$ rpki-client -vvf rpki.apnic.net/member_repository/A91B43EE/4A8ADAC0CD4611EDB45CCD66C4F9AE02/5192AB7ED47811EEB5A6D21AC4F9AE02.roa File: 5192AB7ED47811EEB5A6D21AC4F9AE02.roa (raw, json) Hash identifier: /1Z2TwuqTkrgrfRC8VIKBetzzhs6fi/sVhfwWQwuK6g= Subject key identifier: DB:28:DB:2B:FB:AF:93:14:18:17:BD:7C:77:6E:EA:F1:74:06:F8:F7 Certificate issuer: /CN=A91B43EE/serialNumber=02BA63B5862E2709B90D16B7DC2EB5CFC8A2E684 Certificate serial: E0 Authority key identifier: 02:BA:63:B5:86:2E:27:09:B9:0D:16:B7:DC:2E:B5:CF:C8:A2:E6:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ArpjtYYuJwm5DRa33C61z8ii5oQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B43EE/4A8ADAC0CD4611EDB45CCD66C4F9AE02/5192AB7ED47811EEB5A6D21AC4F9AE02.roa Signing time: Wed 01 May 2024 06:40:02 +0000 ROA not before: Wed 01 May 2024 06:40:02 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152479 IP address blocks: 103.224.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B43EE/4A8ADAC0CD4611EDB45CCD66C4F9AE02/ArpjtYYuJwm5DRa33C61z8ii5oQ.crl rsync://rpki.apnic.net/member_repository/A91B43EE/4A8ADAC0CD4611EDB45CCD66C4F9AE02/ArpjtYYuJwm5DRa33C61z8ii5oQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ArpjtYYuJwm5DRa33C61z8ii5oQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:16:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B43EE Validity Not Before: May 1 06:40:02 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6631e3c2-a077 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e7:4c:77:87:62:39:d8:57:8d:93:2e:ae:0c: 2e:e3:2b:b8:8e:de:77:b9:15:2f:3b:85:38:33:ff: c2:a9:ed:56:1d:19:1d:69:a5:4c:93:e2:ac:d0:dc: 8a:12:cf:51:7f:c3:5a:9c:8e:7e:67:c7:83:20:e7: 0c:44:e1:b3:74:69:39:38:5a:82:b6:33:d7:9c:ce: 24:76:f8:1f:86:c5:43:87:82:57:47:0c:f5:8d:72: 3d:b9:ec:15:c0:b1:ed:7a:06:09:24:3d:70:4e:29: bf:55:3a:82:3a:90:28:5e:f8:0b:e6:bb:2b:7e:9d: 0c:2f:0d:2a:48:eb:ff:e8:77:6d:f4:36:58:5c:31: f0:d8:51:02:07:41:53:f2:30:9d:f3:94:1d:23:54: 9b:2b:d7:f6:38:66:10:83:ed:a1:f8:cc:46:50:9d: cc:01:f1:11:86:b8:76:44:0b:d7:41:ce:77:ca:5f: fc:85:7e:7a:bb:28:ee:33:3f:5a:f6:83:d6:cb:cb: ba:75:61:7d:54:f8:06:b2:dd:1c:44:3c:9c:91:15: 78:58:98:11:bb:05:83:9b:f2:7f:a5:03:22:05:f7: 3e:f0:1b:58:1c:95:30:03:90:ce:92:18:24:1c:4c: 68:ef:24:fe:9c:db:8b:a0:02:c9:4e:07:f0:fd:ca: df:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:28:DB:2B:FB:AF:93:14:18:17:BD:7C:77:6E:EA:F1:74:06:F8:F7 X509v3 Authority Key Identifier: keyid:02:BA:63:B5:86:2E:27:09:B9:0D:16:B7:DC:2E:B5:CF:C8:A2:E6:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B43EE/4A8ADAC0CD4611EDB45CCD66C4F9AE02/ArpjtYYuJwm5DRa33C61z8ii5oQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ArpjtYYuJwm5DRa33C61z8ii5oQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B43EE/4A8ADAC0CD4611EDB45CCD66C4F9AE02/5192AB7ED47811EEB5A6D21AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.224.55.0/24 Signature Algorithm: sha256WithRSAEncryption 05:e8:b3:d8:80:a2:1d:78:8f:03:c9:d3:4f:90:23:eb:10:05: 31:06:ac:9a:ac:cf:f5:44:5d:b4:d7:85:31:1c:11:b9:ac:3f: 1b:47:a0:ea:22:6f:f2:6a:07:6d:0f:2b:b9:f6:b4:b3:ba:6f: 0c:c6:a8:95:93:90:a5:0c:56:78:5b:21:92:df:d9:91:83:18: 9c:96:d1:8b:0f:d1:46:69:66:be:f3:e9:d6:da:a4:20:4e:8c: 0a:bc:9d:d4:2d:c6:0e:8d:60:90:9f:ef:c7:f7:27:80:e3:c1: 92:d5:b4:ef:e3:39:45:09:9a:f0:83:7e:d1:24:96:c4:c3:53: 98:9c:aa:d9:ed:7f:67:96:ec:d4:1e:87:ae:67:e0:2d:47:77: a2:ab:48:31:c7:5b:95:28:ab:87:e7:f7:6d:37:89:bd:13:6a: 19:ca:41:96:7b:89:5c:bc:93:ee:c5:aa:ef:24:29:f1:89:8b: 96:b3:29:d4:ed:0a:d8:e8:be:22:a9:59:c8:35:41:14:f7:fb: 2b:ad:eb:f1:5d:3c:32:08:13:b7:88:de:d7:54:d7:00:48:28: 99:f1:9f:b3:ad:31:25:9a:88:c6:3a:2f:5b:23:79:2b:15:94: 93:ca:f1:92:a8:9b:6e:13:be:2f:2d:a9:9d:b4:c6:de:d8:a2: ce:9a:38:8e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzRUUxMTAvBgNVBAUTKDAyQkE2M0I1ODYyRTI3MDlCOTBEMTZCN0RDMkVCNUNG QzhBMkU2ODQwHhcNMjQwNTAxMDY0MDAyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxZTNjMi1hMDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0udMd4diOdhXjZMurgwu4yu4jt53uRUvO4U4M//Cqe1WHRkdaaVMk+Ks0NyK Es9Rf8NanI5+Z8eDIOcMROGzdGk5OFqCtjPXnM4kdvgfhsVDh4JXRwz1jXI9uewV wLHtegYJJD1wTim/VTqCOpAoXvgL5rsrfp0MLw0qSOv/6Hdt9DZYXDHw2FECB0FT 8jCd85QdI1SbK9f2OGYQg+2h+MxGUJ3MAfERhrh2RAvXQc53yl/8hX56uyjuMz9a 9oPWy8u6dWF9VPgGst0cRDyckRV4WJgRuwWDm/J/pQMiBfc+8BtYHJUwA5DOkhgk HExo7yT+nNuLoALJTgfw/crfKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNso2yv7 r5MUGBe9fHdu6vF0Bvj3MB8GA1UdIwQYMBaAFAK6Y7WGLicJuQ0Wt9wutc/IouaE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDNFRS80QThBREFDMENE NDYxMUVEQjQ1Q0NENjZDNEY5QUUwMi9BcnBqdFlZdUp3bTVEUmEzM0M2MXo4aWk1 b1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FycGp0WVl1SndtNURSYTMzQzYxejhpaTVvUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjQzRUUvNEE4QURBQzBDRDQ2MTFFREI0NUNDRDY2QzRGOUFFMDIvNTE5MkFCN0VE NDc4MTFFRUI1QTZEMjFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn4DcwDQYJKoZIhvcNAQELBQADggEBAAXos9iAoh14jwPJ 00+QI+sQBTEGrJqsz/VEXbTXhTEcEbmsPxtHoOoib/JqB20PK7n2tLO6bwzGqJWT kKUMVnhbIZLf2ZGDGJyW0YsP0UZpZr7z6dbapCBOjAq8ndQtxg6NYJCf78f3J4Dj wZLVtO/jOUUJmvCDftEklsTDU5icqtntf2eW7NQeh65n4C1Hd6KrSDHHW5Uoq4fn 9203ib0TahnKQZZ7iVy8k+7Fqu8kKfGJi5azKdTtCtjoviKpWcg1QRT3+yut6/Fd PDIIE7eI3tdU1wBIKJnxn7OtMSWaiMY6L1sjeSsVlJPK8ZKom24Tvi8tqZ20xt7Y os6aOI4= -----END CERTIFICATE-----Generated at Sat Apr 5 02:48:51 2025 by rpki-client