$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/A558194E801F11EFB86B2647C4F9AE02.roa File: A558194E801F11EFB86B2647C4F9AE02.roa (raw, json) Hash identifier: yZl4Rgg31ofEgyuQezY4Q6zD53Q3cflOAAa2hJJAiIg= Subject key identifier: 24:4E:21:F6:CB:08:8F:7F:E1:3C:2B:55:6C:C8:5A:AA:D7:C2:FA:A4 Certificate issuer: /CN=A91BF905/serialNumber=21A47FFFC81A13335C07B92605A2DDFD1807A14C Certificate serial: 0AC2 Authority key identifier: 21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/A558194E801F11EFB86B2647C4F9AE02.roa Signing time: Sat 08 Feb 2025 19:37:53 +0000 ROA not before: Sat 08 Feb 2025 19:37:53 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 139839 IP address blocks: 103.132.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 18:52:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2754 (0xac2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF905 Validity Not Before: Feb 8 19:37:53 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a7b291-99d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0e:8f:e1:2d:cf:f0:6b:50:80:8c:14:39:72: 8f:76:4c:b4:4f:04:63:5c:60:38:6d:a8:76:42:a9: 41:d3:a5:0f:91:95:f2:ca:14:e7:84:2b:5f:e2:d6: e5:81:d0:d3:24:7e:2b:95:13:52:e8:60:bb:ec:b2: df:20:db:08:2d:33:8a:9d:92:28:e4:e1:f0:5b:1d: 33:f1:92:4d:a2:cb:02:62:02:41:19:3c:d0:5a:23: fa:f9:5b:33:a2:9c:ca:ab:bf:4d:0f:43:ba:c5:43: 4d:2a:a7:17:b9:79:9d:e8:27:f6:b7:ab:a6:66:d8: 0e:90:7b:eb:c4:54:ed:d1:84:09:ff:8c:79:73:3b: d5:ec:52:62:89:ad:89:1e:36:73:80:fc:e0:be:c2: f9:3b:f8:72:b2:ef:87:a4:6e:a7:92:d1:b8:fb:5c: 59:1d:d2:a9:db:c6:62:9d:76:33:fe:90:ee:cf:01: 03:0c:bd:41:29:02:a1:21:44:de:c2:68:f2:7b:44: 16:05:0e:21:96:3c:fe:cd:a2:59:e9:5d:f2:5f:ba: 40:5a:90:d1:1b:e9:66:2b:34:85:5d:ba:95:e6:b1: 28:9d:74:ff:d9:44:01:6c:6a:74:7f:3c:fc:99:2b: df:e1:4b:29:d1:11:0c:c8:13:a2:1c:f4:5c:59:e2: 61:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:4E:21:F6:CB:08:8F:7F:E1:3C:2B:55:6C:C8:5A:AA:D7:C2:FA:A4 X509v3 Authority Key Identifier: keyid:21:A4:7F:FF:C8:1A:13:33:5C:07:B9:26:05:A2:DD:FD:18:07:A1:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/IaR__8gaEzNcB7kmBaLd_RgHoUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IaR__8gaEzNcB7kmBaLd_RgHoUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF905/1FA7C46C48D311EA8AAE4668C4F9AE02/A558194E801F11EFB86B2647C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.132.227.0/24 Signature Algorithm: sha256WithRSAEncryption 91:8a:04:74:7e:4a:87:1b:76:f1:44:24:dc:23:c9:1a:77:d3: 8a:1d:22:ec:62:d6:c6:8a:8c:e9:2f:14:d7:ce:4e:b6:57:c6: 66:3e:8d:b1:7e:de:21:f8:d5:8d:a4:f6:fb:06:3e:a5:37:13: 83:54:5d:e7:0e:1c:75:52:fe:33:2e:bd:7d:66:90:9f:37:2e: 3d:d5:2a:84:ef:cf:f2:28:5c:1d:51:48:70:29:f7:ea:8c:29: 28:aa:92:fb:4f:f5:85:d8:18:bb:36:b8:ae:8c:dc:98:aa:79: 63:5e:6d:8e:90:4a:38:8a:f3:53:99:72:56:fc:ca:de:5f:77: 18:ea:14:d2:cc:33:68:fe:e0:b5:91:59:30:9d:48:ed:5e:18: ee:f2:e8:7e:4b:04:08:a0:47:95:39:53:65:d5:21:c2:1a:b9: 09:f3:63:a0:6b:85:d3:c1:20:d2:54:35:ab:4f:e9:7e:63:01: 8a:68:38:99:1e:99:5b:ed:3c:5a:e7:a2:df:8f:58:7d:76:22: d7:95:01:5e:3e:5d:80:fc:22:a8:63:86:1e:77:6d:3d:be:69: 5a:b5:0d:b2:8d:97:72:b4:05:96:68:1f:4b:e7:1b:8a:7d:87: b2:80:05:bf:a6:eb:49:4a:96:31:cd:df:97:15:cb:13:dc:6e: 17:68:db:75 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY5MDUxMTAvBgNVBAUTKDIxQTQ3RkZGQzgxQTEzMzM1QzA3QjkyNjA1QTJEREZE MTgwN0ExNEMwHhcNMjUwMjA4MTkzNzUzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E3YjI5MS05OWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxA6P4S3P8GtQgIwUOXKPdky0TwRjXGA4bah2QqlB06UPkZXyyhTnhCtf4tbl gdDTJH4rlRNS6GC77LLfINsILTOKnZIo5OHwWx0z8ZJNossCYgJBGTzQWiP6+Vsz opzKq79ND0O6xUNNKqcXuXmd6Cf2t6umZtgOkHvrxFTt0YQJ/4x5czvV7FJiia2J HjZzgPzgvsL5O/hysu+HpG6nktG4+1xZHdKp28ZinXYz/pDuzwEDDL1BKQKhIUTe wmjye0QWBQ4hljz+zaJZ6V3yX7pAWpDRG+lmKzSFXbqV5rEonXT/2UQBbGp0fzz8 mSvf4Usp0REMyBOiHPRcWeJhpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCROIfbL CI9/4TwrVWzIWqrXwvqkMB8GA1UdIwQYMBaAFCGkf//IGhMzXAe5JgWi3f0YB6FM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjkwNS8xRkE3QzQ2QzQ4 RDMxMUVBOEFBRTQ2NjhDNEY5QUUwMi9JYVJfXzhnYUV6TmNCN2ttQmFMZF9SZ0hv VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lhUl9fOGdhRXpOY0I3a21CYUxkX1JnSG9Vdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkY5MDUvMUZBN0M0NkM0OEQzMTFFQThBQUU0NjY4QzRGOUFFMDIvQTU1ODE5NEU4 MDFGMTFFRkI4NkIyNjQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnhOMwDQYJKoZIhvcNAQELBQADggEBAJGKBHR+SocbdvFE JNwjyRp304odIuxi1saKjOkvFNfOTrZXxmY+jbF+3iH41Y2k9vsGPqU3E4NUXecO HHVS/jMuvX1mkJ83Lj3VKoTvz/IoXB1RSHAp9+qMKSiqkvtP9YXYGLs2uK6M3Jiq eWNebY6QSjiK81OZclb8yt5fdxjqFNLMM2j+4LWRWTCdSO1eGO7y6H5LBAigR5U5 U2XVIcIauQnzY6BrhdPBINJUNatP6X5jAYpoOJkemVvtPFrnot+PWH12IteVAV4+ XYD8Iqhjhh53bT2+aVq1DbKNl3K0BZZoH0vnG4p9h7KABb+m60lKljHN35cVyxPc bhdo23U= -----END CERTIFICATE-----Generated at Mon Apr 7 01:44:22 2025 by rpki-client