$ rpki-client -vvf rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/B3481ED4D5B611ECA61EEC28C4F9AE02.roa File: B3481ED4D5B611ECA61EEC28C4F9AE02.roa (raw, json) Hash identifier: 7bYPkVMZrrnunuEV97KsBcLOn5jOLNiIR6VQXBJQwkA= Subject key identifier: 1D:30:BB:ED:44:21:A6:2D:50:71:45:DE:45:F7:EF:47:25:62:CC:F1 Certificate issuer: /CN=A91F823E/serialNumber=3EEADF145AE29B48240A3FBA3AFBD949A8F1535D Certificate serial: 02B5 Authority key identifier: 3E:EA:DF:14:5A:E2:9B:48:24:0A:3F:BA:3A:FB:D9:49:A8:F1:53:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/B3481ED4D5B611ECA61EEC28C4F9AE02.roa Signing time: Tue 17 Dec 2024 01:04:30 +0000 ROA not before: Tue 17 Dec 2024 01:04:30 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 4826 IP address blocks: 203.13.208.0/24 maxlen: 24 203.13.209.0/24 maxlen: 24 203.13.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.crl rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:27:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 693 (0x2b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F823E Validity Not Before: Dec 17 01:04:30 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6760ce1e-6bb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:87:0b:42:5f:88:54:38:b1:76:51:23:f2:65: 61:46:65:d3:68:56:c8:75:ce:63:4e:c3:d7:3b:32: 36:a6:1d:d8:c7:86:83:49:90:b0:05:65:cd:eb:61: 6f:14:5e:d1:95:89:c1:fa:d8:49:23:39:6b:31:07: bf:b1:f7:30:39:16:b8:e3:81:c3:f8:78:2c:05:cf: 5f:91:92:e9:93:a7:6d:88:9e:ba:72:04:81:c9:60: f8:c8:fd:ef:15:df:0f:ef:6e:ab:d1:9e:92:de:ec: 38:20:4b:1a:58:ad:8f:4c:ed:3d:b2:3b:82:1d:15: 29:9b:18:8e:03:27:14:67:e4:36:01:36:fa:8a:a9: d8:ca:a1:b6:76:dd:43:fe:97:3e:76:94:67:7d:fc: c9:2e:11:1a:39:26:dc:bd:02:4a:fb:36:28:d5:bf: c4:88:90:39:ae:d9:7a:06:3d:8a:9b:a7:d5:44:51: f9:21:0a:f2:e8:31:03:b1:53:cf:77:78:73:08:f4: 63:81:3f:56:f2:7b:38:c8:bd:bb:81:15:40:df:65: 83:94:a1:28:3c:4e:66:02:f3:2d:e8:d9:64:18:ad: e6:8d:ad:31:18:d1:b3:d5:10:4a:0d:62:d7:e2:7d: 99:b2:90:8c:5c:09:64:12:9d:74:a8:46:60:92:9e: 99:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:30:BB:ED:44:21:A6:2D:50:71:45:DE:45:F7:EF:47:25:62:CC:F1 X509v3 Authority Key Identifier: keyid:3E:EA:DF:14:5A:E2:9B:48:24:0A:3F:BA:3A:FB:D9:49:A8:F1:53:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/B3481ED4D5B611ECA61EEC28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.13.208.0-203.13.210.255 Signature Algorithm: sha256WithRSAEncryption 21:5a:d3:0c:ea:1b:d6:2e:ea:71:b7:02:db:21:da:84:74:0c: c9:01:c5:24:6f:5b:93:1a:5a:6c:bc:26:ed:8a:82:f1:8a:a3: d0:ba:a9:b1:16:1b:bd:9b:5d:93:fb:dd:71:cc:b4:9d:f8:ef: 81:ac:ee:5c:b7:43:e9:d4:06:52:53:22:05:47:8e:7f:32:34: ea:9d:ea:c0:b8:22:5b:5b:ac:f2:7c:89:47:7c:c0:70:ea:7c: e6:15:b9:f7:4c:43:a1:be:2f:3a:c3:30:35:e1:3d:9c:78:63: 51:9b:c7:bb:fb:9b:07:e1:76:ed:e4:1a:82:34:cb:c1:4e:20: ab:0f:96:33:24:d5:d4:06:3f:42:fd:e2:83:e5:ee:8e:6a:bd: b9:b5:c5:9a:26:bf:a2:8e:c3:af:69:75:b8:74:1e:3f:32:92: c0:af:8b:31:8a:35:f7:d7:61:8b:80:24:7c:a4:8d:ae:ca:b2: e2:22:38:e5:93:6a:0e:22:cb:a6:86:a9:63:a5:41:e4:d5:c8: 92:d3:69:01:97:f6:bc:0c:96:e7:84:81:f4:a0:39:50:8d:f1: 83:78:88:f7:12:a6:26:67:4a:90:a5:45:d8:41:72:80:9e:47: 76:50:45:32:11:fe:9a:47:f5:b9:b7:16:d1:f7:18:71:b0:c8: c7:c2:87:40 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICArUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgyM0UxMTAvBgNVBAUTKDNFRUFERjE0NUFFMjlCNDgyNDBBM0ZCQTNBRkJEOTQ5 QThGMTUzNUQwHhcNMjQxMjE3MDEwNDMwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYwY2UxZS02YmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1IcLQl+IVDixdlEj8mVhRmXTaFbIdc5jTsPXOzI2ph3Yx4aDSZCwBWXN62Fv FF7RlYnB+thJIzlrMQe/sfcwORa444HD+HgsBc9fkZLpk6dtiJ66cgSByWD4yP3v Fd8P726r0Z6S3uw4IEsaWK2PTO09sjuCHRUpmxiOAycUZ+Q2ATb6iqnYyqG2dt1D /pc+dpRnffzJLhEaOSbcvQJK+zYo1b/EiJA5rtl6Bj2Km6fVRFH5IQry6DEDsVPP d3hzCPRjgT9W8ns4yL27gRVA32WDlKEoPE5mAvMt6NlkGK3mja0xGNGz1RBKDWLX 4n2ZspCMXAlkEp10qEZgkp6ZlQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFB0wu+1E IaYtUHFF3kX370clYszxMB8GA1UdIwQYMBaAFD7q3xRa4ptIJAo/ujr72Umo8VNd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODIzRS83RDY5QTgzQ0Q1 QjExMUVDOTM1MUU2MjBDNEY5QUUwMi9QdXJmRkZyaW0wZ2tDai02T3Z2WlNhanhV MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1cmZGRnJpbTBna0NqLTZPdnZaU2FqeFUxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjgyM0UvN0Q2OUE4M0NENUIxMTFFQzkzNTFFNjIwQzRGOUFFMDIvQjM0ODFFRDRE NUI2MTFFQ0E2MUVFQzI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEBMsN0AMEAMsN0jANBgkqhkiG9w0BAQsFAAOCAQEAIVrT DOob1i7qcbcC2yHahHQMyQHFJG9bkxpabLwm7YqC8Yqj0LqpsRYbvZtdk/vdccy0 nfjvgazuXLdD6dQGUlMiBUeOfzI06p3qwLgiW1us8nyJR3zAcOp85hW590xDob4v OsMwNeE9nHhjUZvHu/ubB+F27eQagjTLwU4gqw+WMyTV1AY/Qv3ig+Xujmq9ubXF mia/oo7Dr2l1uHQePzKSwK+LMYo199dhi4AkfKSNrsqy4iI45ZNqDiLLpoapY6VB 5NXIktNpAZf2vAyW54SB9KA5UI3xg3iI9xKmJmdKkKVF2EFygJ5HdlBFMhH+mkf1 ubcW0fcYcbDIx8KHQA== -----END CERTIFICATE-----Generated at Sat Apr 5 07:12:36 2025 by rpki-client