$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA239/19AD0F1064B711EDA0918A83C4F9AE02/B2119B7464BA11ED8544E91DC4F9AE02.roa File: B2119B7464BA11ED8544E91DC4F9AE02.roa (raw, json) Hash identifier: QbSn5YRTWG7olUrItxapoYIPCE3hPl44mhf7s2FPRaw= Subject key identifier: 8E:16:8F:62:5B:A6:07:3F:A8:65:DE:2A:65:F8:24:FA:D2:EA:FC:AA Certificate issuer: /CN=A91BA239/serialNumber=108450C7EDFB78521B7E4871FE86E8F623A1051B Certificate serial: 0189 Authority key identifier: 10:84:50:C7:ED:FB:78:52:1B:7E:48:71:FE:86:E8:F6:23:A1:05:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EIRQx-37eFIbfkhx_obo9iOhBRs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA239/19AD0F1064B711EDA0918A83C4F9AE02/B2119B7464BA11ED8544E91DC4F9AE02.roa Signing time: Sun 01 Dec 2024 02:25:54 +0000 ROA not before: Sun 01 Dec 2024 02:25:54 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 150424 IP address blocks: 103.38.248.0/23 maxlen: 23 103.38.248.0/24 maxlen: 24 103.38.249.0/24 maxlen: 24 2401:1460::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA239/19AD0F1064B711EDA0918A83C4F9AE02/EIRQx-37eFIbfkhx_obo9iOhBRs.crl rsync://rpki.apnic.net/member_repository/A91BA239/19AD0F1064B711EDA0918A83C4F9AE02/EIRQx-37eFIbfkhx_obo9iOhBRs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EIRQx-37eFIbfkhx_obo9iOhBRs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 01:54:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA239, serialNumber=108450C7EDFB78521B7E4871FE86E8F623A1051B Validity Not Before: Dec 1 02:25:54 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674bc931-2e62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:66:10:4b:23:33:72:01:0b:c3:f4:ac:5c:67: 92:56:da:37:01:0d:65:d2:01:11:71:df:4a:b8:9b: cf:89:27:86:ee:05:a9:a0:e9:b0:22:e2:c2:68:99: f9:7e:db:09:c3:ea:a3:d8:ed:d1:a1:75:4f:66:90: 4a:a5:16:15:7b:b9:6a:ad:8b:f8:5e:38:69:3c:15: 04:ef:8f:2c:fa:75:ce:15:1f:a1:95:89:7e:48:e2: d3:8b:dd:52:1c:b4:17:c8:40:65:f7:c6:c5:4b:92: 84:8d:6f:6b:94:cc:1d:c3:54:b3:d8:09:3a:2a:4c: 9c:9b:42:9a:ab:31:06:3d:1e:92:52:a4:2c:dd:20: 00:28:2d:94:b1:8a:0b:e0:b2:5b:bb:34:30:75:21: 99:80:df:f5:20:55:a1:68:66:9e:6c:f6:0f:53:e8: 9f:b5:34:07:3e:7d:36:e4:71:a3:94:b7:82:7f:a1: c7:0b:d5:3e:68:4f:54:ef:d8:5d:f3:6a:65:2a:43: f5:cb:b3:c9:ff:ea:0a:a2:10:d5:78:1b:7e:05:85: 15:91:cf:c2:92:d1:83:b0:f5:80:96:67:4c:22:df: 32:9d:6f:c4:64:c5:8e:a5:06:e5:f8:68:8b:bd:bd: bb:21:72:33:81:12:0a:a9:7c:b1:10:e2:9b:96:0c: 97:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:16:8F:62:5B:A6:07:3F:A8:65:DE:2A:65:F8:24:FA:D2:EA:FC:AA X509v3 Authority Key Identifier: keyid:10:84:50:C7:ED:FB:78:52:1B:7E:48:71:FE:86:E8:F6:23:A1:05:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA239/19AD0F1064B711EDA0918A83C4F9AE02/EIRQx-37eFIbfkhx_obo9iOhBRs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EIRQx-37eFIbfkhx_obo9iOhBRs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA239/19AD0F1064B711EDA0918A83C4F9AE02/B2119B7464BA11ED8544E91DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.248.0/23 IPv6: 2401:1460::/32 Signature Algorithm: sha256WithRSAEncryption b2:cc:b2:ff:d7:de:df:42:cf:48:cb:97:6c:0b:77:7c:00:cc: 58:c2:dd:89:bb:27:24:3b:c4:03:41:3c:55:a7:23:e5:51:aa: d2:45:d9:64:4e:b5:53:84:5e:a7:5c:1c:30:a5:bb:b5:8a:51: 5b:47:5e:43:ec:9f:4b:23:2d:eb:33:26:b3:3c:3a:c9:12:55: 85:7b:f4:67:1e:51:cc:3f:9d:f4:8c:ac:4b:ff:0d:87:0f:2a: d3:8f:98:ff:a5:d8:24:d0:be:0c:4e:68:ea:90:f6:8a:cd:08: 17:02:1f:aa:18:34:93:f2:4b:b4:61:f5:96:7f:a3:34:8f:4b: c0:eb:bb:2e:39:e6:2b:f2:ab:f2:ad:6b:8b:a8:e3:12:f3:34: d3:9d:57:b1:92:42:c8:cc:6e:2f:dd:06:f4:b4:8c:34:86:13: c5:91:1a:68:bb:73:d9:78:6a:96:d9:af:c6:b7:89:5c:08:0c: 7f:84:d2:e2:33:1b:18:d2:66:a0:b1:00:9e:c6:2e:d5:88:59: ac:66:b3:67:14:94:80:9b:8b:5e:df:1c:cb:7f:87:93:1c:f8: 17:0e:e0:95:79:ec:30:13:f2:d1:45:45:32:e7:6a:a8:52:30: e7:a0:4a:73:17:31:c7:d9:1e:89:48:92:e5:f5:d1:81:e6:0a: f8:60:e5:41 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEyMzkxMTAvBgNVBAUTKDEwODQ1MEM3RURGQjc4NTIxQjdFNDg3MUZFODZFOEY2 MjNBMTA1MUIwHhcNMjQxMjAxMDIyNTU0WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRiYzkzMS0yZTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArWYQSyMzcgELw/SsXGeSVto3AQ1l0gERcd9KuJvPiSeG7gWpoOmwIuLCaJn5 ftsJw+qj2O3RoXVPZpBKpRYVe7lqrYv4XjhpPBUE748s+nXOFR+hlYl+SOLTi91S HLQXyEBl98bFS5KEjW9rlMwdw1Sz2Ak6Kkycm0KaqzEGPR6SUqQs3SAAKC2UsYoL 4LJbuzQwdSGZgN/1IFWhaGaebPYPU+iftTQHPn025HGjlLeCf6HHC9U+aE9U79hd 82plKkP1y7PJ/+oKohDVeBt+BYUVkc/CktGDsPWAlmdMIt8ynW/EZMWOpQbl+GiL vb27IXIzgRIKqXyxEOKblgyXgQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFI4Wj2Jb pgc/qGXeKmX4JPrS6vyqMB8GA1UdIwQYMBaAFBCEUMft+3hSG35Icf6G6PYjoQUb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTIzOS8xOUFEMEYxMDY0 QjcxMUVEQTA5MThBODNDNEY5QUUwMi9FSVJReC0zN2VGSWJma2h4X29ibzlpT2hC UnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VJUlF4LTM3ZUZJYmZraHhfb2JvOWlPaEJScy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkEyMzkvMTlBRDBGMTA2NEI3MTFFREEwOTE4QTgzQzRGOUFFMDIvQjIxMTlCNzQ2 NEJBMTFFRDg1NDRFOTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnJvgwDQQCAAIwBwMFACQBFGAwDQYJKoZIhvcNAQELBQAD ggEBALLMsv/X3t9Cz0jLl2wLd3wAzFjC3Ym7JyQ7xANBPFWnI+VRqtJF2WROtVOE XqdcHDClu7WKUVtHXkPsn0sjLeszJrM8OskSVYV79GceUcw/nfSMrEv/DYcPKtOP mP+l2CTQvgxOaOqQ9orNCBcCH6oYNJPyS7Rh9ZZ/ozSPS8Druy455ivyq/Kta4uo 4xLzNNOdV7GSQsjMbi/dBvS0jDSGE8WRGmi7c9l4apbZr8a3iVwIDH+E0uIzGxjS ZqCxAJ7GLtWIWaxms2cUlICbi17fHMt/h5Mc+BcO4JV57DAT8tFFRTLnaqhSMOeg SnMXMcfZHolIkuX10YHmCvhg5UE= -----END CERTIFICATE-----Generated at Mon Apr 21 17:23:30 2025 by rpki-client