$ rpki-client -vvf rpki.apnic.net/member_repository/A91D03EE/67281CF4497F11EA967A2E0BC4F9AE02/186A84C83A1811EBAF24B12EC4F9AE02.roa File: 186A84C83A1811EBAF24B12EC4F9AE02.roa (raw, json) Hash identifier: x6v+AqgjPFRVX68ne0JC+xRgXtO5WMJX4uQIZ5czHsE= Subject key identifier: 1E:BF:AA:97:DF:16:AF:35:96:32:47:D4:8A:7B:98:8C:58:AF:DE:7F Certificate issuer: /CN=A91D03EE/serialNumber=7A3835D1BBE1B1B25C3169192D2BDCD7193A8BC2 Certificate serial: 0AA8 Authority key identifier: 7A:38:35:D1:BB:E1:B1:B2:5C:31:69:19:2D:2B:DC:D7:19:3A:8B:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejg10bvhsbJcMWkZLSvc1xk6i8I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D03EE/67281CF4497F11EA967A2E0BC4F9AE02/186A84C83A1811EBAF24B12EC4F9AE02.roa Signing time: Tue 24 Dec 2024 19:37:49 +0000 ROA not before: Tue 24 Dec 2024 19:37:49 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 139809 IP address blocks: 103.145.132.0/23 maxlen: 23 103.145.132.0/24 maxlen: 24 103.145.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D03EE/67281CF4497F11EA967A2E0BC4F9AE02/ejg10bvhsbJcMWkZLSvc1xk6i8I.crl rsync://rpki.apnic.net/member_repository/A91D03EE/67281CF4497F11EA967A2E0BC4F9AE02/ejg10bvhsbJcMWkZLSvc1xk6i8I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejg10bvhsbJcMWkZLSvc1xk6i8I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 19:14:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2728 (0xaa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D03EE Validity Not Before: Dec 24 19:37:49 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676b0d8d-1d44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c5:b8:1c:14:e6:81:a3:ed:12:0c:44:7a:35: f6:2b:64:ce:fe:26:4f:a5:0e:72:70:c2:e7:d2:6e: 97:54:d1:68:64:14:36:24:4a:1e:55:20:7e:4c:db: 5b:df:a4:a1:17:11:38:c3:6a:94:c8:c3:be:6c:97: ff:3d:4d:f3:c5:78:69:9a:3c:3a:28:f3:66:06:ef: 54:3c:a0:44:40:7f:bb:2a:1e:45:f9:ed:9c:4b:8f: 03:12:96:fd:ed:03:8c:4e:20:95:d4:00:9e:8f:7b: f2:09:1c:67:14:28:bc:05:6b:bc:63:2d:9f:b9:4e: 06:7e:6d:7b:e9:7d:9f:5d:7f:0e:77:87:0b:26:7d: 48:2d:aa:17:6d:bf:7b:b5:3a:e1:b6:c1:cd:21:49: f4:1b:c3:92:6b:4c:e4:46:3f:88:51:dd:7f:a2:09: 95:47:7d:71:fd:21:82:cf:db:61:24:76:e7:75:14: c0:c5:cb:b3:9c:be:84:a9:c5:06:fd:6f:1e:21:8c: 12:d6:62:7a:20:1e:af:37:66:59:65:f3:ba:62:32: 67:39:17:26:e6:58:c6:fd:d5:00:a1:90:f7:11:98: 90:30:e9:5f:90:84:5e:6e:e2:2e:45:0d:b3:c9:02: d3:ac:64:2d:9f:5d:c3:1c:78:13:de:42:14:cb:c7: 1e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:BF:AA:97:DF:16:AF:35:96:32:47:D4:8A:7B:98:8C:58:AF:DE:7F X509v3 Authority Key Identifier: keyid:7A:38:35:D1:BB:E1:B1:B2:5C:31:69:19:2D:2B:DC:D7:19:3A:8B:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D03EE/67281CF4497F11EA967A2E0BC4F9AE02/ejg10bvhsbJcMWkZLSvc1xk6i8I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejg10bvhsbJcMWkZLSvc1xk6i8I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D03EE/67281CF4497F11EA967A2E0BC4F9AE02/186A84C83A1811EBAF24B12EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.132.0/23 Signature Algorithm: sha256WithRSAEncryption a5:56:1f:38:ba:cb:8c:72:bf:ef:2a:1f:66:a5:de:3e:8c:d5: 3a:6b:13:33:4f:e5:ee:c0:c8:ff:64:5d:28:69:42:bf:6f:66: 19:56:b9:db:4c:c2:58:d4:7c:16:01:8e:f1:d3:7c:59:26:bb: 1b:85:90:b4:3d:4b:fe:f0:19:bf:e7:cc:53:5c:ea:50:c8:c4: 9c:ba:35:68:4d:08:60:91:6c:ce:d6:9e:9a:e4:42:bb:64:5a: e7:1b:91:d9:07:9e:7d:70:32:cf:fa:7b:c0:6d:68:66:7e:cc: fe:7e:8e:a7:58:55:6b:8e:7f:13:27:04:e6:31:d7:c5:a7:c9: 98:28:92:aa:9c:f7:96:ce:e3:ff:54:87:ff:f0:50:5d:c7:9b: 07:80:a0:50:e9:72:00:c9:73:ed:e1:05:00:c2:fa:68:cd:7a: de:b7:8c:a8:e8:9a:a1:20:f4:2b:be:89:4d:fe:1b:25:cd:19: ed:53:1e:e3:b2:c8:c8:cc:61:b1:8f:45:3f:22:79:0e:12:4c: d9:f5:60:32:b3:d5:aa:b3:0b:50:17:46:ab:99:4b:80:e3:3c: 2d:ca:7b:f5:61:e5:f1:6f:14:6c:18:14:ba:7e:6e:cc:ed:01: 0f:9c:09:25:86:97:2f:4b:97:6f:62:a9:8e:5a:0d:14:5f:e4: 46:53:db:6b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAzRUUxMTAvBgNVBAUTKDdBMzgzNUQxQkJFMUIxQjI1QzMxNjkxOTJEMkJEQ0Q3 MTkzQThCQzIwHhcNMjQxMjI0MTkzNzQ5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzZiMGQ4ZC0xZDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqcW4HBTmgaPtEgxEejX2K2TO/iZPpQ5ycMLn0m6XVNFoZBQ2JEoeVSB+TNtb 36ShFxE4w2qUyMO+bJf/PU3zxXhpmjw6KPNmBu9UPKBEQH+7Kh5F+e2cS48DEpb9 7QOMTiCV1ACej3vyCRxnFCi8BWu8Yy2fuU4Gfm176X2fXX8Od4cLJn1ILaoXbb97 tTrhtsHNIUn0G8OSa0zkRj+IUd1/ogmVR31x/SGCz9thJHbndRTAxcuznL6EqcUG /W8eIYwS1mJ6IB6vN2ZZZfO6YjJnORcm5ljG/dUAoZD3EZiQMOlfkIRebuIuRQ2z yQLTrGQtn13DHHgT3kIUy8ce0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFB6/qpff Fq81ljJH1Ip7mIxYr95/MB8GA1UdIwQYMBaAFHo4NdG74bGyXDFpGS0r3NcZOovC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDNFRS82NzI4MUNGNDQ5 N0YxMUVBOTY3QTJFMEJDNEY5QUUwMi9lamcxMGJ2aHNiSmNNV2taTFN2YzF4azZp OEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VqZzEwYnZoc2JKY01Xa1pMU3ZjMXhrNmk4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDAzRUUvNjcyODFDRjQ0OTdGMTFFQTk2N0EyRTBCQzRGOUFFMDIvMTg2QTg0Qzgz QTE4MTFFQkFGMjRCMTJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkYQwDQYJKoZIhvcNAQELBQADggEBAKVWHzi6y4xyv+8q H2al3j6M1TprEzNP5e7AyP9kXShpQr9vZhlWudtMwljUfBYBjvHTfFkmuxuFkLQ9 S/7wGb/nzFNc6lDIxJy6NWhNCGCRbM7WnprkQrtkWucbkdkHnn1wMs/6e8BtaGZ+ zP5+jqdYVWuOfxMnBOYx18WnyZgokqqc95bO4/9Uh//wUF3HmweAoFDpcgDJc+3h BQDC+mjNet63jKjomqEg9Cu+iU3+GyXNGe1THuOyyMjMYbGPRT8ieQ4STNn1YDKz 1aqzC1AXRquZS4DjPC3Ke/Vh5fFvFGwYFLp+bsztAQ+cCSWGly9Ll29iqY5aDRRf 5EZT22s= -----END CERTIFICATE-----Generated at Mon Apr 7 05:35:35 2025 by rpki-client