$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8A67/5511AF68B35111EE98BA021DC4F9AE02/DDCCD058B35111EE96186E1EC4F9AE02.roa File: DDCCD058B35111EE96186E1EC4F9AE02.roa (raw, json) Hash identifier: uxPFrv/qJkuVD9/YdePXL9+7rk2TcQQl1VlKRTfOD/8= Subject key identifier: D5:E7:02:3B:57:7C:09:AF:CF:3F:94:18:11:31:6B:6C:50:AE:D4:96 Certificate issuer: /CN=A91D8A67/serialNumber=0354DBE1ED3D99E1945E27274BA2F603EB6A1781 Certificate serial: AD Authority key identifier: 03:54:DB:E1:ED:3D:99:E1:94:5E:27:27:4B:A2:F6:03:EB:6A:17:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A1Tb4e09meGUXicnS6L2A-tqF4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8A67/5511AF68B35111EE98BA021DC4F9AE02/DDCCD058B35111EE96186E1EC4F9AE02.roa Signing time: Tue 03 Dec 2024 04:39:07 +0000 ROA not before: Tue 03 Dec 2024 04:39:07 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 135612 IP address blocks: 103.76.176.0/24 maxlen: 24 103.76.177.0/24 maxlen: 24 203.2.158.0/23 maxlen: 23 203.2.158.0/24 maxlen: 24 203.2.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8A67/5511AF68B35111EE98BA021DC4F9AE02/A1Tb4e09meGUXicnS6L2A-tqF4E.crl rsync://rpki.apnic.net/member_repository/A91D8A67/5511AF68B35111EE98BA021DC4F9AE02/A1Tb4e09meGUXicnS6L2A-tqF4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A1Tb4e09meGUXicnS6L2A-tqF4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:49:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8A67 Validity Not Before: Dec 3 04:39:07 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674e8b6b-01de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:28:c8:1d:1a:ab:1b:46:7a:4f:80:4f:46:d2: 2d:ab:05:d3:58:01:2c:91:95:38:c6:7e:08:a7:88: 37:f4:1f:0e:03:99:78:ce:29:1d:08:38:99:d7:be: 11:49:c6:6e:9e:66:38:d3:d6:e3:4b:ff:25:4a:7d: f5:8d:6b:72:b5:2f:74:92:a4:2b:90:56:98:cb:50: 28:6c:a1:e5:8e:e2:d5:f9:75:14:3a:17:73:4e:bb: a8:d0:04:50:90:3b:7c:26:64:47:19:1c:f2:8e:94: 90:6f:67:16:e4:78:46:21:c6:6f:5e:9d:30:c6:3f: 95:6a:6f:d9:d9:a5:66:b8:95:16:6c:0b:73:79:61: c7:64:a3:a4:f4:f1:8b:22:85:3c:61:a4:f3:70:ff: 1b:43:c5:c5:ca:f9:f4:4b:28:c1:44:14:32:10:f0: 97:e2:eb:d4:42:60:b1:ca:6c:a1:c6:98:a6:a8:a1: 30:1f:1a:11:dc:d2:ff:c4:5c:84:21:eb:31:a4:03: a4:b7:5d:7f:c9:82:08:38:cd:68:20:61:d7:9c:9c: 9a:f8:6f:f8:5b:6d:21:fe:a3:9e:97:70:16:27:90: 3e:a7:02:16:77:76:88:e0:9d:6b:4b:26:d5:31:e2: 02:ef:cb:9c:63:bf:7a:c5:8c:99:3e:3e:b3:b1:fd: 6e:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:E7:02:3B:57:7C:09:AF:CF:3F:94:18:11:31:6B:6C:50:AE:D4:96 X509v3 Authority Key Identifier: keyid:03:54:DB:E1:ED:3D:99:E1:94:5E:27:27:4B:A2:F6:03:EB:6A:17:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8A67/5511AF68B35111EE98BA021DC4F9AE02/A1Tb4e09meGUXicnS6L2A-tqF4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A1Tb4e09meGUXicnS6L2A-tqF4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8A67/5511AF68B35111EE98BA021DC4F9AE02/DDCCD058B35111EE96186E1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.76.176.0/23 203.2.158.0/23 Signature Algorithm: sha256WithRSAEncryption 93:83:e9:62:df:27:0b:19:1b:dd:37:b2:49:c0:c7:d0:1e:6a: 9c:87:93:1f:ed:2a:bc:f8:f2:a8:a5:64:2e:39:df:15:89:c4: 28:ed:e3:3c:6b:c7:c0:eb:d8:3a:5a:c5:b3:88:8d:dd:76:77: 5c:fd:b4:30:a2:9b:b8:56:e0:80:a4:82:c2:8f:86:eb:5c:20: d0:ad:3e:40:6f:87:e0:83:18:45:c5:bc:de:1b:be:05:07:e0: bf:b2:56:f5:43:07:14:a6:4e:6a:c8:5a:2a:f9:ba:bc:25:84: b5:8e:1c:81:0d:13:aa:17:a8:22:e9:a7:b9:ec:2a:68:9c:bb: fe:3d:08:21:61:6a:29:2d:3b:86:a9:a2:f0:77:69:d7:7e:6a: b1:f1:03:a4:55:3e:33:52:35:90:c0:c1:a2:c7:b1:ea:dd:4b: 03:c1:31:e6:44:bb:96:ea:d7:cd:09:0f:3e:0e:79:17:9c:11: e0:6c:65:bb:22:25:9d:26:b5:e7:47:0b:59:5c:ed:6c:66:3e: ad:db:b6:ce:6c:42:f0:97:1a:ad:25:66:83:6b:f4:dc:1a:76: 17:d9:93:96:dd:a5:8c:ac:cd:95:d0:60:cf:ef:e3:4f:b4:56: 29:64:db:00:b7:85:f1:92:ff:ef:ee:d9:2b:3b:f6:e4:b4:25: f6:06:98:50 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhBNjcxMTAvBgNVBAUTKDAzNTREQkUxRUQzRDk5RTE5NDVFMjcyNzRCQTJGNjAz RUI2QTE3ODEwHhcNMjQxMjAzMDQzOTA3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRlOGI2Yi0wMWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzijIHRqrG0Z6T4BPRtItqwXTWAEskZU4xn4Ip4g39B8OA5l4zikdCDiZ174R ScZunmY409bjS/8lSn31jWtytS90kqQrkFaYy1AobKHljuLV+XUUOhdzTruo0ARQ kDt8JmRHGRzyjpSQb2cW5HhGIcZvXp0wxj+Vam/Z2aVmuJUWbAtzeWHHZKOk9PGL IoU8YaTzcP8bQ8XFyvn0SyjBRBQyEPCX4uvUQmCxymyhxpimqKEwHxoR3NL/xFyE IesxpAOkt11/yYIIOM1oIGHXnJya+G/4W20h/qOel3AWJ5A+pwIWd3aI4J1rSybV MeIC78ucY796xYyZPj6zsf1u1wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNXnAjtX fAmvzz+UGBExa2xQrtSWMB8GA1UdIwQYMBaAFANU2+HtPZnhlF4nJ0ui9gPraheB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEE2Ny81NTExQUY2OEIz NTExMUVFOThCQTAyMURDNEY5QUUwMi9BMVRiNGUwOW1lR1VYaWNuUzZMMkEtdHFG NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ExVGI0ZTA5bWVHVVhpY25TNkwyQS10cUY0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDhBNjcvNTUxMUFGNjhCMzUxMTFFRTk4QkEwMjFEQzRGOUFFMDIvRERDQ0QwNThC MzUxMTFFRTk2MTg2RTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnTLADBAHLAp4wDQYJKoZIhvcNAQELBQADggEBAJOD6WLf JwsZG903sknAx9AeapyHkx/tKrz48qilZC453xWJxCjt4zxrx8Dr2DpaxbOIjd12 d1z9tDCim7hW4ICkgsKPhutcINCtPkBvh+CDGEXFvN4bvgUH4L+yVvVDBxSmTmrI Wir5urwlhLWOHIENE6oXqCLpp7nsKmicu/49CCFhaiktO4apovB3add+arHxA6RV PjNSNZDAwaLHserdSwPBMeZEu5bq180JDz4OeRecEeBsZbsiJZ0mtedHC1lc7Wxm Pq3bts5sQvCXGq0lZoNr9NwadhfZk5bdpYyszZXQYM/v40+0Vilk2wC3hfGS/+/u 2Ss79uS0JfYGmFA= -----END CERTIFICATE-----Generated at Sat Apr 5 02:13:35 2025 by rpki-client