$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/7E2C4774F5C911ECAE15AE0BC4F9AE02.roa File: 7E2C4774F5C911ECAE15AE0BC4F9AE02.roa (raw, json) Hash identifier: kA7t78kVD0080frBabkWfuPm4WaZvOtc8b/fOgU9xMM= Subject key identifier: 1C:BE:92:9F:E8:2B:71:0D:4D:40:18:7C:1A:A4:A7:87:A9:6C:F8:A5 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4913 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/7E2C4774F5C911ECAE15AE0BC4F9AE02.roa Signing time: Tue 31 Dec 2024 09:28:21 +0000 ROA not before: Tue 31 Dec 2024 09:28:21 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135901 IP address blocks: 103.68.68.0/24 maxlen: 24 103.68.69.0/24 maxlen: 24 103.68.70.0/24 maxlen: 24 103.68.71.0/24 maxlen: 24 103.172.78.0/24 maxlen: 24 103.172.79.0/24 maxlen: 24 103.173.228.0/24 maxlen: 24 103.173.229.0/24 maxlen: 24 103.188.244.0/24 maxlen: 24 103.188.245.0/24 maxlen: 24 113.192.16.0/24 maxlen: 24 113.192.17.0/24 maxlen: 24 2401:57e0::/48 maxlen: 48 2406:cbc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:33:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18707 (0x4913) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A Validity Not Before: Dec 31 09:28:21 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6773b935-ace1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1b:7f:3c:f4:3c:e2:9b:2f:91:d5:8c:da:df: b6:a3:bf:14:9c:2c:14:0e:c8:2e:84:73:13:51:08: 75:c5:82:13:ac:74:11:89:aa:ba:f0:29:6c:5c:fd: f8:74:04:cb:53:eb:df:8d:d0:21:ca:db:a0:25:6a: e6:4b:4e:ca:77:e3:7b:ca:58:be:0c:82:a8:83:ec: eb:94:c0:fd:c2:3c:76:3e:0e:2d:b3:50:73:7f:e2: 87:53:19:c2:54:ce:a3:bc:a6:bc:fa:30:2b:3a:6d: 6b:7c:b3:4f:32:72:ab:56:1e:a5:70:dd:aa:0d:89: 01:72:33:6e:a7:6c:e4:4a:22:d7:d4:5e:1b:50:44: a6:d1:d2:e8:b6:2d:46:b9:94:d6:4c:4a:7f:44:36: d8:2e:82:e2:4d:fc:62:7e:97:38:d8:27:29:56:9a: da:2e:a1:a1:71:29:c5:a0:4c:99:6b:9f:02:6b:f5: cc:19:75:17:04:c6:9f:5e:a4:0f:f6:27:bc:c1:7f: 7b:c6:6a:67:55:fe:48:7c:9d:62:ce:06:b6:09:3e: f7:7c:40:a6:08:99:4e:34:b8:1f:25:5f:34:d6:1b: 7b:3f:9b:9e:42:27:78:84:d3:69:72:c2:9c:da:53: d1:06:f4:26:0c:f7:13:e5:f6:f8:2c:c8:12:1c:5e: 61:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:BE:92:9F:E8:2B:71:0D:4D:40:18:7C:1A:A4:A7:87:A9:6C:F8:A5 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/7E2C4774F5C911ECAE15AE0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.68.0/22 103.172.78.0/23 103.173.228.0/23 103.188.244.0/23 113.192.16.0/23 IPv6: 2401:57e0::/48 2406:cbc0::/48 Signature Algorithm: sha256WithRSAEncryption 75:14:f0:e6:15:d9:ae:4b:b7:a0:47:40:ff:ca:26:f1:b6:b3: bb:e3:4a:bf:3b:69:29:ba:72:18:dc:fe:e9:6a:19:0c:0e:86: 31:1d:f4:18:ef:73:d6:e8:17:44:28:40:5d:0e:49:d0:67:28: 2a:7a:7d:8d:54:4a:38:11:c7:53:18:5c:4f:03:76:52:b7:81: 9a:07:78:6b:89:ee:41:2f:1d:d8:65:8d:b0:f6:14:b6:f1:f1: 6a:63:f0:5b:be:b7:a7:40:5d:2c:b7:36:36:58:8c:71:c3:af: 2a:c6:a0:c5:62:ac:d0:6d:c7:45:eb:14:9a:b3:44:37:91:f4: 32:1b:89:c0:d2:b2:27:df:51:9c:86:58:c6:f6:77:f9:a5:21: 32:c2:08:f6:c2:a7:3c:8a:9e:5f:f0:b0:14:16:5c:3e:87:9a: bf:51:f0:c9:b0:b5:76:6d:73:e8:8e:53:a6:07:89:28:a2:98: 9c:46:f5:42:52:c3:06:2a:0c:da:cb:57:28:27:c4:dc:9e:3e: 76:a5:d7:e1:e4:73:91:d5:22:24:10:4e:e9:83:91:17:52:75: 49:0c:fd:ef:67:de:07:53:5c:07:d6:d4:42:c1:78:aa:99:73: b1:1e:9a:40:e3:18:0f:00:40:ca:7d:54:bb:5d:fc:ad:ce:56: 18:19:36:9c -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgICSRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQxMjMxMDkyODIxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzczYjkzNS1hY2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuht/PPQ84psvkdWM2t+2o78UnCwUDsguhHMTUQh1xYITrHQRiaq68ClsXP34 dATLU+vfjdAhytugJWrmS07Kd+N7yli+DIKog+zrlMD9wjx2Pg4ts1Bzf+KHUxnC VM6jvKa8+jArOm1rfLNPMnKrVh6lcN2qDYkBcjNup2zkSiLX1F4bUESm0dLoti1G uZTWTEp/RDbYLoLiTfxifpc42CcpVpraLqGhcSnFoEyZa58Ca/XMGXUXBMafXqQP 9ie8wX97xmpnVf5IfJ1izga2CT73fECmCJlONLgfJV801ht7P5ueQid4hNNpcsKc 2lPRBvQmDPcT5fb4LMgSHF5hOQIDAQABo4ICxzCCAsMwHQYDVR0OBBYEFBy+kp/o K3ENTUAYfBqkp4epbPilMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvN0UyQzQ3NzRG NUM5MTFFQ0FFMTVBRTBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUQYIKwYBBQUHAQcBAf8E QjBAMCQEAgABMB4DBAJnREQDBAFnrE4DBAFnreQDBAFnvPQDBAFxwBAwGAQCAAIw EgMHACQBV+AAAAMHACQGy8AAADANBgkqhkiG9w0BAQsFAAOCAQEAdRTw5hXZrku3 oEdA/8om8bazu+NKvztpKbpyGNz+6WoZDA6GMR30GO9z1ugXRChAXQ5J0GcoKnp9 jVRKOBHHUxhcTwN2UreBmgd4a4nuQS8d2GWNsPYUtvHxamPwW763p0BdLLc2NliM ccOvKsagxWKs0G3HResUmrNEN5H0MhuJwNKyJ99RnIZYxvZ3+aUhMsII9sKnPIqe X/CwFBZcPoeav1HwybC1dm1z6I5TpgeJKKKYnEb1QlLDBioM2stXKCfE3J4+dqXX 4eRzkdUiJBBO6YORF1J1SQz972feB1NcB9bUQsF4qplzsR6aQOMYDwBAyn1Uu138 rc5WGBk2nA== -----END CERTIFICATE-----Generated at Sat Apr 5 14:41:15 2025 by rpki-client