$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6E7D/1E9A11C2838111EAACB9BC30C4F9AE02/4AEB32A2D2F911EA93B2C659C4F9AE02.roa File: 4AEB32A2D2F911EA93B2C659C4F9AE02.roa (raw, json) Hash identifier: TMxL1xAZ65D51is8H5Va3LgyajI14UzGu3dizhDhFWQ= Subject key identifier: C4:12:00:4B:DA:14:61:3A:95:13:B8:1A:A9:FD:6E:E7:2E:7D:A8:89 Certificate issuer: /CN=A91F6E7D/serialNumber=1613D6EBFCD849CFCC0A888DB97E6BBF5207ADB3 Certificate serial: 0977 Authority key identifier: 16:13:D6:EB:FC:D8:49:CF:CC:0A:88:8D:B9:7E:6B:BF:52:07:AD:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FhPW6_zYSc_MCoiNuX5rv1IHrbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6E7D/1E9A11C2838111EAACB9BC30C4F9AE02/4AEB32A2D2F911EA93B2C659C4F9AE02.roa Signing time: Tue 31 Dec 2024 19:58:50 +0000 ROA not before: Tue 31 Dec 2024 19:58:50 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 14061 IP address blocks: 103.253.144.0/22 maxlen: 22 163.47.8.0/22 maxlen: 22 2400:6180::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6E7D/1E9A11C2838111EAACB9BC30C4F9AE02/FhPW6_zYSc_MCoiNuX5rv1IHrbM.crl rsync://rpki.apnic.net/member_repository/A91F6E7D/1E9A11C2838111EAACB9BC30C4F9AE02/FhPW6_zYSc_MCoiNuX5rv1IHrbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FhPW6_zYSc_MCoiNuX5rv1IHrbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:12:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2423 (0x977) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6E7D Validity Not Before: Dec 31 19:58:50 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67744cfa-676f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:62:a8:cb:b8:d6:d8:66:2d:b1:dc:20:2a:9f: 64:bc:db:2c:ca:25:a7:c2:13:b3:a1:10:2b:36:57: a3:c9:d6:d7:e3:0f:3c:74:c0:e1:32:1b:56:4d:98: 8a:c5:98:96:2d:d8:c6:6b:32:ef:3b:d2:f2:5e:3f: bc:50:b5:f0:a2:e1:c6:10:9b:8c:3f:8f:57:af:db: f1:58:30:37:9f:05:71:bc:ac:a4:51:86:2c:e6:03: 79:68:df:59:dd:d3:76:88:cd:52:ef:07:08:dd:dc: 48:c3:7c:22:a8:69:b7:ec:f6:eb:98:87:b1:33:6e: 5c:7a:98:bc:b9:3f:21:46:d1:fb:85:ff:7c:67:95: 11:e8:74:be:14:bc:f7:b3:20:94:c2:86:64:dd:a5: df:70:5f:97:0c:6e:d0:10:c7:f3:66:a1:07:b2:99: 0a:ac:39:a7:91:43:02:44:27:74:65:72:df:72:12: 75:4b:e9:67:41:8c:88:9b:89:ea:20:1c:57:d6:da: 40:31:c3:48:ad:0d:8c:c9:2e:d4:d4:6a:5e:3b:39: 31:8e:88:63:b7:f4:fc:38:55:1c:02:56:54:6a:a6: 12:f9:5a:ef:70:de:40:09:d6:6b:6b:de:ef:05:33: 8b:68:65:9b:46:e4:a6:09:52:4c:51:f9:85:ac:62: e6:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:12:00:4B:DA:14:61:3A:95:13:B8:1A:A9:FD:6E:E7:2E:7D:A8:89 X509v3 Authority Key Identifier: keyid:16:13:D6:EB:FC:D8:49:CF:CC:0A:88:8D:B9:7E:6B:BF:52:07:AD:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6E7D/1E9A11C2838111EAACB9BC30C4F9AE02/FhPW6_zYSc_MCoiNuX5rv1IHrbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FhPW6_zYSc_MCoiNuX5rv1IHrbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6E7D/1E9A11C2838111EAACB9BC30C4F9AE02/4AEB32A2D2F911EA93B2C659C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.253.144.0/22 163.47.8.0/22 IPv6: 2400:6180::/32 Signature Algorithm: sha256WithRSAEncryption 40:20:b3:0c:8e:35:c5:af:fa:cb:5e:8a:93:3b:d0:72:6c:b7: d5:6d:4b:f4:cd:ab:de:55:7a:5a:ba:be:0c:7e:1b:4f:97:cb: 3c:81:e3:a0:b2:6e:fe:f8:4d:79:b1:ef:fe:43:95:56:11:7b: 6e:58:5e:b4:47:ab:5a:ad:32:3d:a2:48:f5:d4:ee:b7:d4:63: e1:b7:ea:1e:d0:ce:68:45:5b:d3:38:bb:bb:2d:fc:97:e6:6d: ef:ea:08:8c:8e:e1:24:57:08:ce:e6:55:a0:65:2f:ab:79:2f: b9:9c:e8:c5:1d:1b:0e:4b:ec:60:d9:f7:1d:5e:b8:30:66:0a: 5a:f9:f6:ec:32:ef:77:c2:e5:ed:5c:e4:e7:21:f6:67:f4:ec: 98:ff:c7:48:75:59:e4:7a:78:17:19:db:72:02:29:7e:c9:55: 62:8b:b9:75:8b:8d:4e:98:7c:f6:68:fc:4a:62:4b:4f:47:0b: aa:19:13:33:77:78:5f:23:ae:68:14:2a:4a:2a:03:51:2d:4f: 43:a1:40:b9:d7:8a:8c:6f:9e:6e:94:91:53:08:17:48:3d:06: 39:24:b3:db:5b:80:f5:de:81:11:59:7e:01:16:d0:e7:27:43: 89:fd:d7:15:d5:ff:36:ae:dc:42:f4:76:e7:f1:a6:2d:b7:92: cb:76:22:63 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZFN0QxMTAvBgNVBAUTKDE2MTNENkVCRkNEODQ5Q0ZDQzBBODg4REI5N0U2QkJG NTIwN0FEQjMwHhcNMjQxMjMxMTk1ODUwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc0NGNmYS02NzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7GKoy7jW2GYtsdwgKp9kvNssyiWnwhOzoRArNlejydbX4w88dMDhMhtWTZiK xZiWLdjGazLvO9LyXj+8ULXwouHGEJuMP49Xr9vxWDA3nwVxvKykUYYs5gN5aN9Z 3dN2iM1S7wcI3dxIw3wiqGm37PbrmIexM25cepi8uT8hRtH7hf98Z5UR6HS+FLz3 syCUwoZk3aXfcF+XDG7QEMfzZqEHspkKrDmnkUMCRCd0ZXLfchJ1S+lnQYyIm4nq IBxX1tpAMcNIrQ2MyS7U1GpeOzkxjohjt/T8OFUcAlZUaqYS+VrvcN5ACdZra97v BTOLaGWbRuSmCVJMUfmFrGLmnwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFMQSAEva FGE6lRO4Gqn9bucufaiJMB8GA1UdIwQYMBaAFBYT1uv82EnPzAqIjbl+a79SB62z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkU3RC8xRTlBMTFDMjgz ODExMUVBQUNCOUJDMzBDNEY5QUUwMi9GaFBXNl96WVNjX01Db2lOdVg1cnYxSUhy Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZoUFc2X3pZU2NfTUNvaU51WDVydjFJSHJiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjZFN0QvMUU5QTExQzI4MzgxMTFFQUFDQjlCQzMwQzRGOUFFMDIvNEFFQjMyQTJE MkY5MTFFQTkzQjJDNjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn/ZADBAKjLwgwDQQCAAIwBwMFACQAYYAwDQYJKoZIhvcN AQELBQADggEBAEAgswyONcWv+steipM70HJst9VtS/TNq95Velq6vgx+G0+XyzyB 46Cybv74TXmx7/5DlVYRe25YXrRHq1qtMj2iSPXU7rfUY+G36h7QzmhFW9M4u7st /Jfmbe/qCIyO4SRXCM7mVaBlL6t5L7mc6MUdGw5L7GDZ9x1euDBmClr59uwy73fC 5e1c5Och9mf07Jj/x0h1WeR6eBcZ23ICKX7JVWKLuXWLjU6YfPZo/EpiS09HC6oZ EzN3eF8jrmgUKkoqA1EtT0OhQLnXioxvnm6UkVMIF0g9Bjkks9tbgPXegRFZfgEW 0OcnQ4n91xXV/zau3EL0dufxpi23kst2ImM= -----END CERTIFICATE-----Generated at Sat Apr 5 02:16:02 2025 by rpki-client