$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/48005BEC3DEA11EBBCCD2322C4F9AE02.roa File: 48005BEC3DEA11EBBCCD2322C4F9AE02.roa (raw, json) Hash identifier: YjRfOOPCw2f3bTp4JIxEV1Qp+ImYc99rwjJvwjX7itk= Subject key identifier: E5:6B:BD:28:C1:69:1A:D9:98:5B:93:BC:2C:6F:D9:EF:AF:D6:F8:C6 Certificate issuer: /CN=A91B1C82/serialNumber=A297A2B093382E45086CA07CEE6C97B36BE4C2CD Certificate serial: 06DA Authority key identifier: A2:97:A2:B0:93:38:2E:45:08:6C:A0:7C:EE:6C:97:B3:6B:E4:C2:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/48005BEC3DEA11EBBCCD2322C4F9AE02.roa Signing time: Thu 30 Jan 2025 22:14:01 +0000 ROA not before: Thu 30 Jan 2025 22:14:01 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 63526 IP address blocks: 103.159.128.0/23 maxlen: 23 103.159.128.0/24 maxlen: 24 103.159.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.crl rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 21:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1754 (0x6da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1C82 Validity Not Before: Jan 30 22:14:01 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=679bf9a9-8126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:35:33:b8:5a:79:56:a9:a1:89:b1:9b:3d:c0: ec:63:a8:e1:55:66:3a:bc:c3:7e:1c:a1:57:74:20: 96:a3:c8:cf:97:79:63:6f:dc:1f:00:5b:65:3a:3a: 1f:0d:bf:9e:b4:fe:f3:41:8b:64:12:ba:37:75:88: 08:5b:ba:ef:2c:72:1e:2b:af:aa:35:bc:09:f5:a9: 98:2d:43:e9:bf:e3:2a:78:b9:b3:89:85:e7:3f:3a: 37:45:fa:92:9c:8d:a2:69:a8:cd:df:c3:97:2f:69: 90:7c:d4:47:7a:df:c4:2b:24:0b:5c:7b:79:7f:1c: de:e4:6a:25:27:67:34:a4:a8:ea:bc:b1:aa:36:00: b5:d3:30:d0:c2:44:60:c2:eb:f0:a1:4c:5c:67:98: 77:af:cf:a0:a9:6f:f0:27:39:6c:81:e7:33:81:6a: cd:31:3d:f1:13:c2:21:46:a5:1d:9e:cd:bf:f5:bd: 2e:97:a5:95:c2:0a:d2:4e:33:9e:81:48:7c:b5:49: 50:be:27:e7:b7:a3:da:25:07:6b:81:8b:de:92:9d: 45:9d:43:f6:43:37:19:51:ad:7d:8c:40:80:e4:59: 20:f9:cf:99:14:42:89:50:7b:18:f1:36:3b:b3:b3: e0:fb:1e:9e:5a:8d:2d:4b:84:02:50:f4:0f:a7:da: 36:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:6B:BD:28:C1:69:1A:D9:98:5B:93:BC:2C:6F:D9:EF:AF:D6:F8:C6 X509v3 Authority Key Identifier: keyid:A2:97:A2:B0:93:38:2E:45:08:6C:A0:7C:EE:6C:97:B3:6B:E4:C2:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/opeisJM4LkUIbKB87myXs2vkws0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/opeisJM4LkUIbKB87myXs2vkws0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1C82/18DDBFD23DE811EBA35D501FC4F9AE02/48005BEC3DEA11EBBCCD2322C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.128.0/23 Signature Algorithm: sha256WithRSAEncryption 91:17:d5:90:00:a5:74:99:e5:cc:42:5f:2b:53:0e:d7:c7:b3: d6:e9:85:42:de:c7:59:e3:a4:12:dd:0d:21:87:93:38:0c:96: 7e:34:a5:2b:8b:e6:05:81:30:22:2c:83:4a:85:0d:0c:55:75: 15:cd:97:d9:5f:19:9b:12:f1:20:81:c6:ad:b6:4d:eb:7b:03: fd:70:97:0a:97:f2:1f:24:1a:b1:9e:f3:99:30:e9:5f:22:55: 82:15:61:8d:66:84:46:7a:c7:55:d2:71:10:b3:c6:6a:02:cb: bb:1d:a9:db:22:e8:06:17:64:a1:40:60:95:b0:0e:7c:a7:aa: 43:04:8b:19:1a:3a:23:c2:5b:fe:cb:97:f9:83:6d:49:92:42: 23:4e:be:ce:bb:b7:25:af:d1:36:ac:e7:5f:23:f7:16:d0:73: 8f:17:83:4d:64:fb:99:5a:ee:36:74:29:df:0e:02:df:60:62: 95:35:16:6f:cf:5f:db:b6:07:a9:91:85:4a:5b:7e:b1:a9:ed: 58:5c:10:96:19:b0:d7:81:03:45:cf:64:4d:38:76:26:c5:db: df:de:27:be:17:a5:e5:63:b8:e8:84:51:f1:eb:a6:83:8f:b2: 89:b4:9a:a9:db:5d:76:56:ca:d2:51:4d:2f:9b:18:b3:56:6d: 46:f9:33:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFDODIxMTAvBgNVBAUTKEEyOTdBMkIwOTMzODJFNDUwODZDQTA3Q0VFNkM5N0Iz NkJFNEMyQ0QwHhcNMjUwMTMwMjIxNDAxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzliZjlhOS04MTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzUzuFp5VqmhibGbPcDsY6jhVWY6vMN+HKFXdCCWo8jPl3ljb9wfAFtlOjof Db+etP7zQYtkEro3dYgIW7rvLHIeK6+qNbwJ9amYLUPpv+MqeLmziYXnPzo3RfqS nI2iaajN38OXL2mQfNRHet/EKyQLXHt5fxze5GolJ2c0pKjqvLGqNgC10zDQwkRg wuvwoUxcZ5h3r8+gqW/wJzlsgeczgWrNMT3xE8IhRqUdns2/9b0ul6WVwgrSTjOe gUh8tUlQvifnt6PaJQdrgYvekp1FnUP2QzcZUa19jECA5Fkg+c+ZFEKJUHsY8TY7 s7Pg+x6eWo0tS4QCUPQPp9o21QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOVrvSjB aRrZmFuTvCxv2e+v1vjGMB8GA1UdIwQYMBaAFKKXorCTOC5FCGygfO5sl7Nr5MLN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUM4Mi8xOEREQkZEMjNE RTgxMUVCQTM1RDUwMUZDNEY5QUUwMi9vcGVpc0pNNExrVUliS0I4N215WHMydmt3 czAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29wZWlzSk00TGtVSWJLQjg3bXlYczJ2a3dzMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjFDODIvMThEREJGRDIzREU4MTFFQkEzNUQ1MDFGQzRGOUFFMDIvNDgwMDVCRUMz REVBMTFFQkJDQ0QyMzIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnn4AwDQYJKoZIhvcNAQELBQADggEBAJEX1ZAApXSZ5cxC XytTDtfHs9bphULex1njpBLdDSGHkzgMln40pSuL5gWBMCIsg0qFDQxVdRXNl9lf GZsS8SCBxq22Tet7A/1wlwqX8h8kGrGe85kw6V8iVYIVYY1mhEZ6x1XScRCzxmoC y7sdqdsi6AYXZKFAYJWwDnynqkMEixkaOiPCW/7Ll/mDbUmSQiNOvs67tyWv0Tas 518j9xbQc48Xg01k+5la7jZ0Kd8OAt9gYpU1Fm/PX9u2B6mRhUpbfrGp7VhcEJYZ sNeBA0XPZE04dibF29/eJ74XpeVjuOiEUfHrpoOPsom0mqnbXXZWytJRTS+bGLNW bUb5Mz4= -----END CERTIFICATE-----Generated at Thu Apr 10 23:49:14 2025 by rpki-client