$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/F0FB94ACA95611EEA6E7DB7AC4F9AE02.roa File: F0FB94ACA95611EEA6E7DB7AC4F9AE02.roa (raw, json) Hash identifier: MEW0G3vOg9trhSdFIvvfCuuUeDbhhXHLhPTz+oibzFY= Subject key identifier: 58:F5:59:27:C1:FF:E9:9F:D5:81:30:0B:CD:E8:F4:83:F7:3A:F0:D5 Certificate issuer: /CN=A91E0C33/serialNumber=80BE930E30649B12ACEE8DC40B575AB7DDE64945 Certificate serial: EA Authority key identifier: 80:BE:93:0E:30:64:9B:12:AC:EE:8D:C4:0B:57:5A:B7:DD:E6:49:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gL6TDjBkmxKs7o3EC1dat93mSUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/F0FB94ACA95611EEA6E7DB7AC4F9AE02.roa Signing time: Sun 01 Dec 2024 04:07:14 +0000 ROA not before: Sun 01 Dec 2024 04:07:14 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139043 IP address blocks: 103.249.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/gL6TDjBkmxKs7o3EC1dat93mSUU.crl rsync://rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/gL6TDjBkmxKs7o3EC1dat93mSUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gL6TDjBkmxKs7o3EC1dat93mSUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0C33 Validity Not Before: Dec 1 04:07:14 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674be0f2-478f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:be:31:c6:d4:14:75:b4:71:d8:37:72:ea:33: 9e:4d:ed:1a:a4:0f:7e:1a:6c:da:f0:74:7f:b1:be: ff:71:d1:62:cb:28:e9:12:f6:f7:4f:fc:24:4e:73: 5f:b9:25:94:9c:ac:ae:c4:0c:74:ad:93:d8:ca:4f: eb:be:29:d4:55:02:d0:15:1e:39:aa:b0:0b:b3:44: a6:fb:16:bd:89:4b:a7:f6:dc:bf:18:90:f4:85:51: c8:ef:12:af:dd:d9:95:c1:e9:be:44:d4:e3:34:51: 5b:75:e4:ac:a0:7b:f2:c1:dc:75:3c:ea:15:b7:3a: be:a8:d2:63:97:7c:72:27:fb:b3:c8:9c:89:48:25: 57:9f:41:b1:f2:1b:d9:04:7e:23:c2:b3:39:2e:08: ca:97:13:53:a6:1f:43:0e:9a:ed:49:e5:26:4a:08: 82:fe:cb:3d:0a:df:f3:49:e4:e8:78:96:2d:f6:2b: 39:e6:fe:98:b6:fd:d2:ee:d7:00:74:6e:d3:8f:c4: 72:57:7c:34:96:e9:77:0e:b4:eb:30:37:af:34:3f: 1d:b8:62:86:f1:80:28:85:41:6a:05:15:a4:40:0c: 0d:db:ef:f6:0f:91:b9:b7:ed:42:6f:61:ad:9e:59: f1:f0:52:83:2b:13:06:d8:9a:f4:88:81:09:22:87: 61:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:F5:59:27:C1:FF:E9:9F:D5:81:30:0B:CD:E8:F4:83:F7:3A:F0:D5 X509v3 Authority Key Identifier: keyid:80:BE:93:0E:30:64:9B:12:AC:EE:8D:C4:0B:57:5A:B7:DD:E6:49:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/gL6TDjBkmxKs7o3EC1dat93mSUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gL6TDjBkmxKs7o3EC1dat93mSUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0C33/54265F34668711EEB93D3F6CC4F9AE02/F0FB94ACA95611EEA6E7DB7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.249.115.0/24 Signature Algorithm: sha256WithRSAEncryption 55:a8:39:6c:03:7f:f9:2b:bb:c8:c4:99:b6:a6:8f:38:b7:6f: e4:8e:b3:26:0a:5f:cd:94:dd:8b:6a:1a:e4:e7:59:57:07:c7: 97:79:b8:7f:52:82:7e:18:8e:2b:e3:67:f0:7f:66:53:ee:fe: 0c:ab:bf:14:af:20:c9:75:17:22:65:6e:d2:50:30:7f:50:bb: 59:b8:70:c8:c3:98:60:f1:db:4d:00:d1:79:2d:cb:ff:6b:6a: 48:f3:96:06:4a:97:a8:8e:bc:46:8e:91:8a:37:27:4d:99:a1: 1c:7e:d1:c4:06:17:a2:8f:b7:14:a5:31:ce:6a:69:21:2b:8f: 42:d7:01:6a:e8:09:36:71:c8:85:78:f2:4b:88:5a:bf:ec:0b: 1a:de:07:77:b2:4d:30:23:68:e9:f7:c0:22:8e:c2:1d:c2:eb: e4:30:e7:7c:7f:55:ec:30:e6:7b:46:f6:ad:14:4a:2d:b9:15: a0:5a:76:93:59:34:28:cc:e3:3c:e2:aa:8d:36:37:3b:43:60: f2:d7:fa:64:8d:65:f5:af:e3:a8:75:5b:3e:2b:74:fa:28:60: c0:55:57:1f:f6:c6:86:67:97:2d:6a:15:dd:b0:5f:1b:e8:45: 5d:d5:9f:61:97:1c:25:32:97:8b:3e:a2:16:b9:23:18:de:05: 30:ca:79:77 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDMzMxMTAvBgNVBAUTKDgwQkU5MzBFMzA2NDlCMTJBQ0VFOERDNDBCNTc1QUI3 RERFNjQ5NDUwHhcNMjQxMjAxMDQwNzE0WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRiZTBmMi00NzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2r4xxtQUdbRx2Ddy6jOeTe0apA9+Gmza8HR/sb7/cdFiyyjpEvb3T/wkTnNf uSWUnKyuxAx0rZPYyk/rvinUVQLQFR45qrALs0Sm+xa9iUun9ty/GJD0hVHI7xKv 3dmVwem+RNTjNFFbdeSsoHvywdx1POoVtzq+qNJjl3xyJ/uzyJyJSCVXn0Gx8hvZ BH4jwrM5LgjKlxNTph9DDprtSeUmSgiC/ss9Ct/zSeToeJYt9is55v6Ytv3S7tcA dG7Tj8RyV3w0lul3DrTrMDevND8duGKG8YAohUFqBRWkQAwN2+/2D5G5t+1Cb2Gt nlnx8FKDKxMG2Jr0iIEJIodhwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFj1WSfB /+mf1YEwC83o9IP3OvDVMB8GA1UdIwQYMBaAFIC+kw4wZJsSrO6NxAtXWrfd5klF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEMzMy81NDI2NUYzNDY2 ODcxMUVFQjkzRDNGNkNDNEY5QUUwMi9nTDZURGpCa214S3M3bzNFQzFkYXQ5M21T VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dMNlREakJrbXhLczdvM0VDMWRhdDkzbVNVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBDMzMvNTQyNjVGMzQ2Njg3MTFFRUI5M0QzRjZDQzRGOUFFMDIvRjBGQjk0QUNB OTU2MTFFRUE2RTdEQjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn+XMwDQYJKoZIhvcNAQELBQADggEBAFWoOWwDf/kru8jE mbamjzi3b+SOsyYKX82U3YtqGuTnWVcHx5d5uH9Sgn4YjivjZ/B/ZlPu/gyrvxSv IMl1FyJlbtJQMH9Qu1m4cMjDmGDx200A0Xkty/9rakjzlgZKl6iOvEaOkYo3J02Z oRx+0cQGF6KPtxSlMc5qaSErj0LXAWroCTZxyIV48kuIWr/sCxreB3eyTTAjaOn3 wCKOwh3C6+Qw53x/Veww5ntG9q0USi25FaBadpNZNCjM4zziqo02NztDYPLX+mSN ZfWv46h1Wz4rdPooYMBVVx/2xoZnly1qFd2wXxvoRV3Vn2GXHCUyl4s+oha5Ixje BTDKeXc= -----END CERTIFICATE-----Generated at Sun Apr 6 00:40:27 2025 by rpki-client