$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4E45/F8F1C1947FDE11EBA188CF14C4F9AE02/1B25BF167FE111EBB6C0941AC4F9AE02.roa File: 1B25BF167FE111EBB6C0941AC4F9AE02.roa (raw, json) Hash identifier: UCps9/WJGo9HkezcUcRKvCp07t2PRwHy6+kCIMyeCTk= Subject key identifier: DD:DB:42:C6:06:C1:CC:1A:FE:A4:0E:B3:40:65:D3:A1:42:40:DF:F2 Certificate issuer: /CN=A91D4E45/serialNumber=6ABFEFC83419116EF34AF3A5A7FF48DE03BE8332 Certificate serial: 0621 Authority key identifier: 6A:BF:EF:C8:34:19:11:6E:F3:4A:F3:A5:A7:FF:48:DE:03:BE:83:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ar_vyDQZEW7zSvOlp_9I3gO-gzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4E45/F8F1C1947FDE11EBA188CF14C4F9AE02/1B25BF167FE111EBB6C0941AC4F9AE02.roa Signing time: Sun 22 Dec 2024 22:12:24 +0000 ROA not before: Sun 22 Dec 2024 22:12:24 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 45230 IP address blocks: 45.112.60.0/24 maxlen: 24 45.112.61.0/24 maxlen: 24 45.112.62.0/24 maxlen: 24 45.112.63.0/24 maxlen: 24 103.74.208.0/24 maxlen: 24 103.74.209.0/24 maxlen: 24 103.74.210.0/24 maxlen: 24 103.74.211.0/24 maxlen: 24 202.49.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4E45/F8F1C1947FDE11EBA188CF14C4F9AE02/ar_vyDQZEW7zSvOlp_9I3gO-gzI.crl rsync://rpki.apnic.net/member_repository/A91D4E45/F8F1C1947FDE11EBA188CF14C4F9AE02/ar_vyDQZEW7zSvOlp_9I3gO-gzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ar_vyDQZEW7zSvOlp_9I3gO-gzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1569 (0x621) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4E45 Validity Not Before: Dec 22 22:12:24 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67688ec8-ecc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:36:89:66:ca:b6:ff:bb:f1:33:2e:b3:3d:8b: a6:52:0f:4f:71:af:de:7f:2f:cc:0c:78:5b:c0:91: d7:6b:57:24:ca:3a:d0:0e:1a:17:cd:f3:86:81:ec: 30:1d:fb:4c:2c:08:d7:5c:18:6c:4e:23:b8:c0:16: ba:a7:50:7e:01:d1:2b:d6:e3:5d:ae:09:ee:eb:21: 37:96:05:c4:59:36:83:c7:04:4d:0b:f1:d0:37:7e: 9c:9b:56:cb:47:5e:e4:09:7e:40:59:02:14:28:5b: 64:6e:bc:7c:5b:58:18:8e:af:95:49:1d:39:ef:08: d2:4d:92:e3:37:80:47:76:43:72:ac:7f:20:38:a0: 1d:66:0f:44:67:60:b5:25:fb:77:b0:fc:ac:10:26: 30:e0:43:06:b9:9a:ee:cc:e0:19:fb:d2:a2:d7:67: e2:49:ba:89:00:ed:ff:f7:c3:cd:fe:6b:48:75:60: 6d:72:32:fc:ee:c5:c5:0a:c6:d4:bc:0e:9a:0f:22: b4:00:e3:93:5f:d9:68:71:7b:c7:9f:03:e2:88:f2: 9c:19:84:af:78:15:ab:bc:52:58:6d:51:e4:0a:7d: 02:08:b1:a8:0c:b6:1e:1c:55:a2:83:af:4c:9b:41: ac:6a:e9:dd:ce:e3:0b:52:59:d8:51:f5:cf:68:09: d0:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:DB:42:C6:06:C1:CC:1A:FE:A4:0E:B3:40:65:D3:A1:42:40:DF:F2 X509v3 Authority Key Identifier: keyid:6A:BF:EF:C8:34:19:11:6E:F3:4A:F3:A5:A7:FF:48:DE:03:BE:83:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4E45/F8F1C1947FDE11EBA188CF14C4F9AE02/ar_vyDQZEW7zSvOlp_9I3gO-gzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ar_vyDQZEW7zSvOlp_9I3gO-gzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4E45/F8F1C1947FDE11EBA188CF14C4F9AE02/1B25BF167FE111EBB6C0941AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.112.60.0/22 103.74.208.0/22 202.49.41.0/24 Signature Algorithm: sha256WithRSAEncryption a9:48:32:a9:48:b5:5d:eb:1b:91:01:a4:79:6d:31:c3:dc:be: 3c:a2:69:03:ae:e6:0d:81:bf:94:d4:0d:4d:0b:22:17:9b:c7: 78:0a:fd:c4:80:58:06:71:93:5d:d5:2e:2c:c5:fc:af:b1:fa: be:9f:00:0c:ff:d1:ff:e0:04:87:8d:fd:ba:bc:77:a8:eb:fb: 98:cc:f1:52:f2:31:d9:32:aa:24:50:9a:b8:60:8f:29:0f:7c: 7d:fc:83:5f:8a:7d:d7:40:57:54:a8:29:d9:c7:56:58:fe:19: ad:27:1b:e5:52:46:67:46:29:40:4f:56:26:0c:ea:a8:4b:ea: de:33:52:1b:76:08:f9:c3:68:3b:78:36:d3:6a:db:08:3d:7b: d1:54:06:4a:f4:15:5d:97:38:2d:3f:b0:0e:fb:11:4c:65:bf: c2:ac:49:ed:57:74:0c:e6:dc:17:42:77:96:6d:8a:68:7b:95: 74:57:4d:cf:33:b4:a0:96:5a:46:9f:cd:3d:4c:79:e8:a0:0a: 4f:33:7c:71:c7:d6:d6:d1:33:77:89:22:ec:3f:82:3b:4b:47: 79:ae:e7:50:c1:56:03:c9:bd:9f:e1:e0:41:e5:bb:ff:de:07: 09:dd:2a:4c:31:c3:1f:da:c5:ed:e6:a0:b9:a4:db:05:75:1e: 76:01:02:f3 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDRFNDUxMTAvBgNVBAUTKDZBQkZFRkM4MzQxOTExNkVGMzRBRjNBNUE3RkY0OERF MDNCRTgzMzIwHhcNMjQxMjIyMjIxMjI0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY4OGVjOC1lY2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDaJZsq2/7vxMy6zPYumUg9Pca/efy/MDHhbwJHXa1ckyjrQDhoXzfOGgeww HftMLAjXXBhsTiO4wBa6p1B+AdEr1uNdrgnu6yE3lgXEWTaDxwRNC/HQN36cm1bL R17kCX5AWQIUKFtkbrx8W1gYjq+VSR057wjSTZLjN4BHdkNyrH8gOKAdZg9EZ2C1 Jft3sPysECYw4EMGuZruzOAZ+9Ki12fiSbqJAO3/98PN/mtIdWBtcjL87sXFCsbU vA6aDyK0AOOTX9locXvHnwPiiPKcGYSveBWrvFJYbVHkCn0CCLGoDLYeHFWig69M m0GsaundzuMLUlnYUfXPaAnQGQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFN3bQsYG wcwa/qQOs0Bl06FCQN/yMB8GA1UdIwQYMBaAFGq/78g0GRFu80rzpaf/SN4DvoMy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEU0NS9GOEYxQzE5NDdG REUxMUVCQTE4OENGMTRDNEY5QUUwMi9hcl92eURRWkVXN3pTdk9scF85STNnTy1n ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FyX3Z5RFFaRVc3elN2T2xwXzlJM2dPLWd6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDRFNDUvRjhGMUMxOTQ3RkRFMTFFQkExODhDRjE0QzRGOUFFMDIvMUIyNUJGMTY3 RkUxMTFFQkI2QzA5NDFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAItcDwDBAJnStADBADKMSkwDQYJKoZIhvcNAQELBQADggEB AKlIMqlItV3rG5EBpHltMcPcvjyiaQOu5g2Bv5TUDU0LIhebx3gK/cSAWAZxk13V LizF/K+x+r6fAAz/0f/gBIeN/bq8d6jr+5jM8VLyMdkyqiRQmrhgjykPfH38g1+K fddAV1SoKdnHVlj+Ga0nG+VSRmdGKUBPViYM6qhL6t4zUht2CPnDaDt4NtNq2wg9 e9FUBkr0FV2XOC0/sA77EUxlv8KsSe1XdAzm3BdCd5Ztimh7lXRXTc8ztKCWWkaf zT1MeeigCk8zfHHH1tbRM3eJIuw/gjtLR3mu51DBVgPJvZ/h4EHlu//eBwndKkwx wx/axe3moLmk2wV1HnYBAvM= -----END CERTIFICATE-----Generated at Sat Apr 5 02:07:45 2025 by rpki-client