$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/57DD65D0D1FB11EDA0A31C2FC4F9AE02.roa File: 57DD65D0D1FB11EDA0A31C2FC4F9AE02.roa (raw, json) Hash identifier: FNFbf5sb9V0I6f51NgIRl7bd8+WZE2kCB/02TRMhw6k= Subject key identifier: 57:18:E2:7D:1F:DA:F7:80:B1:8C:A7:1C:F1:CE:72:02:32:2F:BF:D7 Certificate issuer: /CN=A91A3D65/serialNumber=5008BE041F9997B259D2584483A53A0DFF0B178C Certificate serial: 018A Authority key identifier: 50:08:BE:04:1F:99:97:B2:59:D2:58:44:83:A5:3A:0D:FF:0B:17:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/57DD65D0D1FB11EDA0A31C2FC4F9AE02.roa Signing time: Sun 05 Jan 2025 02:05:41 +0000 ROA not before: Sun 05 Jan 2025 02:05:41 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 132080 IP address blocks: 103.11.216.0/22 maxlen: 22 103.11.216.0/24 maxlen: 24 103.11.217.0/24 maxlen: 24 103.11.218.0/24 maxlen: 24 103.11.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.crl rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:39:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 394 (0x18a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3D65 Validity Not Before: Jan 5 02:05:41 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6779e8f5-0236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:dc:76:8a:5a:01:76:8d:0f:0e:0c:7e:ae:3e: 71:b8:f5:c1:b0:dd:7a:6d:87:b4:f9:92:63:bb:a2: a4:68:1b:b7:8a:17:77:7a:37:39:3d:68:34:c1:a8: b3:55:d2:ed:6c:ba:ca:ae:fc:ab:26:5e:ee:e0:e4: 8c:1c:72:ba:de:08:2d:08:fe:aa:48:2a:bb:bd:f8: be:1f:bb:2c:4e:d3:bf:28:1e:65:77:31:c5:e0:dd: 50:21:eb:c4:cd:45:54:3e:f4:14:71:5d:23:6c:39: 27:35:50:eb:7f:21:c0:61:7c:a7:34:4e:5e:61:a6: d3:3a:cb:90:1f:36:45:00:ef:71:fa:3e:76:31:73: bf:64:55:07:42:f0:d2:c6:6b:67:8a:84:ae:00:dd: bb:f6:be:ce:be:c6:ce:90:42:27:26:ed:9a:dd:b6: c6:7f:77:e6:b3:5f:a7:33:cc:c7:67:fe:41:58:bd: f7:1e:12:9e:88:c3:28:f4:17:73:52:4c:e4:6b:bd: e7:67:7f:81:7b:27:46:74:7b:fb:39:3f:22:b2:ec: 3c:b9:f9:41:d4:ea:2c:77:fa:fe:43:91:9f:fb:d3: 3a:c2:01:5c:ad:c1:69:a3:20:80:97:63:c9:0b:41: d8:8f:7e:d0:9b:12:e8:42:f5:5e:ab:5d:96:8a:7d: d4:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:18:E2:7D:1F:DA:F7:80:B1:8C:A7:1C:F1:CE:72:02:32:2F:BF:D7 X509v3 Authority Key Identifier: keyid:50:08:BE:04:1F:99:97:B2:59:D2:58:44:83:A5:3A:0D:FF:0B:17:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UAi-BB-Zl7JZ0lhEg6U6Df8LF4w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3D65/EA1E62D67C7511ED8BE65B38C4F9AE02/57DD65D0D1FB11EDA0A31C2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.11.216.0/22 Signature Algorithm: sha256WithRSAEncryption 46:cb:f9:1c:fb:65:32:a3:15:ee:c8:58:32:d6:87:48:a4:26: 4c:57:a5:f8:a8:18:31:58:26:d2:96:90:20:34:6a:fe:ad:8a: d9:e0:85:cd:d2:2e:72:ab:50:9c:5b:b0:2e:ad:f8:81:9b:2f: 55:fd:1b:bd:86:64:bb:9a:eb:1b:63:1a:2e:0f:01:f2:d0:e3: a6:55:6b:5b:81:90:7b:5f:17:7e:45:11:35:51:a0:53:9d:95: 51:ed:50:fc:1f:44:84:43:0a:03:50:aa:b8:06:4c:34:6c:07: bb:36:de:1d:a3:7d:65:f8:d5:f5:f5:ff:05:4b:e0:67:e9:94: c8:5b:66:57:94:cc:b8:7f:47:f7:64:06:ea:ff:29:63:5a:d0: 8b:9a:8f:1d:bf:c2:ba:9d:ff:70:74:a9:1f:f0:05:0d:93:13: 9d:aa:4a:08:8b:a1:aa:ad:fc:5c:b3:4a:f0:6c:7a:dc:17:86: 4f:df:34:ca:e9:47:13:39:da:c5:54:ac:12:ec:63:63:a4:8f: 2f:ff:e1:e9:87:d8:37:e7:8c:83:a5:c3:63:31:ae:72:2f:28: ab:1a:1f:9b:9f:43:3d:75:57:3f:2f:dc:d5:7a:b2:17:cb:31: a8:0d:d1:aa:19:74:f5:b6:f2:63:8b:f6:01:b8:60:de:08:bf: 41:84:ad:fd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNENjUxMTAvBgNVBAUTKDUwMDhCRTA0MUY5OTk3QjI1OUQyNTg0NDgzQTUzQTBE RkYwQjE3OEMwHhcNMjUwMTA1MDIwNTQxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc5ZThmNS0wMjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmNx2iloBdo0PDgx+rj5xuPXBsN16bYe0+ZJju6KkaBu3ihd3ejc5PWg0waiz VdLtbLrKrvyrJl7u4OSMHHK63ggtCP6qSCq7vfi+H7ssTtO/KB5ldzHF4N1QIevE zUVUPvQUcV0jbDknNVDrfyHAYXynNE5eYabTOsuQHzZFAO9x+j52MXO/ZFUHQvDS xmtnioSuAN279r7OvsbOkEInJu2a3bbGf3fms1+nM8zHZ/5BWL33HhKeiMMo9Bdz Ukzka73nZ3+BeydGdHv7OT8isuw8uflB1Oosd/r+Q5Gf+9M6wgFcrcFpoyCAl2PJ C0HYj37QmxLoQvVeq12Win3UjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFcY4n0f 2veAsYynHPHOcgIyL7/XMB8GA1UdIwQYMBaAFFAIvgQfmZeyWdJYRIOlOg3/CxeM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0Q2NS9FQTFFNjJENjdD NzUxMUVEOEJFNjVCMzhDNEY5QUUwMi9VQWktQkItWmw3SlowbGhFZzZVNkRmOExG NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VBaS1CQi1abDdKWjBsaEVnNlU2RGY4TEY0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNENjUvRUExRTYyRDY3Qzc1MTFFRDhCRTY1QjM4QzRGOUFFMDIvNTdERDY1RDBE MUZCMTFFREEwQTMxQzJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnC9gwDQYJKoZIhvcNAQELBQADggEBAEbL+Rz7ZTKjFe7I WDLWh0ikJkxXpfioGDFYJtKWkCA0av6titnghc3SLnKrUJxbsC6t+IGbL1X9G72G ZLua6xtjGi4PAfLQ46ZVa1uBkHtfF35FETVRoFOdlVHtUPwfRIRDCgNQqrgGTDRs B7s23h2jfWX41fX1/wVL4GfplMhbZleUzLh/R/dkBur/KWNa0Iuajx2/wrqd/3B0 qR/wBQ2TE52qSgiLoaqt/FyzSvBsetwXhk/fNMrpRxM52sVUrBLsY2Okjy//4emH 2DfnjIOlw2MxrnIvKKsaH5ufQz11Vz8v3NV6shfLMagN0aoZdPW28mOL9gG4YN4I v0GErf0= -----END CERTIFICATE-----Generated at Sat Apr 5 07:14:13 2025 by rpki-client