$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/BD115AB24B7C11ECA63C0038C4F9AE02.roa File: BD115AB24B7C11ECA63C0038C4F9AE02.roa (raw, json) Hash identifier: IcEuGPt4GTNEbPQpjAanlaif3gO8wRzi48eufGxQr4U= Subject key identifier: 33:E9:4B:0D:AF:AC:5A:7B:6F:2A:9A:64:4B:BF:B1:80:50:9D:73:5F Certificate issuer: /CN=A91B4F01/serialNumber=5EBDA7FAA801C5A274DC23D171F88B46A11E4154 Certificate serial: 0417 Authority key identifier: 5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/BD115AB24B7C11ECA63C0038C4F9AE02.roa Signing time: Thu 19 Dec 2024 00:33:20 +0000 ROA not before: Thu 19 Dec 2024 00:33:20 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 149022 IP address blocks: 103.176.202.0/23 maxlen: 23 103.176.202.0/24 maxlen: 24 103.176.203.0/24 maxlen: 24 2001:df0:13c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 23:55:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1047 (0x417) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4F01 Validity Not Before: Dec 19 00:33:20 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=676369d0-5581 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:77:20:3c:c9:6b:db:7b:17:13:a7:63:67:b7: 78:41:c2:b3:32:db:c3:99:fb:71:d9:5e:a1:b3:d2: 4a:9f:a7:66:07:57:b4:00:f2:a9:22:7d:4a:ec:b2: b4:e7:cf:5b:5b:4d:14:24:dd:b8:0d:74:60:eb:ad: d1:ff:94:c2:02:cc:60:b5:13:6e:16:4c:89:aa:77: 7d:0b:e8:92:96:e8:4a:cd:22:48:ee:5f:68:f6:0f: 64:3a:6b:dd:23:5c:d8:2f:de:c3:e2:e2:93:a4:95: f8:a7:12:a4:65:7d:5d:82:9c:35:36:24:8f:90:99: 0c:7d:a0:bf:5a:05:0e:13:ae:c5:12:af:3e:93:91: 64:1a:ec:80:42:ca:e9:86:e5:2a:2b:6d:0b:91:41: b7:14:ac:a8:5a:b6:61:db:72:29:22:ad:0b:43:af: c5:02:02:d1:40:5f:23:76:1e:d3:c1:c3:94:6c:f6: 59:1d:1b:ea:5a:46:b8:fe:b1:30:5c:20:c2:57:d0: e0:2a:d6:43:12:f0:8e:dc:23:15:49:52:44:df:01: dd:63:89:5f:d8:9b:42:c3:2e:49:93:05:50:2e:4f: 14:95:9b:7f:73:26:ee:f5:5c:53:ca:f3:01:52:21: c0:de:16:d7:7f:fc:45:2c:2a:d4:ed:34:c0:4b:9c: 14:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:E9:4B:0D:AF:AC:5A:7B:6F:2A:9A:64:4B:BF:B1:80:50:9D:73:5F X509v3 Authority Key Identifier: keyid:5E:BD:A7:FA:A8:01:C5:A2:74:DC:23:D1:71:F8:8B:46:A1:1E:41:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xr2n-qgBxaJ03CPRcfiLRqEeQVQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4F01/A700A8444B7811EC86E50A30C4F9AE02/BD115AB24B7C11ECA63C0038C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.202.0/23 IPv6: 2001:df0:13c0::/48 Signature Algorithm: sha256WithRSAEncryption 4a:1c:c2:f9:d4:5f:f5:f1:1a:a6:e0:68:c4:ca:84:52:07:b2: 08:b4:3a:ae:2f:49:56:93:69:7e:26:61:c4:87:9f:92:c1:05: bc:9d:43:4d:18:79:fd:c9:35:d4:dd:25:23:dd:4d:0f:5b:7a: 8a:57:95:91:31:d1:d3:44:d2:15:e1:63:1e:16:38:82:1e:da: e2:bd:90:4b:fe:a2:3f:ac:bf:cf:53:e1:7c:40:bc:dc:3d:07: bc:a9:96:96:cb:91:0d:8a:34:88:e6:56:c4:5e:19:63:dd:63: 85:8f:e7:21:db:c4:1d:21:dc:16:a9:e9:5f:70:8a:75:9c:00: ea:47:51:64:c2:33:b2:34:95:c6:b9:e6:87:6e:5b:34:7b:6d: b6:bc:f7:31:a4:95:a9:ae:7f:e9:e0:3d:7a:85:e1:9f:ef:6d: 17:fe:57:4c:19:fb:f3:74:92:07:58:ca:2c:8a:17:ae:92:1a: 87:60:70:cb:3e:43:6f:fe:28:04:8a:5f:18:b5:53:45:ae:3c: b8:a7:67:8b:60:41:83:a4:51:05:6d:e7:08:3a:2a:23:33:5d: 38:9e:e9:c0:21:05:b7:e7:4e:0d:8f:31:f3:53:34:d8:13:2d: 5f:81:f7:f0:7e:be:a9:a0:d5:5c:82:77:76:34:71:24:72:76: b5:3b:6f:19 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRGMDExMTAvBgNVBAUTKDVFQkRBN0ZBQTgwMUM1QTI3NERDMjNEMTcxRjg4QjQ2 QTExRTQxNTQwHhcNMjQxMjE5MDAzMzIwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYzNjlkMC01NTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHcgPMlr23sXE6djZ7d4QcKzMtvDmftx2V6hs9JKn6dmB1e0APKpIn1K7LK0 589bW00UJN24DXRg663R/5TCAsxgtRNuFkyJqnd9C+iSluhKzSJI7l9o9g9kOmvd I1zYL97D4uKTpJX4pxKkZX1dgpw1NiSPkJkMfaC/WgUOE67FEq8+k5FkGuyAQsrp huUqK20LkUG3FKyoWrZh23IpIq0LQ6/FAgLRQF8jdh7TwcOUbPZZHRvqWka4/rEw XCDCV9DgKtZDEvCO3CMVSVJE3wHdY4lf2JtCwy5JkwVQLk8UlZt/cybu9VxTyvMB UiHA3hbXf/xFLCrU7TTAS5wUIwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDPpSw2v rFp7byqaZEu/sYBQnXNfMB8GA1UdIwQYMBaAFF69p/qoAcWidNwj0XH4i0ahHkFU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEYwMS9BNzAwQTg0NDRC NzgxMUVDODZFNTBBMzBDNEY5QUUwMi9YcjJuLXFnQnhhSjAzQ1BSY2ZpTFJxRWVR VlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hyMm4tcWdCeGFKMDNDUFJjZmlMUnFFZVFWUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjRGMDEvQTcwMEE4NDQ0Qjc4MTFFQzg2RTUwQTMwQzRGOUFFMDIvQkQxMTVBQjI0 QjdDMTFFQ0E2M0MwMDM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnsMowDwQCAAIwCQMHACABDfATwDANBgkqhkiG9w0BAQsF AAOCAQEAShzC+dRf9fEapuBoxMqEUgeyCLQ6ri9JVpNpfiZhxIefksEFvJ1DTRh5 /ck11N0lI91ND1t6ileVkTHR00TSFeFjHhY4gh7a4r2QS/6iP6y/z1PhfEC83D0H vKmWlsuRDYo0iOZWxF4ZY91jhY/nIdvEHSHcFqnpX3CKdZwA6kdRZMIzsjSVxrnm h25bNHtttrz3MaSVqa5/6eA9eoXhn+9tF/5XTBn783SSB1jKLIoXrpIah2Bwyz5D b/4oBIpfGLVTRa48uKdni2BBg6RRBW3nCDoqIzNdOJ7pwCEFt+dODY8x81M02BMt X4H38H6+qaDVXIJ3djRxJHJ2tTtvGQ== -----END CERTIFICATE-----Generated at Thu Apr 10 15:00:23 2025 by rpki-client