$ rpki-client -vvf rpki.apnic.net/member_repository/A91B423C/2737E6B250EC11ECAA3C137CC4F9AE02/12A7C1D451CA11EC9067E22CC4F9AE02.roa File: 12A7C1D451CA11EC9067E22CC4F9AE02.roa (raw, json) Hash identifier: hvSnlb31gfJnIJknYF0rYUKJLZVmXt9VjFEolvqLYLs= Subject key identifier: 39:C9:3F:6A:78:64:9F:9C:31:7C:2D:1B:28:54:14:B2:AA:0F:D0:ED Certificate issuer: /CN=A91B423C/serialNumber=309F16239A13B0D010428DB551146E52EEB70BB7 Certificate serial: 040E Authority key identifier: 30:9F:16:23:9A:13:B0:D0:10:42:8D:B5:51:14:6E:52:EE:B7:0B:B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MJ8WI5oTsNAQQo21URRuUu63C7c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B423C/2737E6B250EC11ECAA3C137CC4F9AE02/12A7C1D451CA11EC9067E22CC4F9AE02.roa Signing time: Wed 11 Dec 2024 00:15:29 +0000 ROA not before: Wed 11 Dec 2024 00:15:29 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 138915 IP address blocks: 103.145.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B423C/2737E6B250EC11ECAA3C137CC4F9AE02/MJ8WI5oTsNAQQo21URRuUu63C7c.crl rsync://rpki.apnic.net/member_repository/A91B423C/2737E6B250EC11ECAA3C137CC4F9AE02/MJ8WI5oTsNAQQo21URRuUu63C7c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MJ8WI5oTsNAQQo21URRuUu63C7c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:21:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1038 (0x40e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B423C Validity Not Before: Dec 11 00:15:29 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6758d9a1-8c68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e3:e7:18:4c:b9:08:aa:64:40:cc:4a:61:35: 21:53:f5:e7:6e:e3:eb:0a:6f:13:d2:43:be:ff:b2: d5:30:9f:1d:a0:0d:ef:af:1a:c9:a0:92:0b:84:9f: d2:2b:94:13:2b:3b:15:9a:2f:54:69:17:4b:8e:f6: ed:b9:3a:a2:cc:47:c2:60:d0:44:d1:79:7f:99:78: 01:24:78:3a:be:e5:bb:1f:14:a9:fe:0d:3c:35:fb: fe:d7:d1:bb:67:fc:86:61:d9:27:d5:34:3c:30:80: c5:00:17:3a:34:c3:86:b0:d4:af:f0:81:5e:2d:24: cf:95:e2:95:7b:23:f6:bf:8b:dd:50:a9:f1:5d:b0: 39:ec:18:e9:fa:6c:f7:ba:b9:b7:a6:28:71:59:fe: fa:af:c4:85:60:17:ba:6d:58:c5:f7:82:7c:89:17: f9:c2:75:49:51:26:63:f5:40:13:94:ab:af:84:23: 58:63:34:56:57:cf:49:4a:f4:de:cf:ee:6d:78:6d: 1d:23:6b:d7:db:cc:d2:9d:e9:83:ef:89:f3:16:f4: 31:a0:22:09:d7:c3:55:6a:75:2b:c5:00:8e:d3:3f: ea:7f:3d:a5:42:b9:bc:55:96:34:d6:8f:a3:43:72: 90:25:06:e1:0a:f3:fb:bd:11:64:b0:57:8a:60:76: cb:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:C9:3F:6A:78:64:9F:9C:31:7C:2D:1B:28:54:14:B2:AA:0F:D0:ED X509v3 Authority Key Identifier: keyid:30:9F:16:23:9A:13:B0:D0:10:42:8D:B5:51:14:6E:52:EE:B7:0B:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B423C/2737E6B250EC11ECAA3C137CC4F9AE02/MJ8WI5oTsNAQQo21URRuUu63C7c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MJ8WI5oTsNAQQo21URRuUu63C7c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B423C/2737E6B250EC11ECAA3C137CC4F9AE02/12A7C1D451CA11EC9067E22CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.73.0/24 Signature Algorithm: sha256WithRSAEncryption b4:47:5f:f1:42:85:70:ac:1a:bd:37:4a:2a:0e:4c:d7:56:e0: c1:e1:40:ad:2a:25:df:05:45:dc:96:f6:30:17:0f:9e:7a:1b: 2a:fb:67:f0:51:4b:24:13:d8:74:db:1a:96:7c:ca:f8:cd:af: 7c:ce:d6:18:e1:28:ae:27:f6:a7:6e:7d:d7:49:96:92:a0:36: 94:c8:83:38:1d:26:5f:de:3a:51:9e:5c:ec:f4:3b:62:17:82: c1:4b:9f:76:da:75:38:2b:f6:69:e9:03:09:24:c5:33:96:0c: bd:72:9b:5f:3c:73:96:29:16:e5:72:94:81:7f:de:9f:1c:bb: ef:0c:a9:75:64:da:02:2a:5f:0d:c8:ea:11:03:dc:74:95:2e: 1a:1d:62:2b:8e:f1:2e:72:e3:03:a9:04:f3:f6:ad:fd:9c:76: aa:fc:7d:21:12:5a:bb:6e:52:f4:44:6b:7e:1f:b4:94:69:09: b7:19:0d:ea:4f:af:75:b5:e7:b6:6c:15:1d:63:16:63:29:ad: 7d:d1:ef:86:6a:fb:75:3c:37:61:ea:22:4f:d2:f1:e7:24:e6: 31:48:99:96:a4:fa:41:57:ca:ed:44:6f:e4:55:54:cf:8a:69: 6f:a3:dc:09:15:52:de:29:e1:4b:65:7a:a7:05:7f:d3:fc:d4: 5c:0d:1a:7b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyM0MxMTAvBgNVBAUTKDMwOUYxNjIzOUExM0IwRDAxMDQyOERCNTUxMTQ2RTUy RUVCNzBCQjcwHhcNMjQxMjExMDAxNTI5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU4ZDlhMS04YzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+PnGEy5CKpkQMxKYTUhU/XnbuPrCm8T0kO+/7LVMJ8doA3vrxrJoJILhJ/S K5QTKzsVmi9UaRdLjvbtuTqizEfCYNBE0Xl/mXgBJHg6vuW7HxSp/g08Nfv+19G7 Z/yGYdkn1TQ8MIDFABc6NMOGsNSv8IFeLSTPleKVeyP2v4vdUKnxXbA57Bjp+mz3 urm3pihxWf76r8SFYBe6bVjF94J8iRf5wnVJUSZj9UATlKuvhCNYYzRWV89JSvTe z+5teG0dI2vX28zSnemD74nzFvQxoCIJ18NVanUrxQCO0z/qfz2lQrm8VZY01o+j Q3KQJQbhCvP7vRFksFeKYHbL2QIDAQABo4IClTCCApEwHQYDVR0OBBYEFDnJP2p4 ZJ+cMXwtGyhUFLKqD9DtMB8GA1UdIwQYMBaAFDCfFiOaE7DQEEKNtVEUblLutwu3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDIzQy8yNzM3RTZCMjUw RUMxMUVDQUEzQzEzN0NDNEY5QUUwMi9NSjhXSTVvVHNOQVFRbzIxVVJSdVV1NjND N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01KOFdJNW9Uc05BUVFvMjFVUlJ1VXU2M0M3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjQyM0MvMjczN0U2QjI1MEVDMTFFQ0FBM0MxMzdDQzRGOUFFMDIvMTJBN0MxRDQ1 MUNBMTFFQzkwNjdFMjJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnkUkwDQYJKoZIhvcNAQELBQADggEBALRHX/FChXCsGr03 SioOTNdW4MHhQK0qJd8FRdyW9jAXD556Gyr7Z/BRSyQT2HTbGpZ8yvjNr3zO1hjh KK4n9qdufddJlpKgNpTIgzgdJl/eOlGeXOz0O2IXgsFLn3badTgr9mnpAwkkxTOW DL1ym188c5YpFuVylIF/3p8cu+8MqXVk2gIqXw3I6hED3HSVLhodYiuO8S5y4wOp BPP2rf2cdqr8fSESWrtuUvREa34ftJRpCbcZDepPr3W157ZsFR1jFmMprX3R74Zq +3U8N2HqIk/S8eck5jFImZak+kFXyu1Eb+RVVM+KaW+j3AkVUt4p4UtleqcFf9P8 1FwNGns= -----END CERTIFICATE-----Generated at Sun Apr 6 01:28:41 2025 by rpki-client