$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/7DAE5EB25AE011EFBA58F07FC4F9AE02.roa File: 7DAE5EB25AE011EFBA58F07FC4F9AE02.roa (raw, json) Hash identifier: Wp/6wyEXkRXlx5jv/S/ukoLxXoe3Zkz5HAA1XVAZayI= Subject key identifier: AA:A1:94:39:3C:F9:73:81:2C:57:57:7F:C0:F0:5F:8B:95:9B:86:D6 Certificate issuer: /CN=A91A4690/serialNumber=02CFF7798F053E9C81FDCCED7962ECBB76C1D21A Certificate serial: 49 Authority key identifier: 02:CF:F7:79:8F:05:3E:9C:81:FD:CC:ED:79:62:EC:BB:76:C1:D2:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/As_3eY8FPpyB_czteWLsu3bB0ho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/7DAE5EB25AE011EFBA58F07FC4F9AE02.roa Signing time: Fri 27 Dec 2024 05:38:52 +0000 ROA not before: Fri 27 Dec 2024 05:38:52 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 26658 IP address blocks: 59.153.160.0/22 maxlen: 22 103.198.204.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/As_3eY8FPpyB_czteWLsu3bB0ho.crl rsync://rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/As_3eY8FPpyB_czteWLsu3bB0ho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/As_3eY8FPpyB_czteWLsu3bB0ho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 05:57:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4690 Validity Not Before: Dec 27 05:38:52 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=676e3d6b-4dd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:43:cd:1f:d4:43:30:37:54:b5:ae:0e:5d:16: 34:e8:78:44:01:1d:c9:56:8c:46:8a:f0:7a:80:cd: 6a:1c:de:cd:e2:5f:ca:b4:0f:f5:00:5d:28:e1:80: 32:e3:05:25:83:13:d4:3d:c0:41:0e:a8:17:04:0c: 25:29:a0:f1:f8:65:e3:cd:8f:7a:40:52:65:b5:5b: 9f:40:1c:f1:7c:b7:54:e6:bd:df:a1:02:fe:ea:6d: 44:4b:ed:90:c2:05:12:60:12:08:2a:88:6e:93:fd: 84:81:22:3e:c0:d4:20:8d:02:c9:62:24:62:8f:b7: 6c:eb:38:20:8b:86:0b:25:1a:c8:19:4c:7c:96:8b: 0c:c9:e9:a2:84:3b:f8:67:80:61:b2:ef:0d:bb:53: 79:ae:24:cd:f8:77:b0:9a:fe:d2:2b:69:f6:4a:c4: 18:49:ae:2d:0c:76:da:6f:3b:86:ac:d2:4c:cb:ef: 3c:ac:0e:a1:6b:58:95:0b:00:29:58:13:12:fb:88: b7:86:85:1c:5e:1a:31:d5:72:9a:6d:b0:9f:6c:46: 3f:38:c7:29:f6:b8:e3:4f:de:d7:8e:a5:7e:e7:e3: aa:bb:7b:2a:56:95:bc:6a:32:fb:e8:eb:dc:95:e0: 41:7b:cd:1e:2b:2b:80:fa:86:00:9a:53:e4:97:47: 6e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A1:94:39:3C:F9:73:81:2C:57:57:7F:C0:F0:5F:8B:95:9B:86:D6 X509v3 Authority Key Identifier: keyid:02:CF:F7:79:8F:05:3E:9C:81:FD:CC:ED:79:62:EC:BB:76:C1:D2:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/As_3eY8FPpyB_czteWLsu3bB0ho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/As_3eY8FPpyB_czteWLsu3bB0ho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4690/409C970A5AE011EF8582707FC4F9AE02/7DAE5EB25AE011EFBA58F07FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.160.0/22 103.198.204.0/22 Signature Algorithm: sha256WithRSAEncryption c4:d6:ec:a5:b5:2a:9d:e9:de:1d:6e:89:a1:f0:52:21:5c:e6: b7:cf:ea:3b:85:6f:90:43:2c:52:0f:f2:1c:9e:d3:45:61:63: 6c:2d:11:fa:36:d7:34:76:80:b3:5d:57:ff:18:a0:25:2d:4d: fc:68:ba:23:3a:b9:99:f3:42:84:3b:c9:bb:b9:46:da:cf:d3: 2d:84:2f:89:1b:2e:ee:dd:43:ca:de:18:9f:3e:2f:6f:ce:50: aa:e4:ea:9a:1b:f9:49:43:54:a1:a0:3b:8c:87:86:93:f5:20: d7:3b:91:e9:e5:4e:be:cc:22:a4:a8:8f:cf:21:bc:87:85:06: 65:a2:96:26:72:7f:42:a7:cf:6e:6d:83:23:42:ac:c3:81:40: 08:a1:d5:f8:95:f9:7f:17:22:aa:c2:d5:ed:24:c6:f8:76:d7: bf:1e:fe:50:26:df:9b:ab:ee:ef:af:e0:43:9b:b6:48:20:4a: f5:e0:53:31:9b:17:66:5a:96:fb:1e:8c:d6:ee:f7:e3:64:b8: c0:a8:bb:2c:71:55:ae:94:73:e9:3f:1d:43:65:23:60:da:86: e4:70:01:bd:66:53:e8:80:fa:7a:08:35:e3:98:16:36:91:7b: fd:f9:83:af:b2:e3:3c:e9:02:8d:4b:51:45:17:75:87:33:be: 96:3b:ca:41 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NDY5MDExMC8GA1UEBRMoMDJDRkY3Nzk4RjA1M0U5QzgxRkRDQ0VENzk2MkVDQkI3 NkMxRDIxQTAeFw0yNDEyMjcwNTM4NTJaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NmUzZDZiLTRkZDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHQ80f1EMwN1S1rg5dFjToeEQBHclWjEaK8HqAzWoc3s3iX8q0D/UAXSjhgDLj BSWDE9Q9wEEOqBcEDCUpoPH4ZePNj3pAUmW1W59AHPF8t1Tmvd+hAv7qbURL7ZDC BRJgEggqiG6T/YSBIj7A1CCNAsliJGKPt2zrOCCLhgslGsgZTHyWiwzJ6aKEO/hn gGGy7w27U3muJM34d7Ca/tIrafZKxBhJri0MdtpvO4as0kzL7zysDqFrWJULAClY ExL7iLeGhRxeGjHVcpptsJ9sRj84xyn2uONP3teOpX7n46q7eypWlbxqMvvo69yV 4EF7zR4rK4D6hgCaU+SXR27zAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUqqGUOTz5 c4EsV1d/wPBfi5WbhtYwHwYDVR0jBBgwFoAUAs/3eY8FPpyB/czteWLsu3bB0how DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0NjkwLzQwOUM5NzBBNUFF MDExRUY4NTgyNzA3RkM0RjlBRTAyL0FzXzNlWThGUHB5Ql9jenRlV0xzdTNiQjBo by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQXNfM2VZOEZQcHlCX2N6dGVXTHN1M2JCMGhvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDY5MC80MDlDOTcwQTVBRTAxMUVGODU4MjcwN0ZDNEY5QUUwMi83REFFNUVCMjVB RTAxMUVGQkE1OEYwN0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAjuZoAMEAmfGzDANBgkqhkiG9w0BAQsFAAOCAQEAxNbspbUq neneHW6JofBSIVzmt8/qO4VvkEMsUg/yHJ7TRWFjbC0R+jbXNHaAs11X/xigJS1N /Gi6Izq5mfNChDvJu7lG2s/TLYQviRsu7t1Dyt4Ynz4vb85QquTqmhv5SUNUoaA7 jIeGk/Ug1zuR6eVOvswipKiPzyG8h4UGZaKWJnJ/QqfPbm2DI0Ksw4FACKHV+JX5 fxciqsLV7STG+HbXvx7+UCbfm6vu76/gQ5u2SCBK9eBTMZsXZlqW+x6M1u7342S4 wKi7LHFVrpRz6T8dQ2UjYNqG5HABvWZT6ID6egg145gWNpF7/fmDr7LjPOkCjUtR RRd1hzO+ljvKQQ== -----END CERTIFICATE-----Generated at Sun Apr 6 01:44:22 2025 by rpki-client