$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/557C01B0DC9011EFB2FA0156C4F9AE02.roa File: 557C01B0DC9011EFB2FA0156C4F9AE02.roa (raw, json) Hash identifier: yMRj6zXkNB91QEkpYUaCtfSJCsK4a+LvUrWQ52M/QbM= Subject key identifier: 89:5E:01:C2:3B:77:74:34:8D:47:D2:6F:63:D2:79:FE:FC:93:95:84 Certificate issuer: /CN=A91BF312/serialNumber=F0297D0E4531A1D62A95AF5D2F22EF2408DAD29C Certificate serial: 075A Authority key identifier: F0:29:7D:0E:45:31:A1:D6:2A:95:AF:5D:2F:22:EF:24:08:DA:D2:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/557C01B0DC9011EFB2FA0156C4F9AE02.roa Signing time: Mon 27 Jan 2025 09:23:14 +0000 ROA not before: Mon 27 Jan 2025 09:23:14 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 55720 IP address blocks: 103.212.68.0/24 maxlen: 24 103.212.69.0/24 maxlen: 24 103.212.70.0/24 maxlen: 24 103.212.71.0/24 maxlen: 24 139.5.177.0/24 maxlen: 24 139.5.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.crl rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1882 (0x75a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF312 Validity Not Before: Jan 27 09:23:14 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67975082-e2f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:fa:94:1a:f2:a3:7b:c1:17:32:67:d7:6b:ab: 7c:fd:b8:75:ca:41:13:a9:38:81:b7:2e:67:6d:d8: dd:14:bf:07:34:59:6f:d8:3b:65:65:3b:c7:05:f1: c0:36:87:1b:62:d8:c6:11:59:ac:34:08:55:fb:29: 15:32:54:4d:04:6a:f8:08:53:c2:da:87:2e:86:8e: 3e:f9:3e:9a:0e:af:cc:b7:f4:a4:2c:34:ae:15:54: 04:69:0b:5e:c2:14:72:d2:b5:e3:ec:63:92:8f:a2: 3b:05:df:76:1c:90:bc:89:54:03:b1:6c:1e:16:36: d9:51:ba:cf:b9:d2:fe:a1:f7:ae:9f:3c:95:50:d4: 60:3d:9b:d7:29:38:65:c7:37:c0:c9:ec:c2:da:5c: 7a:41:56:7f:46:86:7d:7b:d3:e4:d6:db:de:d4:ce: 32:29:e5:19:7a:19:f9:d8:61:72:be:34:cc:c7:62: 16:85:da:d0:79:db:bd:ff:4d:98:03:fe:ad:25:86: 4b:12:79:3e:48:ac:b4:1d:41:df:13:8f:ce:c8:a0: 05:5d:2c:bf:cb:20:40:b0:a1:7e:d3:8e:f4:c8:a9: 4e:95:43:70:46:be:10:75:0c:2e:02:ff:fd:cf:d7: 6e:37:e8:32:2f:4f:d6:4d:f6:24:2b:9b:34:0d:27: 03:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:5E:01:C2:3B:77:74:34:8D:47:D2:6F:63:D2:79:FE:FC:93:95:84 X509v3 Authority Key Identifier: keyid:F0:29:7D:0E:45:31:A1:D6:2A:95:AF:5D:2F:22:EF:24:08:DA:D2:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/8Cl9DkUxodYqla9dLyLvJAja0pw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Cl9DkUxodYqla9dLyLvJAja0pw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF312/AA92B9780C2911EB9540DD61C4F9AE02/557C01B0DC9011EFB2FA0156C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.68.0/22 139.5.177.0/24 139.5.179.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:61:0d:6c:12:15:85:ab:75:2b:17:48:ef:6b:b0:44:8c:3e: 06:bc:11:63:a2:dc:c7:2f:59:23:3d:e5:8e:5a:ec:45:a3:d1: 1b:0d:3e:84:30:fb:84:1f:a5:cc:91:de:b3:05:e7:78:75:31: ea:94:d2:90:e7:0c:b6:73:67:be:3d:51:49:9f:a6:90:f1:6b: 29:08:07:dc:04:8e:aa:0f:ff:49:de:f7:fd:e5:b3:e1:c7:5d: f4:fd:79:58:a9:7e:98:02:2f:e7:bc:5a:e8:88:84:6a:db:d3: 52:a9:c1:0c:50:02:1c:58:54:a7:e0:2c:3c:37:41:19:b3:68: 20:d9:38:42:6a:23:95:d4:58:f1:4f:4c:83:b2:4d:4a:e5:af: bd:ad:df:4f:2c:3d:77:5b:ef:21:1d:02:af:22:c9:b6:36:86: 0c:0d:15:a1:41:d4:e5:4e:71:14:b7:b5:f9:77:2b:ec:ed:8b: 44:a5:3e:ec:de:4c:1d:f1:86:d6:db:3f:48:c7:4e:1b:bd:27: 42:9c:ba:60:09:96:27:cf:f7:dd:58:96:29:7e:58:fc:c2:ce: ba:ef:7e:1a:66:bc:e2:40:75:53:5f:ef:5c:04:94:81:fb:38: 9a:02:54:ab:18:cd:3f:c5:4d:4d:c9:e7:d2:7b:b9:76:9b:c4: 04:b9:04:20 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICB1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYzMTIxMTAvBgNVBAUTKEYwMjk3RDBFNDUzMUExRDYyQTk1QUY1RDJGMjJFRjI0 MDhEQUQyOUMwHhcNMjUwMTI3MDkyMzE0WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk3NTA4Mi1lMmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArPqUGvKje8EXMmfXa6t8/bh1ykETqTiBty5nbdjdFL8HNFlv2DtlZTvHBfHA NocbYtjGEVmsNAhV+ykVMlRNBGr4CFPC2ocuho4++T6aDq/Mt/SkLDSuFVQEaQte whRy0rXj7GOSj6I7Bd92HJC8iVQDsWweFjbZUbrPudL+ofeunzyVUNRgPZvXKThl xzfAyezC2lx6QVZ/RoZ9e9Pk1tve1M4yKeUZehn52GFyvjTMx2IWhdrQedu9/02Y A/6tJYZLEnk+SKy0HUHfE4/OyKAFXSy/yyBAsKF+0470yKlOlUNwRr4QdQwuAv/9 z9duN+gyL0/WTfYkK5s0DScDdwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFIleAcI7 d3Q0jUfSb2PSef78k5WEMB8GA1UdIwQYMBaAFPApfQ5FMaHWKpWvXS8i7yQI2tKc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjMxMi9BQTkyQjk3ODBD MjkxMUVCOTU0MERENjFDNEY5QUUwMi84Q2w5RGtVeG9kWXFsYTlkTHlMdkpBamEw cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhDbDlEa1V4b2RZcWxhOWRMeUx2SkFqYTBwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkYzMTIvQUE5MkI5NzgwQzI5MTFFQjk1NDBERDYxQzRGOUFFMDIvNTU3QzAxQjBE QzkwMTFFRkIyRkEwMTU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJn1EQDBACLBbEDBACLBbMwDQYJKoZIhvcNAQELBQADggEB AA9hDWwSFYWrdSsXSO9rsESMPga8EWOi3McvWSM95Y5a7EWj0RsNPoQw+4QfpcyR 3rMF53h1MeqU0pDnDLZzZ749UUmfppDxaykIB9wEjqoP/0ne9/3ls+HHXfT9eVip fpgCL+e8WuiIhGrb01KpwQxQAhxYVKfgLDw3QRmzaCDZOEJqI5XUWPFPTIOyTUrl r72t308sPXdb7yEdAq8iybY2hgwNFaFB1OVOcRS3tfl3K+zti0SlPuzeTB3xhtbb P0jHThu9J0KcumAJlifP991Ylil+WPzCzrrvfhpmvOJAdVNf71wElIH7OJoCVKsY zT/FTU3J59J7uXabxAS5BCA= -----END CERTIFICATE-----Generated at Sat Apr 5 01:50:36 2025 by rpki-client