$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5552/6F60F77C0BCC11EC8570CD1FC4F9AE02/0E183FBE516911ED9B5EF024C4F9AE02.roa File: 0E183FBE516911ED9B5EF024C4F9AE02.roa (raw, json) Hash identifier: rVSuRgzwSSh8GvKjFbVO5KBlpGlmt2sbJHlM6WMDYjo= Subject key identifier: 19:4E:20:BC:EE:A4:2D:3F:0A:56:DC:AE:E5:B4:D6:F2:16:D4:2C:EC Certificate issuer: /CN=A91B5552/serialNumber=7829136F79B7F89B3CD47C536FC7496232B9E13A Certificate serial: 04BE Authority key identifier: 78:29:13:6F:79:B7:F8:9B:3C:D4:7C:53:6F:C7:49:62:32:B9:E1:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eCkTb3m3-Js81HxTb8dJYjK54To.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5552/6F60F77C0BCC11EC8570CD1FC4F9AE02/0E183FBE516911ED9B5EF024C4F9AE02.roa Signing time: Sun 22 Dec 2024 23:32:30 +0000 ROA not before: Sun 22 Dec 2024 23:32:30 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 131324 IP address blocks: 43.225.172.0/22 maxlen: 24 103.44.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5552/6F60F77C0BCC11EC8570CD1FC4F9AE02/eCkTb3m3-Js81HxTb8dJYjK54To.crl rsync://rpki.apnic.net/member_repository/A91B5552/6F60F77C0BCC11EC8570CD1FC4F9AE02/eCkTb3m3-Js81HxTb8dJYjK54To.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eCkTb3m3-Js81HxTb8dJYjK54To.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1214 (0x4be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5552 Validity Not Before: Dec 22 23:32:30 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6768a18e-2217 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bf:29:45:ff:b9:70:b1:6d:55:e0:b2:3f:08: 8f:20:00:42:27:7f:fa:e4:5b:42:6b:2f:2a:e1:3b: 06:8b:26:1b:11:00:4c:d0:5c:5e:3b:34:26:a9:83: 8a:31:6a:2f:cb:3d:fd:d1:e0:65:49:94:62:65:13: a3:00:af:91:2a:cc:96:bd:c1:81:6a:f3:b8:0a:e0: ef:6e:f2:09:67:45:c4:22:2e:3f:20:d0:52:1d:3b: 42:d3:71:43:eb:bb:19:b4:20:97:46:ac:98:e8:42: 36:91:f4:8c:4b:95:74:97:d9:7f:2e:d4:d9:3a:d8: 66:d1:34:cd:d1:3d:25:2a:fb:02:f7:15:9d:0a:48: 7f:42:c5:27:21:80:72:ec:67:9e:ac:5f:56:02:e9: 7f:86:0a:e6:43:89:41:1e:38:65:be:8a:95:7f:f2: b7:d5:75:4b:c9:78:38:bf:19:82:29:73:b7:23:27: 49:23:58:07:63:cd:4f:14:ff:9d:78:67:67:b7:3c: 52:52:5b:48:38:68:b8:ff:ce:d4:7d:6b:a7:a3:15: b5:c7:ad:3a:d5:8f:90:04:79:6c:6a:7d:67:12:ce: 96:ab:3d:71:69:7c:9f:b4:65:f7:2e:8f:d7:5e:8d: 29:fa:32:3f:ed:0d:fb:f7:b2:61:37:69:71:30:22: d4:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:4E:20:BC:EE:A4:2D:3F:0A:56:DC:AE:E5:B4:D6:F2:16:D4:2C:EC X509v3 Authority Key Identifier: keyid:78:29:13:6F:79:B7:F8:9B:3C:D4:7C:53:6F:C7:49:62:32:B9:E1:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5552/6F60F77C0BCC11EC8570CD1FC4F9AE02/eCkTb3m3-Js81HxTb8dJYjK54To.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eCkTb3m3-Js81HxTb8dJYjK54To.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5552/6F60F77C0BCC11EC8570CD1FC4F9AE02/0E183FBE516911ED9B5EF024C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.172.0/22 103.44.132.0/22 Signature Algorithm: sha256WithRSAEncryption 50:64:b0:57:74:34:6a:32:60:25:dd:9a:bd:a1:79:3b:5d:4b: 58:5f:56:93:6a:25:0a:e0:f6:20:ae:a5:42:2c:41:da:77:b6: bc:47:2b:73:b4:d4:0d:81:71:43:03:32:af:f2:3a:3a:7b:73: 75:ba:34:4b:32:d6:23:b9:be:3d:14:69:22:1d:69:6a:e6:10: 59:35:e1:08:aa:c0:5b:40:89:d7:11:a6:71:96:60:33:2e:7c: 72:7e:2f:26:8a:a1:3d:d2:84:29:95:e5:1d:9f:4c:3d:fb:de: 2b:0a:f3:1a:8d:ab:76:98:bb:c8:a3:8e:88:13:03:e0:3a:5d: ca:f5:f9:a7:89:8f:58:84:c6:e2:8d:60:f9:8b:77:30:1a:22: 4e:7a:02:3d:25:d7:e2:0d:4c:da:cd:0b:4e:2f:3d:d7:de:eb: eb:90:ac:18:6b:a8:2c:bb:f0:68:c7:ec:0c:46:15:40:5b:53: 4d:2e:bb:17:94:24:1c:46:61:5d:88:07:36:63:69:fd:86:f0: 38:1a:05:56:a1:e2:20:fe:7d:7a:2a:50:b3:8a:c2:b2:cd:24: 3a:04:73:ef:10:dc:fa:a3:6d:83:29:26:52:d6:36:46:8d:88: b6:77:c3:b3:40:c4:a7:d5:79:dc:f2:a6:9b:a7:0c:3c:b7:16: 46:a3:7d:d7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU1NTIxMTAvBgNVBAUTKDc4MjkxMzZGNzlCN0Y4OUIzQ0Q0N0M1MzZGQzc0OTYy MzJCOUUxM0EwHhcNMjQxMjIyMjMzMjMwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY4YTE4ZS0yMjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz78pRf+5cLFtVeCyPwiPIABCJ3/65FtCay8q4TsGiyYbEQBM0FxeOzQmqYOK MWovyz390eBlSZRiZROjAK+RKsyWvcGBavO4CuDvbvIJZ0XEIi4/INBSHTtC03FD 67sZtCCXRqyY6EI2kfSMS5V0l9l/LtTZOthm0TTN0T0lKvsC9xWdCkh/QsUnIYBy 7GeerF9WAul/hgrmQ4lBHjhlvoqVf/K31XVLyXg4vxmCKXO3IydJI1gHY81PFP+d eGdntzxSUltIOGi4/87UfWunoxW1x6061Y+QBHlsan1nEs6Wqz1xaXyftGX3Lo/X Xo0p+jI/7Q3797JhN2lxMCLUawIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBlOILzu pC0/ClbcruW01vIW1CzsMB8GA1UdIwQYMBaAFHgpE295t/ibPNR8U2/HSWIyueE6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTU1Mi82RjYwRjc3QzBC Q0MxMUVDODU3MENEMUZDNEY5QUUwMi9lQ2tUYjNtMy1KczgxSHhUYjhkSllqSzU0 VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VDa1RiM20zLUpzODFIeFRiOGRKWWpLNTRUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjU1NTIvNkY2MEY3N0MwQkNDMTFFQzg1NzBDRDFGQzRGOUFFMDIvMEUxODNGQkU1 MTY5MTFFRDlCNUVGMDI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr4awDBAJnLIQwDQYJKoZIhvcNAQELBQADggEBAFBksFd0 NGoyYCXdmr2heTtdS1hfVpNqJQrg9iCupUIsQdp3trxHK3O01A2BcUMDMq/yOjp7 c3W6NEsy1iO5vj0UaSIdaWrmEFk14QiqwFtAidcRpnGWYDMufHJ+LyaKoT3ShCmV 5R2fTD373isK8xqNq3aYu8ijjogTA+A6Xcr1+aeJj1iExuKNYPmLdzAaIk56Aj0l 1+INTNrNC04vPdfe6+uQrBhrqCy78GjH7AxGFUBbU00uuxeUJBxGYV2IBzZjaf2G 8DgaBVah4iD+fXoqULOKwrLNJDoEc+8Q3PqjbYMpJlLWNkaNiLZ3w7NAxKfVedzy ppunDDy3Fkajfdc= -----END CERTIFICATE-----Generated at Mon Apr 7 00:09:31 2025 by rpki-client