$ rpki-client -vvf rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/1BA16D001F8211EC8FC82E73C4F9AE02.roa File: 1BA16D001F8211EC8FC82E73C4F9AE02.roa (raw, json) Hash identifier: DDC+5+VXBnfrx9wWnbESqssm0Yt82gNbLRVKOAlPMNQ= Subject key identifier: AD:58:42:F4:2A:24:72:00:05:65:B0:98:28:13:21:C7:05:80:A4:23 Certificate issuer: /CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Certificate serial: 34D9 Authority key identifier: 9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/1BA16D001F8211EC8FC82E73C4F9AE02.roa Signing time: Mon 22 Jul 2024 14:40:21 +0000 ROA not before: Mon 22 Jul 2024 14:40:21 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 142599 IP address blocks: 203.107.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 14:22:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13529 (0x34d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91697FA Validity Not Before: Jul 22 14:40:21 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=669e6f55-48f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b3:39:b8:4b:da:2b:45:61:6b:f5:c1:b7:71: f4:bb:73:53:52:67:25:17:e9:db:bb:46:75:66:64: 24:c4:3b:42:dd:b6:30:e5:2b:9b:64:ea:6f:b5:e3: 72:91:f3:86:e3:02:ec:b8:25:97:d3:a1:8c:17:e9: 82:0e:56:69:d2:da:ed:f9:7f:b8:74:97:f4:e4:4a: ef:57:b5:99:22:7b:b6:54:7a:44:85:71:b7:4a:70: 70:fe:df:f7:a0:14:6e:4b:36:89:ad:42:d3:23:4c: 3c:05:3c:28:20:28:7b:ec:34:cd:11:f3:4c:99:11: ee:5f:07:d9:cc:40:11:b8:e9:dc:d8:b1:4e:43:64: 03:94:1d:36:c0:16:5b:1f:50:70:ea:a5:8a:11:eb: cb:b3:64:e1:fd:74:26:74:b0:0c:1a:0c:97:7c:e9: b3:81:cd:7b:60:9f:c1:72:22:a1:f7:42:c9:6e:7e: bc:ce:fa:a7:c5:cb:20:f3:6f:61:16:a6:05:28:bf: 4a:9b:b8:14:ae:66:cd:34:ba:ad:af:f0:93:4b:52: c4:27:04:c9:b8:87:8a:f8:d5:7b:f6:05:6c:c9:6a: 40:da:d9:dd:e0:5c:06:f3:a6:a8:47:07:cf:d1:23: f9:ac:45:9d:bd:1e:77:c8:bd:95:37:ff:ac:e9:2d: fe:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:58:42:F4:2A:24:72:00:05:65:B0:98:28:13:21:C7:05:80:A4:23 X509v3 Authority Key Identifier: keyid:9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/1BA16D001F8211EC8FC82E73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.107.164.0/24 Signature Algorithm: sha256WithRSAEncryption 74:64:ec:fe:35:a2:b0:3b:4b:ac:c3:3c:3e:1d:54:df:f3:ab: 1c:be:ff:b2:db:7f:07:1a:3f:70:a7:33:60:88:6c:b6:ed:4b: b4:16:4a:0f:23:91:c2:53:62:1d:67:19:af:45:94:1f:3a:b3: ec:64:18:0f:c8:a6:19:7d:05:73:f8:84:cb:5b:1f:ee:77:3e: 18:50:57:17:18:13:9b:04:32:70:6c:ca:91:d5:77:b3:68:58: ef:c6:8e:fc:d3:92:0b:21:fc:2c:2b:d3:db:d2:a0:60:78:c8: 2a:83:1b:4d:73:53:b8:b1:a5:b4:9f:ad:7d:bb:e0:7e:74:26: 7a:eb:66:45:7d:8a:b4:44:7c:9d:dc:f3:19:59:e7:34:7a:6f: a8:06:ac:33:87:45:c0:14:a6:46:55:70:74:b8:6d:d7:c3:5e: 29:2c:6b:e7:c9:f3:48:37:85:c3:60:d2:45:76:9c:d4:c8:d6: 18:ab:d1:23:6e:e5:2d:13:fa:1d:82:b6:f2:64:bf:a1:94:0c: 01:57:f0:58:12:81:a4:d4:7d:3c:eb:8f:7a:70:f6:a2:7b:da: a8:27:56:1c:8d:11:a3:5a:bb:5a:8f:1e:40:8b:96:15:28:19: f7:c0:fa:67:39:fe:bc:44:6e:4d:2a:b2:e9:5c:a6:4d:3b:8e: 2c:29:76:06 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk3RkExMTAvBgNVBAUTKDlGODJEQkM5NDY2MzEyQzVCQTJFOTIxMjc5MzAyNDAw OTU2QTk4MkEwHhcNMjQwNzIyMTQ0MDIxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjllNmY1NS00OGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArLM5uEvaK0Vha/XBt3H0u3NTUmclF+nbu0Z1ZmQkxDtC3bYw5SubZOpvteNy kfOG4wLsuCWX06GMF+mCDlZp0trt+X+4dJf05ErvV7WZInu2VHpEhXG3SnBw/t/3 oBRuSzaJrULTI0w8BTwoICh77DTNEfNMmRHuXwfZzEARuOnc2LFOQ2QDlB02wBZb H1Bw6qWKEevLs2Th/XQmdLAMGgyXfOmzgc17YJ/BciKh90LJbn68zvqnxcsg829h FqYFKL9Km7gUrmbNNLqtr/CTS1LEJwTJuIeK+NV79gVsyWpA2tnd4FwG86aoRwfP 0SP5rEWdvR53yL2VN/+s6S3+rQIDAQABo4IClTCCApEwHQYDVR0OBBYEFK1YQvQq JHIABWWwmCgTIccFgKQjMB8GA1UdIwQYMBaAFJ+C28lGYxLFui6SEnkwJACVapgq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTdGQS8yN0Y4M0I3MDFE ODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVzVzZMcElTZVRBa0FKVnFt Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL240TGJ5VVpqRXNXNkxwSVNlVEFrQUpWcW1Dby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk3RkEvMjdGODNCNzAxRDgzMTFFMjkzMjkyMUQ4MDhCMDJDRDIvMUJBMTZEMDAx RjgyMTFFQzhGQzgyRTczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLa6QwDQYJKoZIhvcNAQELBQADggEBAHRk7P41orA7S6zD PD4dVN/zqxy+/7LbfwcaP3CnM2CIbLbtS7QWSg8jkcJTYh1nGa9FlB86s+xkGA/I phl9BXP4hMtbH+53PhhQVxcYE5sEMnBsypHVd7NoWO/GjvzTkgsh/Cwr09vSoGB4 yCqDG01zU7ixpbSfrX274H50JnrrZkV9irREfJ3c8xlZ5zR6b6gGrDOHRcAUpkZV cHS4bdfDXiksa+fJ80g3hcNg0kV2nNTI1hir0SNu5S0T+h2CtvJkv6GUDAFX8FgS gaTUfTzrj3pw9qJ72qgnVhyNEaNau1qPHkCLlhUoGffA+mc5/rxEbk0qsulcpk07 jiwpdgY= -----END CERTIFICATE-----Generated at Thu Mar 13 21:49:42 2025 by rpki-client