$ rpki-client -vvf rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/B38547D6EDB611EEB49CEE2CC4F9AE02.roa File: B38547D6EDB611EEB49CEE2CC4F9AE02.roa (raw, json) Hash identifier: 2+Bizh2NNJp7F7/Vuvy8vKBy/G5KPNERN871DtsBlxY= Subject key identifier: 1A:50:A8:28:BF:D3:3C:73:F4:63:EC:9A:58:8E:99:A9:77:5A:87:A6 Certificate issuer: /CN=A916D128/serialNumber=C504565577AE99F6191C97833DDBDD624EC24E92 Certificate serial: 065C Authority key identifier: C5:04:56:55:77:AE:99:F6:19:1C:97:83:3D:DB:DD:62:4E:C2:4E:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xQRWVXeumfYZHJeDPdvdYk7CTpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/B38547D6EDB611EEB49CEE2CC4F9AE02.roa Signing time: Fri 29 Mar 2024 10:25:45 +0000 ROA not before: Fri 29 Mar 2024 10:25:45 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 51847 IP address blocks: 103.160.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/xQRWVXeumfYZHJeDPdvdYk7CTpI.crl rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/xQRWVXeumfYZHJeDPdvdYk7CTpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xQRWVXeumfYZHJeDPdvdYk7CTpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1628 (0x65c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D128 Validity Not Before: Mar 29 10:25:45 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=66069728-df2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bd:f5:85:43:7b:cc:ba:80:cf:7c:8e:4e:3d: 34:7d:81:6d:7b:d1:e6:03:04:00:a1:dd:5f:82:0d: 3d:ca:99:b1:23:4f:bd:1d:82:06:5e:da:e8:3e:d3: 3c:7c:9a:c1:65:0d:4c:e8:29:40:6a:2e:56:a9:f4: df:8c:d9:f7:6c:64:7f:22:03:c8:a0:5c:ed:61:51: 6a:3c:d6:d3:f2:cb:e2:c7:e3:97:c7:d8:45:db:ed: d7:d8:e5:b3:55:f3:99:86:e0:c9:3b:3c:7b:a9:9e: f7:08:b0:1f:20:17:75:e2:81:93:fc:f4:ee:0c:46: 48:52:e3:94:8c:4d:a0:04:59:b8:e8:ac:fa:ea:26: a3:2c:05:99:ec:b7:ba:cf:05:f3:94:72:22:da:4b: 38:8a:06:a9:b9:21:55:38:11:05:da:bc:61:a9:c8: 0d:35:5e:5e:5c:87:af:bc:79:7e:ae:3f:f5:18:b5: ce:e1:c2:e2:d8:ad:b3:5f:06:7b:1f:19:bd:28:83: 25:f6:75:54:9a:57:88:da:61:df:3b:ca:1e:e4:ae: ef:93:96:c6:4d:0a:13:b3:b4:7e:df:7b:f0:e9:ab: 99:3a:6e:fe:6d:2b:60:70:35:20:87:62:6a:80:49: fd:55:49:95:47:33:c2:ff:40:bd:19:d5:bf:e0:01: b4:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:50:A8:28:BF:D3:3C:73:F4:63:EC:9A:58:8E:99:A9:77:5A:87:A6 X509v3 Authority Key Identifier: keyid:C5:04:56:55:77:AE:99:F6:19:1C:97:83:3D:DB:DD:62:4E:C2:4E:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/xQRWVXeumfYZHJeDPdvdYk7CTpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xQRWVXeumfYZHJeDPdvdYk7CTpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D128/90DE9C663EA311EB8ACB9013C4F9AE02/B38547D6EDB611EEB49CEE2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.100.0/24 Signature Algorithm: sha256WithRSAEncryption 56:31:7e:32:08:9c:72:af:81:a0:7f:20:38:f7:3a:15:86:d0: e6:e1:57:4d:1f:30:cb:81:40:de:7c:00:4c:6d:b8:69:89:e3: c3:2f:06:4d:f7:cd:af:f8:47:f8:19:fb:0e:43:06:1f:1e:16: 87:56:9d:e4:7c:ce:5a:8e:28:cf:5c:31:25:1d:ab:b5:c6:2a: 0e:63:49:28:6c:3a:20:23:66:f8:a4:f0:9e:b5:06:a8:6e:3f: 30:b4:ec:e7:e7:18:a2:8a:e2:44:fc:0e:d4:ca:3d:a2:88:3e: c3:f9:41:35:6b:ee:ec:26:31:89:31:da:ad:bf:6d:6c:08:2c: 25:21:56:c9:cb:8b:32:ca:13:0b:f3:45:dc:46:70:36:b6:a7: f2:46:d4:26:f9:cc:92:06:02:09:e4:59:22:00:aa:29:ea:6c: 0f:23:09:0d:3b:72:54:0b:0a:a3:45:b0:01:45:0c:7c:92:a1: 7c:4a:43:9e:4d:fd:d1:e3:b1:57:85:bb:33:a2:0e:3e:c2:02: f1:b6:8d:13:8a:65:f2:60:66:1d:25:f3:e4:ed:53:c7:4b:79: 09:07:b6:cb:7b:30:e8:59:66:60:b3:36:c4:3f:1f:a6:f4:9b: 75:80:49:06:a3:8b:24:03:a3:82:8a:67:fb:05:da:09:5e:74: 09:71:66:64 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQxMjgxMTAvBgNVBAUTKEM1MDQ1NjU1NzdBRTk5RjYxOTFDOTc4MzNEREJERDYy NEVDMjRFOTIwHhcNMjQwMzI5MTAyNTQ1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA2OTcyOC1kZjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAub31hUN7zLqAz3yOTj00fYFte9HmAwQAod1fgg09ypmxI0+9HYIGXtroPtM8 fJrBZQ1M6ClAai5WqfTfjNn3bGR/IgPIoFztYVFqPNbT8svix+OXx9hF2+3X2OWz VfOZhuDJOzx7qZ73CLAfIBd14oGT/PTuDEZIUuOUjE2gBFm46Kz66iajLAWZ7Le6 zwXzlHIi2ks4igapuSFVOBEF2rxhqcgNNV5eXIevvHl+rj/1GLXO4cLi2K2zXwZ7 Hxm9KIMl9nVUmleI2mHfO8oe5K7vk5bGTQoTs7R+33vw6auZOm7+bStgcDUgh2Jq gEn9VUmVRzPC/0C9GdW/4AG0tQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBpQqCi/ 0zxz9GPsmliOmal3WoemMB8GA1UdIwQYMBaAFMUEVlV3rpn2GRyXgz3b3WJOwk6S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDEyOC85MERFOUM2NjNF QTMxMUVCOEFDQjkwMTNDNEY5QUUwMi94UVJXVlhldW1mWVpISmVEUGR2ZFlrN0NU cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hRUldWWGV1bWZZWkhKZURQZHZkWWs3Q1RwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQxMjgvOTBERTlDNjYzRUEzMTFFQjhBQ0I5MDEzQzRGOUFFMDIvQjM4NTQ3RDZF REI2MTFFRUI0OUNFRTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnoGQwDQYJKoZIhvcNAQELBQADggEBAFYxfjIInHKvgaB/ IDj3OhWG0ObhV00fMMuBQN58AExtuGmJ48MvBk33za/4R/gZ+w5DBh8eFodWneR8 zlqOKM9cMSUdq7XGKg5jSShsOiAjZvik8J61BqhuPzC07OfnGKKK4kT8DtTKPaKI PsP5QTVr7uwmMYkx2q2/bWwILCUhVsnLizLKEwvzRdxGcDa2p/JG1Cb5zJIGAgnk WSIAqinqbA8jCQ07clQLCqNFsAFFDHySoXxKQ55N/dHjsVeFuzOiDj7CAvG2jROK ZfJgZh0l8+TtU8dLeQkHtst7MOhZZmCzNsQ/H6b0m3WASQajiyQDo4KKZ/sF2gle dAlxZmQ= -----END CERTIFICATE-----Generated at Sun Feb 16 20:29:53 2025 by rpki-client