$ rpki-client -vvf rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8A00E9284FB111EDBE702516C4F9AE02.roa File: 8A00E9284FB111EDBE702516C4F9AE02.roa (raw, json) Hash identifier: s8FViwNwbQunitwqHzsjUNkNGV0Mlz+MOgwlD5JB+Bs= Subject key identifier: 28:27:68:95:E1:09:D2:76:F7:D2:DF:0B:9C:C1:2B:72:E8:CE:F1:9D Certificate issuer: /CN=A91175FF/serialNumber=F27FF876E465E73C9A52FD3848DBD765BFB235D4 Certificate serial: 0CF3 Authority key identifier: F2:7F:F8:76:E4:65:E7:3C:9A:52:FD:38:48:DB:D7:65:BF:B2:35:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8n_4duRl5zyaUv04SNvXZb-yNdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8A00E9284FB111EDBE702516C4F9AE02.roa Signing time: Wed 06 Nov 2024 18:26:04 +0000 ROA not before: Wed 06 Nov 2024 18:26:04 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 396982 IP address blocks: 103.101.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8n_4duRl5zyaUv04SNvXZb-yNdQ.crl rsync://rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8n_4duRl5zyaUv04SNvXZb-yNdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8n_4duRl5zyaUv04SNvXZb-yNdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3315 (0xcf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91175FF Validity Not Before: Nov 6 18:26:04 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672bb4bc-3930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5f:0b:a1:93:9c:0e:5b:e6:44:c1:71:29:88: 42:a3:9f:3e:c8:90:6c:7d:00:d6:7a:1a:84:92:81: 99:68:44:ef:ad:1f:6d:7c:5f:7d:d3:ff:44:53:52: ff:a2:84:70:3d:8d:31:e5:79:7c:88:0c:da:25:6e: 24:7b:be:b0:b7:ca:76:93:b2:f7:d1:ba:9a:e8:d3: c0:49:45:ba:c8:a1:9c:4b:be:1e:5c:62:f7:c5:3d: 48:77:24:4d:92:86:92:c7:7b:43:42:fd:83:10:a8: 88:14:c8:fe:ed:ca:b4:d2:5b:ec:fd:a4:98:03:0d: 6b:d4:e0:c0:31:ba:eb:3c:38:9f:76:e2:5f:29:28: c8:02:6d:6c:fb:2f:ce:39:57:17:ff:9e:a5:44:5a: 58:ea:7e:1b:8d:64:ad:0e:80:0f:33:0f:4a:ec:87: 68:5d:45:ed:48:11:7d:ab:73:6e:dd:71:82:d6:71: d7:ea:9b:56:a5:5a:f8:03:ee:55:76:28:ec:9d:66: 92:2f:da:63:b9:55:69:6f:37:85:e8:dd:bc:b7:e9: 9e:6b:10:14:ef:78:ef:e5:08:12:22:a1:2b:20:cd: 53:6a:1b:1c:a4:37:a4:41:af:7a:ad:4d:d1:26:fa: c5:e3:6b:a0:0f:dc:4f:ba:00:e7:c4:47:e1:3d:cb: 8c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:27:68:95:E1:09:D2:76:F7:D2:DF:0B:9C:C1:2B:72:E8:CE:F1:9D X509v3 Authority Key Identifier: keyid:F2:7F:F8:76:E4:65:E7:3C:9A:52:FD:38:48:DB:D7:65:BF:B2:35:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8n_4duRl5zyaUv04SNvXZb-yNdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8n_4duRl5zyaUv04SNvXZb-yNdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91175FF/E176D67AD09511E9B345A05DC4F9AE02/8A00E9284FB111EDBE702516C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.215.0/24 Signature Algorithm: sha256WithRSAEncryption 65:e7:75:51:e7:69:65:4c:32:fc:91:de:ad:36:ac:5a:fe:54: b5:4a:a0:2f:4a:88:22:6a:ed:60:46:ec:de:08:79:99:b2:18: a3:50:0a:c8:53:e7:b5:84:2a:1c:40:38:c9:7e:7d:6c:95:30: f1:54:07:46:3a:57:9b:00:56:03:b1:0b:9e:61:64:ec:9a:a3: ca:77:d4:a8:4e:9e:1c:f0:fd:9b:be:1f:1d:d5:d7:85:9c:49: 4d:9e:3d:39:a9:35:f2:bb:df:f2:00:b2:ea:08:26:53:34:40: 95:d4:45:26:81:68:bd:40:2d:ae:21:40:4d:ac:30:07:b6:62: 83:57:cc:7e:69:80:25:1d:7b:0d:fd:01:c4:7c:7b:bf:ab:92: f0:c8:5e:08:29:e3:0a:3e:1d:0c:c1:91:cf:f6:12:12:47:2c: 5a:29:6c:d7:5c:42:52:e2:0f:6c:50:a9:3a:8f:18:95:75:5f: 28:7b:7c:86:48:83:c8:3c:17:8b:5b:cc:b2:fb:3e:a9:0a:f2: 72:2f:02:a4:b8:86:91:6f:ba:42:93:cb:43:e0:4a:05:37:26: c0:bc:6a:c2:0a:a3:4f:04:ff:50:c8:c0:42:f6:09:c1:9f:a6: 69:14:e0:fb:bb:72:9a:b6:8e:16:8d:8e:eb:ab:7d:19:f4:40: 3a:99:e6:b5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc1RkYxMTAvBgNVBAUTKEYyN0ZGODc2RTQ2NUU3M0M5QTUyRkQzODQ4REJENzY1 QkZCMjM1RDQwHhcNMjQxMTA2MTgyNjA0WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiYjRiYy0zOTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzV8LoZOcDlvmRMFxKYhCo58+yJBsfQDWehqEkoGZaETvrR9tfF990/9EU1L/ ooRwPY0x5Xl8iAzaJW4ke76wt8p2k7L30bqa6NPASUW6yKGcS74eXGL3xT1IdyRN koaSx3tDQv2DEKiIFMj+7cq00lvs/aSYAw1r1ODAMbrrPDifduJfKSjIAm1s+y/O OVcX/56lRFpY6n4bjWStDoAPMw9K7IdoXUXtSBF9q3Nu3XGC1nHX6ptWpVr4A+5V dijsnWaSL9pjuVVpbzeF6N28t+meaxAU73jv5QgSIqErIM1TahscpDekQa96rU3R JvrF42ugD9xPugDnxEfhPcuMyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCgnaJXh CdJ299LfC5zBK3LozvGdMB8GA1UdIwQYMBaAFPJ/+HbkZec8mlL9OEjb12W/sjXU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzVGRi9FMTc2RDY3QUQw OTUxMUU5QjM0NUEwNURDNEY5QUUwMi84bl80ZHVSbDV6eWFVdjA0U052WFpiLXlO ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhuXzRkdVJsNXp5YVV2MDRTTnZYWmIteU5kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTc1RkYvRTE3NkQ2N0FEMDk1MTFFOUIzNDVBMDVEQzRGOUFFMDIvOEEwMEU5Mjg0 RkIxMTFFREJFNzAyNTE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnZdcwDQYJKoZIhvcNAQELBQADggEBAGXndVHnaWVMMvyR 3q02rFr+VLVKoC9KiCJq7WBG7N4IeZmyGKNQCshT57WEKhxAOMl+fWyVMPFUB0Y6 V5sAVgOxC55hZOyao8p31KhOnhzw/Zu+Hx3V14WcSU2ePTmpNfK73/IAsuoIJlM0 QJXURSaBaL1ALa4hQE2sMAe2YoNXzH5pgCUdew39AcR8e7+rkvDIXggp4wo+HQzB kc/2EhJHLFopbNdcQlLiD2xQqTqPGJV1Xyh7fIZIg8g8F4tbzLL7PqkK8nIvAqS4 hpFvukKTy0PgSgU3JsC8asIKo08E/1DIwEL2CcGfpmkU4Pu7cpq2jhaNjuurfRn0 QDqZ5rU= -----END CERTIFICATE-----Generated at Sun Feb 16 15:55:42 2025 by rpki-client