$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/531EFB4A8DD311EFAF53373AC4F9AE02.roa File: 531EFB4A8DD311EFAF53373AC4F9AE02.roa (raw, json) Hash identifier: LcCehnLIRoCgjwwcDQ7TUr2n1e7iAgFU0iCoo79xeiY= Subject key identifier: BF:47:FE:76:99:6E:43:61:36:9F:55:94:0C:14:0D:0A:03:AD:68:AB Certificate issuer: /CN=A91991D3/serialNumber=6B53F80F8E881B3731972663BA1897B74A92D44D Certificate serial: 0162 Authority key identifier: 6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/531EFB4A8DD311EFAF53373AC4F9AE02.roa Signing time: Sun 03 Nov 2024 02:35:51 +0000 ROA not before: Sun 03 Nov 2024 02:35:51 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 151373 IP address blocks: 103.101.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 02:15:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 354 (0x162) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3 Validity Not Before: Nov 3 02:35:51 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6726e187-30b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:67:31:25:77:31:52:86:2e:c0:9f:90:00:08: ed:db:96:30:ac:4a:30:ff:96:fa:51:60:42:2a:04: 4f:b3:18:02:52:b1:ad:3b:69:42:85:f9:e3:c5:1b: 3c:74:cb:4d:75:f5:50:0c:70:e0:ac:dc:8b:88:df: aa:91:23:91:bc:6b:57:05:c4:1e:b6:33:99:90:e9: 47:00:95:c1:d4:27:2c:36:c9:33:13:72:3f:ee:ba: 65:70:99:06:98:31:bf:af:ca:cd:13:eb:a2:46:62: cd:e5:8e:03:23:2a:94:ec:59:f4:fe:d6:6f:5d:95: c4:75:3c:97:ea:5f:34:f6:19:50:23:0f:b3:4f:48: 0f:dc:8d:fe:e4:d9:9b:f9:6e:e9:bb:5c:c2:e3:2b: 88:34:5a:03:1d:62:41:8f:b3:52:ce:06:cf:0e:68: da:28:53:6f:25:fd:09:65:47:96:67:7e:da:54:2e: 9c:46:d8:7f:9b:17:2f:02:25:66:1b:57:25:0b:1d: a7:bc:ce:87:34:18:f2:42:b4:96:cc:9a:e8:93:45: 9b:89:92:97:49:d4:97:ff:e3:b6:13:7b:3a:c7:ed: 79:26:3a:ce:07:ab:20:15:03:bb:c0:2c:97:71:c0: 40:70:d2:c9:03:77:99:55:86:8c:6e:1f:4f:9d:43: 3a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:47:FE:76:99:6E:43:61:36:9F:55:94:0C:14:0D:0A:03:AD:68:AB X509v3 Authority Key Identifier: keyid:6B:53:F8:0F:8E:88:1B:37:31:97:26:63:BA:18:97:B7:4A:92:D4:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/a1P4D46IGzcxlyZjuhiXt0qS1E0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a1P4D46IGzcxlyZjuhiXt0qS1E0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/5FA36E34892311EDBCA29613C4F9AE02/531EFB4A8DD311EFAF53373AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.221.0/24 Signature Algorithm: sha256WithRSAEncryption 66:37:c3:01:49:88:e2:c5:8f:c8:87:ce:b5:f5:64:07:1a:55: 20:91:94:bc:db:bf:2b:12:32:c5:51:ec:2a:17:a8:22:12:38: ab:3a:8e:87:3f:4b:9b:7f:e7:86:61:ba:76:12:ae:e8:90:45: 98:0f:ab:23:3d:34:1b:0d:16:d1:52:a4:65:ca:17:8d:a1:70: f0:28:28:9c:26:79:ff:d0:fa:6d:a6:1b:96:84:2e:03:8e:08: e9:81:8f:f3:33:11:cb:ea:c8:ef:e8:9e:ef:89:09:44:6d:db: a2:56:d8:a9:e4:ea:0d:b6:b2:41:9c:aa:c4:ad:db:c6:e5:37: ac:8b:38:75:5e:cc:36:ad:3a:6b:a3:bb:e2:bb:bc:b2:b8:61: 0d:ac:98:3c:bf:aa:10:36:fc:1f:a4:b8:03:fe:89:d9:a2:03: 53:1c:4c:bf:d1:71:94:23:c4:86:d0:9b:17:8c:31:da:6a:9f: 7f:87:49:b7:3e:f6:20:26:7d:ee:18:39:5f:ed:d2:72:6a:58: 64:8c:4a:6d:91:17:09:2d:51:fa:9f:6c:4b:aa:fd:37:b7:e2: 8d:3b:a6:d0:bc:f6:cb:c3:cf:7b:d6:27:e5:31:ad:86:0f:b6: e5:45:bf:45:97:7c:8e:cf:a7:c5:59:80:d0:92:47:c7:7c:e8: 81:ab:a7:54 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDZCNTNGODBGOEU4ODFCMzczMTk3MjY2M0JBMTg5N0I3 NEE5MkQ0NEQwHhcNMjQxMTAzMDIzNTUxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2ZTE4Ny0zMGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmcxJXcxUoYuwJ+QAAjt25YwrEow/5b6UWBCKgRPsxgCUrGtO2lChfnjxRs8 dMtNdfVQDHDgrNyLiN+qkSORvGtXBcQetjOZkOlHAJXB1CcsNskzE3I/7rplcJkG mDG/r8rNE+uiRmLN5Y4DIyqU7Fn0/tZvXZXEdTyX6l809hlQIw+zT0gP3I3+5Nmb +W7pu1zC4yuINFoDHWJBj7NSzgbPDmjaKFNvJf0JZUeWZ37aVC6cRth/mxcvAiVm G1clCx2nvM6HNBjyQrSWzJrok0WbiZKXSdSX/+O2E3s6x+15JjrOB6sgFQO7wCyX ccBAcNLJA3eZVYaMbh9PnUM6bwIDAQABo4IClTCCApEwHQYDVR0OBBYEFL9H/naZ bkNhNp9VlAwUDQoDrWirMB8GA1UdIwQYMBaAFGtT+A+OiBs3MZcmY7oYl7dKktRN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy81RkEzNkUzNDg5 MjMxMUVEQkNBMjk2MTNDNEY5QUUwMi9hMVA0RDQ2SUd6Y3hseVpqdWhpWHQwcVMx RTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ExUDRENDZJR3pjeGx5Wmp1aGlYdDBxUzFFMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxRDMvNUZBMzZFMzQ4OTIzMTFFREJDQTI5NjEzQzRGOUFFMDIvNTMxRUZCNEE4 REQzMTFFRkFGNTMzNzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnZd0wDQYJKoZIhvcNAQELBQADggEBAGY3wwFJiOLFj8iH zrX1ZAcaVSCRlLzbvysSMsVR7CoXqCISOKs6joc/S5t/54ZhunYSruiQRZgPqyM9 NBsNFtFSpGXKF42hcPAoKJwmef/Q+m2mG5aELgOOCOmBj/MzEcvqyO/onu+JCURt 26JW2Knk6g22skGcqsSt28blN6yLOHVezDatOmuju+K7vLK4YQ2smDy/qhA2/B+k uAP+idmiA1McTL/RcZQjxIbQmxeMMdpqn3+HSbc+9iAmfe4YOV/t0nJqWGSMSm2R FwktUfqfbEuq/Te34o07ptC89svDz3vWJ+UxrYYPtuVFv0WXfI7Pp8VZgNCSR8d8 6IGrp1Q= -----END CERTIFICATE-----Generated at Wed Apr 9 20:15:30 2025 by rpki-client