$ rpki-client -vvf rpki.apnic.net/member_repository/A91F59A6/40848C3EE5E511E99F1F7C13C4F9AE02/813F208AE5E611E9A31D0F15C4F9AE02.roa File: 813F208AE5E611E9A31D0F15C4F9AE02.roa (raw, json) Hash identifier: +TPxOAHNAMtvnIcGRR6E+FNpj29vW6xe3VQISwdy/bw= Subject key identifier: 17:D5:55:A5:33:8C:12:26:8A:19:A0:06:C0:1A:00:86:8A:4C:59:A8 Certificate issuer: /CN=A91F59A6/serialNumber=30C45138678B7BD9AF4C5CA4EB1A5D3E2061C5C1 Certificate serial: 0CB8 Authority key identifier: 30:C4:51:38:67:8B:7B:D9:AF:4C:5C:A4:EB:1A:5D:3E:20:61:C5:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMRROGeLe9mvTFyk6xpdPiBhxcE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F59A6/40848C3EE5E511E99F1F7C13C4F9AE02/813F208AE5E611E9A31D0F15C4F9AE02.roa Signing time: Sat 14 Dec 2024 18:07:09 +0000 ROA not before: Sat 14 Dec 2024 18:07:09 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 138394 IP address blocks: 103.124.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F59A6/40848C3EE5E511E99F1F7C13C4F9AE02/MMRROGeLe9mvTFyk6xpdPiBhxcE.crl rsync://rpki.apnic.net/member_repository/A91F59A6/40848C3EE5E511E99F1F7C13C4F9AE02/MMRROGeLe9mvTFyk6xpdPiBhxcE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMRROGeLe9mvTFyk6xpdPiBhxcE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:15:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3256 (0xcb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F59A6 Validity Not Before: Dec 14 18:07:09 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=675dc94d-cfaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a9:c0:04:91:8e:dd:41:f5:c3:ef:ed:17:f4: ae:2e:45:18:46:8a:56:4e:23:a6:3f:74:1b:1e:d8: 43:ab:57:04:96:2b:e8:ca:9e:6f:e4:8e:d2:a2:72: c6:a5:ac:cd:25:99:75:9d:d8:5e:a1:91:4a:3c:58: 32:67:b5:6b:e4:16:1d:26:3d:8e:ed:96:d0:7e:24: f3:b4:eb:dd:ce:e1:5d:0f:5c:36:34:e2:74:c1:b7: 2b:fd:12:cb:d2:19:47:33:91:e1:7d:fa:d3:9d:6e: 5d:7e:e3:d2:9a:81:7b:10:29:52:55:c1:0c:d1:53: 0f:67:09:b4:fd:83:ae:6e:94:62:7f:81:eb:3e:82: 02:82:5d:96:f0:46:5e:23:ae:cb:1f:b1:88:5a:a1: f5:25:58:67:5a:de:ca:c1:69:63:b4:a9:fe:98:34: 07:38:f2:4e:2b:83:f3:e8:d3:42:c4:49:d7:97:9e: a7:14:a0:57:f2:4d:12:00:9b:8f:d6:4f:12:78:7c: 4a:83:98:6e:01:b1:fd:51:a4:53:62:f0:bc:96:1b: 36:9a:f5:58:42:8b:57:f2:3c:b5:af:5e:72:8b:5c: 38:b3:26:d6:a3:5d:07:f4:e6:bc:16:8f:53:31:95: 31:f9:cd:a0:ae:6e:f0:2f:4d:c5:d6:34:78:5b:14: a5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:D5:55:A5:33:8C:12:26:8A:19:A0:06:C0:1A:00:86:8A:4C:59:A8 X509v3 Authority Key Identifier: keyid:30:C4:51:38:67:8B:7B:D9:AF:4C:5C:A4:EB:1A:5D:3E:20:61:C5:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F59A6/40848C3EE5E511E99F1F7C13C4F9AE02/MMRROGeLe9mvTFyk6xpdPiBhxcE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MMRROGeLe9mvTFyk6xpdPiBhxcE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F59A6/40848C3EE5E511E99F1F7C13C4F9AE02/813F208AE5E611E9A31D0F15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.125.0/24 Signature Algorithm: sha256WithRSAEncryption a1:e5:fb:0e:64:e7:0b:0c:e4:20:b7:22:66:59:b6:7c:28:f4: 15:e0:18:35:e4:21:be:9b:a8:01:83:37:f7:d1:53:65:34:67: d6:ea:ba:a0:1f:13:75:68:cd:a7:17:6f:3d:60:73:aa:0c:a1: 5f:27:2d:06:0e:2a:1c:78:74:b9:2a:89:79:53:f1:5b:ac:cb: 95:fb:c4:e4:ac:89:ea:30:9a:f0:f0:88:5f:55:44:0a:c2:c3: 53:d7:52:80:55:a2:88:44:8d:f6:23:b2:41:cb:43:4a:e8:f8: 72:7c:e8:1d:df:0d:f1:fe:a9:6d:96:58:04:76:50:b6:81:e0: 42:84:ca:b3:8d:d9:78:5c:87:94:ad:7c:b0:08:3f:9e:8f:cb: 52:21:ff:26:2c:cc:a9:c9:49:e6:b8:bf:4a:fa:56:6e:83:91: e7:cd:fd:bd:de:3b:b9:fe:53:fe:05:2f:9d:ba:c5:c4:68:71: 35:26:5e:7f:64:56:2e:ab:0d:ce:a8:66:e6:b9:c7:09:16:11: c8:85:76:cd:9a:74:0b:4d:74:23:be:ce:10:c8:5b:f9:b8:42: e3:a6:57:fb:7c:b3:f9:78:b2:5a:81:c2:ec:f4:cb:8e:fa:67: af:a0:a8:a3:f4:63:79:5c:78:c7:f4:f3:e2:12:ae:74:89:66: ce:b1:a8:a0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5QTYxMTAvBgNVBAUTKDMwQzQ1MTM4Njc4QjdCRDlBRjRDNUNBNEVCMUE1RDNF MjA2MUM1QzEwHhcNMjQxMjE0MTgwNzA5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzVkYzk0ZC1jZmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6nABJGO3UH1w+/tF/SuLkUYRopWTiOmP3QbHthDq1cElivoyp5v5I7SonLG pazNJZl1ndheoZFKPFgyZ7Vr5BYdJj2O7ZbQfiTztOvdzuFdD1w2NOJ0wbcr/RLL 0hlHM5HhffrTnW5dfuPSmoF7EClSVcEM0VMPZwm0/YOubpRif4HrPoICgl2W8EZe I67LH7GIWqH1JVhnWt7KwWljtKn+mDQHOPJOK4Pz6NNCxEnXl56nFKBX8k0SAJuP 1k8SeHxKg5huAbH9UaRTYvC8lhs2mvVYQotX8jy1r15yi1w4sybWo10H9Oa8Fo9T MZUx+c2grm7wL03F1jR4WxSlPwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBfVVaUz jBImihmgBsAaAIaKTFmoMB8GA1UdIwQYMBaAFDDEUThni3vZr0xcpOsaXT4gYcXB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTlBNi80MDg0OEMzRUU1 RTUxMUU5OUYxRjdDMTNDNEY5QUUwMi9NTVJST0dlTGU5bXZURnlrNnhwZFBpQmh4 Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01NUlJPR2VMZTltdlRGeWs2eHBkUGlCaHhjRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjU5QTYvNDA4NDhDM0VFNUU1MTFFOTlGMUY3QzEzQzRGOUFFMDIvODEzRjIwOEFF NUU2MTFFOUEzMUQwRjE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnfH0wDQYJKoZIhvcNAQELBQADggEBAKHl+w5k5wsM5CC3 ImZZtnwo9BXgGDXkIb6bqAGDN/fRU2U0Z9bquqAfE3VozacXbz1gc6oMoV8nLQYO Khx4dLkqiXlT8Vusy5X7xOSsieowmvDwiF9VRArCw1PXUoBVoohEjfYjskHLQ0ro +HJ86B3fDfH+qW2WWAR2ULaB4EKEyrON2Xhch5StfLAIP56Py1Ih/yYszKnJSea4 v0r6Vm6DkefN/b3eO7n+U/4FL526xcRocTUmXn9kVi6rDc6oZua5xwkWEciFds2a dAtNdCO+zhDIW/m4QuOmV/t8s/l4slqBwuz0y476Z6+gqKP0Y3lceMf08+ISrnSJ Zs6xqKA= -----END CERTIFICATE-----Generated at Sat Apr 5 21:20:58 2025 by rpki-client