$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/721709C63F6711EF879C2E11C4F9AE02.roa File: 721709C63F6711EF879C2E11C4F9AE02.roa (raw, json) Hash identifier: OxPA4uUHLc7fRUiKLbuvR0L7g6mPMW1qhFDN6e351sc= Subject key identifier: B0:5D:80:C9:F3:C3:EF:4F:6C:00:C8:CC:E0:BC:2D:DB:57:CF:43:87 Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 10B8 Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/721709C63F6711EF879C2E11C4F9AE02.roa Signing time: Sat 30 Nov 2024 05:27:19 +0000 ROA not before: Sat 30 Nov 2024 05:27:19 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 216047 IP address blocks: 103.140.8.0/24 maxlen: 24 103.140.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:49:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4280 (0x10b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB Validity Not Before: Nov 30 05:27:19 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=674aa237-5fc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:a7:c8:ea:d8:f9:6c:6d:73:1f:5c:57:89:18: c3:31:29:30:cc:8f:54:89:f6:64:da:52:53:bb:07: 0e:cd:e2:a4:60:ed:41:7d:76:55:cf:c6:84:40:cf: 2b:ea:f2:1d:3c:0d:6c:74:4e:ef:89:19:c9:6e:f9: 2d:d1:9f:dc:bd:08:01:9c:4a:30:df:34:12:20:c3: 06:26:b7:0e:b1:86:bb:90:1e:10:9b:82:d7:2e:3f: cd:ce:86:37:16:90:65:7a:5c:db:85:72:b0:ea:4f: 82:2f:67:65:d6:14:7f:60:32:0c:82:46:4a:fd:95: ba:55:be:9d:b4:71:29:1e:61:dd:8b:df:fc:71:38: 11:19:3c:6a:d0:f4:15:47:d6:14:67:a6:e7:e6:36: 79:23:52:72:c3:f7:9d:b1:0b:5b:ba:6d:06:fa:c4: b3:a4:25:88:4d:a6:36:db:ad:d7:27:be:43:15:17: ea:f2:52:ee:65:d3:e3:fb:dd:0f:23:bf:dc:c3:bf: 38:dd:98:75:aa:31:44:f6:b5:5d:01:ca:62:1b:32: 88:a0:51:59:60:1b:87:87:1e:87:72:ff:e2:9c:d3: 96:b2:d7:f9:f3:ee:b6:23:e3:c2:1f:1a:2d:bb:4c: 2b:ad:c4:65:5a:cf:66:17:a4:ec:96:b2:4b:67:ba: f9:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:5D:80:C9:F3:C3:EF:4F:6C:00:C8:CC:E0:BC:2D:DB:57:CF:43:87 X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/721709C63F6711EF879C2E11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.8.0/23 Signature Algorithm: sha256WithRSAEncryption c4:57:55:06:50:84:b8:d5:e5:91:f4:57:6e:7f:a3:67:b1:96: cc:60:de:f9:2f:a2:54:cd:69:9c:17:47:db:c5:7d:b7:a9:23: 0f:0c:b7:cf:a0:70:1d:47:cd:ba:d6:84:7f:df:5a:39:e5:8f: e7:b3:f9:c6:cb:1e:2c:4b:22:4f:25:5b:64:29:b1:08:72:34: 5b:8f:10:9a:3a:47:a2:a1:76:e4:1a:1c:3a:b2:cf:f6:01:73: 98:23:19:3d:a6:a7:34:75:02:69:9a:7e:53:ab:0e:43:04:b6: 52:cf:1d:e4:87:b4:ae:62:13:8e:03:65:a5:65:63:81:4c:00: 64:b7:df:17:2d:4d:94:78:fc:6f:42:68:5f:03:1b:20:35:dc: fa:8c:15:78:17:53:50:a3:71:79:5b:2d:60:91:fc:be:a6:0f: ed:d3:78:ae:6d:a3:f6:7d:fb:38:92:42:f9:70:fe:15:35:cb: 2f:f0:77:f5:84:e5:0f:5b:32:45:56:80:ab:0f:aa:84:a9:93: 29:40:51:45:42:39:05:c2:88:37:43:fc:c2:6a:f5:d3:47:3f: 46:5a:71:4b:2c:c7:15:db:56:6e:ad:0d:6e:df:00:12:e1:59: 4a:b0:c8:5a:18:16:b1:9b:e1:4b:54:9d:8e:0c:54:a4:0a:46: e3:c8:05:35 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICELgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjQxMTMwMDUyNzE5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRhYTIzNy01ZmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4KfI6tj5bG1zH1xXiRjDMSkwzI9UifZk2lJTuwcOzeKkYO1BfXZVz8aEQM8r 6vIdPA1sdE7viRnJbvkt0Z/cvQgBnEow3zQSIMMGJrcOsYa7kB4Qm4LXLj/NzoY3 FpBlelzbhXKw6k+CL2dl1hR/YDIMgkZK/ZW6Vb6dtHEpHmHdi9/8cTgRGTxq0PQV R9YUZ6bn5jZ5I1Jyw/edsQtbum0G+sSzpCWITaY2263XJ75DFRfq8lLuZdPj+90P I7/cw7843Zh1qjFE9rVdAcpiGzKIoFFZYBuHhx6Hcv/inNOWstf58+62I+PCHxot u0wrrcRlWs9mF6TslrJLZ7r5DwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLBdgMnz w+9PbADIzOC8LdtXz0OHMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzREIvMERDMzVEM0U4REQ0MTFFOUJGRTJDNTU2QzRGOUFFMDIvNzIxNzA5QzYz RjY3MTFFRjg3OUMyRTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjAgwDQYJKoZIhvcNAQELBQADggEBAMRXVQZQhLjV5ZH0 V25/o2exlsxg3vkvolTNaZwXR9vFfbepIw8Mt8+gcB1HzbrWhH/fWjnlj+ez+cbL HixLIk8lW2QpsQhyNFuPEJo6R6KhduQaHDqyz/YBc5gjGT2mpzR1AmmaflOrDkME tlLPHeSHtK5iE44DZaVlY4FMAGS33xctTZR4/G9CaF8DGyA13PqMFXgXU1CjcXlb LWCR/L6mD+3TeK5to/Z9+ziSQvlw/hU1yy/wd/WE5Q9bMkVWgKsPqoSpkylAUUVC OQXCiDdD/MJq9dNHP0ZacUssxxXbVm6tDW7fABLhWUqwyFoYFrGb4UtUnY4MVKQK RuPIBTU= -----END CERTIFICATE-----Generated at Sun Apr 6 11:25:14 2025 by rpki-client