$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/0AFFF078577811ED959AC36FC4F9AE02.roa File: 0AFFF078577811ED959AC36FC4F9AE02.roa (raw, json) Hash identifier: 7KGpbBEEym6owc+uaT6+xmtVoaHn3I3Wf4REEkb7Hck= Subject key identifier: 7A:DA:77:DC:1E:E1:D4:C8:E6:4E:62:2A:4C:F4:D5:B9:8C:D6:F8:7B Certificate issuer: /CN=A91F8AC4/serialNumber=A337633E35919940BD729D912F3663158C267C36 Certificate serial: 01C5 Authority key identifier: A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/0AFFF078577811ED959AC36FC4F9AE02.roa Signing time: Thu 13 Mar 2025 01:57:45 +0000 ROA not before: Thu 13 Mar 2025 01:57:45 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138633 IP address blocks: 103.135.98.0/24 maxlen: 24 103.135.99.0/24 maxlen: 24 2404:79c0::/48 maxlen: 48 2404:79c0:1::/48 maxlen: 48 2404:79c0:2::/48 maxlen: 48 2404:79c0:3::/48 maxlen: 48 2404:79c0:4::/48 maxlen: 48 2404:79c0:5::/48 maxlen: 48 2404:79c0:6::/48 maxlen: 48 2404:79c0:7::/48 maxlen: 48 2404:79c0:8::/48 maxlen: 48 2404:79c0:9::/48 maxlen: 48 2404:79c0:a::/48 maxlen: 48 2404:79c0:b::/48 maxlen: 48 2404:79c0:c::/48 maxlen: 48 2404:79c0:d::/48 maxlen: 48 2404:79c0:e::/48 maxlen: 48 2404:79c0:f::/48 maxlen: 48 2404:79c0:1001::/48 maxlen: 48 2404:79c0:1002::/48 maxlen: 48 2404:79c0:1003::/48 maxlen: 48 2404:79c0:2000::/48 maxlen: 48 2404:79c0:2001::/48 maxlen: 48 2404:79c0:3000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:16:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8AC4 Validity Not Before: Mar 13 01:57:45 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67d23b99-3f6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:6a:74:57:d1:77:0c:9e:84:5e:84:26:58:4d: 15:0f:34:b3:30:5e:9e:d8:62:ed:c5:af:ed:6d:8d: 18:a2:cc:06:1a:d4:f1:c4:ae:2b:2e:3b:c4:27:56: 84:b5:e0:51:58:8e:3b:dd:d4:cf:57:b2:69:de:40: 1a:d3:c6:72:78:a4:33:46:19:d6:42:05:03:c7:16: cc:f2:a6:67:98:76:17:b8:ad:1d:de:da:aa:14:84: d3:16:b3:b8:e4:00:23:f9:91:e3:73:db:9e:4f:62: e2:fa:aa:f7:da:1a:4f:ab:35:5a:ee:91:7b:6b:8f: 13:62:6f:d8:f2:b7:02:bb:c9:5c:29:c6:fb:3c:53: 97:00:95:99:c1:b6:63:db:59:da:92:65:45:bb:4f: 10:f7:d0:e9:62:44:44:89:66:a5:8c:dd:91:e8:86: 23:0b:18:ad:7c:3c:21:f3:24:9a:18:4e:eb:1c:09: ea:5f:f4:62:5d:9c:02:d7:f6:9a:ce:5e:9e:84:ce: 6f:52:86:21:9f:56:a6:14:b9:ce:6e:59:2a:a2:5e: 4a:2b:93:7e:d3:c3:ff:34:1e:db:c6:1d:14:f8:9d: 4a:3a:31:38:ea:19:ac:78:f3:ce:4b:bf:7d:63:85: 1f:4f:1d:a7:64:cc:9a:55:df:37:bc:9b:4e:16:71: 55:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:DA:77:DC:1E:E1:D4:C8:E6:4E:62:2A:4C:F4:D5:B9:8C:D6:F8:7B X509v3 Authority Key Identifier: keyid:A3:37:63:3E:35:91:99:40:BD:72:9D:91:2F:36:63:15:8C:26:7C:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/ozdjPjWRmUC9cp2RLzZjFYwmfDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ozdjPjWRmUC9cp2RLzZjFYwmfDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8AC4/C8FE174C577511ED81F13B6FC4F9AE02/0AFFF078577811ED959AC36FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.98.0/23 IPv6: 2404:79c0::/44 2404:79c0:1001::-2404:79c0:1003:ffff:ffff:ffff:ffff:ffff 2404:79c0:2000::/47 2404:79c0:3000::/48 Signature Algorithm: sha256WithRSAEncryption 89:8d:d7:a1:a0:2e:6c:88:d0:fe:47:cd:42:15:c5:4c:74:ca: 56:1c:80:b7:f1:b5:10:30:2d:c7:a9:21:4a:98:e9:14:f0:8c: 75:c8:99:62:bd:c4:e1:f6:69:98:68:c9:cc:d4:37:11:32:7b: 26:e4:0c:a7:f3:da:35:82:cf:76:5b:e8:33:ee:7f:6b:ad:6e: fd:b4:bb:bb:5f:30:35:d2:92:1c:7b:c6:fe:44:b9:2e:a7:f4: fa:3d:8e:37:00:03:be:94:d7:d9:5b:cc:0d:d1:5d:47:1b:96: dd:98:86:5e:c1:7c:e1:db:35:2b:28:98:7c:c0:f6:41:f8:5a: d1:79:bd:18:c5:04:51:27:12:51:cc:d5:4e:c2:9f:09:ba:ae: 37:a8:0b:31:4b:22:41:14:c8:39:7f:07:c8:17:41:c2:14:03: 00:f4:78:0a:b3:72:43:d5:7a:8d:f4:14:35:ae:6f:d2:56:34: 19:3c:c1:2a:cb:5a:b7:74:15:c2:99:5c:1c:9e:5f:a1:79:ec: c1:73:3c:c8:ce:86:43:14:76:4a:51:d0:4a:df:f3:fb:fe:4b: 24:82:d3:e7:e7:1f:67:8d:c6:0a:89:cf:3f:57:fb:9e:cf:de: 76:7e:db:a5:ab:61:c3:6b:d3:fd:a6:f7:13:98:9d:5a:9e:9b: 0f:39:0b:12 -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBQzQxMTAvBgNVBAUTKEEzMzc2MzNFMzU5MTk5NDBCRDcyOUQ5MTJGMzY2MzE1 OEMyNjdDMzYwHhcNMjUwMzEzMDE1NzQ1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2QyM2I5OS0zZjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo2p0V9F3DJ6EXoQmWE0VDzSzMF6e2GLtxa/tbY0YoswGGtTxxK4rLjvEJ1aE teBRWI473dTPV7Jp3kAa08ZyeKQzRhnWQgUDxxbM8qZnmHYXuK0d3tqqFITTFrO4 5AAj+ZHjc9ueT2Li+qr32hpPqzVa7pF7a48TYm/Y8rcCu8lcKcb7PFOXAJWZwbZj 21nakmVFu08Q99DpYkREiWaljN2R6IYjCxitfDwh8ySaGE7rHAnqX/RiXZwC1/aa zl6ehM5vUoYhn1amFLnOblkqol5KK5N+08P/NB7bxh0U+J1KOjE46hmsePPOS799 Y4UfTx2nZMyaVd83vJtOFnFVgwIDAQABo4ICzDCCAsgwHQYDVR0OBBYEFHrad9we 4dTI5k5iKkz01bmM1vh7MB8GA1UdIwQYMBaAFKM3Yz41kZlAvXKdkS82YxWMJnw2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEFDNC9DOEZFMTc0QzU3 NzUxMUVEODFGMTNCNkZDNEY5QUUwMi9vemRqUGpXUm1VQzljcDJSTHpaakZZd21m RFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL296ZGpQaldSbVVDOWNwMlJMelpqRll3bWZEWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhBQzQvQzhGRTE3NEM1Nzc1MTFFRDgxRjEzQjZGQzRGOUFFMDIvMEFGRkYwNzg1 Nzc4MTFFRDk1OUFDMzZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVgYIKwYBBQUHAQcBAf8E RzBFMAwEAgABMAYDBAFnh2IwNQQCAAIwLwMHBCQEecAAADASAwcAJAR5wBABAwcC JAR5wBAAAwcBJAR5wCAAAwcAJAR5wDAAMA0GCSqGSIb3DQEBCwUAA4IBAQCJjdeh oC5siND+R81CFcVMdMpWHIC38bUQMC3HqSFKmOkU8Ix1yJlivcTh9mmYaMnM1DcR Mnsm5Ayn89o1gs92W+gz7n9rrW79tLu7XzA10pIce8b+RLkup/T6PY43AAO+lNfZ W8wN0V1HG5bdmIZewXzh2zUrKJh8wPZB+FrReb0YxQRRJxJRzNVOwp8Juq43qAsx SyJBFMg5fwfIF0HCFAMA9HgKs3JD1XqN9BQ1rm/SVjQZPMEqy1q3dBXCmVwcnl+h eezBczzIzoZDFHZKUdBK3/P7/kskgtPn5x9njcYKic8/V/uez952ftulq2HDa9P9 pvcTmJ1anpsPOQsS -----END CERTIFICATE-----Generated at Sat Apr 5 01:50:45 2025 by rpki-client