$ rpki-client -vvf rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/EF8CB49CD78F11EC91680D49C4F9AE02.roa File: EF8CB49CD78F11EC91680D49C4F9AE02.roa (raw, json) Hash identifier: lJKugMMEeA6hotCUmsieh3f9JUtmDi6Rwayct/vX1UY= Subject key identifier: A2:28:1F:39:37:64:F7:59:45:E8:37:0B:89:A7:E7:D1:70:D0:F4:29 Certificate issuer: /CN=A91772FA/serialNumber=3B1688A5F7B724AAFBE7820A2C63D97B2EA8E522 Certificate serial: 0273 Authority key identifier: 3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/EF8CB49CD78F11EC91680D49C4F9AE02.roa Signing time: Thu 27 Jun 2024 03:03:59 +0000 ROA not before: Thu 27 Jun 2024 03:03:59 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 14618 IP address blocks: 103.186.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 627 (0x273) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91772FA Validity Not Before: Jun 27 03:03:59 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=667cd69e-3f42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:ff:fd:a0:e1:b4:4c:89:a6:be:4a:f7:44:6c: 55:58:f0:a8:89:57:91:2d:d8:71:0d:ae:b5:f9:f2: cb:8f:9c:ec:ee:38:4d:dc:74:31:00:f7:3e:9d:3c: 80:0e:2b:c0:7f:93:98:32:d2:91:2d:90:a7:51:63: b5:51:64:83:ed:91:0d:16:ea:49:7a:bf:7c:76:52: f4:36:9a:55:6f:70:8b:41:23:58:e4:16:63:49:60: 7c:cf:e6:e3:3e:91:fd:5b:a7:e1:3f:fc:07:0d:2a: eb:68:12:8d:e0:f0:4c:a0:87:e3:96:11:3d:fe:1f: 0a:ef:e1:5e:0d:40:f5:13:72:09:13:00:1e:14:b0: 3c:29:c9:8a:59:28:ee:65:ba:f7:71:a1:42:3e:04: dc:23:bc:be:3c:50:54:6e:85:c6:e6:a1:19:dc:df: 51:44:ae:05:fa:ad:bb:13:f0:17:36:c5:50:cb:9d: b2:78:86:4f:d3:77:92:35:07:d8:76:b0:9d:03:4c: 5d:ed:04:a4:8f:9f:99:fa:40:34:41:40:80:ea:93: d4:aa:45:37:69:e8:cd:b4:97:57:3b:b5:c2:af:31: 1f:f0:81:01:c7:32:30:a7:6f:b7:46:09:3b:a9:b5: 93:a4:a3:a1:3e:24:1c:1d:8e:3f:06:9a:10:11:d7: fc:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:28:1F:39:37:64:F7:59:45:E8:37:0B:89:A7:E7:D1:70:D0:F4:29 X509v3 Authority Key Identifier: keyid:3B:16:88:A5:F7:B7:24:AA:FB:E7:82:0A:2C:63:D9:7B:2E:A8:E5:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/OxaIpfe3JKr754IKLGPZey6o5SI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OxaIpfe3JKr754IKLGPZey6o5SI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91772FA/D7244562CD7311ECA0AA8061C4F9AE02/EF8CB49CD78F11EC91680D49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.205.0/24 Signature Algorithm: sha256WithRSAEncryption 61:41:77:93:91:f1:e9:f6:2b:bb:50:f7:16:6a:7f:2a:4b:2b: 7d:47:ec:3f:5e:6f:6c:69:38:11:d8:84:70:42:e0:60:d4:1e: 4b:c8:79:ae:83:0c:cc:0e:24:bb:f6:4d:e8:01:04:72:f8:c1: fe:6a:2a:48:d2:58:87:78:f7:8a:fd:15:0a:09:7e:7d:41:51: c7:5d:2d:e8:46:db:88:41:9b:12:aa:52:1d:1a:47:c6:9e:be: 1a:da:6f:a4:5e:6c:4f:4c:3b:fa:2f:49:1d:da:72:27:26:13: 2b:9d:f4:33:f0:e2:90:80:84:05:32:04:27:ba:d0:bc:43:be: 5d:11:65:4f:a8:03:5a:94:2b:ae:8a:1d:1c:19:3e:0b:2d:0f: fa:c6:7c:ed:32:c6:2b:c6:41:bb:37:b5:c0:b9:81:f1:ef:1e: ca:84:a3:2a:16:a0:e3:73:dc:e9:d4:3e:a5:65:6d:52:67:65: 03:b2:ff:29:09:90:1d:cd:ff:3e:9a:30:29:8d:10:7f:26:2b: 32:57:22:83:a8:5c:77:5e:57:e1:73:03:eb:10:88:b8:64:29: 48:9d:81:53:99:00:c4:c4:8a:db:82:ab:3b:0f:f3:1e:48:aa: 7b:2d:b3:a1:df:dc:5a:d5:6e:f4:ad:1e:17:2e:79:e9:f7:58: da:11:91:68 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzcyRkExMTAvBgNVBAUTKDNCMTY4OEE1RjdCNzI0QUFGQkU3ODIwQTJDNjNEOTdC MkVBOEU1MjIwHhcNMjQwNjI3MDMwMzU5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdjZDY5ZS0zZjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9P/9oOG0TImmvkr3RGxVWPCoiVeRLdhxDa61+fLLj5zs7jhN3HQxAPc+nTyA DivAf5OYMtKRLZCnUWO1UWSD7ZENFupJer98dlL0NppVb3CLQSNY5BZjSWB8z+bj PpH9W6fhP/wHDSrraBKN4PBMoIfjlhE9/h8K7+FeDUD1E3IJEwAeFLA8KcmKWSju Zbr3caFCPgTcI7y+PFBUboXG5qEZ3N9RRK4F+q27E/AXNsVQy52yeIZP03eSNQfY drCdA0xd7QSkj5+Z+kA0QUCA6pPUqkU3aejNtJdXO7XCrzEf8IEBxzIwp2+3Rgk7 qbWTpKOhPiQcHY4/BpoQEdf8VQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKIoHzk3 ZPdZReg3C4mn59Fw0PQpMB8GA1UdIwQYMBaAFDsWiKX3tySq++eCCixj2XsuqOUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzJGQS9ENzI0NDU2MkNE NzMxMUVDQTBBQTgwNjFDNEY5QUUwMi9PeGFJcGZlM0pLcjc1NElLTEdQWmV5Nm81 U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL094YUlwZmUzSktyNzU0SUtMR1BaZXk2bzVTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzcyRkEvRDcyNDQ1NjJDRDczMTFFQ0EwQUE4MDYxQzRGOUFFMDIvRUY4Q0I0OUNE NzhGMTFFQzkxNjgwRDQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnus0wDQYJKoZIhvcNAQELBQADggEBAGFBd5OR8en2K7tQ 9xZqfypLK31H7D9eb2xpOBHYhHBC4GDUHkvIea6DDMwOJLv2TegBBHL4wf5qKkjS WId494r9FQoJfn1BUcddLehG24hBmxKqUh0aR8aevhrab6RebE9MO/ovSR3acicm Eyud9DPw4pCAhAUyBCe60LxDvl0RZU+oA1qUK66KHRwZPgstD/rGfO0yxivGQbs3 tcC5gfHvHsqEoyoWoONz3OnUPqVlbVJnZQOy/ykJkB3N/z6aMCmNEH8mKzJXIoOo XHdeV+FzA+sQiLhkKUidgVOZAMTEituCqzsP8x5Iqnsts6Hf3FrVbvStHhcueen3 WNoRkWg= -----END CERTIFICATE-----Generated at Sun Feb 16 15:30:36 2025 by rpki-client