3Llr05PyvU6A/3v iV4jtikFwKv1DOMrUPWLji/N2W3atxgOkeY= -----END CERTIFICATE-----Generated at Sat Apr 5 07:22:38 2025 by rpki-client