$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0380/77224E947BCB11EFA2489211C4F9AE02/09FB57587C7411EFB8CF8A27C4F9AE02.roa File: 09FB57587C7411EFB8CF8A27C4F9AE02.roa (raw, json) Hash identifier: Ff+p+1djhae9xDw2WzvBRUC27EEOylWqO6y0fj0fAnI= Subject key identifier: DE:29:F2:27:2B:A3:5D:6B:0E:FB:CE:84:44:37:8F:41:6D:A6:67:99 Certificate issuer: /CN=A91B0380/serialNumber=5BD324A69BD26EDDADF5129CD18F77A1D80523B6 Certificate serial: 3E Authority key identifier: 5B:D3:24:A6:9B:D2:6E:DD:AD:F5:12:9C:D1:8F:77:A1:D8:05:23:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9MkppvSbt2t9RKc0Y93odgFI7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0380/77224E947BCB11EFA2489211C4F9AE02/09FB57587C7411EFB8CF8A27C4F9AE02.roa Signing time: Tue 14 Jan 2025 07:49:12 +0000 ROA not before: Tue 14 Jan 2025 07:49:12 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 18361 IP address blocks: 103.239.128.0/23 maxlen: 23 103.239.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0380/77224E947BCB11EFA2489211C4F9AE02/W9MkppvSbt2t9RKc0Y93odgFI7Y.crl rsync://rpki.apnic.net/member_repository/A91B0380/77224E947BCB11EFA2489211C4F9AE02/W9MkppvSbt2t9RKc0Y93odgFI7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9MkppvSbt2t9RKc0Y93odgFI7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:14:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0380 Validity Not Before: Jan 14 07:49:12 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=678616f7-871c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ed:6b:a8:72:08:ad:73:4c:05:65:28:bf:f9: 71:48:56:9a:fe:eb:ee:9d:78:e8:1c:1d:65:7b:34: 30:29:02:70:95:a8:df:4b:d7:60:7d:23:a4:14:b2: 1c:a4:ce:97:a0:42:23:2c:92:0a:4c:ba:18:9f:95: 1d:cc:79:66:26:b3:3d:c0:77:3e:d8:5f:0a:a7:e8: 17:f7:75:00:78:1d:89:9f:68:cc:81:84:31:f1:12: d8:0c:4f:93:fc:27:fe:ba:2c:dc:29:0d:5d:38:4d: 63:fe:e0:57:1f:8c:4a:e6:c7:d5:b9:51:22:bf:2f: ee:23:29:13:b4:1b:dc:e7:ce:6d:03:33:83:37:77: 6d:25:4b:89:25:eb:09:ce:24:2e:51:e6:72:c2:a7: fb:58:56:03:15:6c:79:81:b6:3f:1f:a8:3b:34:4b: 7a:d3:48:20:5f:a4:e0:44:84:cb:22:c5:87:b0:c2: bd:51:48:3c:05:31:16:eb:21:29:bb:2b:57:4f:c3: 4b:fe:3e:e9:19:ef:8d:67:f4:31:c0:90:af:65:d7: 2a:88:bb:66:5f:cf:ce:42:7e:b0:4c:a6:db:7a:42: ac:9e:f3:97:81:e8:c4:a7:ed:f6:9f:87:f5:c1:d7: ae:91:60:4a:27:5d:7d:03:7f:7c:a8:c5:67:ac:1a: 64:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:29:F2:27:2B:A3:5D:6B:0E:FB:CE:84:44:37:8F:41:6D:A6:67:99 X509v3 Authority Key Identifier: keyid:5B:D3:24:A6:9B:D2:6E:DD:AD:F5:12:9C:D1:8F:77:A1:D8:05:23:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0380/77224E947BCB11EFA2489211C4F9AE02/W9MkppvSbt2t9RKc0Y93odgFI7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W9MkppvSbt2t9RKc0Y93odgFI7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0380/77224E947BCB11EFA2489211C4F9AE02/09FB57587C7411EFB8CF8A27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.239.128.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:76:3e:e9:5f:c0:1f:c5:a9:06:a0:24:33:8b:3a:10:ba:4f: 45:61:a7:74:98:17:30:c9:ec:8c:30:86:32:3d:0e:cc:9a:60: 8d:c0:35:55:34:51:1a:35:cb:4b:3d:b6:af:a3:75:e2:6d:ee: bb:07:28:fb:8a:88:81:3f:91:69:7a:54:6c:95:55:6c:67:b6: ef:3d:9e:da:0a:fe:e7:77:51:6a:73:1c:a9:4a:5e:34:c2:53: 65:24:a6:52:71:61:48:7a:4d:d0:c7:91:8e:ae:f0:62:05:8e: b0:33:cc:5f:b1:02:9e:ad:b8:92:70:9d:0d:df:2c:7b:66:d4: 38:72:de:83:9d:77:ab:ee:dc:da:fb:fd:6c:96:22:4b:2f:4d: 99:f4:ab:49:ff:e4:fb:c8:e5:94:ba:2a:84:a2:80:d2:46:d1: 5b:1d:7f:e4:3e:d3:7d:58:41:5b:7e:05:44:b5:fd:20:40:30: c2:29:f7:da:08:e7:a4:22:33:ac:b4:c8:fe:3e:ad:cf:8b:e7: 63:e6:e0:07:60:c0:67:39:41:a1:08:68:73:15:4a:9f:53:f5: fc:21:fe:c4:cc:a1:3c:4a:9c:86:fd:8f:34:3a:a0:62:f2:94: 46:f7:9f:0c:ba:49:c0:fb:1c:de:6c:74:43:e7:a0:06:22:6a: ed:fd:e4:5f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MDM4MDExMC8GA1UEBRMoNUJEMzI0QTY5QkQyNkVEREFERjUxMjlDRDE4Rjc3QTFE ODA1MjNCNjAeFw0yNTAxMTQwNzQ5MTJaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ODYxNmY3LTg3MWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDM7Wuocgitc0wFZSi/+XFIVpr+6+6deOgcHWV7NDApAnCVqN9L12B9I6QUshyk zpegQiMskgpMuhiflR3MeWYmsz3Adz7YXwqn6Bf3dQB4HYmfaMyBhDHxEtgMT5P8 J/66LNwpDV04TWP+4FcfjErmx9W5USK/L+4jKRO0G9znzm0DM4M3d20lS4kl6wnO JC5R5nLCp/tYVgMVbHmBtj8fqDs0S3rTSCBfpOBEhMsixYewwr1RSDwFMRbrISm7 K1dPw0v+PukZ741n9DHAkK9l1yqIu2Zfz85CfrBMptt6Qqye85eB6MSn7fafh/XB 166RYEonXX0Df3yoxWesGmRXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU3inyJyuj XWsO+86ERDePQW2mZ5kwHwYDVR0jBBgwFoAUW9MkppvSbt2t9RKc0Y93odgFI7Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIwMzgwLzc3MjI0RTk0N0JD QjExRUZBMjQ4OTIxMUM0RjlBRTAyL1c5TWtwcHZTYnQydDlSS2MwWTkzb2RnRkk3 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVzlNa3BwdlNidDJ0OVJLYzBZOTNvZGdGSTdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MDM4MC83NzIyNEU5NDdCQ0IxMUVGQTI0ODkyMTFDNEY5QUUwMi8wOUZCNTc1ODdD NzQxMUVGQjhDRjhBMjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWfvgDANBgkqhkiG9w0BAQsFAAOCAQEAW3Y+6V/AH8WpBqAk M4s6ELpPRWGndJgXMMnsjDCGMj0OzJpgjcA1VTRRGjXLSz22r6N14m3uuwco+4qI gT+RaXpUbJVVbGe27z2e2gr+53dRanMcqUpeNMJTZSSmUnFhSHpN0MeRjq7wYgWO sDPMX7ECnq24knCdDd8se2bUOHLeg513q+7c2vv9bJYiSy9NmfSrSf/k+8jllLoq hKKA0kbRWx1/5D7TfVhBW34FRLX9IEAwwin32gjnpCIzrLTI/j6tz4vnY+bgB2DA ZzlBoQhocxVKn1P1/CH+xMyhPEqchv2PNDqgYvKURvefDLpJwPsc3mx0Q+egBiJq 7f3kXw== -----END CERTIFICATE-----Generated at Sat Apr 5 06:03:20 2025 by rpki-client