$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/1B97FEB84E8111ECA3589560C4F9AE02.roa File: 1B97FEB84E8111ECA3589560C4F9AE02.roa (raw, json) Hash identifier: xAvVS/7W7xtAjphmjIYm8eiwHHWi2VdeCNpBEO7D7og= Subject key identifier: 5A:AF:B1:E2:02:E0:EF:FF:00:17:26:9C:1D:68:F6:4E:81:87:A8:10 Certificate issuer: /CN=A91EDF00/serialNumber=A33CCA81B55E04655D1B5A7E2CE688C3E46FC530 Certificate serial: 0417 Authority key identifier: A3:3C:CA:81:B5:5E:04:65:5D:1B:5A:7E:2C:E6:88:C3:E4:6F:C5:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/1B97FEB84E8111ECA3589560C4F9AE02.roa Signing time: Tue 31 Dec 2024 00:02:34 +0000 ROA not before: Tue 31 Dec 2024 00:02:34 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 149034 IP address blocks: 103.177.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 23:51:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1047 (0x417) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDF00, serialNumber=A33CCA81B55E04655D1B5A7E2CE688C3E46FC530 Validity Not Before: Dec 31 00:02:34 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6773349a-49e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d0:e4:63:a9:51:86:f9:09:07:48:e8:53:02: ec:75:93:01:a1:d7:42:19:4d:dc:33:e9:cd:d4:ff: 7c:02:85:ac:1f:66:df:3e:f5:64:c4:75:84:1f:85: ad:dc:26:21:d7:46:17:65:b8:c8:4a:0c:f1:8f:f6: 49:47:03:23:29:87:9d:8e:ee:4c:6b:5a:18:cc:71: d2:ff:b2:35:c9:c3:1e:78:d6:2c:09:1a:93:06:fe: aa:41:51:bc:d0:26:cf:6d:ab:0d:60:20:c8:91:05: f3:5d:84:38:0c:6a:c5:a7:58:5a:e1:4c:a0:2f:04: 20:41:c6:fd:4c:4d:97:07:6a:26:2b:36:f3:8e:98: 70:9c:31:42:07:dd:e8:f5:e4:5f:e2:47:4c:86:2a: 36:95:e6:ea:1b:57:6d:b8:3d:3f:64:b9:70:00:6b: 73:c1:93:78:10:71:86:5e:d7:ba:87:88:75:0d:eb: 52:47:bf:37:4a:08:d4:0b:78:45:3c:54:12:17:74: 01:ef:88:5a:3c:4b:e3:98:f9:da:f9:7b:ba:33:c9: 13:7d:bf:44:0b:23:cf:99:e6:51:77:76:0b:2e:c8: d2:29:ae:96:70:10:b7:50:cc:47:fa:68:0d:8a:a8: f9:ff:5d:ab:3d:87:9e:4f:39:2b:1a:52:dd:23:3d: b8:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:AF:B1:E2:02:E0:EF:FF:00:17:26:9C:1D:68:F6:4E:81:87:A8:10 X509v3 Authority Key Identifier: keyid:A3:3C:CA:81:B5:5E:04:65:5D:1B:5A:7E:2C:E6:88:C3:E4:6F:C5:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/ozzKgbVeBGVdG1p-LOaIw-RvxTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozzKgbVeBGVdG1p-LOaIw-RvxTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDF00/3AE0034A4E7E11EC9E298429C4F9AE02/1B97FEB84E8111ECA3589560C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.177.52.0/23 Signature Algorithm: sha256WithRSAEncryption 56:af:e2:6f:29:01:ea:44:5b:de:29:1a:33:98:45:8d:91:7f: 7a:6c:8c:94:54:78:3e:84:0a:fa:37:b0:a6:59:67:4e:7b:b0: 6f:40:6b:78:ec:f0:9a:ed:84:75:2b:ce:e8:b0:dd:59:7d:cb: cd:3b:05:bb:a4:d8:8f:15:51:f0:2b:ca:d3:86:46:6f:a6:55: d1:f1:f7:00:bd:fe:f7:7d:54:5e:83:36:2a:9e:e0:ce:46:e9: 84:ad:49:d0:5c:c8:ef:9f:22:b3:3e:dd:51:40:23:06:c3:43: c3:f8:cd:57:61:e2:6f:0c:e3:0d:56:52:9e:82:66:f9:bc:50: 5a:1e:5e:30:07:9b:b6:57:95:66:df:af:40:72:c8:79:9e:71: c3:c7:59:c7:e9:56:f3:d2:7d:f8:9f:28:eb:6b:77:d7:c7:14: d4:87:8c:30:99:99:6d:44:f1:ae:1b:6a:06:f9:9b:25:ae:24: b8:12:19:0d:68:e0:75:82:69:41:86:7b:9d:44:b5:e4:eb:64: 49:49:ce:95:d3:10:79:cd:cb:d9:e7:27:03:a0:d5:37:dc:83: 56:a3:c8:39:31:5a:a0:e1:fe:d1:83:b2:97:55:c8:5c:e5:a2: a2:50:ce:83:ca:9a:45:ba:ac:62:0d:f4:82:de:f0:9c:76:0c: 3a:47:ed:b9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURGMDAxMTAvBgNVBAUTKEEzM0NDQTgxQjU1RTA0NjU1RDFCNUE3RTJDRTY4OEMz RTQ2RkM1MzAwHhcNMjQxMjMxMDAwMjM0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzczMzQ5YS00OWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr9DkY6lRhvkJB0joUwLsdZMBoddCGU3cM+nN1P98AoWsH2bfPvVkxHWEH4Wt 3CYh10YXZbjISgzxj/ZJRwMjKYedju5Ma1oYzHHS/7I1ycMeeNYsCRqTBv6qQVG8 0CbPbasNYCDIkQXzXYQ4DGrFp1ha4UygLwQgQcb9TE2XB2omKzbzjphwnDFCB93o 9eRf4kdMhio2lebqG1dtuD0/ZLlwAGtzwZN4EHGGXte6h4h1DetSR783SgjUC3hF PFQSF3QB74haPEvjmPna+Xu6M8kTfb9ECyPPmeZRd3YLLsjSKa6WcBC3UMxH+mgN iqj5/12rPYeeTzkrGlLdIz24GQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFqvseIC 4O//ABcmnB1o9k6Bh6gQMB8GA1UdIwQYMBaAFKM8yoG1XgRlXRtafizmiMPkb8Uw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREYwMC8zQUUwMDM0QTRF N0UxMUVDOUUyOTg0MjlDNEY5QUUwMi9venpLZ2JWZUJHVmRHMXAtTE9hSXctUnZ4 VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ektnYlZlQkdWZEcxcC1MT2FJdy1SdnhUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURGMDAvM0FFMDAzNEE0RTdFMTFFQzlFMjk4NDI5QzRGOUFFMDIvMUI5N0ZFQjg0 RTgxMTFFQ0EzNTg5NTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnsTQwDQYJKoZIhvcNAQELBQADggEBAFav4m8pAepEW94p GjOYRY2Rf3psjJRUeD6ECvo3sKZZZ057sG9Aa3js8JrthHUrzuiw3Vl9y807Bbuk 2I8VUfArytOGRm+mVdHx9wC9/vd9VF6DNiqe4M5G6YStSdBcyO+fIrM+3VFAIwbD Q8P4zVdh4m8M4w1WUp6CZvm8UFoeXjAHm7ZXlWbfr0ByyHmeccPHWcfpVvPSffif KOtrd9fHFNSHjDCZmW1E8a4bagb5myWuJLgSGQ1o4HWCaUGGe51EteTrZElJzpXT EHnNy9nnJwOg1Tfcg1ajyDkxWqDh/tGDspdVyFzloqJQzoPKmkW6rGIN9ILe8Jx2 DDpH7bk= -----END CERTIFICATE-----Generated at Sun Apr 13 04:33:55 2025 by rpki-client