$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/5A9BFC3ABE7C11EB8BC25C1CC4F9AE02.roa File: 5A9BFC3ABE7C11EB8BC25C1CC4F9AE02.roa (raw, json) Hash identifier: +PXzRKDa1pBP+673hTlbAtrA0Uh8pso6MOGI9Du2wJM= Subject key identifier: A7:4E:2E:D0:DF:48:35:C7:33:96:94:51:59:8B:BB:F3:96:BA:E9:2C Certificate issuer: /CN=A91F4EDE/serialNumber=AAB881B82147C3036B80FC675934DC2E46CE0F7F Certificate serial: 057D Authority key identifier: AA:B8:81:B8:21:47:C3:03:6B:80:FC:67:59:34:DC:2E:46:CE:0F:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qriBuCFHwwNrgPxnWTTcLkbOD38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/5A9BFC3ABE7C11EB8BC25C1CC4F9AE02.roa Signing time: Fri 06 Dec 2024 23:01:47 +0000 ROA not before: Fri 06 Dec 2024 23:01:47 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 42960 IP address blocks: 103.158.190.0/23 maxlen: 23 103.158.190.0/24 maxlen: 24 103.158.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/qriBuCFHwwNrgPxnWTTcLkbOD38.crl rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/qriBuCFHwwNrgPxnWTTcLkbOD38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qriBuCFHwwNrgPxnWTTcLkbOD38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1405 (0x57d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4EDE Validity Not Before: Dec 6 23:01:47 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6753825a-e322 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:21:ce:fd:69:3a:e0:12:ce:3c:33:be:97:dc: 7f:48:b1:4f:af:18:6c:8d:19:83:0b:01:35:bc:61: 7b:ff:1f:af:1d:e7:d0:77:45:8b:fa:b0:10:8c:43: 84:ed:63:ad:de:c6:d4:61:fe:7b:a4:51:9f:1f:43: 4f:d3:42:93:04:56:ed:cf:02:d3:42:fa:44:46:b3: 45:70:fb:c4:9d:c6:34:7c:93:85:c0:ad:7b:25:ca: 60:b0:cf:fb:ad:fe:5d:8b:03:53:40:2a:63:ed:80: 36:3c:0f:8c:4c:22:32:8f:dc:eb:27:3b:1b:7e:e3: 5a:a7:59:de:b4:91:2c:d6:99:3e:e1:d6:f1:bc:22: 4f:1b:af:b4:03:97:72:80:81:c6:13:f9:5d:0a:23: e5:10:ae:67:4d:3f:9d:0b:78:fe:33:7c:6f:55:12: b6:16:2f:2e:c0:f4:5c:eb:ce:46:e2:eb:85:a9:86: fc:ff:f3:ce:68:77:bd:3c:57:16:87:11:3a:0c:fd: 01:14:6c:61:a8:2d:e1:22:8f:72:ad:4b:84:ad:4a: ab:e6:6b:79:e3:ee:6f:90:7a:e5:9c:5d:b0:06:2f: e8:4e:da:31:61:ea:bf:b5:20:cf:bf:93:51:f1:2f: 96:55:42:66:75:74:3f:30:73:ee:55:eb:a5:d9:1a: df:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:4E:2E:D0:DF:48:35:C7:33:96:94:51:59:8B:BB:F3:96:BA:E9:2C X509v3 Authority Key Identifier: keyid:AA:B8:81:B8:21:47:C3:03:6B:80:FC:67:59:34:DC:2E:46:CE:0F:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/qriBuCFHwwNrgPxnWTTcLkbOD38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qriBuCFHwwNrgPxnWTTcLkbOD38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4EDE/2CB03258BE7911EB95118B19C4F9AE02/5A9BFC3ABE7C11EB8BC25C1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.190.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:21:73:d9:62:52:fc:40:e1:bc:e3:d7:b1:83:31:a5:17:0c: e6:bf:e6:d9:cd:5c:9b:ea:6a:68:01:c6:54:f3:c7:88:ce:86: 85:2d:f4:98:9b:8d:2b:a3:27:d3:40:c4:75:51:f2:7e:e0:12: a9:b9:69:4f:4f:82:ec:17:e1:c8:1f:60:23:4e:35:3a:b8:26: d2:8d:a0:05:e5:be:0a:be:97:99:c7:11:a0:4e:40:6f:ca:70: 81:6d:06:1a:57:0c:56:07:bf:e5:98:c3:76:bc:62:d4:8b:a7: 3a:b7:fb:a8:b5:64:a9:64:87:39:de:5c:5c:cf:25:17:79:02: c9:9f:51:2a:87:b1:7b:2c:79:da:58:12:c1:cd:c1:36:83:bd: fd:89:78:e6:5a:c1:b2:97:fe:dd:f2:2c:86:36:8b:0c:06:f2: d5:7c:37:f0:67:47:95:4b:97:ca:e7:7f:2d:c2:85:4c:b9:b9: 06:52:1d:48:f3:cd:86:a3:93:58:7a:79:9c:16:7e:23:bc:5f: a0:66:76:45:f7:fa:60:73:23:21:7a:60:bd:69:dd:e2:c0:97: 97:d9:69:71:11:6e:ac:39:73:88:d7:0c:f8:1d:37:01:41:02: 3c:9a:fc:f7:32:9c:8c:ad:ba:cc:38:13:14:8d:27:f5:27:1f: 43:3b:19:8c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRFREUxMTAvBgNVBAUTKEFBQjg4MUI4MjE0N0MzMDM2QjgwRkM2NzU5MzREQzJF NDZDRTBGN0YwHhcNMjQxMjA2MjMwMTQ3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUzODI1YS1lMzIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSHO/Wk64BLOPDO+l9x/SLFPrxhsjRmDCwE1vGF7/x+vHefQd0WL+rAQjEOE 7WOt3sbUYf57pFGfH0NP00KTBFbtzwLTQvpERrNFcPvEncY0fJOFwK17JcpgsM/7 rf5diwNTQCpj7YA2PA+MTCIyj9zrJzsbfuNap1netJEs1pk+4dbxvCJPG6+0A5dy gIHGE/ldCiPlEK5nTT+dC3j+M3xvVRK2Fi8uwPRc685G4uuFqYb8//POaHe9PFcW hxE6DP0BFGxhqC3hIo9yrUuErUqr5mt54+5vkHrlnF2wBi/oTtoxYeq/tSDPv5NR 8S+WVUJmdXQ/MHPuVeul2RrfiwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKdOLtDf SDXHM5aUUVmLu/OWuuksMB8GA1UdIwQYMBaAFKq4gbghR8MDa4D8Z1k03C5Gzg9/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEVERS8yQ0IwMzI1OEJF NzkxMUVCOTUxMThCMTlDNEY5QUUwMi9xcmlCdUNGSHd3TnJnUHhuV1RUY0xrYk9E MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FyaUJ1Q0ZId3dOcmdQeG5XVFRjTGtiT0QzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjRFREUvMkNCMDMyNThCRTc5MTFFQjk1MTE4QjE5QzRGOUFFMDIvNUE5QkZDM0FC RTdDMTFFQjhCQzI1QzFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnr4wDQYJKoZIhvcNAQELBQADggEBADohc9liUvxA4bzj 17GDMaUXDOa/5tnNXJvqamgBxlTzx4jOhoUt9JibjSujJ9NAxHVR8n7gEqm5aU9P guwX4cgfYCNONTq4JtKNoAXlvgq+l5nHEaBOQG/KcIFtBhpXDFYHv+WYw3a8YtSL pzq3+6i1ZKlkhzneXFzPJRd5AsmfUSqHsXssedpYEsHNwTaDvf2JeOZawbKX/t3y LIY2iwwG8tV8N/BnR5VLl8rnfy3ChUy5uQZSHUjzzYajk1h6eZwWfiO8X6BmdkX3 +mBzIyF6YL1p3eLAl5fZaXERbqw5c4jXDPgdNwFBAjya/PcynIytusw4ExSNJ/Un H0M7GYw= -----END CERTIFICATE-----Generated at Sat Apr 5 02:22:46 2025 by rpki-client