$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/2080359097F711EF91AB0436C4F9AE02.roa File: 2080359097F711EF91AB0436C4F9AE02.roa (raw, json) Hash identifier: ayF9Bv7+wkh7jzbmvM6fDF9jk/NLjmF1YhPtsg38ygk= Subject key identifier: 72:D8:81:27:C6:58:AD:85:41:20:BA:AF:29:62:D4:DE:5D:EE:CA:57 Certificate issuer: /CN=A91BAD56/serialNumber=1EECA03A77652B9070B5E133809A223830C89CF9 Certificate serial: 0215 Authority key identifier: 1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/2080359097F711EF91AB0436C4F9AE02.roa Signing time: Wed 25 Dec 2024 01:44:58 +0000 ROA not before: Wed 25 Dec 2024 01:44:58 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 139880 IP address blocks: 103.176.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.crl rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 533 (0x215) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAD56 Validity Not Before: Dec 25 01:44:58 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676b639a-4a60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:20:89:72:8c:8f:80:87:f7:7e:01:4b:b5:d4: 45:65:63:c3:30:84:81:38:7d:b3:4a:26:b8:f8:40: 5d:c7:84:04:67:87:35:8b:17:34:a0:31:93:de:48: 03:c0:f4:f6:6f:df:0a:62:57:12:c7:17:8e:a1:62: 86:09:62:74:14:20:b7:f6:f1:ba:11:8c:05:a8:e2: 9b:2f:7b:0d:ec:27:95:71:57:04:57:04:ad:be:7a: 1e:30:24:44:a1:f3:83:d9:88:8b:9c:53:9f:09:14: 60:42:be:ae:2a:57:28:41:66:cc:ec:9c:d2:49:38: 7a:0e:b0:ae:3e:2b:55:f5:67:b7:40:21:4c:38:b7: 5c:24:bc:05:33:e6:a0:ab:43:da:48:85:5e:b4:8b: f2:4d:88:6e:da:44:68:55:5d:9d:ae:81:20:af:80: d0:8c:ec:71:0b:80:e6:bb:c6:ab:12:30:a8:d4:cb: f9:18:8c:54:b7:dd:bf:5a:62:d6:79:ec:57:c5:d5: b7:7d:f3:bc:74:a8:f5:61:4b:18:97:39:b9:37:86: 79:ef:fc:6b:72:25:e0:89:a5:84:ef:8d:d8:c0:e7: df:79:e3:fe:a6:d2:1e:ad:17:15:e9:1a:84:0d:bf: e1:d1:82:d4:21:e1:3c:2c:6e:d2:a8:44:23:86:6a: 4c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:D8:81:27:C6:58:AD:85:41:20:BA:AF:29:62:D4:DE:5D:EE:CA:57 X509v3 Authority Key Identifier: keyid:1E:EC:A0:3A:77:65:2B:90:70:B5:E1:33:80:9A:22:38:30:C8:9C:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/HuygOndlK5BwteEzgJoiODDInPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HuygOndlK5BwteEzgJoiODDInPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAD56/818B4D021AAE11ED9B74AE51C4F9AE02/2080359097F711EF91AB0436C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.91.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:98:5b:84:ca:d8:c3:e7:87:75:26:04:61:0b:da:46:2a:ac: fc:97:20:8c:d5:08:8d:32:6e:56:07:26:e2:9e:b2:ea:7a:ca: 82:06:98:fa:48:4c:96:d4:54:52:6c:fc:f5:f9:5b:64:14:71: ea:ed:dd:2e:89:7d:85:5e:c8:21:ab:fd:44:1a:b2:97:43:ad: 54:a7:59:af:d4:2b:30:29:eb:83:a5:87:64:fb:83:54:bd:1e: 7d:3f:af:b8:51:63:00:c4:e4:14:a2:de:e3:42:1f:b8:a2:b5: e9:6c:9c:c2:4e:bf:4b:d3:d6:d2:93:af:0a:0a:a6:2d:51:5a: 81:ce:b8:c6:27:2d:d6:48:79:fd:ea:b0:b7:d7:1e:19:5b:9d: 38:0a:bb:5c:0b:dc:94:a6:e1:43:1e:fb:f2:8f:f8:8b:d0:85: 1a:5d:b0:a1:81:de:87:5c:d8:2b:ba:95:68:11:f2:61:32:2f: 97:e6:da:24:c5:46:42:6e:13:89:1a:3d:83:3b:b9:d4:02:78: aa:ff:cb:51:8a:ee:68:fc:dd:6d:88:27:a5:10:fe:ce:08:7d: 86:51:78:1a:c8:fd:62:02:79:2a:b2:a7:98:d8:39:6f:e6:7a: 88:72:30:96:ab:10:73:61:93:83:63:73:d7:a6:ed:03:96:bd: e4:8f:70:82 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFENTYxMTAvBgNVBAUTKDFFRUNBMDNBNzc2NTJCOTA3MEI1RTEzMzgwOUEyMjM4 MzBDODlDRjkwHhcNMjQxMjI1MDE0NDU4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzZiNjM5YS00YTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCCJcoyPgIf3fgFLtdRFZWPDMISBOH2zSia4+EBdx4QEZ4c1ixc0oDGT3kgD wPT2b98KYlcSxxeOoWKGCWJ0FCC39vG6EYwFqOKbL3sN7CeVcVcEVwStvnoeMCRE ofOD2YiLnFOfCRRgQr6uKlcoQWbM7JzSSTh6DrCuPitV9We3QCFMOLdcJLwFM+ag q0PaSIVetIvyTYhu2kRoVV2droEgr4DQjOxxC4Dmu8arEjCo1Mv5GIxUt92/WmLW eexXxdW3ffO8dKj1YUsYlzm5N4Z57/xrciXgiaWE743YwOffeeP+ptIerRcV6RqE Db/h0YLUIeE8LG7SqEQjhmpM8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFHLYgSfG WK2FQSC6ryli1N5d7spXMB8GA1UdIwQYMBaAFB7soDp3ZSuQcLXhM4CaIjgwyJz5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUQ1Ni84MThCNEQwMjFB QUUxMUVEOUI3NEFFNTFDNEY5QUUwMi9IdXlnT25kbEs1Qnd0ZUV6Z0pvaU9ERElu UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h1eWdPbmRsSzVCd3RlRXpnSm9pT0RESW5Qay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFENTYvODE4QjREMDIxQUFFMTFFRDlCNzRBRTUxQzRGOUFFMDIvMjA4MDM1OTA5 N0Y3MTFFRjkxQUIwNDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnsFswDQYJKoZIhvcNAQELBQADggEBAD2YW4TK2MPnh3Um BGEL2kYqrPyXIIzVCI0yblYHJuKesup6yoIGmPpITJbUVFJs/PX5W2QUcert3S6J fYVeyCGr/UQaspdDrVSnWa/UKzAp64Olh2T7g1S9Hn0/r7hRYwDE5BSi3uNCH7ii telsnMJOv0vT1tKTrwoKpi1RWoHOuMYnLdZIef3qsLfXHhlbnTgKu1wL3JSm4UMe +/KP+IvQhRpdsKGB3odc2Cu6lWgR8mEyL5fm2iTFRkJuE4kaPYM7udQCeKr/y1GK 7mj83W2IJ6UQ/s4IfYZReBrI/WICeSqyp5jYOW/meohyMJarEHNhk4Njc9em7QOW veSPcII= -----END CERTIFICATE-----Generated at Sat Apr 5 06:03:20 2025 by rpki-client