$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4B25/B21A57289F9211E49DEFE216C4F9AE02/989C920254F311E7AC64ED3AC4F9AE02.roa File: 989C920254F311E7AC64ED3AC4F9AE02.roa (raw, json) Hash identifier: stlk/NCVaUze0Kt4ZoUXV3LV+N07Axo1/0xiMb9KtSw= Subject key identifier: 17:5A:02:2E:A0:55:DF:AD:E1:04:38:F4:36:F8:FF:38:C3:CC:7C:CE Certificate issuer: /CN=A91F4B25/serialNumber=B62BDF74C133942BBEF77754C7A0E53866383208 Certificate serial: 2797 Authority key identifier: B6:2B:DF:74:C1:33:94:2B:BE:F7:77:54:C7:A0:E5:38:66:38:32:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tivfdMEzlCu-93dUx6DlOGY4Mgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4B25/B21A57289F9211E49DEFE216C4F9AE02/989C920254F311E7AC64ED3AC4F9AE02.roa Signing time: Tue 10 Dec 2024 15:52:20 +0000 ROA not before: Tue 10 Dec 2024 15:52:20 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 58439 IP address blocks: 103.194.176.0/22 maxlen: 22 183.177.96.0/20 maxlen: 24 2402:8880::/32 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4B25/B21A57289F9211E49DEFE216C4F9AE02/tivfdMEzlCu-93dUx6DlOGY4Mgg.crl rsync://rpki.apnic.net/member_repository/A91F4B25/B21A57289F9211E49DEFE216C4F9AE02/tivfdMEzlCu-93dUx6DlOGY4Mgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tivfdMEzlCu-93dUx6DlOGY4Mgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 15:34:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10135 (0x2797) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4B25 Validity Not Before: Dec 10 15:52:20 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=675863b4-1bf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:68:4d:a8:3f:63:d9:7f:63:27:a8:3e:be:57: 61:70:99:a8:3c:aa:f7:23:8d:1f:d5:3a:e9:82:ed: 5f:32:c6:30:86:53:8c:e9:67:92:35:b9:13:e8:9a: a3:d0:9a:42:b1:03:f2:fe:94:64:3c:42:a5:4d:84: 10:76:86:47:cc:42:7d:6b:01:1c:a4:a0:0c:9d:ed: c0:6b:af:30:d5:c6:6e:f1:2b:bb:36:70:35:64:24: 7f:99:3b:a4:57:df:92:c6:8e:29:d3:5e:5c:9f:b3: d0:91:68:c2:32:67:37:39:dd:10:73:11:d9:26:26: 95:95:23:1a:9b:ca:bf:73:7d:46:41:ab:05:4a:27: 60:43:cd:83:eb:1e:2a:a1:c6:65:d8:c1:c4:91:d9: dd:3e:d8:03:ca:6f:87:df:b4:8f:5b:0d:01:a0:7d: 42:e5:bd:58:8e:52:23:0f:29:ce:a9:77:1c:44:55: 70:e2:6d:1f:66:2d:10:56:7a:70:02:cf:09:a6:3f: b3:82:95:73:53:f0:5b:ec:1e:f4:b7:5f:15:b0:8b: ca:1b:97:a2:5b:0e:74:83:64:4a:82:fc:70:9f:39: 8b:3c:a0:2d:0e:98:08:87:2b:67:88:36:ed:bd:e3: 14:70:b5:c6:3a:81:ac:53:10:81:99:ca:2e:e2:6b: db:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:5A:02:2E:A0:55:DF:AD:E1:04:38:F4:36:F8:FF:38:C3:CC:7C:CE X509v3 Authority Key Identifier: keyid:B6:2B:DF:74:C1:33:94:2B:BE:F7:77:54:C7:A0:E5:38:66:38:32:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4B25/B21A57289F9211E49DEFE216C4F9AE02/tivfdMEzlCu-93dUx6DlOGY4Mgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tivfdMEzlCu-93dUx6DlOGY4Mgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4B25/B21A57289F9211E49DEFE216C4F9AE02/989C920254F311E7AC64ED3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.194.176.0/22 183.177.96.0/20 IPv6: 2402:8880::/32 Signature Algorithm: sha256WithRSAEncryption c4:27:c8:52:e8:9d:c5:66:53:3d:30:6e:0e:ee:1c:8a:16:15: b3:32:aa:f3:1a:32:03:82:8e:aa:c8:b3:16:a6:a4:ae:09:03: e7:ec:39:f4:0e:0f:cd:83:d9:e0:e3:2a:77:f8:1f:5a:85:93: ec:8d:98:fe:ba:a5:36:15:ce:d6:5e:ff:9d:a6:98:62:13:11: 1b:e4:42:db:4a:f2:66:87:de:2a:d8:7f:59:4e:74:c2:02:88: 26:b7:1a:89:9e:66:d2:f2:9c:d0:46:3f:d7:85:d5:d4:5e:78: 82:07:2d:ce:ae:7e:42:19:95:ce:29:5c:ab:24:35:59:f1:4d: ad:1f:bc:86:32:95:9b:4e:e6:bc:15:78:9c:a2:37:76:64:03: 38:ea:f9:1f:69:32:89:68:d2:a3:e3:1f:10:e8:30:df:74:df: 21:a2:62:37:42:66:b7:2a:51:e2:c0:08:87:59:80:4c:70:48: 89:93:bd:30:8d:22:b6:3e:fa:a8:35:5c:4b:28:12:a1:0a:89: b3:96:39:70:61:0a:58:d3:88:a1:1f:cc:a2:05:09:fc:39:50: c3:75:da:ab:5c:ee:7a:e2:6d:0e:29:27:1b:23:4f:60:59:40: 5f:23:d6:f3:87:c9:d0:94:a1:35:f2:ad:24:c6:7f:74:73:18: 7b:b4:3a:31 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICJ5cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRCMjUxMTAvBgNVBAUTKEI2MkJERjc0QzEzMzk0MkJCRUY3Nzc1NEM3QTBFNTM4 NjYzODMyMDgwHhcNMjQxMjEwMTU1MjIwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU4NjNiNC0xYmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxGhNqD9j2X9jJ6g+vldhcJmoPKr3I40f1Trpgu1fMsYwhlOM6WeSNbkT6Jqj 0JpCsQPy/pRkPEKlTYQQdoZHzEJ9awEcpKAMne3Aa68w1cZu8Su7NnA1ZCR/mTuk V9+Sxo4p015cn7PQkWjCMmc3Od0QcxHZJiaVlSMam8q/c31GQasFSidgQ82D6x4q ocZl2MHEkdndPtgDym+H37SPWw0BoH1C5b1YjlIjDynOqXccRFVw4m0fZi0QVnpw As8Jpj+zgpVzU/Bb7B70t18VsIvKG5eiWw50g2RKgvxwnzmLPKAtDpgIhytniDbt veMUcLXGOoGsUxCBmcou4mvbgQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFBdaAi6g Vd+t4QQ49Db4/zjDzHzOMB8GA1UdIwQYMBaAFLYr33TBM5Qrvvd3VMeg5ThmODII MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEIyNS9CMjFBNTcyODlG OTIxMUU0OURFRkUyMTZDNEY5QUUwMi90aXZmZE1FemxDdS05M2RVeDZEbE9HWTRN Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RpdmZkTUV6bEN1LTkzZFV4NkRsT0dZNE1nZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjRCMjUvQjIxQTU3Mjg5RjkyMTFFNDlERUZFMjE2QzRGOUFFMDIvOTg5QzkyMDI1 NEYzMTFFN0FDNjRFRDNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnwrADBAS3sWAwDQQCAAIwBwMFACQCiIAwDQYJKoZIhvcN AQELBQADggEBAMQnyFLoncVmUz0wbg7uHIoWFbMyqvMaMgOCjqrIsxampK4JA+fs OfQOD82D2eDjKnf4H1qFk+yNmP66pTYVztZe/52mmGITERvkQttK8maH3irYf1lO dMICiCa3GomeZtLynNBGP9eF1dReeIIHLc6ufkIZlc4pXKskNVnxTa0fvIYylZtO 5rwVeJyiN3ZkAzjq+R9pMolo0qPjHxDoMN903yGiYjdCZrcqUeLACIdZgExwSImT vTCNIrY++qg1XEsoEqEKibOWOXBhCljTiKEfzKIFCfw5UMN12qtc7nribQ4pJxsj T2BZQF8j1vOHydCUoTXyrSTGf3RzGHu0OjE= -----END CERTIFICATE-----Generated at Mon Apr 7 07:46:52 2025 by rpki-client