$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/08DCE5BC913611EBBD9B811AC4F9AE02.roa File: 08DCE5BC913611EBBD9B811AC4F9AE02.roa (raw, json) Hash identifier: xoqWpk6kq9UDnJpAtKinOiTxbgS2kwe2RRE2npE/Mm0= Subject key identifier: 39:B3:C9:8F:E1:0B:41:79:17:DD:74:D9:CC:C1:88:B0:80:FE:E4:5C Certificate issuer: /CN=A91AEAE7/serialNumber=DABFB3B59F7D716FD52D45A741AF159AF7EAF7BA Certificate serial: 0605 Authority key identifier: DA:BF:B3:B5:9F:7D:71:6F:D5:2D:45:A7:41:AF:15:9A:F7:EA:F7:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2r-ztZ99cW_VLUWnQa8Vmvfq97o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/08DCE5BC913611EBBD9B811AC4F9AE02.roa Signing time: Fri 06 Dec 2024 22:42:06 +0000 ROA not before: Fri 06 Dec 2024 22:42:06 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 17985 IP address blocks: 103.95.77.0/24 maxlen: 24 103.95.78.0/23 maxlen: 23 202.176.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.crl rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2r-ztZ99cW_VLUWnQa8Vmvfq97o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1541 (0x605) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEAE7 Validity Not Before: Dec 6 22:42:06 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67537dbd-8a7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:cd:cf:89:e4:1d:2d:e8:02:11:cd:70:81:bc: 74:66:92:64:ef:1b:c8:ac:d7:01:17:96:2e:bc:05: 35:02:ce:33:cd:f7:4f:a9:0d:14:76:8c:b8:67:68: f1:f4:ed:3b:b5:a3:75:b7:21:31:fc:f6:e8:8d:c2: 2b:c2:a2:75:45:b4:fc:04:0e:51:1f:71:b2:62:c9: bb:2f:0c:81:04:98:ad:73:6e:36:54:4f:d0:d8:90: 87:e4:8b:c4:bd:ca:d4:56:8a:6a:78:54:e6:94:23: 61:7b:e8:d7:6a:a6:88:84:7c:3a:86:b5:46:83:59: c7:46:c6:23:86:54:e5:f4:46:87:57:ab:94:63:4e: d4:d1:3d:15:9a:9b:66:c0:6a:a2:3a:29:64:2d:d5: 65:17:a0:38:30:68:1b:ae:00:93:16:f8:36:fe:ad: 49:ab:55:9f:31:cc:6d:2b:36:80:ed:3c:73:e8:17: 15:ba:b6:e8:b0:54:68:67:76:74:af:26:3a:87:f1: 30:c9:84:72:c4:26:68:2d:3f:cb:89:cd:05:75:bf: b7:34:65:90:6f:20:8c:fa:76:ae:64:ab:72:44:ea: d4:83:9b:4c:08:4e:b0:31:90:d9:60:e9:d0:b8:1a: de:1e:67:bd:61:04:81:bb:df:00:7b:26:f6:82:7a: 57:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:B3:C9:8F:E1:0B:41:79:17:DD:74:D9:CC:C1:88:B0:80:FE:E4:5C X509v3 Authority Key Identifier: keyid:DA:BF:B3:B5:9F:7D:71:6F:D5:2D:45:A7:41:AF:15:9A:F7:EA:F7:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/2r-ztZ99cW_VLUWnQa8Vmvfq97o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2r-ztZ99cW_VLUWnQa8Vmvfq97o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEAE7/E182579690F311EB9D2E0E4FC4F9AE02/08DCE5BC913611EBBD9B811AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.95.77.0-103.95.79.255 202.176.15.0/24 Signature Algorithm: sha256WithRSAEncryption 31:9a:01:72:77:0a:31:2c:eb:e4:2a:bf:d3:90:4e:5c:35:4f: a9:1a:b6:42:4c:4f:8d:06:14:f8:6e:a1:2a:e4:c1:d3:fc:34: 5a:47:30:1f:a9:19:98:a0:ba:1a:f3:f4:29:5a:63:f1:ed:58: d0:fe:14:07:bf:eb:27:fe:b0:95:40:32:91:e2:1d:dd:d4:02: c1:f5:5d:2b:e1:ee:17:ce:36:9c:62:f9:19:96:6d:96:70:4b: a0:a0:a6:28:67:b9:fa:f1:15:a4:95:10:fe:5c:ed:a3:8a:39: ba:6b:dc:13:25:66:1c:46:a3:86:5f:48:7a:3d:30:8a:2e:fe: 5c:7c:c7:b9:dd:e2:5f:33:a3:84:3d:be:ca:38:67:19:54:63: f0:ef:47:53:ee:fb:b8:e6:62:a5:03:0c:fb:7d:54:b4:4b:73: 14:fd:75:e0:71:38:3a:de:5f:34:e0:80:7a:70:82:98:82:57: d2:13:43:37:e4:d5:d8:3b:e7:b4:6f:53:5f:4d:b2:71:d5:56: 61:3b:b1:c3:34:2d:d2:70:ad:05:ad:36:74:2c:17:3f:ed:f1: 39:94:9b:c8:a1:92:56:86:ee:ca:f3:cb:ac:71:37:bb:14:5e: 18:be:27:b0:cd:c0:07:a3:c0:49:81:6a:9d:33:4c:3e:cc:ee: 8a:9f:36:f1 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVBRTcxMTAvBgNVBAUTKERBQkZCM0I1OUY3RDcxNkZENTJENDVBNzQxQUYxNTlB RjdFQUY3QkEwHhcNMjQxMjA2MjI0MjA2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUzN2RiZC04YTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAss3PieQdLegCEc1wgbx0ZpJk7xvIrNcBF5YuvAU1As4zzfdPqQ0Udoy4Z2jx 9O07taN1tyEx/PbojcIrwqJ1RbT8BA5RH3GyYsm7LwyBBJitc242VE/Q2JCH5IvE vcrUVopqeFTmlCNhe+jXaqaIhHw6hrVGg1nHRsYjhlTl9EaHV6uUY07U0T0Vmptm wGqiOilkLdVlF6A4MGgbrgCTFvg2/q1Jq1WfMcxtKzaA7Txz6BcVurbosFRoZ3Z0 ryY6h/EwyYRyxCZoLT/Lic0Fdb+3NGWQbyCM+nauZKtyROrUg5tMCE6wMZDZYOnQ uBreHme9YQSBu98Aeyb2gnpXsQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFDmzyY/h C0F5F9102czBiLCA/uRcMB8GA1UdIwQYMBaAFNq/s7WffXFv1S1Fp0GvFZr36ve6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUFFNy9FMTgyNTc5Njkw RjMxMUVCOUQyRTBFNEZDNEY5QUUwMi8yci16dFo5OWNXX1ZMVVduUWE4Vm12ZnE5 N28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyLXp0Wjk5Y1dfVkxVV25RYThWbXZmcTk3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUVBRTcvRTE4MjU3OTY5MEYzMTFFQjlEMkUwRTRGQzRGOUFFMDIvMDhEQ0U1QkM5 MTM2MTFFQkJEOUI4MTFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAGdfTQMEBGdfQAMEAMqwDzANBgkqhkiG9w0BAQsFAAOC AQEAMZoBcncKMSzr5Cq/05BOXDVPqRq2QkxPjQYU+G6hKuTB0/w0WkcwH6kZmKC6 GvP0KVpj8e1Y0P4UB7/rJ/6wlUAykeId3dQCwfVdK+HuF842nGL5GZZtlnBLoKCm KGe5+vEVpJUQ/lzto4o5umvcEyVmHEajhl9Iej0wii7+XHzHud3iXzOjhD2+yjhn GVRj8O9HU+77uOZipQMM+31UtEtzFP114HE4Ot5fNOCAenCCmIJX0hNDN+TV2Dvn tG9TX02ycdVWYTuxwzQt0nCtBa02dCwXP+3xOZSbyKGSVobuyvPLrHE3uxReGL4n sM3AB6PASYFqnTNMPszuip828Q== -----END CERTIFICATE-----Generated at Sat Apr 5 05:48:10 2025 by rpki-client