$ rpki-client -vvf rpki.apnic.net/member_repository/A9190992/5B3D08025C0E11EC97603617C4F9AE02/5B24C51A60ED11EC874B903BC4F9AE02.roa File: 5B24C51A60ED11EC874B903BC4F9AE02.roa (raw, json) Hash identifier: y1lAMNBHmo8LOCH2UbQd6lp4y3+4hOTNpmp++HIjEDk= Subject key identifier: C2:8F:A9:8C:9A:C6:B4:57:67:7F:BE:D4:81:28:F0:C2:EF:9C:E6:1B Certificate issuer: /CN=A9190992/serialNumber=7F65C110E2A17E41D770FC2DFA403D16A33E5CAF Certificate serial: 0419 Authority key identifier: 7F:65:C1:10:E2:A1:7E:41:D7:70:FC:2D:FA:40:3D:16:A3:3E:5C:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2XBEOKhfkHXcPwt-kA9FqM-XK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190992/5B3D08025C0E11EC97603617C4F9AE02/5B24C51A60ED11EC874B903BC4F9AE02.roa Signing time: Wed 05 Feb 2025 00:03:43 +0000 ROA not before: Wed 05 Feb 2025 00:03:43 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 141449 IP address blocks: 103.159.174.0/24 maxlen: 24 103.159.175.0/24 maxlen: 24 2406:d740::/48 maxlen: 48 2406:d740:1::/48 maxlen: 48 2406:d740:2::/48 maxlen: 48 2406:d740:3::/48 maxlen: 48 2406:d740:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190992/5B3D08025C0E11EC97603617C4F9AE02/f2XBEOKhfkHXcPwt-kA9FqM-XK8.crl rsync://rpki.apnic.net/member_repository/A9190992/5B3D08025C0E11EC97603617C4F9AE02/f2XBEOKhfkHXcPwt-kA9FqM-XK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2XBEOKhfkHXcPwt-kA9FqM-XK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 23:58:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1049 (0x419) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190992, serialNumber=7F65C110E2A17E41D770FC2DFA403D16A33E5CAF Validity Not Before: Feb 5 00:03:43 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a2aade-2dc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:6b:8d:92:05:7c:81:ef:6c:2a:ca:0d:ed:79: 30:f3:6b:61:e3:ab:ab:c8:24:f5:9c:c1:13:1d:2c: 44:7d:ab:6d:dd:c9:d7:48:47:17:96:1d:7c:8b:d8: ca:da:fc:ec:7e:d8:ec:00:78:55:7d:0e:ea:a8:02: 97:55:45:dd:3f:a7:a5:5f:08:de:26:6a:c3:6e:9e: 9a:69:b8:21:a3:c9:ce:19:bc:ca:1d:e2:56:e9:f9: ff:37:6b:fd:72:c4:3d:89:c0:c9:8c:94:8a:22:3c: 59:df:4e:12:b2:c1:04:65:92:40:e4:0d:e7:85:31: 47:b1:9c:7c:d3:b4:5f:49:26:4e:75:95:93:42:dc: c0:a0:7b:43:d0:d2:70:f0:53:5e:7f:4a:14:f7:20: 0b:70:bb:b2:ce:35:f9:11:9b:05:75:8c:17:39:52: 22:85:34:de:f4:a1:1f:1c:28:1f:63:b9:bc:8c:a7: eb:cf:a1:32:2f:29:1c:ff:3c:99:aa:72:c2:fb:76: 22:f1:5e:65:9d:46:06:56:ab:0b:86:46:1f:09:22: 41:fc:89:ea:57:df:4a:a0:4b:cf:e0:c4:80:df:3e: 47:04:a2:fa:bb:26:5f:37:e8:09:fb:d9:e0:76:b1: 1c:fc:b1:c4:f7:a0:1e:f4:3e:05:db:82:67:60:20: 41:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:8F:A9:8C:9A:C6:B4:57:67:7F:BE:D4:81:28:F0:C2:EF:9C:E6:1B X509v3 Authority Key Identifier: keyid:7F:65:C1:10:E2:A1:7E:41:D7:70:FC:2D:FA:40:3D:16:A3:3E:5C:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190992/5B3D08025C0E11EC97603617C4F9AE02/f2XBEOKhfkHXcPwt-kA9FqM-XK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2XBEOKhfkHXcPwt-kA9FqM-XK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190992/5B3D08025C0E11EC97603617C4F9AE02/5B24C51A60ED11EC874B903BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.174.0/23 IPv6: 2406:d740::-2406:d740:4:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption a6:90:10:99:c2:54:66:b5:c6:05:d0:2a:8a:0d:c8:80:29:a8: da:e4:4e:38:30:3b:05:4d:3e:ac:c1:50:94:fd:5f:e6:ac:08: a0:8a:f0:49:77:f6:05:d8:71:ba:6e:fb:ab:48:34:f7:1c:84: 4c:f4:24:97:78:54:24:7b:ba:cd:eb:80:b4:d6:ac:23:93:b7: 92:9c:f6:11:b2:03:60:5a:9c:f9:b1:a7:d7:d1:4e:57:e2:11: f3:dd:96:9d:27:db:d7:9e:49:91:64:f4:67:ef:e2:bb:db:22: c6:dd:06:b9:85:91:1d:98:ab:cb:2b:43:42:c4:c7:10:2d:a2: e9:f1:3d:15:b6:f2:d7:05:7a:2e:ca:a1:1f:64:9e:83:5a:87: 37:51:c1:08:1b:46:ee:32:ca:a7:8c:08:34:e4:d4:61:a0:57: f7:83:99:87:96:bc:8f:14:0c:a6:5d:a5:b5:a1:94:70:62:0d: 6b:a0:19:84:dc:f1:17:6d:5c:3b:a8:10:f4:7e:e3:51:2c:9a: 60:b6:2e:c2:7a:d1:e6:c9:25:d7:e8:8a:0d:85:c2:5f:21:4b: f8:7c:ce:c9:d6:62:11:83:48:b0:bd:2d:8c:72:0d:6a:ea:e0: 9d:ae:f1:b8:a3:f0:ff:a0:43:78:a5:f7:05:f6:95:6e:5a:ce: f0:46:17:fa -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICBBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTA5OTIxMTAvBgNVBAUTKDdGNjVDMTEwRTJBMTdFNDFENzcwRkMyREZBNDAzRDE2 QTMzRTVDQUYwHhcNMjUwMjA1MDAwMzQzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyYWFkZS0yZGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA92uNkgV8ge9sKsoN7Xkw82th46uryCT1nMETHSxEfatt3cnXSEcXlh18i9jK 2vzsftjsAHhVfQ7qqAKXVUXdP6elXwjeJmrDbp6aabgho8nOGbzKHeJW6fn/N2v9 csQ9icDJjJSKIjxZ304SssEEZZJA5A3nhTFHsZx807RfSSZOdZWTQtzAoHtD0NJw 8FNef0oU9yALcLuyzjX5EZsFdYwXOVIihTTe9KEfHCgfY7m8jKfrz6EyLykc/zyZ qnLC+3Yi8V5lnUYGVqsLhkYfCSJB/InqV99KoEvP4MSA3z5HBKL6uyZfN+gJ+9ng drEc/LHE96Ae9D4F24JnYCBBPQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFMKPqYya xrRXZ3++1IEo8MLvnOYbMB8GA1UdIwQYMBaAFH9lwRDioX5B13D8LfpAPRajPlyv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDk5Mi81QjNEMDgwMjVD MEUxMUVDOTc2MDM2MTdDNEY5QUUwMi9mMlhCRU9LaGZrSFhjUHd0LWtBOUZxTS1Y SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YyWEJFT0toZmtIWGNQd3Qta0E5RnFNLVhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTA5OTIvNUIzRDA4MDI1QzBFMTFFQzk3NjAzNjE3QzRGOUFFMDIvNUIyNEM1MUE2 MEVEMTFFQzg3NEI5MDNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAFnn64wGAQCAAIwEjAQAwUGJAbXQAMHACQG10AABDANBgkq hkiG9w0BAQsFAAOCAQEAppAQmcJUZrXGBdAqig3IgCmo2uROODA7BU0+rMFQlP1f 5qwIoIrwSXf2Bdhxum77q0g09xyETPQkl3hUJHu6zeuAtNasI5O3kpz2EbIDYFqc +bGn19FOV+IR892WnSfb155JkWT0Z+/iu9sixt0GuYWRHZiryytDQsTHEC2i6fE9 Fbby1wV6LsqhH2Seg1qHN1HBCBtG7jLKp4wINOTUYaBX94OZh5a8jxQMpl2ltaGU cGINa6AZhNzxF21cO6gQ9H7jUSyaYLYuwnrR5skl1+iKDYXCXyFL+HzOydZiEYNI sL0tjHINaurgna7xuKPw/6BDeKX3BfaVblrO8EYX+g== -----END CERTIFICATE-----Generated at Tue Apr 22 12:37:39 2025 by rpki-client