$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/F8ED87B8FCE811EC9E4E3A4DC4F9AE02.roa File: F8ED87B8FCE811EC9E4E3A4DC4F9AE02.roa (raw, json) Hash identifier: HcXFJpDWZcmR/k4nnUkzVGlWv0kfSW5A6hP7Nj80qKs= Subject key identifier: F0:56:B7:9B:F3:54:69:29:DC:A6:E3:13:03:FE:84:8F:85:16:43:2C Certificate issuer: /CN=A91E8632/serialNumber=EC563DBFE2F398C8E9FB19F9F74232B6B54AA6EA Certificate serial: 1AAB Authority key identifier: EC:56:3D:BF:E2:F3:98:C8:E9:FB:19:F9:F7:42:32:B6:B5:4A:A6:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7FY9v-LzmMjp-xn590IytrVKpuo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/F8ED87B8FCE811EC9E4E3A4DC4F9AE02.roa Signing time: Wed 18 Dec 2024 16:44:07 +0000 ROA not before: Wed 18 Dec 2024 16:44:07 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139009 IP address blocks: 103.43.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.crl rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7FY9v-LzmMjp-xn590IytrVKpuo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:22:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6827 (0x1aab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8632 Validity Not Before: Dec 18 16:44:07 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6762fbd6-2580 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:42:00:f5:ba:5b:a2:ab:0f:c9:0a:b3:fa:52: d7:8d:c9:6b:97:57:73:af:b9:55:cc:a5:66:8e:fb: 78:6e:88:82:f2:57:e6:4b:75:d1:5f:cf:6c:3e:e8: 52:d7:37:49:35:c3:29:bb:1a:69:b1:61:8e:82:33: 0c:13:c1:67:01:95:76:2e:c9:69:54:7d:42:9e:44: aa:ab:96:a7:11:dc:96:ca:96:f7:26:61:5b:49:0a: 0d:e8:dd:80:94:bb:00:ab:76:2a:0a:37:98:b1:2b: 8a:93:6b:1c:11:78:b4:fb:c1:ae:93:97:1c:9c:10: 5f:9c:31:35:32:ed:42:f8:33:d0:13:a6:ff:df:27: 6e:ea:c3:50:d2:7d:88:c6:ef:e8:42:43:94:2c:cc: 8a:43:08:52:7c:fe:18:29:c4:db:91:33:12:fd:ff: 67:9a:ad:f9:4f:ab:11:2d:78:ec:60:22:4e:ca:45: c7:bc:f5:8b:89:e8:c1:72:8b:6d:f9:03:81:a5:cb: c6:35:3b:8b:19:18:5a:04:ba:1f:14:7f:58:bb:13: 2c:45:d4:25:a0:c5:5f:c5:cc:35:f3:f4:d5:0a:83: 28:4e:df:99:5a:57:d0:a4:97:56:a3:d0:5c:9c:02: 9a:b5:c5:6b:cc:48:3c:6e:63:02:de:af:c6:7e:0d: ab:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:56:B7:9B:F3:54:69:29:DC:A6:E3:13:03:FE:84:8F:85:16:43:2C X509v3 Authority Key Identifier: keyid:EC:56:3D:BF:E2:F3:98:C8:E9:FB:19:F9:F7:42:32:B6:B5:4A:A6:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/7FY9v-LzmMjp-xn590IytrVKpuo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7FY9v-LzmMjp-xn590IytrVKpuo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8632/05CE44EA2E5E11E7BAC88B69C4F9AE02/F8ED87B8FCE811EC9E4E3A4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.43.149.0/24 Signature Algorithm: sha256WithRSAEncryption 85:28:ef:a0:ec:9b:3c:5f:81:93:d1:0c:a1:a3:9e:2d:1b:ee: c4:c0:11:a3:25:f2:34:37:70:fc:13:f6:88:56:4f:c3:9c:83: c7:9f:4b:83:6a:81:24:22:88:6a:fa:3f:cb:f7:96:4d:8b:9f: 1e:62:39:60:0c:c3:52:46:78:89:a1:75:06:ac:0c:e2:5a:c3: 1d:b2:f6:23:b6:e5:7d:39:8e:fe:76:4c:88:59:bd:e0:c3:fd: 74:d4:ea:2b:38:94:19:3a:36:5d:a2:5c:a8:b2:8b:f7:3f:ed: 61:2f:6e:86:3b:e7:c5:c3:6c:5d:27:e5:39:3c:95:9b:7d:4e: 52:0f:dc:bb:bc:94:8e:0f:d5:cd:d2:24:b5:2f:7d:9d:d9:3d: de:f8:95:d7:da:9a:b6:72:ad:45:8d:87:ce:eb:f3:9e:1c:38: fb:c6:25:c4:71:9f:a1:8b:53:03:a2:b0:fe:38:e5:de:d6:01: 82:58:9b:18:28:e6:b7:0a:3a:19:a2:06:0d:ed:6e:7c:64:e5: f6:14:46:5a:a5:74:a7:ec:13:46:98:57:c5:a2:77:66:83:0e: 83:e3:07:ec:e5:73:81:4a:aa:60:3a:21:7b:e5:fa:dc:fd:67: c4:66:e9:04:33:6e:90:7e:67:d7:6b:51:00:a9:a5:3b:ca:0f: c8:de:cc:45 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2MzIxMTAvBgNVBAUTKEVDNTYzREJGRTJGMzk4QzhFOUZCMTlGOUY3NDIzMkI2 QjU0QUE2RUEwHhcNMjQxMjE4MTY0NDA3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYyZmJkNi0yNTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyUIA9bpboqsPyQqz+lLXjclrl1dzr7lVzKVmjvt4boiC8lfmS3XRX89sPuhS 1zdJNcMpuxppsWGOgjMME8FnAZV2LslpVH1CnkSqq5anEdyWypb3JmFbSQoN6N2A lLsAq3YqCjeYsSuKk2scEXi0+8Guk5ccnBBfnDE1Mu1C+DPQE6b/3ydu6sNQ0n2I xu/oQkOULMyKQwhSfP4YKcTbkTMS/f9nmq35T6sRLXjsYCJOykXHvPWLiejBcott +QOBpcvGNTuLGRhaBLofFH9YuxMsRdQloMVfxcw18/TVCoMoTt+ZWlfQpJdWo9Bc nAKatcVrzEg8bmMC3q/Gfg2r9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPBWt5vz VGkp3KbjEwP+hI+FFkMsMB8GA1UdIwQYMBaAFOxWPb/i85jI6fsZ+fdCMra1Sqbq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODYzMi8wNUNFNDRFQTJF NUUxMUU3QkFDODhCNjlDNEY5QUUwMi83Rlk5di1Mem1NanAteG41OTBJeXRyVktw dW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdGWTl2LUx6bU1qcC14bjU5MEl5dHJWS3B1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg2MzIvMDVDRTQ0RUEyRTVFMTFFN0JBQzg4QjY5QzRGOUFFMDIvRjhFRDg3QjhG Q0U4MTFFQzlFNEUzQTREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnK5UwDQYJKoZIhvcNAQELBQADggEBAIUo76DsmzxfgZPR DKGjni0b7sTAEaMl8jQ3cPwT9ohWT8Ocg8efS4NqgSQiiGr6P8v3lk2Lnx5iOWAM w1JGeImhdQasDOJawx2y9iO25X05jv52TIhZveDD/XTU6is4lBk6Nl2iXKiyi/c/ 7WEvboY758XDbF0n5Tk8lZt9TlIP3Lu8lI4P1c3SJLUvfZ3ZPd74ldfamrZyrUWN h87r854cOPvGJcRxn6GLUwOisP445d7WAYJYmxgo5rcKOhmiBg3tbnxk5fYURlql dKfsE0aYV8Wid2aDDoPjB+zlc4FKqmA6IXvl+tz9Z8Rm6QQzbpB+Z9drUQCppTvK D8jezEU= -----END CERTIFICATE-----Generated at Sat Apr 5 05:25:02 2025 by rpki-client