$ rpki-client -vvf rpki.apnic.net/member_repository/A91D06FC/AEF230E29EEB11EC8049A27FC4F9AE02/AF8386E29EEF11EC8450760EC4F9AE02.roa File: AF8386E29EEF11EC8450760EC4F9AE02.roa (raw, json) Hash identifier: 33pUrgoOiAaMxnDUMOqU1bZyw6PC3oCJBm1dIi55b3s= Subject key identifier: 4B:59:DD:82:BF:36:D4:F3:D8:91:FC:A0:18:1C:8C:14:A1:DA:07:06 Certificate issuer: /CN=A91D06FC/serialNumber=3E5B3CAB9F141A06EB832E63F586CB0E66760402 Certificate serial: 033F Authority key identifier: 3E:5B:3C:AB:9F:14:1A:06:EB:83:2E:63:F5:86:CB:0E:66:76:04:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pls8q58UGgbrgy5j9YbLDmZ2BAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D06FC/AEF230E29EEB11EC8049A27FC4F9AE02/AF8386E29EEF11EC8450760EC4F9AE02.roa Signing time: Fri 13 Dec 2024 00:44:47 +0000 ROA not before: Fri 13 Dec 2024 00:44:47 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 149011 IP address blocks: 103.176.88.0/23 maxlen: 24 2001:df0:c40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D06FC/AEF230E29EEB11EC8049A27FC4F9AE02/Pls8q58UGgbrgy5j9YbLDmZ2BAI.crl rsync://rpki.apnic.net/member_repository/A91D06FC/AEF230E29EEB11EC8049A27FC4F9AE02/Pls8q58UGgbrgy5j9YbLDmZ2BAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pls8q58UGgbrgy5j9YbLDmZ2BAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 00:30:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 831 (0x33f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D06FC, serialNumber=3E5B3CAB9F141A06EB832E63F586CB0E66760402 Validity Not Before: Dec 13 00:44:47 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=675b837e-38e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c5:da:f1:03:e1:0c:34:e1:ae:62:de:0f:7f: 95:48:af:f6:24:9f:8c:96:1f:50:a1:0a:61:30:c2: 7e:e4:2f:d5:97:68:d5:37:38:55:11:76:15:75:fe: 83:80:7b:4b:5c:f5:28:42:54:4e:03:f7:5f:bb:67: 6b:71:be:d4:21:fa:49:9a:9e:68:56:83:d7:18:86: ae:78:3c:9c:64:04:02:6d:08:e3:bb:19:93:c2:73: c3:49:25:40:db:55:f7:97:b9:33:4a:df:ac:79:12: c4:63:31:c7:07:ee:21:a5:bc:81:0e:e0:bf:66:fb: 46:ae:17:32:2b:b7:ae:4c:9d:21:bb:15:93:9c:39: 74:f2:3d:94:84:f0:0a:08:7d:7f:c7:a9:42:eb:6a: e3:8a:ec:17:58:be:39:5d:38:e4:4d:42:c3:c5:7b: 6a:ab:84:4b:5c:f5:ee:d6:f8:2d:c0:25:82:ca:60: c8:53:d3:ee:18:14:c4:21:c6:e3:94:86:5b:55:99: 82:a9:db:f0:ab:00:8a:6c:12:52:f0:e0:c6:63:2d: 93:28:6c:9a:53:5d:02:f2:6b:56:a2:48:04:29:92: b2:dc:f2:44:89:51:da:01:80:c6:65:a8:04:4f:64: f1:2b:3e:fc:e2:1a:e6:2c:fc:74:1d:d4:56:f9:29: f3:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:59:DD:82:BF:36:D4:F3:D8:91:FC:A0:18:1C:8C:14:A1:DA:07:06 X509v3 Authority Key Identifier: keyid:3E:5B:3C:AB:9F:14:1A:06:EB:83:2E:63:F5:86:CB:0E:66:76:04:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D06FC/AEF230E29EEB11EC8049A27FC4F9AE02/Pls8q58UGgbrgy5j9YbLDmZ2BAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pls8q58UGgbrgy5j9YbLDmZ2BAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D06FC/AEF230E29EEB11EC8049A27FC4F9AE02/AF8386E29EEF11EC8450760EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.88.0/23 IPv6: 2001:df0:c40::/48 Signature Algorithm: sha256WithRSAEncryption 10:46:fe:93:8a:02:83:bb:96:aa:96:67:70:92:7b:c9:61:9d: ff:69:95:a0:d1:8e:5d:b8:1f:70:c6:cb:1c:2f:cf:6e:22:6f: 31:8a:6c:9e:8b:b4:0a:48:b1:9d:78:8d:1e:67:bf:41:9e:09: bb:68:5a:7c:a7:c9:b5:a7:50:9a:a8:d9:c9:71:cf:36:c4:aa: 6b:69:cc:85:33:cb:cb:e5:5b:cb:05:0c:72:0d:e5:b6:af:11: 37:a7:72:e0:c0:ea:a9:2a:f9:d3:4e:d8:95:b5:02:3b:8b:3f: 29:ca:83:62:6a:86:3a:c3:de:db:24:ae:7f:0a:35:88:d8:1b: 0c:c6:da:99:4f:f3:a8:04:4b:2b:98:16:d3:60:40:dc:ea:3a: 96:e1:f0:de:63:8a:eb:d6:d6:97:bf:b7:ff:7b:36:cf:38:39: e2:97:38:2a:4d:d8:bc:e0:48:55:73:91:a7:fd:3b:37:be:f2: 63:7c:45:3c:31:fb:f3:9f:17:f0:e3:9f:54:4f:a0:6b:d3:ea: fd:5d:55:1a:25:4e:0d:d2:15:c8:b7:94:d9:79:f4:a6:57:71: dc:fd:cc:96:94:e1:ea:b6:7d:70:bb:e7:79:5b:08:d0:12:37: 2c:f2:f5:b3:c3:f0:59:1d:66:0f:93:17:96:e0:67:cc:b4:49: 03:f7:97:88 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA2RkMxMTAvBgNVBAUTKDNFNUIzQ0FCOUYxNDFBMDZFQjgzMkU2M0Y1ODZDQjBF NjY3NjA0MDIwHhcNMjQxMjEzMDA0NDQ3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzViODM3ZS0zOGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm8Xa8QPhDDThrmLeD3+VSK/2JJ+Mlh9QoQphMMJ+5C/Vl2jVNzhVEXYVdf6D gHtLXPUoQlROA/dfu2drcb7UIfpJmp5oVoPXGIaueDycZAQCbQjjuxmTwnPDSSVA 21X3l7kzSt+seRLEYzHHB+4hpbyBDuC/ZvtGrhcyK7euTJ0huxWTnDl08j2UhPAK CH1/x6lC62rjiuwXWL45XTjkTULDxXtqq4RLXPXu1vgtwCWCymDIU9PuGBTEIcbj lIZbVZmCqdvwqwCKbBJS8ODGYy2TKGyaU10C8mtWokgEKZKy3PJEiVHaAYDGZagE T2TxKz784hrmLPx0HdRW+Snz1wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEtZ3YK/ NtTz2JH8oBgcjBSh2gcGMB8GA1UdIwQYMBaAFD5bPKufFBoG64MuY/WGyw5mdgQC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDZGQy9BRUYyMzBFMjlF RUIxMUVDODA0OUEyN0ZDNEY5QUUwMi9QbHM4cTU4VUdnYnJneTVqOVliTERtWjJC QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BsczhxNThVR2dicmd5NWo5WWJMRG1aMkJBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDA2RkMvQUVGMjMwRTI5RUVCMTFFQzgwNDlBMjdGQzRGOUFFMDIvQUY4Mzg2RTI5 RUVGMTFFQzg0NTA3NjBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnsFgwDwQCAAIwCQMHACABDfAMQDANBgkqhkiG9w0BAQsF AAOCAQEAEEb+k4oCg7uWqpZncJJ7yWGd/2mVoNGOXbgfcMbLHC/PbiJvMYpsnou0 CkixnXiNHme/QZ4Ju2hafKfJtadQmqjZyXHPNsSqa2nMhTPLy+VbywUMcg3ltq8R N6dy4MDqqSr5007YlbUCO4s/KcqDYmqGOsPe2ySufwo1iNgbDMbamU/zqARLK5gW 02BA3Oo6luHw3mOK69bWl7+3/3s2zzg54pc4Kk3YvOBIVXORp/07N77yY3xFPDH7 858X8OOfVE+ga9Pq/V1VGiVODdIVyLeU2Xn0pldx3P3MlpTh6rZ9cLvneVsI0BI3 LPL1s8PwWR1mD5MXluBnzLRJA/eXiA== -----END CERTIFICATE-----Generated at Sun Apr 13 04:03:53 2025 by rpki-client