$ rpki-client -vvf rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/24578ECED56A11EFB764F716C4F9AE02.roa File: 24578ECED56A11EFB764F716C4F9AE02.roa (raw, json) Hash identifier: t5WMcFCD2OO+gp845WzQi07gNbar1uWW5UXsijptYhw= Subject key identifier: 73:32:FC:88:29:01:12:A5:4B:70:66:8D:55:1D:71:2E:0C:5A:00:53 Certificate issuer: /CN=A91C913E/serialNumber=A3471C31533B88D1BF8A40A32A7DDE3BA0BB1CBF Certificate serial: 02ED Authority key identifier: A3:47:1C:31:53:3B:88:D1:BF:8A:40:A3:2A:7D:DE:3B:A0:BB:1C:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0ccMVM7iNG_ikCjKn3eO6C7HL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/24578ECED56A11EFB764F716C4F9AE02.roa Signing time: Sat 18 Jan 2025 07:02:13 +0000 ROA not before: Sat 18 Jan 2025 07:02:13 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 153494 IP address blocks: 45.122.132.0/22 maxlen: 24 103.63.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.crl rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0ccMVM7iNG_ikCjKn3eO6C7HL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:20:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 749 (0x2ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C913E Validity Not Before: Jan 18 07:02:13 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=678b51f4-3243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2c:4d:c2:20:7c:47:06:65:7f:17:dd:18:1a: 2e:ef:f6:15:76:8c:86:49:72:22:ae:f7:36:ec:e3: dc:ba:b1:e5:b9:b6:03:42:1e:43:b4:30:d7:61:d6: 3e:e9:f9:bf:f8:47:7a:30:5f:5c:f7:c1:97:0a:42: a5:0e:b5:af:b5:4a:ad:a4:9e:13:07:a0:2d:6c:b5: f5:a2:a5:0e:5a:7c:37:e6:c9:cc:77:5e:c5:03:f5: 95:3a:6f:5c:3f:34:a4:58:f8:b4:d3:25:c1:09:13: c5:85:5b:aa:68:4a:93:75:d2:09:55:db:67:5b:dc: d4:ea:fb:f5:c1:7b:a8:d2:30:4e:72:33:ad:a5:6b: 4d:24:cb:5b:9e:c7:e6:18:7b:2b:13:c6:48:c5:ce: 27:24:b9:c7:e6:6d:87:eb:75:14:7d:72:72:f7:2a: 26:d3:ae:6f:74:c0:3a:9b:3f:8f:2e:eb:05:0b:6d: 7d:7e:28:ce:7a:6a:47:0e:d0:7d:8e:d7:9c:e9:1b: 44:c8:ad:06:04:d2:b6:8e:ec:88:b4:a8:3d:46:dd: bd:0d:d0:0c:3c:d0:b3:88:17:7c:a0:e4:49:5c:4a: 66:4a:ca:12:05:69:19:0b:9d:0e:72:24:82:71:aa: 6c:13:e4:c8:05:ea:21:cb:65:7a:6e:3f:1e:39:e3: 8d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:32:FC:88:29:01:12:A5:4B:70:66:8D:55:1D:71:2E:0C:5A:00:53 X509v3 Authority Key Identifier: keyid:A3:47:1C:31:53:3B:88:D1:BF:8A:40:A3:2A:7D:DE:3B:A0:BB:1C:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/o0ccMVM7iNG_ikCjKn3eO6C7HL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o0ccMVM7iNG_ikCjKn3eO6C7HL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C913E/DD0898F0C6BD11EC8963741DC4F9AE02/24578ECED56A11EFB764F716C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.122.132.0/22 103.63.0.0/22 Signature Algorithm: sha256WithRSAEncryption 68:80:b5:55:13:2f:1f:9c:46:da:2b:e7:df:0a:42:62:8b:2b: d5:ac:d7:b5:30:c8:ca:98:7a:26:92:92:f2:e8:ee:47:30:f8: 96:da:34:4b:aa:df:86:40:58:15:c1:40:d4:ce:cf:5c:4c:2b: 22:87:fb:55:a4:7f:86:16:1d:fa:f3:65:56:54:27:5b:5d:30: 17:c8:80:79:64:83:61:a6:a2:8a:cb:54:18:0d:c6:e3:4c:bf: 8c:1c:05:11:0a:37:5f:3a:1e:ee:94:80:fd:3d:cd:01:45:2b: b9:d9:d4:64:37:e6:43:c9:52:7a:3a:3b:5c:d7:33:a8:7b:af: 36:be:6c:71:85:c4:9d:41:a7:b8:1d:fe:ac:1b:75:5f:8c:b3: fa:ed:72:4d:8e:bb:3f:27:2b:4c:bd:b4:b3:e0:f8:a2:ce:50: 99:71:0d:b4:bd:72:63:1b:3a:e6:0e:3c:c6:fd:f9:aa:f6:bb: 37:ba:b2:59:3d:4e:01:1a:00:60:34:0f:c6:b4:e0:c3:2d:36: 53:b0:70:75:e7:33:a6:12:96:c3:98:06:9f:31:a3:f7:3c:70: ad:fb:0c:6e:be:c1:aa:df:a1:e3:21:f9:f3:d1:83:83:39:c5: 2d:55:90:f7:25:18:57:fc:54:e6:d4:f6:f4:d1:81:b2:86:1f: c1:bd:51:67 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkxM0UxMTAvBgNVBAUTKEEzNDcxQzMxNTMzQjg4RDFCRjhBNDBBMzJBN0RERTNC QTBCQjFDQkYwHhcNMjUwMTE4MDcwMjEzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzhiNTFmNC0zMjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyxNwiB8RwZlfxfdGBou7/YVdoyGSXIirvc27OPcurHlubYDQh5DtDDXYdY+ 6fm/+Ed6MF9c98GXCkKlDrWvtUqtpJ4TB6AtbLX1oqUOWnw35snMd17FA/WVOm9c PzSkWPi00yXBCRPFhVuqaEqTddIJVdtnW9zU6vv1wXuo0jBOcjOtpWtNJMtbnsfm GHsrE8ZIxc4nJLnH5m2H63UUfXJy9yom065vdMA6mz+PLusFC219fijOempHDtB9 jtec6RtEyK0GBNK2juyItKg9Rt29DdAMPNCziBd8oORJXEpmSsoSBWkZC50OciSC capsE+TIBeohy2V6bj8eOeONlwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHMy/Igp ARKlS3BmjVUdcS4MWgBTMB8GA1UdIwQYMBaAFKNHHDFTO4jRv4pAoyp93juguxy/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTEzRS9ERDA4OThGMEM2 QkQxMUVDODk2Mzc0MURDNEY5QUUwMi9vMGNjTVZNN2lOR19pa0NqS24zZU82QzdI TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28wY2NNVk03aU5HX2lrQ2pLbjNlTzZDN0hMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzkxM0UvREQwODk4RjBDNkJEMTFFQzg5NjM3NDFEQzRGOUFFMDIvMjQ1NzhFQ0VE NTZBMTFFRkI3NjRGNzE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIteoQDBAJnPwAwDQYJKoZIhvcNAQELBQADggEBAGiAtVUT Lx+cRtor598KQmKLK9Ws17UwyMqYeiaSkvLo7kcw+JbaNEuq34ZAWBXBQNTOz1xM KyKH+1Wkf4YWHfrzZVZUJ1tdMBfIgHlkg2GmoorLVBgNxuNMv4wcBREKN186Hu6U gP09zQFFK7nZ1GQ35kPJUno6O1zXM6h7rza+bHGFxJ1Bp7gd/qwbdV+Ms/rtck2O uz8nK0y9tLPg+KLOUJlxDbS9cmMbOuYOPMb9+ar2uze6slk9TgEaAGA0D8a04MMt NlOwcHXnM6YSlsOYBp8xo/c8cK37DG6+warfoeMh+fPRg4M5xS1VkPclGFf8VObU 9vTRgbKGH8G9UWc= -----END CERTIFICATE-----Generated at Sat Apr 5 10:32:04 2025 by rpki-client