$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7FB1/AAD69040543811ED938C6628C4F9AE02/FE79EA9A543C11ED972CDD2FC4F9AE02.roa File: FE79EA9A543C11ED972CDD2FC4F9AE02.roa (raw, json) Hash identifier: TXPIWerNT1GXv7TyCQJNbBBoD6VtScjOMdZFAdd3h8A= Subject key identifier: 5F:5A:BB:1A:0F:AB:FE:B4:3B:50:40:DC:3C:5E:D2:D8:5C:E9:1D:18 Certificate issuer: /CN=A91E7FB1/serialNumber=E8CCDCBFBD28D71190E8937F3DAA5958FD481541 Certificate serial: 0194 Authority key identifier: E8:CC:DC:BF:BD:28:D7:11:90:E8:93:7F:3D:AA:59:58:FD:48:15:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Mzcv70o1xGQ6JN_PapZWP1IFUE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7FB1/AAD69040543811ED938C6628C4F9AE02/FE79EA9A543C11ED972CDD2FC4F9AE02.roa Signing time: Mon 09 Dec 2024 02:05:09 +0000 ROA not before: Mon 09 Dec 2024 02:05:09 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 150384 IP address blocks: 103.24.68.0/23 maxlen: 23 103.24.68.0/24 maxlen: 24 103.24.69.0/24 maxlen: 24 2001:df1:6f40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7FB1/AAD69040543811ED938C6628C4F9AE02/6Mzcv70o1xGQ6JN_PapZWP1IFUE.crl rsync://rpki.apnic.net/member_repository/A91E7FB1/AAD69040543811ED938C6628C4F9AE02/6Mzcv70o1xGQ6JN_PapZWP1IFUE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Mzcv70o1xGQ6JN_PapZWP1IFUE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 02:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7FB1 Validity Not Before: Dec 9 02:05:09 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67565054-3b9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:57:e9:a8:e0:c8:83:87:22:34:37:43:ec:03: 84:a6:27:e6:ad:b0:f3:ec:b4:c8:40:78:65:99:24: 24:50:5d:2b:d1:ac:7c:54:a7:85:9c:1b:18:1a:4f: 36:ce:c1:87:37:89:39:f7:aa:08:5b:b7:07:19:78: 26:ba:f1:c7:1e:d0:9d:5c:1a:9b:90:bd:c7:dd:2c: d5:f3:8d:f4:eb:9e:78:3f:c8:12:1b:95:e6:75:3d: 4d:0d:19:f2:87:c4:d9:03:38:12:d8:30:f5:9f:c0: 34:b2:4b:fa:64:ed:a5:06:4d:51:09:d9:5a:8c:13: 42:90:d0:91:c0:0d:64:d3:bf:07:14:74:30:43:cc: 42:d4:98:72:e4:78:19:7f:e7:b1:91:43:4e:f5:73: 90:9c:a6:2b:88:fb:28:13:53:7e:50:15:ab:79:68: d0:3e:3b:f3:a4:2e:47:cc:bb:e1:0a:88:10:49:ee: b8:f8:c3:38:66:3a:9f:56:f9:b8:68:48:a6:cc:3f: c3:b2:fb:de:a6:93:02:4c:22:69:a3:d1:36:16:d4: a2:66:04:a0:75:af:5b:c4:e9:5e:e9:9e:dc:14:ff: 5f:c4:54:17:ff:d4:10:99:b9:d1:9b:49:19:f9:7c: e5:bb:54:b7:ac:dc:45:98:06:f5:df:e3:75:3c:fe: ee:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:5A:BB:1A:0F:AB:FE:B4:3B:50:40:DC:3C:5E:D2:D8:5C:E9:1D:18 X509v3 Authority Key Identifier: keyid:E8:CC:DC:BF:BD:28:D7:11:90:E8:93:7F:3D:AA:59:58:FD:48:15:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7FB1/AAD69040543811ED938C6628C4F9AE02/6Mzcv70o1xGQ6JN_PapZWP1IFUE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Mzcv70o1xGQ6JN_PapZWP1IFUE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7FB1/AAD69040543811ED938C6628C4F9AE02/FE79EA9A543C11ED972CDD2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.68.0/23 IPv6: 2001:df1:6f40::/48 Signature Algorithm: sha256WithRSAEncryption 1f:ed:cf:ae:c5:fe:d3:8f:51:26:ea:c8:54:ab:c2:b6:54:fe: 41:78:de:ed:1f:86:be:23:35:de:fe:25:1f:41:1e:a5:b7:d5: da:c4:57:e1:ff:a4:c8:4a:33:2b:d3:9e:68:3b:bc:f7:39:64: c2:d4:96:79:4d:70:49:cc:74:db:c7:02:0e:40:98:90:c7:46: ed:a7:88:12:98:9c:c6:99:98:e7:ae:0b:de:72:63:6a:eb:de: 8b:b5:42:59:f6:ac:6d:16:72:f7:00:02:55:c3:fd:c9:32:d1: cd:ef:89:6c:e9:26:0f:e8:cc:28:2e:a2:19:83:e0:9a:65:e9: 14:ba:f2:fe:b8:15:d5:fe:fe:4b:88:cf:50:39:56:92:55:ed: a2:8b:32:ec:2f:11:96:c2:f8:05:c8:6b:07:fa:27:16:80:48: 62:d2:87:19:cf:43:61:4c:bc:96:78:ae:df:9a:10:aa:09:f4: 74:93:e6:fb:29:5c:e6:12:24:2c:84:42:97:dc:85:03:87:3c: 36:d0:87:70:b8:a2:88:17:e6:8c:0a:2b:67:6c:08:fb:c0:d0: 10:17:c4:39:49:df:48:d8:cd:29:a6:47:1f:c1:1e:86:97:96: f2:80:f6:8f:46:58:74:ac:d0:f0:14:73:0f:3d:d8:06:dc:fe: c1:ad:44:79 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTdGQjExMTAvBgNVBAUTKEU4Q0NEQ0JGQkQyOEQ3MTE5MEU4OTM3RjNEQUE1OTU4 RkQ0ODE1NDEwHhcNMjQxMjA5MDIwNTA5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU2NTA1NC0zYjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFfpqODIg4ciNDdD7AOEpifmrbDz7LTIQHhlmSQkUF0r0ax8VKeFnBsYGk82 zsGHN4k596oIW7cHGXgmuvHHHtCdXBqbkL3H3SzV84306554P8gSG5XmdT1NDRny h8TZAzgS2DD1n8A0skv6ZO2lBk1RCdlajBNCkNCRwA1k078HFHQwQ8xC1Jhy5HgZ f+exkUNO9XOQnKYriPsoE1N+UBWreWjQPjvzpC5HzLvhCogQSe64+MM4ZjqfVvm4 aEimzD/DsvveppMCTCJpo9E2FtSiZgSgda9bxOle6Z7cFP9fxFQX/9QQmbnRm0kZ +Xzlu1S3rNxFmAb13+N1PP7uowIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFF9auxoP q/60O1BA3Dxe0thc6R0YMB8GA1UdIwQYMBaAFOjM3L+9KNcRkOiTfz2qWVj9SBVB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFN0ZCMS9BQUQ2OTA0MDU0 MzgxMUVEOTM4QzY2MjhDNEY5QUUwMi82TXpjdjcwbzF4R1E2Sk5fUGFwWldQMUlG VUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZNemN2NzBvMXhHUTZKTl9QYXBaV1AxSUZVRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTdGQjEvQUFENjkwNDA1NDM4MTFFRDkzOEM2NjI4QzRGOUFFMDIvRkU3OUVBOUE1 NDNDMTFFRDk3MkNERDJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnGEQwDwQCAAIwCQMHACABDfFvQDANBgkqhkiG9w0BAQsF AAOCAQEAH+3PrsX+049RJurIVKvCtlT+QXje7R+GviM13v4lH0EepbfV2sRX4f+k yEozK9OeaDu89zlkwtSWeU1wScx028cCDkCYkMdG7aeIEpicxpmY564L3nJjauve i7VCWfasbRZy9wACVcP9yTLRze+JbOkmD+jMKC6iGYPgmmXpFLry/rgV1f7+S4jP UDlWklXtoosy7C8RlsL4BchrB/onFoBIYtKHGc9DYUy8lniu35oQqgn0dJPm+ylc 5hIkLIRCl9yFA4c8NtCHcLiiiBfmjAorZ2wI+8DQEBfEOUnfSNjNKaZHH8EehpeW 8oD2j0ZYdKzQ8BRzDz3YBtz+wa1EeQ== -----END CERTIFICATE-----Generated at Sat Apr 5 02:00:47 2025 by rpki-client