$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA559/AAC34F4630C411EC99F2F66CC4F9AE02/45CC5B763C8311ECA86D031EC4F9AE02.roa File: 45CC5B763C8311ECA86D031EC4F9AE02.roa (raw, json) Hash identifier: GWx3OJd1vwjGtC5zPk/EszjxixEUkMuQ8v31OyEYOdo= Subject key identifier: 32:40:C9:35:74:AB:CB:D3:8B:77:5B:F8:A3:11:4A:C2:AB:9A:D9:C2 Certificate issuer: /CN=A91CA559/serialNumber=21A76F3BB816CFFE7C466555C2B0BEBC9C7BC56E Certificate serial: 048A Authority key identifier: 21:A7:6F:3B:B8:16:CF:FE:7C:46:65:55:C2:B0:BE:BC:9C:7B:C5:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IadvO7gWz_58RmVVwrC-vJx7xW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA559/AAC34F4630C411EC99F2F66CC4F9AE02/45CC5B763C8311ECA86D031EC4F9AE02.roa Signing time: Thu 27 Feb 2025 01:23:49 +0000 ROA not before: Thu 27 Feb 2025 01:23:49 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 9744 IP address blocks: 103.147.224.0/23 maxlen: 24 103.231.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA559/AAC34F4630C411EC99F2F66CC4F9AE02/IadvO7gWz_58RmVVwrC-vJx7xW4.crl rsync://rpki.apnic.net/member_repository/A91CA559/AAC34F4630C411EC99F2F66CC4F9AE02/IadvO7gWz_58RmVVwrC-vJx7xW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IadvO7gWz_58RmVVwrC-vJx7xW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:07:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1162 (0x48a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA559 Validity Not Before: Feb 27 01:23:49 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67bfbea5-1564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:7e:64:00:ed:e1:3e:c8:73:02:b9:74:ce:86: 5a:eb:7b:0e:33:2f:28:30:44:e3:50:92:98:f4:26: 18:f3:27:30:9f:01:8c:0f:27:02:38:d5:31:b4:4c: 33:c5:0e:2b:83:33:69:5e:b1:05:38:c2:44:c3:49: 31:cc:1b:5a:bb:36:95:d2:92:3d:5c:fa:62:73:d2: 6b:2c:26:aa:2c:94:5b:b5:ad:45:68:c2:09:4b:8f: 50:e5:5e:2e:3c:ba:54:ab:f9:22:0a:06:5f:f2:7e: 1a:5e:65:3b:cb:41:3b:30:44:31:83:aa:75:e2:c5: 05:cc:73:4e:09:3c:a5:d3:27:c3:42:80:99:da:28: ed:31:af:24:67:c8:81:d7:3a:90:69:16:c3:f6:88: 99:b8:6e:9b:5c:e9:c7:60:bb:40:4e:d6:07:bc:68: be:2f:72:d2:45:83:3f:5f:0b:93:73:89:0c:58:d3: c0:0e:2b:9f:05:ad:12:c0:37:8c:74:e6:81:01:73: 7a:db:f3:57:a7:ed:96:b8:0a:ed:01:34:3c:4b:19: 2d:bd:51:1f:8b:3d:43:ed:d1:28:2d:48:72:5e:1f: 8e:49:67:37:8d:dc:c5:a6:78:13:1c:05:f8:a4:31: bd:68:24:8f:df:52:b1:29:e0:de:45:33:e6:be:04: 3f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:40:C9:35:74:AB:CB:D3:8B:77:5B:F8:A3:11:4A:C2:AB:9A:D9:C2 X509v3 Authority Key Identifier: keyid:21:A7:6F:3B:B8:16:CF:FE:7C:46:65:55:C2:B0:BE:BC:9C:7B:C5:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA559/AAC34F4630C411EC99F2F66CC4F9AE02/IadvO7gWz_58RmVVwrC-vJx7xW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IadvO7gWz_58RmVVwrC-vJx7xW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA559/AAC34F4630C411EC99F2F66CC4F9AE02/45CC5B763C8311ECA86D031EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.224.0/23 103.231.172.0/22 Signature Algorithm: sha256WithRSAEncryption 47:ad:62:d6:55:7a:22:bd:0e:9c:38:1a:a6:2e:8a:a6:f8:29: 6b:ae:26:14:7d:03:6f:41:e5:38:1f:c0:de:64:f9:34:5e:09: 60:43:a7:8e:97:77:13:8d:3f:b8:97:7f:c6:1d:fa:55:d7:01: 9a:ac:60:da:0b:75:dd:c9:a6:fb:f7:08:9f:66:cf:24:16:1c: e0:14:69:af:30:ff:ce:86:6b:09:62:d3:6a:31:53:2d:4d:7c: a1:20:eb:7b:36:af:93:de:4e:ca:01:8f:03:d2:04:d0:67:81: 0e:54:3b:91:77:8a:77:1b:ca:47:0d:dd:20:d5:a5:7c:f1:0d: 73:d5:77:88:84:86:02:76:e1:d3:e3:a6:72:e7:a7:35:0b:bc: c4:74:ca:ea:ed:51:d6:8e:96:52:57:4c:60:fb:20:f6:cd:5b: ba:fb:fe:9a:3b:3a:b9:6b:ed:ed:55:53:90:92:e4:9e:42:fa: 98:3e:42:98:e7:ac:48:5f:8f:77:01:6b:46:2b:80:cf:2b:2d: 18:28:6a:88:bd:d7:93:c3:69:51:5b:46:b6:0e:4f:41:d2:10: 67:3f:1f:bc:21:e5:6b:ce:90:15:b7:2b:15:37:21:77:c2:f6: a2:75:3e:2a:4b:f6:1a:ea:b7:66:18:ce:14:d9:54:74:ca:49: 28:25:f1:07 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E1NTkxMTAvBgNVBAUTKDIxQTc2RjNCQjgxNkNGRkU3QzQ2NjU1NUMyQjBCRUJD OUM3QkM1NkUwHhcNMjUwMjI3MDEyMzQ5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JmYmVhNS0xNTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1n5kAO3hPshzArl0zoZa63sOMy8oMETjUJKY9CYY8ycwnwGMDycCONUxtEwz xQ4rgzNpXrEFOMJEw0kxzBtauzaV0pI9XPpic9JrLCaqLJRbta1FaMIJS49Q5V4u PLpUq/kiCgZf8n4aXmU7y0E7MEQxg6p14sUFzHNOCTyl0yfDQoCZ2ijtMa8kZ8iB 1zqQaRbD9oiZuG6bXOnHYLtATtYHvGi+L3LSRYM/XwuTc4kMWNPADiufBa0SwDeM dOaBAXN62/NXp+2WuArtATQ8SxktvVEfiz1D7dEoLUhyXh+OSWc3jdzFpngTHAX4 pDG9aCSP31KxKeDeRTPmvgQ/uwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDJAyTV0 q8vTi3db+KMRSsKrmtnCMB8GA1UdIwQYMBaAFCGnbzu4Fs/+fEZlVcKwvryce8Vu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTU1OS9BQUMzNEY0NjMw QzQxMUVDOTlGMkY2NkNDNEY5QUUwMi9JYWR2TzdnV3pfNThSbVZWd3JDLXZKeDd4 VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lhZHZPN2dXel81OFJtVlZ3ckMtdkp4N3hXNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0E1NTkvQUFDMzRGNDYzMEM0MTFFQzk5RjJGNjZDQzRGOUFFMDIvNDVDQzVCNzYz QzgzMTFFQ0E4NkQwMzFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnk+ADBAJn56wwDQYJKoZIhvcNAQELBQADggEBAEetYtZV eiK9Dpw4GqYuiqb4KWuuJhR9A29B5TgfwN5k+TReCWBDp46XdxONP7iXf8Yd+lXX AZqsYNoLdd3Jpvv3CJ9mzyQWHOAUaa8w/86Gawli02oxUy1NfKEg63s2r5PeTsoB jwPSBNBngQ5UO5F3incbykcN3SDVpXzxDXPVd4iEhgJ24dPjpnLnpzULvMR0yurt UdaOllJXTGD7IPbNW7r7/po7Orlr7e1VU5CS5J5C+pg+QpjnrEhfj3cBa0YrgM8r LRgoaoi915PDaVFbRrYOT0HSEGc/H7wh5WvOkBW3KxU3IXfC9qJ1PipL9hrqt2YY zhTZVHTKSSgl8Qc= -----END CERTIFICATE-----Generated at Sun Apr 6 17:30:01 2025 by rpki-client