$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/7D857A30F11811EC86D3AD4BC4F9AE02.roa File: 7D857A30F11811EC86D3AD4BC4F9AE02.roa (raw, json) Hash identifier: RY7IQ05ThI/6GtkKfLwI0St2mmRdLcPJ0ecThYjAydU= Subject key identifier: 7F:05:28:9D:F2:63:F8:23:DC:47:34:B2:61:B7:C2:69:F5:23:56:DB Certificate issuer: /CN=A91EE1DD/serialNumber=3282380F57D6170F45CF520E7B2C1A3CDA2FCAAD Certificate serial: 026D Authority key identifier: 32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/7D857A30F11811EC86D3AD4BC4F9AE02.roa Signing time: Wed 11 Dec 2024 01:44:57 +0000 ROA not before: Wed 11 Dec 2024 01:44:57 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 132409 IP address blocks: 103.80.208.0/24 maxlen: 25 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 01:10:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 621 (0x26d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE1DD Validity Not Before: Dec 11 01:44:57 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6758ee99-4352 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:e8:33:66:2e:62:95:7c:6d:a9:32:ca:4b:27: b8:86:58:c0:79:a3:8b:55:e9:0c:9c:55:20:16:0e: 03:40:f9:4c:90:c8:e4:67:97:8a:ee:f2:68:f9:af: 56:70:08:55:34:dc:d8:7f:de:bc:26:ad:89:e8:b8: 22:db:cd:25:2c:6a:6e:ff:33:83:ae:92:d2:c5:87: 2a:df:38:fb:da:38:99:ae:7f:43:b4:83:6c:bf:53: 17:9a:6f:5c:04:9d:e8:b8:a1:5f:08:dc:9f:8c:1a: e0:47:49:49:92:7f:8c:ee:cc:5b:4a:92:78:a5:af: f8:b5:bc:4a:2f:7c:04:b6:5f:d9:d4:8a:17:ae:7e: 74:28:58:39:ea:d0:cd:3d:7f:bf:8b:a8:8e:bf:fd: 18:92:1f:f7:3c:72:40:d7:5b:75:36:e6:de:4a:be: 0c:e4:9b:e5:6c:8d:23:e1:0b:b3:6d:74:9c:79:c0: 90:e6:1a:f1:a4:cd:6d:17:c2:b1:28:f0:29:d6:5f: 6b:72:f9:97:53:a4:48:f6:e6:fa:96:74:5a:f9:55: 0d:a5:4b:ce:75:4e:4a:08:37:6f:5f:0e:27:5b:00: 07:2c:8a:b0:56:0a:35:d0:d6:03:fb:be:0d:de:6b: 24:94:cb:04:ae:b4:a1:d7:09:7b:c8:b5:d8:d7:af: 09:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:05:28:9D:F2:63:F8:23:DC:47:34:B2:61:B7:C2:69:F5:23:56:DB X509v3 Authority Key Identifier: keyid:32:82:38:0F:57:D6:17:0F:45:CF:52:0E:7B:2C:1A:3C:DA:2F:CA:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/MoI4D1fWFw9Fz1IOeywaPNovyq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoI4D1fWFw9Fz1IOeywaPNovyq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1DD/F15003C8F11211EC91965444C4F9AE02/7D857A30F11811EC86D3AD4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.80.208.0/24 Signature Algorithm: sha256WithRSAEncryption a7:d1:28:c5:ae:78:7c:af:72:14:01:2a:51:f6:6a:75:d0:a8: 68:e4:35:5e:7e:fb:ab:de:41:7e:25:80:1e:1c:5e:61:af:a2: 8d:52:0f:4c:b2:fd:5b:9e:02:06:f6:0d:bf:bb:d3:61:86:31: 67:1a:c3:cb:5a:d3:2f:b6:54:94:44:c0:2c:f4:f5:90:4f:5f: 31:f0:6c:86:28:28:b3:b3:af:55:4e:49:7c:4c:58:fb:67:8a: 3a:34:30:b7:2c:8f:74:57:2d:aa:71:64:4b:63:e7:6d:53:68: cf:49:1c:42:e4:d4:f4:e2:7b:fe:32:48:1f:d1:a9:81:42:14: b7:d6:9c:e4:29:db:e1:10:c1:4b:44:e1:10:46:38:c5:ad:4c: dc:80:87:65:80:de:0f:7b:92:1c:7c:26:00:fd:58:b2:43:59: d3:c2:48:71:5e:36:b1:7e:4d:4a:b2:ec:a2:29:ec:65:74:43: 77:20:d3:98:3e:10:e9:ab:8b:89:53:0c:d0:10:84:f0:93:02: c5:73:41:f9:36:b2:ca:0c:57:26:68:1e:aa:f4:a2:c1:eb:a2: 15:e2:46:6a:cd:01:4f:ed:5b:c8:36:25:c5:3a:6f:a7:8a:81: 69:9e:6c:d0:6a:00:49:15:8f:fb:ee:96:41:ce:e5:86:df:ee: d4:4e:a6:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUxREQxMTAvBgNVBAUTKDMyODIzODBGNTdENjE3MEY0NUNGNTIwRTdCMkMxQTND REEyRkNBQUQwHhcNMjQxMjExMDE0NDU3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU4ZWU5OS00MzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4+gzZi5ilXxtqTLKSye4hljAeaOLVekMnFUgFg4DQPlMkMjkZ5eK7vJo+a9W cAhVNNzYf968Jq2J6Lgi280lLGpu/zODrpLSxYcq3zj72jiZrn9DtINsv1MXmm9c BJ3ouKFfCNyfjBrgR0lJkn+M7sxbSpJ4pa/4tbxKL3wEtl/Z1IoXrn50KFg56tDN PX+/i6iOv/0Ykh/3PHJA11t1NubeSr4M5JvlbI0j4QuzbXScecCQ5hrxpM1tF8Kx KPAp1l9rcvmXU6RI9ub6lnRa+VUNpUvOdU5KCDdvXw4nWwAHLIqwVgo10NYD+74N 3msklMsErrSh1wl7yLXY168JXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFH8FKJ3y Y/gj3Ec0smG3wmn1I1bbMB8GA1UdIwQYMBaAFDKCOA9X1hcPRc9SDnssGjzaL8qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTFERC9GMTUwMDNDOEYx MTIxMUVDOTE5NjU0NDRDNEY5QUUwMi9Nb0k0RDFmV0Z3OUZ6MUlPZXl3YVBOb3Z5 cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vSTREMWZXRnc5RnoxSU9leXdhUE5vdnlxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUxREQvRjE1MDAzQzhGMTEyMTFFQzkxOTY1NDQ0QzRGOUFFMDIvN0Q4NTdBMzBG MTE4MTFFQzg2RDNBRDRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnUNAwDQYJKoZIhvcNAQELBQADggEBAKfRKMWueHyvchQB KlH2anXQqGjkNV5++6veQX4lgB4cXmGvoo1SD0yy/VueAgb2Db+702GGMWcaw8ta 0y+2VJREwCz09ZBPXzHwbIYoKLOzr1VOSXxMWPtnijo0MLcsj3RXLapxZEtj521T aM9JHELk1PTie/4ySB/RqYFCFLfWnOQp2+EQwUtE4RBGOMWtTNyAh2WA3g97khx8 JgD9WLJDWdPCSHFeNrF+TUqy7KIp7GV0Q3cg05g+EOmri4lTDNAQhPCTAsVzQfk2 ssoMVyZoHqr0osHrohXiRmrNAU/tW8g2JcU6b6eKgWmebNBqAEkVj/vulkHO5Ybf 7tROpnM= -----END CERTIFICATE-----Generated at Thu Apr 10 16:05:44 2025 by rpki-client