$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4120/76A5884E8FDE11EDA7351957C4F9AE02/F67C04568FE011EDA9919C57C4F9AE02.roa File: F67C04568FE011EDA9919C57C4F9AE02.roa (raw, json) Hash identifier: LmlR9YlBwg7cT9J6J0IKLnKoAUaVj8qqBXEJpjhDI58= Subject key identifier: 8E:33:BF:E7:91:FE:24:36:2D:09:AC:92:C4:38:02:32:7D:22:6D:A3 Certificate issuer: /CN=A91D4120/serialNumber=3FCD3F33A8E0825C39E4A84CD69395A6F2B06148 Certificate serial: 016E Authority key identifier: 3F:CD:3F:33:A8:E0:82:5C:39:E4:A8:4C:D6:93:95:A6:F2:B0:61:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P80_M6jgglw55KhM1pOVpvKwYUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4120/76A5884E8FDE11EDA7351957C4F9AE02/F67C04568FE011EDA9919C57C4F9AE02.roa Signing time: Thu 19 Dec 2024 02:55:42 +0000 ROA not before: Thu 19 Dec 2024 02:55:42 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 150444 IP address blocks: 103.101.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4120/76A5884E8FDE11EDA7351957C4F9AE02/P80_M6jgglw55KhM1pOVpvKwYUg.crl rsync://rpki.apnic.net/member_repository/A91D4120/76A5884E8FDE11EDA7351957C4F9AE02/P80_M6jgglw55KhM1pOVpvKwYUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P80_M6jgglw55KhM1pOVpvKwYUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 02:36:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 366 (0x16e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4120 Validity Not Before: Dec 19 02:55:42 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67638b2e-1745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5a:da:e3:26:8c:ae:31:47:6f:0a:c4:ec:25: 96:26:e4:2d:20:54:1d:40:4f:d3:1b:84:54:09:b8: 74:a3:10:17:d6:4f:62:6b:3c:d1:34:61:c7:c7:f8: 32:5d:99:97:b1:ea:c4:2e:c2:82:ac:98:10:d7:80: 3a:14:4a:b5:66:7f:e4:c1:df:45:a8:9b:19:a2:bc: 22:22:f7:14:ad:40:56:d7:39:f7:74:79:af:6c:a5: 08:aa:26:e2:96:ef:23:e4:0a:1f:d2:78:08:d8:fd: 97:07:45:0e:9f:16:ed:10:d4:a6:7d:b4:2c:25:7a: ac:f5:e8:a9:27:ab:1e:cb:a5:f0:88:58:11:95:a3: 8e:14:ac:ff:73:7d:1b:16:53:87:30:02:2b:d1:75: ca:61:93:c1:98:34:64:5e:52:ea:16:ff:60:b7:ab: da:4d:86:8d:8a:e3:2a:94:fe:8e:6d:9e:ba:d0:fa: 90:10:bd:42:3a:1c:94:12:48:18:9d:3e:63:1c:ea: f5:44:0c:13:67:b5:83:25:90:26:7c:d2:0d:b8:3c: d5:11:f6:f9:eb:59:b5:ab:d0:fd:26:f3:d2:59:9d: e3:4d:68:85:16:b0:a2:49:bb:2b:aa:62:ac:ae:31: d1:34:f6:0b:32:32:37:56:00:70:35:77:65:c7:b2: fc:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:33:BF:E7:91:FE:24:36:2D:09:AC:92:C4:38:02:32:7D:22:6D:A3 X509v3 Authority Key Identifier: keyid:3F:CD:3F:33:A8:E0:82:5C:39:E4:A8:4C:D6:93:95:A6:F2:B0:61:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4120/76A5884E8FDE11EDA7351957C4F9AE02/P80_M6jgglw55KhM1pOVpvKwYUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P80_M6jgglw55KhM1pOVpvKwYUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4120/76A5884E8FDE11EDA7351957C4F9AE02/F67C04568FE011EDA9919C57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.152.0/24 Signature Algorithm: sha256WithRSAEncryption ab:cf:e2:f8:ec:b3:bd:91:4d:7b:27:28:98:5d:fb:f9:96:6a: cb:c5:d2:16:f5:b3:4f:51:7f:10:72:9d:a7:14:cc:f4:92:9c: 65:de:70:d4:a7:a5:aa:b5:81:4e:92:1a:d4:35:71:f0:82:6d: 2c:f8:f9:8b:5c:81:7f:c6:fb:db:69:09:fa:42:4f:d2:22:e3: 82:67:83:c2:08:c9:76:87:95:67:0a:d4:f4:04:e4:3f:93:ae: 23:bd:8f:da:77:bc:68:0e:f5:49:2b:ce:84:15:31:e7:b1:d4: a1:cf:5a:4b:ca:d2:f0:2a:44:8b:15:1d:8b:ef:93:04:b6:b3: 72:f3:1d:44:fa:71:40:86:ab:1e:b2:d5:0d:cf:a4:60:bc:be: 82:a5:af:ba:11:77:26:c0:b0:64:16:22:3a:c2:e6:b7:11:c2: d1:dc:9d:2f:02:c4:b8:47:01:f6:04:99:da:ef:2a:6f:25:85: 6a:69:3b:77:a3:3d:8f:02:03:b4:a0:cc:59:e6:5a:34:d3:60: 52:bb:76:5a:d3:bd:46:e4:47:86:24:c8:f6:52:b8:26:b3:96: 79:2f:6d:56:1d:59:5a:9a:68:ae:f4:8d:a4:b3:f9:63:d9:8e: df:ec:84:53:25:3f:72:ac:78:93:9c:93:48:bd:d8:d9:32:c0: 94:21:a9:9e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQxMjAxMTAvBgNVBAUTKDNGQ0QzRjMzQThFMDgyNUMzOUU0QTg0Q0Q2OTM5NUE2 RjJCMDYxNDgwHhcNMjQxMjE5MDI1NTQyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYzOGIyZS0xNzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1ra4yaMrjFHbwrE7CWWJuQtIFQdQE/TG4RUCbh0oxAX1k9iazzRNGHHx/gy XZmXserELsKCrJgQ14A6FEq1Zn/kwd9FqJsZorwiIvcUrUBW1zn3dHmvbKUIqibi lu8j5Aof0ngI2P2XB0UOnxbtENSmfbQsJXqs9eipJ6sey6XwiFgRlaOOFKz/c30b FlOHMAIr0XXKYZPBmDRkXlLqFv9gt6vaTYaNiuMqlP6ObZ660PqQEL1COhyUEkgY nT5jHOr1RAwTZ7WDJZAmfNINuDzVEfb561m1q9D9JvPSWZ3jTWiFFrCiSbsrqmKs rjHRNPYLMjI3VgBwNXdlx7L8gQIDAQABo4IClTCCApEwHQYDVR0OBBYEFI4zv+eR /iQ2LQmsksQ4AjJ9Im2jMB8GA1UdIwQYMBaAFD/NPzOo4IJcOeSoTNaTlabysGFI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDEyMC83NkE1ODg0RThG REUxMUVEQTczNTE5NTdDNEY5QUUwMi9QODBfTTZqZ2dsdzU1S2hNMXBPVnB2S3dZ VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A4MF9NNmpnZ2x3NTVLaE0xcE9WcHZLd1lVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQxMjAvNzZBNTg4NEU4RkRFMTFFREE3MzUxOTU3QzRGOUFFMDIvRjY3QzA0NTY4 RkUwMTFFREE5OTE5QzU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnZZgwDQYJKoZIhvcNAQELBQADggEBAKvP4vjss72RTXsn KJhd+/mWasvF0hb1s09RfxBynacUzPSSnGXecNSnpaq1gU6SGtQ1cfCCbSz4+Ytc gX/G+9tpCfpCT9Ii44Jng8IIyXaHlWcK1PQE5D+TriO9j9p3vGgO9UkrzoQVMeex 1KHPWkvK0vAqRIsVHYvvkwS2s3LzHUT6cUCGqx6y1Q3PpGC8voKlr7oRdybAsGQW IjrC5rcRwtHcnS8CxLhHAfYEmdrvKm8lhWppO3ejPY8CA7SgzFnmWjTTYFK7dlrT vUbkR4YkyPZSuCazlnkvbVYdWVqaaK70jaSz+WPZjt/shFMlP3KseJOck0i92Nky wJQhqZ4= -----END CERTIFICATE-----Generated at Sat Apr 12 09:02:54 2025 by rpki-client