$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/722D43AC7A5A11EABD77E486C4F9AE02.roa File: 722D43AC7A5A11EABD77E486C4F9AE02.roa (raw, json) Hash identifier: gpPg/16kKxPZtosxwk3uS2OGAiNWAdV4RvEaBetwtjY= Subject key identifier: AC:C4:88:FD:93:D9:78:C2:AC:74:B3:87:A3:9E:AC:A1:FF:03:82:A5 Certificate issuer: /CN=A91CE9D6/serialNumber=136741BD9E870F06ECE5CB355B8C7571CC96BA74 Certificate serial: 096C Authority key identifier: 13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/722D43AC7A5A11EABD77E486C4F9AE02.roa Signing time: Mon 12 Aug 2024 20:38:41 +0000 ROA not before: Mon 12 Aug 2024 20:38:41 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 135642 IP address blocks: 103.140.143.0/24 maxlen: 24 103.178.53.0/24 maxlen: 24 2001:df0:c480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:06:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2412 (0x96c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9D6 Validity Not Before: Aug 12 20:38:41 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66ba72d1-f8f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f2:02:d3:31:c5:41:0b:5e:27:75:79:ac:ec: 3c:fb:ad:10:8d:28:d1:cf:75:80:7b:d6:19:5c:8b: 76:4f:9b:eb:b5:a4:0b:d8:dc:ad:ce:d2:75:e3:d3: e4:10:1f:f3:d3:be:1c:35:2d:b7:3f:33:92:65:d8: 05:30:c3:46:f8:84:89:df:a6:ef:7e:d8:cc:e2:f1: 0d:d0:d5:43:14:b4:c3:4c:d6:77:c8:26:5e:3e:01: 3e:de:31:b5:bf:f7:b7:b7:5e:15:b1:68:3d:8f:10: 5a:91:c9:ed:fa:36:34:c4:33:94:dd:c6:08:8c:1f: f9:0f:ec:0c:80:cb:62:8e:ad:1c:d9:94:60:3f:f1: 7d:e3:b5:67:ea:7a:91:35:ed:86:4d:f0:30:25:98: 05:3f:cf:74:9f:d4:9c:fa:95:8b:ee:f7:6c:a2:ea: 2f:2b:6a:17:b7:5e:cc:8c:cc:3a:51:30:0d:c8:ad: 40:9e:20:af:ca:e8:76:42:58:3c:ac:2c:10:d0:7a: 21:43:e5:53:db:21:f7:d5:b3:06:bd:b8:d5:d3:71: 98:7f:64:04:9f:63:8f:80:c6:4d:11:c7:55:f1:38: 00:a3:d9:71:c8:47:6f:8d:18:49:fa:f4:d0:2f:a6: 0d:64:47:77:bb:bc:a0:59:7b:3a:58:04:38:e6:26: 97:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:C4:88:FD:93:D9:78:C2:AC:74:B3:87:A3:9E:AC:A1:FF:03:82:A5 X509v3 Authority Key Identifier: keyid:13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/722D43AC7A5A11EABD77E486C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.143.0/24 103.178.53.0/24 IPv6: 2001:df0:c480::/48 Signature Algorithm: sha256WithRSAEncryption 6c:cf:76:24:a3:8b:e0:4d:b8:1a:78:94:8b:37:b9:49:58:00: 24:ba:f7:59:6c:56:a8:be:db:14:57:21:e9:2a:59:a1:d1:2f: 94:4e:44:41:6a:9f:f9:9a:26:09:f8:f9:b0:e1:83:d2:a6:e6: 4e:ad:f0:32:aa:ba:61:b6:f5:5a:94:65:e5:03:c4:2d:bf:dd: 4a:71:aa:37:9f:65:9d:99:71:31:2f:43:61:3b:0b:09:c3:04: 11:2c:6f:fc:02:bd:a7:3c:c7:cb:25:e1:13:2d:da:3e:a0:92: 6a:40:8a:3c:6e:c6:2f:11:c6:68:7f:26:d5:b9:00:2d:12:9b: 36:1e:cd:b3:f8:fc:6d:93:67:a2:02:22:a7:d1:fc:f3:1b:14: 4a:38:32:a7:e0:4e:35:ca:69:57:8f:78:38:5c:0d:7a:c2:68: 92:c4:ab:f3:bc:2c:2b:e8:00:9a:c2:93:5f:45:bc:42:e2:ac: b1:d0:c8:36:b2:93:9a:82:b3:c2:ed:88:a2:4d:aa:38:eb:2f: 13:ac:c8:0b:fc:23:23:6f:d5:0b:33:13:c9:ca:26:37:6c:f4: e2:6b:a4:40:e0:d3:be:90:df:d6:96:ca:d5:19:ce:5e:89:81: f8:f2:98:e6:0d:34:23:fb:53:94:4f:6a:b1:a9:e8:b6:3d:69: bb:98:33:b1 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RDYxMTAvBgNVBAUTKDEzNjc0MUJEOUU4NzBGMDZFQ0U1Q0IzNTVCOEM3NTcx Q0M5NkJBNzQwHhcNMjQwODEyMjAzODQxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJhNzJkMS1mOGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/IC0zHFQQteJ3V5rOw8+60QjSjRz3WAe9YZXIt2T5vrtaQL2NytztJ149Pk EB/z074cNS23PzOSZdgFMMNG+ISJ36bvftjM4vEN0NVDFLTDTNZ3yCZePgE+3jG1 v/e3t14VsWg9jxBakcnt+jY0xDOU3cYIjB/5D+wMgMtijq0c2ZRgP/F947Vn6nqR Ne2GTfAwJZgFP890n9Sc+pWL7vdsouovK2oXt17MjMw6UTANyK1AniCvyuh2Qlg8 rCwQ0HohQ+VT2yH31bMGvbjV03GYf2QEn2OPgMZNEcdV8TgAo9lxyEdvjRhJ+vTQ L6YNZEd3u7ygWXs6WAQ45iaXBwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFKzEiP2T 2XjCrHSzh6OerKH/A4KlMB8GA1UdIwQYMBaAFBNnQb2ehw8G7OXLNVuMdXHMlrp0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlENi85RTY2RjUxMjdB NTUxMUVBQkZCRTk0N0FDNEY5QUUwMi9FMmRCdlo2SER3YnM1Y3MxVzR4MWNjeVd1 blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UyZEJ2WjZIRHdiczVjczFXNHgxY2N5V3VuUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U5RDYvOUU2NkY1MTI3QTU1MTFFQUJGQkU5NDdBQzRGOUFFMDIvNzIyRDQzQUM3 QTVBMTFFQUJENzdFNDg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnjI8DBABnsjUwDwQCAAIwCQMHACABDfDEgDANBgkqhkiG 9w0BAQsFAAOCAQEAbM92JKOL4E24GniUize5SVgAJLr3WWxWqL7bFFch6SpZodEv lE5EQWqf+ZomCfj5sOGD0qbmTq3wMqq6Ybb1WpRl5QPELb/dSnGqN59lnZlxMS9D YTsLCcMEESxv/AK9pzzHyyXhEy3aPqCSakCKPG7GLxHGaH8m1bkALRKbNh7Ns/j8 bZNnogIip9H88xsUSjgyp+BONcppV494OFwNesJoksSr87wsK+gAmsKTX0W8QuKs sdDINrKTmoKzwu2Iok2qOOsvE6zIC/wjI2/VCzMTycomN2z04mukQODTvpDf1pbK 1RnOXomB+PKY5g00I/tTlE9qsanotj1pu5gzsQ== -----END CERTIFICATE-----Generated at Sat Apr 5 23:46:05 2025 by rpki-client