$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/743B3188E57211ECBC81A87EC4F9AE02.roa File: 743B3188E57211ECBC81A87EC4F9AE02.roa (raw, json) Hash identifier: ukecD2pxHGlgKyIFMtJzbdcdaqfvaNOkIkVTe1ei8KE= Subject key identifier: 6D:3A:43:D5:51:BF:91:96:34:1B:92:FB:C9:F0:43:DF:09:3F:6F:FD Certificate issuer: /CN=A91D1E4C/serialNumber=AB67E82FC86AACA82ACFF8DC3645CD7161013F76 Certificate serial: 0260 Authority key identifier: AB:67:E8:2F:C8:6A:AC:A8:2A:CF:F8:DC:36:45:CD:71:61:01:3F:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/743B3188E57211ECBC81A87EC4F9AE02.roa Signing time: Fri 16 Aug 2024 21:44:27 +0000 ROA not before: Fri 16 Aug 2024 21:44:27 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140981 IP address blocks: 103.154.48.0/24 maxlen: 24 2001:df4:6880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 20:43:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 608 (0x260) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1E4C Validity Not Before: Aug 16 21:44:27 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66bfc83a-c7fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:64:25:3c:aa:e2:d8:68:85:10:b1:36:e7:7d: 3f:22:91:55:36:a0:6a:94:49:94:17:2f:31:76:f8: 65:6b:8d:53:6f:f7:cd:47:ce:18:cb:9e:f3:59:34: 40:97:5a:39:d4:3c:32:43:e4:1f:33:82:16:8f:2c: 49:d2:4b:59:5e:52:e9:8d:40:bc:1b:ea:de:c5:a2: a4:af:90:7a:3b:e5:fa:4c:62:a3:23:bb:88:f8:95: 1d:d6:60:35:4b:7c:20:f1:c2:ee:22:31:d7:3f:ca: 03:3a:1f:39:31:aa:4f:20:9e:fe:db:ad:52:22:56: 3d:ed:df:9c:eb:30:ca:2b:f7:bd:4b:3a:09:70:c8: 3c:14:bd:1a:90:3b:45:57:04:91:0a:05:71:fc:85: 4b:51:e4:57:25:e0:8d:97:09:6b:8d:c1:ce:20:63: ff:5f:d1:99:b3:cd:da:c1:da:ac:ee:8b:70:98:e7: 51:22:8d:8d:d8:b1:15:de:85:38:e0:b0:5f:fa:ef: 62:27:9d:f0:81:6b:f8:79:4e:91:0b:4f:67:00:5d: 4d:22:53:99:db:a8:b3:af:d4:d5:f5:54:d5:55:4a: b6:52:9e:35:c1:df:a7:3f:d3:67:ef:37:8e:ae:9d: d3:fe:2d:d3:00:6a:a2:bf:85:9c:a3:fc:80:2e:e3: 78:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:3A:43:D5:51:BF:91:96:34:1B:92:FB:C9:F0:43:DF:09:3F:6F:FD X509v3 Authority Key Identifier: keyid:AB:67:E8:2F:C8:6A:AC:A8:2A:CF:F8:DC:36:45:CD:71:61:01:3F:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/743B3188E57211ECBC81A87EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.48.0/24 IPv6: 2001:df4:6880::/48 Signature Algorithm: sha256WithRSAEncryption ac:2d:ce:f7:d7:58:5d:fd:83:e0:72:fb:24:f9:d1:23:90:91: 70:c5:c5:7c:c4:cc:f0:79:93:24:7f:85:11:69:9e:84:0d:82: 3c:23:ca:40:d0:5e:b1:39:31:34:c7:46:b1:e5:0f:24:e8:d3: a5:ed:dc:09:a2:17:42:a2:4c:ee:aa:72:df:79:87:9a:84:12: 16:11:9f:8e:3f:4d:09:6f:f0:61:3b:62:d7:6d:ad:b8:86:ea: 89:72:c0:b1:47:2e:2e:dd:d7:0e:25:1a:cb:65:78:2f:72:82: 11:12:15:5c:01:2e:89:78:9f:01:76:c2:49:6d:f5:34:25:06: b1:bc:d6:5b:9b:4a:f6:f8:ac:57:25:92:1d:57:5b:ef:22:ce: df:09:ef:05:e3:fe:77:4a:62:48:2a:2d:bb:34:43:77:70:01: 32:ba:00:88:94:6a:59:e3:19:40:07:06:41:d7:e9:ad:0f:5e: 3e:c7:57:32:e3:c6:8f:28:47:bb:15:fe:58:5a:cb:6d:63:6e: b2:cf:78:4c:55:e5:ce:98:c8:8c:2d:ca:ea:e9:9c:a1:db:51: 78:f0:4f:5b:d0:f4:fd:41:36:a0:05:ad:86:05:6e:d4:6d:c8: c5:95:44:25:12:af:24:53:89:2b:b4:63:02:30:c6:d1:6b:ee: 2d:61:10:31 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFNEMxMTAvBgNVBAUTKEFCNjdFODJGQzg2QUFDQTgyQUNGRjhEQzM2NDVDRDcx NjEwMTNGNzYwHhcNMjQwODE2MjE0NDI3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmYzgzYS1jN2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWQlPKri2GiFELE2530/IpFVNqBqlEmUFy8xdvhla41Tb/fNR84Yy57zWTRA l1o51DwyQ+QfM4IWjyxJ0ktZXlLpjUC8G+rexaKkr5B6O+X6TGKjI7uI+JUd1mA1 S3wg8cLuIjHXP8oDOh85MapPIJ7+261SIlY97d+c6zDKK/e9SzoJcMg8FL0akDtF VwSRCgVx/IVLUeRXJeCNlwlrjcHOIGP/X9GZs83awdqs7otwmOdRIo2N2LEV3oU4 4LBf+u9iJ53wgWv4eU6RC09nAF1NIlOZ26izr9TV9VTVVUq2Up41wd+nP9Nn7zeO rp3T/i3TAGqiv4Wco/yALuN4sQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFG06Q9VR v5GWNBuS+8nwQ98JP2/9MB8GA1UdIwQYMBaAFKtn6C/IaqyoKs/43DZFzXFhAT92 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUU0Qy83REFEQTU2Q0Q5 NEQxMUVBQTYwNEFDNTNDNEY5QUUwMi9xMmZvTDhocXJLZ3F6X2pjTmtYTmNXRUJQ M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EyZm9MOGhxcktncXpfamNOa1hOY1dFQlAzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDFFNEMvN0RBREE1NkNEOTREMTFFQUE2MDRBQzUzQzRGOUFFMDIvNzQzQjMxODhF NTcyMTFFQ0JDODFBODdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnmjAwDwQCAAIwCQMHACABDfRogDANBgkqhkiG9w0BAQsF AAOCAQEArC3O99dYXf2D4HL7JPnRI5CRcMXFfMTM8HmTJH+FEWmehA2CPCPKQNBe sTkxNMdGseUPJOjTpe3cCaIXQqJM7qpy33mHmoQSFhGfjj9NCW/wYTti122tuIbq iXLAsUcuLt3XDiUay2V4L3KCERIVXAEuiXifAXbCSW31NCUGsbzWW5tK9visVyWS HVdb7yLO3wnvBeP+d0piSCotuzRDd3ABMroAiJRqWeMZQAcGQdfprQ9ePsdXMuPG jyhHuxX+WFrLbWNuss94TFXlzpjIjC3K6umcodtRePBPW9D0/UE2oAWthgVu1G3I xZVEJRKvJFOJK7RjAjDG0WvuLWEQMQ== -----END CERTIFICATE-----Generated at Fri Apr 11 15:59:46 2025 by rpki-client