$ rpki-client -vvf rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/78CFD3CC225E11EA8BD18A62C4F9AE02.roa File: 78CFD3CC225E11EA8BD18A62C4F9AE02.roa (raw, json) Hash identifier: XGnj2LY2XAX2XXXX8F2rAGqi8XuXCiAzWchxUB8sYR8= Subject key identifier: 97:98:3E:C1:75:94:6F:F5:52:7D:BC:46:7C:76:8B:7E:CE:57:B1:86 Certificate issuer: /CN=A91734C9/serialNumber=E34809BC5B454FC799487FEEDAD702124024623A Certificate serial: 0B7D Authority key identifier: E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/78CFD3CC225E11EA8BD18A62C4F9AE02.roa Signing time: Thu 30 Jan 2025 19:08:45 +0000 ROA not before: Thu 30 Jan 2025 19:08:45 +0000 ROA not after: Mon 02 Jun 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.145.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2941 (0xb7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91734C9 Validity Not Before: Jan 30 19:08:45 2025 GMT Not After : Jun 2 00:00:00 2025 GMT Subject: CN=679bce3d-1999 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2d:5c:b2:b6:4b:f0:73:ee:c4:72:0f:b2:a9: 84:ec:11:7b:3f:da:b9:7b:c8:ee:66:b3:59:5d:3b: 5c:a0:fc:91:86:99:99:ad:57:48:fa:01:f5:93:91: 86:ce:07:8d:cd:ab:2f:44:ae:8e:ff:16:ec:6c:05: 94:76:bf:4b:23:35:5f:b9:a7:27:49:bd:95:e7:99: 94:18:a6:7f:ce:a5:db:31:32:79:b8:85:b3:5d:75: c5:81:5c:b2:39:8b:7f:f1:5b:39:5d:bc:0a:8f:81: 2c:d4:64:94:de:cd:38:b3:7a:3f:79:a2:e3:e1:41: 82:a3:e8:a8:7b:1f:8a:00:61:f7:43:18:a2:fc:91: 50:2c:1a:bd:60:ad:9a:9e:c3:1f:9b:da:e6:d5:dc: 87:d3:84:49:dd:cc:94:50:e7:00:a9:ec:c2:5d:a9: 65:49:ec:58:cd:34:97:48:bb:d0:11:b3:96:e9:f0: eb:c6:d0:d8:6e:f5:b7:c8:bd:f0:e0:68:73:e0:1d: e8:be:d5:df:eb:79:9d:02:07:46:00:07:bf:d3:f8: d7:b9:00:5d:9b:cf:d6:aa:15:01:78:37:9f:56:ea: 1a:14:84:ca:5f:50:48:bf:6e:4d:97:26:dd:3f:e3: 41:a5:1b:ff:06:90:28:43:1d:d9:94:df:be:a0:cc: a0:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:98:3E:C1:75:94:6F:F5:52:7D:BC:46:7C:76:8B:7E:CE:57:B1:86 X509v3 Authority Key Identifier: keyid:E3:48:09:BC:5B:45:4F:C7:99:48:7F:EE:DA:D7:02:12:40:24:62:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/40gJvFtFT8eZSH_u2tcCEkAkYjo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40gJvFtFT8eZSH_u2tcCEkAkYjo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91734C9/6736024A225D11EABACFC960C4F9AE02/78CFD3CC225E11EA8BD18A62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.182.0/24 Signature Algorithm: sha256WithRSAEncryption 18:3c:f8:48:68:cf:c9:cf:6a:d9:99:1b:15:d2:5a:83:f9:96: 96:49:84:3d:13:b4:cd:ea:2d:6f:c6:d3:95:51:3b:31:07:72: 8b:aa:45:86:07:89:0d:af:b2:0e:4e:e7:45:d2:15:a1:ef:ea: 17:76:f9:75:ad:0e:96:97:53:5e:5a:1e:07:7f:93:7a:e2:bf: 8f:c0:29:77:bb:3d:b5:7a:24:4e:78:67:0b:56:46:b9:f7:31: 66:97:b8:b7:8c:ed:8c:17:10:ec:35:8c:4e:55:fc:a8:48:bc: cc:c6:8f:60:53:0d:fd:60:bc:4a:00:98:c9:69:b2:da:e0:90: 9d:21:dc:28:bd:20:48:3c:c0:2b:84:87:05:d4:d6:01:5f:45: 87:1f:e9:81:11:26:dc:38:ec:b8:ec:43:9e:2a:c0:6b:54:32: de:4f:38:33:35:4b:f9:f1:97:e5:f2:24:d1:66:70:34:95:55: 1e:f7:69:0c:3d:1f:1b:41:b4:14:ce:11:57:5e:24:a4:8b:54: 3c:86:81:c3:e6:6e:ed:2c:7b:43:e8:ea:9f:15:32:1e:a5:68: 9d:e0:89:37:8a:29:61:56:7e:68:6c:0c:12:48:53:31:35:d2: 41:94:8a:01:a8:50:71:27:7d:8e:38:0e:93:89:37:b8:cf:d4: 82:1e:74:f2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM0QzkxMTAvBgNVBAUTKEUzNDgwOUJDNUI0NTRGQzc5OTQ4N0ZFRURBRDcwMjEy NDAyNDYyM0EwHhcNMjUwMTMwMTkwODQ1WhcNMjUwNjAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzliY2UzZC0xOTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwS1csrZL8HPuxHIPsqmE7BF7P9q5e8juZrNZXTtcoPyRhpmZrVdI+gH1k5GG zgeNzasvRK6O/xbsbAWUdr9LIzVfuacnSb2V55mUGKZ/zqXbMTJ5uIWzXXXFgVyy OYt/8Vs5XbwKj4Es1GSU3s04s3o/eaLj4UGCo+ioex+KAGH3Qxii/JFQLBq9YK2a nsMfm9rm1dyH04RJ3cyUUOcAqezCXallSexYzTSXSLvQEbOW6fDrxtDYbvW3yL3w 4Ghz4B3ovtXf63mdAgdGAAe/0/jXuQBdm8/WqhUBeDefVuoaFITKX1BIv25Nlybd P+NBpRv/BpAoQx3ZlN++oMyghwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJeYPsF1 lG/1Un28Rnx2i37OV7GGMB8GA1UdIwQYMBaAFONICbxbRU/HmUh/7trXAhJAJGI6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzRDOS82NzM2MDI0QTIy NUQxMUVBQkFDRkM5NjBDNEY5QUUwMi80MGdKdkZ0RlQ4ZVpTSF91MnRjQ0VrQWtZ am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwZ0p2RnRGVDhlWlNIX3UydGNDRWtBa1lqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzM0QzkvNjczNjAyNEEyMjVEMTFFQUJBQ0ZDOTYwQzRGOUFFMDIvNzhDRkQzQ0My MjVFMTFFQThCRDE4QTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnkbYwDQYJKoZIhvcNAQELBQADggEBABg8+Ehoz8nPatmZ GxXSWoP5lpZJhD0TtM3qLW/G05VROzEHcouqRYYHiQ2vsg5O50XSFaHv6hd2+XWt DpaXU15aHgd/k3riv4/AKXe7PbV6JE54ZwtWRrn3MWaXuLeM7YwXEOw1jE5V/KhI vMzGj2BTDf1gvEoAmMlpstrgkJ0h3Ci9IEg8wCuEhwXU1gFfRYcf6YERJtw47Ljs Q54qwGtUMt5PODM1S/nxl+XyJNFmcDSVVR73aQw9HxtBtBTOEVdeJKSLVDyGgcPm bu0se0Po6p8VMh6laJ3giTeKKWFWfmhsDBJIUzE10kGUigGoUHEnfY44DpOJN7jP 1IIedPI= -----END CERTIFICATE-----Generated at Sun Feb 16 15:07:41 2025 by rpki-client