$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/B1CB71925DDF11EF8DBEED1FC4F9AE02.roa File: B1CB71925DDF11EF8DBEED1FC4F9AE02.roa (raw, json) Hash identifier: 7PzqCay1JqLU8XnJXQhTQ8qxdPkeE0fg0K7DtdeCRDM= Subject key identifier: 5F:5D:B6:67:C1:1F:3A:C3:5F:F1:E3:41:DB:CE:5E:F3:45:CB:B3:29 Certificate issuer: /CN=A91B9790/serialNumber=894289AD40EE7E626F5CD82FCEC5406DB91E1E71 Certificate serial: 49 Authority key identifier: 89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/B1CB71925DDF11EF8DBEED1FC4F9AE02.roa Signing time: Tue 17 Dec 2024 05:39:15 +0000 ROA not before: Tue 17 Dec 2024 05:39:15 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 26658 IP address blocks: 103.199.244.0/22 maxlen: 24 203.82.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:56:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9790 Validity Not Before: Dec 17 05:39:15 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67610e83-46b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:72:c5:fc:a7:26:76:d6:d9:be:7c:60:11:7d: 97:b8:4f:be:48:98:fa:1d:00:5b:92:aa:e2:bd:e6: ef:a8:c3:2c:fa:ee:4c:f7:f1:16:eb:30:88:42:95: 16:e8:e4:f3:fe:92:b8:b0:12:2b:38:06:12:3f:8c: 39:4a:5c:4f:de:6c:47:4c:50:41:bd:a3:a6:2f:58: e0:94:c3:35:96:dc:a9:84:0a:cd:bc:f4:13:b1:ab: b0:61:62:a9:27:39:5b:c1:fd:e3:4b:6c:8d:b2:39: b7:8c:b7:e6:7e:d2:d4:ff:52:60:84:c0:d5:e3:0d: ef:34:52:a5:b3:b6:db:e8:97:3e:c9:e5:e2:e4:76: a2:c3:b9:ff:64:8c:58:97:37:81:52:4d:0f:a3:60: 17:65:c9:11:92:46:bc:9b:2d:f8:9e:bb:f1:10:54: 71:b4:39:72:2c:48:fe:e2:cc:54:f2:fa:c2:31:8d: a5:67:b9:70:7c:bd:82:c2:b0:c9:ad:3d:1b:7d:6b: 89:d2:9f:4e:b9:50:a1:24:88:22:da:76:3f:02:81: 5e:d3:9b:d3:84:b7:35:ae:3b:ac:67:f6:71:26:e8: 5c:57:bc:d7:64:3b:26:31:4e:96:33:2b:db:f2:6a: a7:c3:63:ac:1c:33:35:b7:09:b8:af:44:37:95:20: 07:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:5D:B6:67:C1:1F:3A:C3:5F:F1:E3:41:DB:CE:5E:F3:45:CB:B3:29 X509v3 Authority Key Identifier: keyid:89:42:89:AD:40:EE:7E:62:6F:5C:D8:2F:CE:C5:40:6D:B9:1E:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/iUKJrUDufmJvXNgvzsVAbbkeHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iUKJrUDufmJvXNgvzsVAbbkeHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9790/71805BAC5AE211EFAEB0312EC4F9AE02/B1CB71925DDF11EF8DBEED1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.199.244.0/22 203.82.28.0/22 Signature Algorithm: sha256WithRSAEncryption 84:17:73:73:f1:9d:82:2c:00:94:e5:30:d8:34:cf:23:ac:1d: 42:b5:66:fa:6f:bb:4b:1f:c9:5f:5c:68:5f:96:96:69:76:03: 93:f7:03:16:e5:b7:c9:b4:70:54:92:25:e1:fb:d2:1a:bd:0e: 5b:5a:f0:04:27:54:cd:90:53:c0:a1:1a:71:d0:60:9b:09:00: f5:45:95:f8:ba:3e:c7:c2:bf:5e:84:29:11:bd:89:0b:64:8c: f8:dd:83:f4:24:23:92:aa:62:fd:e3:d8:7d:7b:7d:03:d0:95: e3:5f:a7:94:79:bd:64:9b:7d:5e:a5:c4:ab:38:56:57:42:fd: 4f:4b:81:0b:71:bc:a2:7c:3f:5f:32:5e:fa:05:09:c9:55:f0: 08:ec:d0:ea:d8:6a:07:94:91:a2:ea:3e:cb:a2:6e:6b:d3:87: 70:f8:a7:a0:19:1f:d6:cb:cd:66:f9:eb:95:31:18:e5:59:a0: 70:11:12:f7:7a:20:fa:b6:65:62:b4:bc:16:ec:23:c8:bd:2d: 01:f5:37:de:5b:07:a5:0d:04:e4:8a:89:4c:7b:10:91:5a:1f: c3:f7:90:dd:12:77:2b:7d:9b:9e:75:39:6f:f6:6f:45:35:4c: 27:ec:73:4b:5d:18:a1:42:79:86:c1:df:aa:24:07:14:24:64: cb:db:2f:19 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OTc5MDExMC8GA1UEBRMoODk0Mjg5QUQ0MEVFN0U2MjZGNUNEODJGQ0VDNTQwNkRC OTFFMUU3MTAeFw0yNDEyMTcwNTM5MTVaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NjEwZTgzLTQ2YjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDecsX8pyZ21tm+fGARfZe4T75ImPodAFuSquK95u+owyz67kz38RbrMIhClRbo 5PP+kriwEis4BhI/jDlKXE/ebEdMUEG9o6YvWOCUwzWW3KmECs289BOxq7BhYqkn OVvB/eNLbI2yObeMt+Z+0tT/UmCEwNXjDe80UqWzttvolz7J5eLkdqLDuf9kjFiX N4FSTQ+jYBdlyRGSRrybLfieu/EQVHG0OXIsSP7izFTy+sIxjaVnuXB8vYLCsMmt PRt9a4nSn065UKEkiCLadj8CgV7Tm9OEtzWuO6xn9nEm6FxXvNdkOyYxTpYzK9vy aqfDY6wcMzW3CbivRDeVIAfxAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUX122Z8Ef OsNf8eNB285e80XLsykwHwYDVR0jBBgwFoAUiUKJrUDufmJvXNgvzsVAbbkeHnEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5NzkwLzcxODA1QkFDNUFF MjExRUZBRUIwMzEyRUM0RjlBRTAyL2lVS0pyVUR1Zm1KdlhOZ3Z6c1ZBYmJrZUhu RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVVLSnJVRHVmbUp2WE5ndnpzVkFiYmtlSG5FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTc5MC83MTgwNUJBQzVBRTIxMUVGQUVCMDMxMkVDNEY5QUUwMi9CMUNCNzE5MjVE REYxMUVGOERCRUVEMUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmfH9AMEAstSHDANBgkqhkiG9w0BAQsFAAOCAQEAhBdzc/Gd giwAlOUw2DTPI6wdQrVm+m+7Sx/JX1xoX5aWaXYDk/cDFuW3ybRwVJIl4fvSGr0O W1rwBCdUzZBTwKEacdBgmwkA9UWV+Lo+x8K/XoQpEb2JC2SM+N2D9CQjkqpi/ePY fXt9A9CV41+nlHm9ZJt9XqXEqzhWV0L9T0uBC3G8onw/XzJe+gUJyVXwCOzQ6thq B5SRouo+y6Jua9OHcPinoBkf1svNZvnrlTEY5VmgcBES93og+rZlYrS8FuwjyL0t AfU33lsHpQ0E5IqJTHsQkVofw/eQ3RJ3K32bnnU5b/ZvRTVMJ+xzS10YoUJ5hsHf qiQHFCRky9svGQ== -----END CERTIFICATE-----Generated at Sat Apr 5 05:57:32 2025 by rpki-client