$ rpki-client -vvf rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/1AC872EC2C9611EF84447F23C4F9AE02.roa File: 1AC872EC2C9611EF84447F23C4F9AE02.roa (raw, json) Hash identifier: rN5yihShhKdLjzPd/w3ifbi99zxrtnFDkYTWJsfuvtE= Subject key identifier: CE:47:AB:BE:E4:3C:B6:3A:0D:EE:93:17:6E:0E:B3:1D:40:D4:A3:9B Certificate issuer: /CN=A91392AE/serialNumber=4DAA776F8792800F42B89780F32D9E73276155D4 Certificate serial: 1939 Authority key identifier: 4D:AA:77:6F:87:92:80:0F:42:B8:97:80:F3:2D:9E:73:27:61:55:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tap3b4eSgA9CuJeA8y2ecydhVdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/1AC872EC2C9611EF84447F23C4F9AE02.roa Signing time: Wed 31 Jul 2024 17:04:09 +0000 ROA not before: Wed 31 Jul 2024 17:04:08 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 136786 IP address blocks: 103.115.4.0/23 maxlen: 24 103.115.6.0/24 maxlen: 24 2001:df1:c700::/48 maxlen: 48 2001:df1:c701::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/Tap3b4eSgA9CuJeA8y2ecydhVdQ.crl rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/Tap3b4eSgA9CuJeA8y2ecydhVdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tap3b4eSgA9CuJeA8y2ecydhVdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 16:22:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6457 (0x1939) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91392AE Validity Not Before: Jul 31 17:04:08 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66aa6e88-6550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e3:e3:0c:46:60:b3:d5:7c:f6:cd:18:6c:10: 6b:d6:df:b5:94:13:49:cd:90:8d:07:d8:34:35:eb: 8f:d8:08:d9:01:1d:6e:88:82:f8:15:6f:4a:b5:a5: 70:73:a0:88:2d:e7:27:9c:d2:85:cc:58:14:97:41: 97:45:7e:31:02:d8:e9:6e:3f:90:89:e4:3b:84:b2: 74:43:7f:d0:05:fe:0b:f1:ca:74:2b:cb:f7:05:8c: b7:c0:ff:0b:3d:e3:42:c0:b8:e7:8c:b8:ae:b5:48: 23:32:85:e8:2d:55:7c:cb:96:e8:11:83:5c:ad:85: 0b:56:14:52:77:83:dc:a1:fb:de:68:d2:5e:7b:a7: 0c:64:c1:a4:89:16:c4:6e:48:31:44:bb:b3:0b:c3: 09:17:09:6d:3e:ee:c1:22:b0:eb:a9:38:f6:9f:a1: 0c:4a:31:ce:ea:13:d7:c9:31:39:e5:5a:f8:61:5b: 19:11:ab:c5:17:e8:68:9d:52:b2:f4:ab:d9:9b:f8: 8e:35:de:f3:a1:d6:ad:77:9d:28:bf:12:a0:82:27: 2d:f2:60:c5:6f:9a:e4:42:a3:32:e7:ed:fc:08:ef: 86:12:7d:e9:eb:c3:9e:2a:05:db:8b:a3:d8:7b:85: 7a:27:be:42:88:d3:00:a5:d0:01:bf:79:bc:33:08: 17:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:47:AB:BE:E4:3C:B6:3A:0D:EE:93:17:6E:0E:B3:1D:40:D4:A3:9B X509v3 Authority Key Identifier: keyid:4D:AA:77:6F:87:92:80:0F:42:B8:97:80:F3:2D:9E:73:27:61:55:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/Tap3b4eSgA9CuJeA8y2ecydhVdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tap3b4eSgA9CuJeA8y2ecydhVdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91392AE/336EF67660E811E7AC175259C4F9AE02/1AC872EC2C9611EF84447F23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.4.0-103.115.6.255 IPv6: 2001:df1:c700::/47 Signature Algorithm: sha256WithRSAEncryption 86:a7:9c:73:74:cf:94:8b:45:e6:52:80:65:14:db:46:3e:3d: 2c:24:42:0d:a9:fc:3a:57:91:7a:45:44:ef:bb:43:b3:b5:8a: bd:b5:4b:43:31:c1:23:f9:cc:40:18:80:59:a9:cc:db:23:dd: c3:51:4c:3e:d7:b4:53:28:8d:b6:77:5d:6d:be:e5:ab:47:1f: f8:37:a0:ef:f1:75:97:69:0f:e6:e5:18:e6:cf:6b:27:27:b5: 2a:bf:36:b2:20:02:9d:c1:73:cc:36:08:56:e6:3d:a2:9c:25: a4:fa:95:06:d0:03:f0:3d:b6:f1:1b:b0:43:d3:8d:b3:cb:fb: fe:fc:a0:65:e1:eb:a9:e2:59:19:37:1d:87:f4:5d:ba:51:a9: 90:a9:cd:2e:cc:04:61:ee:0e:fd:43:e7:c7:ba:ac:d9:32:80: 7d:0f:fa:2d:3e:e8:17:c0:35:59:a5:5d:3d:a4:18:81:92:42: a1:a9:08:92:45:07:9e:02:bf:23:d8:ef:ee:e2:86:f5:6e:11: 8b:52:84:21:e7:d8:b2:27:4d:b6:e2:39:9c:93:8e:ec:dc:a0: 3d:db:19:f5:43:2c:d6:47:53:e8:98:cc:2c:e7:e1:c5:c9:be: 85:ce:c2:a5:29:7f:71:d5:70:19:ee:15:57:d7:05:b6:88:0e: 01:2f:f5:af -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICGTkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkyQUUxMTAvBgNVBAUTKDREQUE3NzZGODc5MjgwMEY0MkI4OTc4MEYzMkQ5RTcz Mjc2MTU1RDQwHhcNMjQwNzMxMTcwNDA4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFhNmU4OC02NTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxuPjDEZgs9V89s0YbBBr1t+1lBNJzZCNB9g0NeuP2AjZAR1uiIL4FW9KtaVw c6CILecnnNKFzFgUl0GXRX4xAtjpbj+QieQ7hLJ0Q3/QBf4L8cp0K8v3BYy3wP8L PeNCwLjnjLiutUgjMoXoLVV8y5boEYNcrYULVhRSd4PcofveaNJee6cMZMGkiRbE bkgxRLuzC8MJFwltPu7BIrDrqTj2n6EMSjHO6hPXyTE55Vr4YVsZEavFF+honVKy 9KvZm/iONd7zodatd50ovxKggict8mDFb5rkQqMy5+38CO+GEn3p68OeKgXbi6PY e4V6J75CiNMApdABv3m8MwgXYQIDAQABo4ICrjCCAqowHQYDVR0OBBYEFM5Hq77k PLY6De6TF24Osx1A1KObMB8GA1UdIwQYMBaAFE2qd2+HkoAPQriXgPMtnnMnYVXU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTJBRS8zMzZFRjY3NjYw RTgxMUU3QUMxNzUyNTlDNEY5QUUwMi9UYXAzYjRlU2dBOUN1SmVBOHkyZWN5ZGhW ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RhcDNiNGVTZ0E5Q3VKZUE4eTJlY3lkaFZkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkyQUUvMzM2RUY2NzY2MEU4MTFFN0FDMTc1MjU5QzRGOUFFMDIvMUFDODcyRUMy Qzk2MTFFRjg0NDQ3RjIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMBQEAgABMA4wDAMEAmdzBAMEAGdzBjAPBAIAAjAJAwcBIAEN8ccAMA0GCSqG SIb3DQEBCwUAA4IBAQCGp5xzdM+Ui0XmUoBlFNtGPj0sJEINqfw6V5F6RUTvu0Oz tYq9tUtDMcEj+cxAGIBZqczbI93DUUw+17RTKI22d11tvuWrRx/4N6Dv8XWXaQ/m 5Rjmz2snJ7UqvzayIAKdwXPMNghW5j2inCWk+pUG0APwPbbxG7BD042zy/v+/KBl 4eup4lkZNx2H9F26UamQqc0uzARh7g79Q+fHuqzZMoB9D/otPugXwDVZpV09pBiB kkKhqQiSRQeeAr8j2O/u4ob1bhGLUoQh59iyJ0224jmck47s3KA92xn1QyzWR1Po mMws5+HFyb6FzsKlKX9x1XAZ7hVX1wW2iA4BL/Wv -----END CERTIFICATE-----Generated at Thu Mar 13 21:49:22 2025 by rpki-client