$ rpki-client -vvf rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/5576D030D61711EEB983D919C4F9AE02.roa File: 5576D030D61711EEB983D919C4F9AE02.roa (raw, json) Hash identifier: El263VSWEusvqzTfH9aiwLLR8nJJvv9GT054yDKZA+0= Subject key identifier: 50:2B:D8:46:61:22:1D:64:98:87:3B:BC:15:A4:52:EB:C7:80:FB:58 Certificate issuer: /CN=A91958BE/serialNumber=854FE7275360D07810AFFBA6C28FFF23582A20EB Certificate serial: 0130 Authority key identifier: 85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/5576D030D61711EEB983D919C4F9AE02.roa Signing time: Tue 15 Oct 2024 03:27:05 +0000 ROA not before: Tue 15 Oct 2024 03:27:05 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 4618 IP address blocks: 103.125.92.0/22 maxlen: 22 103.125.92.0/24 maxlen: 24 103.125.93.0/24 maxlen: 24 103.125.94.0/24 maxlen: 24 103.125.95.0/24 maxlen: 24 2403:f040::/32 maxlen: 32 2403:f040:14::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91958BE Validity Not Before: Oct 15 03:27:05 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=670de108-d072 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:db:0d:19:e4:bb:82:45:27:f6:f1:b1:ec:88: ef:a8:ad:49:d5:60:05:73:e9:5e:4d:0f:b9:f4:1e: 48:ee:ab:57:99:40:a4:b8:40:59:74:63:af:4b:8a: 66:54:21:40:36:94:04:f6:69:53:e2:75:41:cc:8f: d6:38:c5:74:55:f2:33:a6:7a:dc:61:a0:9f:81:a2: 6f:d4:2b:69:41:e9:66:61:95:13:d3:b2:90:f0:1e: 6a:3a:8f:82:fa:e5:ed:1e:d8:86:b2:81:c8:97:52: 91:74:84:43:8b:fa:5a:52:58:dc:3c:b9:4e:b6:1a: c0:90:ba:20:e7:a4:49:ba:57:b0:b8:c7:81:b2:03: 0a:42:d3:07:f4:66:d8:cb:a3:3a:df:46:40:13:c4: 93:0a:2d:10:85:8b:ef:5b:04:11:03:eb:7e:4b:1f: 1a:ad:35:a4:00:b8:82:ae:52:07:d1:6b:d5:df:4d: 2a:d7:3c:bf:e9:01:a9:bc:66:33:5c:0c:41:e6:86: ea:b8:c7:9e:16:af:ce:f6:07:38:25:2c:7a:8e:64: 2e:80:8a:f4:1c:bc:13:15:82:2d:25:bf:ad:d5:23: 09:6b:1b:3b:43:b9:bf:a4:78:77:e0:97:83:35:ec: 9c:9d:15:4f:2c:d3:ef:f8:f6:72:a0:c4:88:b6:da: f1:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:2B:D8:46:61:22:1D:64:98:87:3B:BC:15:A4:52:EB:C7:80:FB:58 X509v3 Authority Key Identifier: keyid:85:4F:E7:27:53:60:D0:78:10:AF:FB:A6:C2:8F:FF:23:58:2A:20:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/hU_nJ1Ng0HgQr_umwo__I1gqIOs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hU_nJ1Ng0HgQr_umwo__I1gqIOs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91958BE/7C7FB2FEC21911ED80256F4EC4F9AE02/5576D030D61711EEB983D919C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.92.0/22 IPv6: 2403:f040::/32 Signature Algorithm: sha256WithRSAEncryption 65:86:03:2d:4e:16:91:54:cc:40:32:be:1b:a5:d8:04:f5:04: 5a:39:ea:aa:59:a7:66:2f:98:0d:1e:51:21:32:c2:ab:a0:ef: a4:3d:26:5a:d3:3f:52:b7:ba:48:96:ed:ec:d8:59:11:f1:cf: f1:01:b4:3a:ab:5b:77:2f:b6:6e:af:f6:5f:df:bb:c6:85:82: 49:96:0b:7c:75:51:a5:2f:a5:52:9b:10:09:f3:be:74:f6:1f: 9f:01:05:09:17:d6:d2:ff:bf:b3:6b:92:80:cf:fe:0a:55:80: 32:e2:d6:04:d5:19:de:24:08:3c:87:7c:2b:da:bb:d0:f1:12: c2:56:6d:a2:8e:26:62:2a:14:cb:51:a4:31:3c:2e:f6:67:6d: e4:d7:d9:d4:82:2f:09:27:7a:97:b9:e8:ad:fc:b5:6a:29:55: 12:76:93:f5:ea:d4:53:11:c3:fc:a8:de:b9:b3:25:9c:53:7e: 58:01:9e:c5:21:05:e9:04:1a:2b:e3:98:a8:33:cd:cd:55:b7: d7:d3:67:f0:ac:f9:e0:23:5e:ef:1f:bd:5a:47:cf:04:1c:cb: 1e:de:63:ba:7d:1b:9a:35:26:f7:6d:0d:f8:7c:b7:cc:c0:f1: a6:c2:c6:e0:77:22:e6:b8:f8:5c:60:e0:64:8f:77:e9:2e:0e: 22:0e:98:b6 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU4QkUxMTAvBgNVBAUTKDg1NEZFNzI3NTM2MEQwNzgxMEFGRkJBNkMyOEZGRjIz NTgyQTIwRUIwHhcNMjQxMDE1MDMyNzA1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBkZTEwOC1kMDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdsNGeS7gkUn9vGx7IjvqK1J1WAFc+leTQ+59B5I7qtXmUCkuEBZdGOvS4pm VCFANpQE9mlT4nVBzI/WOMV0VfIzpnrcYaCfgaJv1CtpQelmYZUT07KQ8B5qOo+C +uXtHtiGsoHIl1KRdIRDi/paUljcPLlOthrAkLog56RJulewuMeBsgMKQtMH9GbY y6M630ZAE8STCi0QhYvvWwQRA+t+Sx8arTWkALiCrlIH0WvV300q1zy/6QGpvGYz XAxB5obquMeeFq/O9gc4JSx6jmQugIr0HLwTFYItJb+t1SMJaxs7Q7m/pHh34JeD NeycnRVPLNPv+PZyoMSIttrxfQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFAr2EZh Ih1kmIc7vBWkUuvHgPtYMB8GA1UdIwQYMBaAFIVP5ydTYNB4EK/7psKP/yNYKiDr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NThCRS83QzdGQjJGRUMy MTkxMUVEODAyNTZGNEVDNEY5QUUwMi9oVV9uSjFOZzBIZ1FyX3Vtd29fX0kxZ3FJ T3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hVX25KMU5nMEhnUXJfdW13b19fSTFncUlPcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU4QkUvN0M3RkIyRkVDMjE5MTFFRDgwMjU2RjRFQzRGOUFFMDIvNTU3NkQwMzBE NjE3MTFFRUI5ODNEOTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfVwwDQQCAAIwBwMFACQD8EAwDQYJKoZIhvcNAQELBQAD ggEBAGWGAy1OFpFUzEAyvhul2AT1BFo56qpZp2YvmA0eUSEywqug76Q9JlrTP1K3 ukiW7ezYWRHxz/EBtDqrW3cvtm6v9l/fu8aFgkmWC3x1UaUvpVKbEAnzvnT2H58B BQkX1tL/v7NrkoDP/gpVgDLi1gTVGd4kCDyHfCvau9DxEsJWbaKOJmIqFMtRpDE8 LvZnbeTX2dSCLwknepe56K38tWopVRJ2k/Xq1FMRw/yo3rmzJZxTflgBnsUhBekE GivjmKgzzc1Vt9fTZ/Cs+eAjXu8fvVpHzwQcyx7eY7p9G5o1JvdtDfh8t8zA8abC xuB3Iua4+Fxg4GSPd+kuDiIOmLY= -----END CERTIFICATE-----Generated at Mon Feb 17 08:33:02 2025 by rpki-client