$ rpki-client -vvf rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/0EE83FA4C34611EC9290F072C4F9AE02.roa File: 0EE83FA4C34611EC9290F072C4F9AE02.roa (raw, json) Hash identifier: XSMOrkD+VKk/yODIQVEJZLLi9dBXNMbWFRIFf5Gr+QI= Subject key identifier: 50:5D:2F:35:67:D0:74:0B:2C:25:F3:12:71:03:9C:4A:06:AD:41:0B Certificate issuer: /CN=A91D56CA/serialNumber=675A8676ED37D16ABBCA2FEF8EAA1F23F257B29F Certificate serial: 178C Authority key identifier: 67:5A:86:76:ED:37:D1:6A:BB:CA:2F:EF:8E:AA:1F:23:F2:57:B2:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z1qGdu030Wq7yi_vjqofI_JXsp8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/0EE83FA4C34611EC9290F072C4F9AE02.roa Signing time: Tue 26 Nov 2024 16:44:28 +0000 ROA not before: Tue 26 Nov 2024 16:44:28 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 58689 IP address blocks: 103.77.16.0/24 maxlen: 24 203.153.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/Z1qGdu030Wq7yi_vjqofI_JXsp8.crl rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/Z1qGdu030Wq7yi_vjqofI_JXsp8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z1qGdu030Wq7yi_vjqofI_JXsp8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:39:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6028 (0x178c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D56CA Validity Not Before: Nov 26 16:44:28 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6745faec-97c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8f:a1:07:28:59:d7:92:4d:c9:8b:01:6f:90: 9c:fe:17:2e:90:e5:3c:81:3a:5e:ab:95:dc:3a:0c: 32:c0:ed:84:97:05:e2:49:ce:b4:67:30:5f:71:98: be:c3:3f:fc:63:17:ff:37:e2:a9:f8:ad:5f:cf:54: a0:43:48:58:9e:de:2f:f4:26:cd:13:7f:ce:ed:5c: 10:14:3c:fc:d6:09:fd:54:83:18:ba:60:9e:b2:21: a1:fd:00:2f:94:74:75:3c:51:43:4a:fd:df:76:9b: 0f:3c:d7:25:e0:a9:0c:98:cb:25:ed:b4:4a:5a:0d: 26:aa:6d:fe:87:f2:73:02:eb:f2:29:e9:ae:a1:02: bf:1c:df:77:1a:d1:23:6e:0c:12:e6:25:4d:4f:ca: bf:d6:4c:ce:41:06:e3:9a:71:3d:0d:ea:aa:92:b9: 3a:5e:07:34:97:40:39:d0:54:ec:58:6b:c2:8b:9a: 4a:b7:72:56:bb:f1:fd:83:a8:24:0a:c8:95:b7:6f: 16:2a:40:e2:c2:70:d8:bd:ec:4b:f4:01:7b:49:55: 38:95:64:cd:56:43:3b:ae:4c:d3:fc:46:fd:7e:88: 82:4d:b6:ac:15:5c:9e:90:52:95:18:b4:44:13:87: 21:03:95:45:df:b8:a5:f4:56:2e:dc:97:ea:d9:1d: 8c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:5D:2F:35:67:D0:74:0B:2C:25:F3:12:71:03:9C:4A:06:AD:41:0B X509v3 Authority Key Identifier: keyid:67:5A:86:76:ED:37:D1:6A:BB:CA:2F:EF:8E:AA:1F:23:F2:57:B2:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/Z1qGdu030Wq7yi_vjqofI_JXsp8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z1qGdu030Wq7yi_vjqofI_JXsp8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/0EE83FA4C34611EC9290F072C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.77.16.0/24 203.153.62.0/24 Signature Algorithm: sha256WithRSAEncryption 27:b4:36:ce:f6:4c:f1:33:11:61:43:7e:8a:ab:52:49:d5:f1: fd:72:5b:0f:de:f5:8b:30:ae:d5:0e:4f:9f:62:af:7d:2c:e7: a0:e3:23:a2:27:9f:cb:41:fb:5e:e4:43:ef:b7:ae:82:e9:d0: 57:58:78:a0:dd:c6:39:f5:37:fe:41:9c:bf:11:68:fa:9e:2f: 45:ab:72:69:9a:05:d6:d4:48:0e:18:ef:18:61:30:f0:fb:88: 55:90:b4:da:97:01:46:d9:65:a6:67:9b:f8:ad:7d:ee:34:1c: 64:a9:1a:a1:94:24:ce:4b:57:a5:1f:7c:89:76:63:6f:58:41: 4e:e8:2e:79:57:f7:5b:b2:f3:56:fd:89:23:02:19:c0:8b:6c: b1:61:5c:60:53:a2:da:36:6e:f9:1d:ea:58:c5:ad:84:83:a3: 1c:d7:91:fb:55:45:4c:1b:de:f8:a8:cc:d6:31:03:c6:44:d8: 6b:f9:01:ea:51:d7:6e:cf:1b:5c:b5:92:6e:2a:9e:2d:a7:e4: 0d:47:a8:b3:4e:9d:7b:57:27:5b:4f:93:ab:b5:b9:f8:03:d6: 45:e2:ba:90:1c:97:6c:56:f5:a4:2f:74:a6:0e:c6:6f:0c:39: 49:a2:1e:99:3e:3b:43:80:ea:76:da:15:d4:2f:72:86:45:c8: fb:ca:c2:62 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICF4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU2Q0ExMTAvBgNVBAUTKDY3NUE4Njc2RUQzN0QxNkFCQkNBMkZFRjhFQUExRjIz RjI1N0IyOUYwHhcNMjQxMTI2MTY0NDI4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ1ZmFlYy05N2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvI+hByhZ15JNyYsBb5Cc/hcukOU8gTpeq5XcOgwywO2ElwXiSc60ZzBfcZi+ wz/8Yxf/N+Kp+K1fz1SgQ0hYnt4v9CbNE3/O7VwQFDz81gn9VIMYumCesiGh/QAv lHR1PFFDSv3fdpsPPNcl4KkMmMsl7bRKWg0mqm3+h/JzAuvyKemuoQK/HN93GtEj bgwS5iVNT8q/1kzOQQbjmnE9Deqqkrk6Xgc0l0A50FTsWGvCi5pKt3JWu/H9g6gk CsiVt28WKkDiwnDYvexL9AF7SVU4lWTNVkM7rkzT/Eb9foiCTbasFVyekFKVGLRE E4chA5VF37il9FYu3Jfq2R2MEQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFBdLzVn 0HQLLCXzEnEDnEoGrUELMB8GA1UdIwQYMBaAFGdahnbtN9Fqu8ov746qHyPyV7Kf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTZDQS85MTRFNTNGNkMw RDExMUU3OEQxRUY4MkJDNEY5QUUwMi9aMXFHZHUwMzBXcTd5aV92anFvZklfSlhz cDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1oxcUdkdTAzMFdxN3lpX3ZqcW9mSV9KWHNwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDU2Q0EvOTE0RTUzRjZDMEQxMTFFNzhEMUVGODJCQzRGOUFFMDIvMEVFODNGQTRD MzQ2MTFFQzkyOTBGMDcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnTRADBADLmT4wDQYJKoZIhvcNAQELBQADggEBACe0Ns72 TPEzEWFDfoqrUknV8f1yWw/e9YswrtUOT59ir30s56DjI6Inn8tB+17kQ++3roLp 0FdYeKDdxjn1N/5BnL8RaPqeL0WrcmmaBdbUSA4Y7xhhMPD7iFWQtNqXAUbZZaZn m/itfe40HGSpGqGUJM5LV6UffIl2Y29YQU7oLnlX91uy81b9iSMCGcCLbLFhXGBT oto2bvkd6ljFrYSDoxzXkftVRUwb3viozNYxA8ZE2Gv5AepR127PG1y1km4qni2n 5A1HqLNOnXtXJ1tPk6u1ufgD1kXiupAcl2xW9aQvdKYOxm8MOUmiHpk+O0OA6nba FdQvcoZFyPvKwmI= -----END CERTIFICATE-----Generated at Sun Apr 6 04:03:51 2025 by rpki-client