$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/0F3F5C24FF0E11EFB7B9A13CC4F9AE02.roa File: 0F3F5C24FF0E11EFB7B9A13CC4F9AE02.roa (raw, json) Hash identifier: jhDnEBMuIUxHMe/KldD9fozANzDSoGJIkZHCdKrZUcA= Subject key identifier: 1B:F6:BB:6F:45:8A:FB:CB:86:4C:40:15:29:68:2B:68:29:A2:C4:2E Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 36AA Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/0F3F5C24FF0E11EFB7B9A13CC4F9AE02.roa Signing time: Wed 12 Mar 2025 06:48:52 +0000 ROA not before: Wed 12 Mar 2025 06:48:52 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 139820 IP address blocks: 59.103.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 14:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13994 (0x36aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832 Validity Not Before: Mar 12 06:48:52 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67d12e54-d77a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:56:8a:87:cd:d7:b8:ea:8d:33:28:24:89:25: e9:7d:ae:aa:ee:e5:26:88:86:f3:9b:b2:38:00:19: 3e:3e:4a:a1:fc:71:33:70:65:08:a8:49:c7:c2:f7: 29:4f:fc:e2:f0:52:d1:fa:f3:24:43:e7:85:b2:94: 83:af:ea:da:69:a1:16:3b:c4:a4:61:e8:6c:4c:d9: 7d:41:f6:a0:d5:37:08:25:31:46:59:4b:74:29:6b: 3d:fc:2a:93:d6:d2:8b:8c:0f:09:5a:bf:86:9e:81: 0a:b2:ce:e6:fb:40:a9:11:cb:69:f6:3b:3a:1b:5b: fe:80:de:f0:a9:92:f8:62:a7:32:18:20:38:8e:08: 1c:5b:e7:fb:78:92:82:08:e2:67:90:63:ec:3f:42: 39:b1:ce:a2:f3:e3:56:d5:60:20:94:73:c6:d2:56: 17:62:6b:21:82:f9:4c:7b:56:b8:cc:97:1d:bd:89: 87:a8:3b:4f:77:52:dd:12:93:17:8c:a4:b4:56:f4: ae:41:7b:d2:26:a6:82:86:f3:62:9b:b0:e8:5e:f9: a2:4b:bc:0c:a0:5f:04:27:ad:83:fc:7b:54:fa:01: 27:d4:b7:6f:a6:e4:2a:26:3b:bf:1c:ae:ac:e1:e4: fa:08:de:b6:45:e0:19:e5:2a:98:25:9f:b0:ba:b6: 7e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:F6:BB:6F:45:8A:FB:CB:86:4C:40:15:29:68:2B:68:29:A2:C4:2E X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/0F3F5C24FF0E11EFB7B9A13CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.103.32.0/19 Signature Algorithm: sha256WithRSAEncryption 54:94:fe:89:6f:ba:f8:71:1b:b0:bc:e1:5f:ee:95:64:77:07: ae:e7:cc:eb:65:4b:54:92:a4:58:a2:ef:96:ef:f3:98:74:ea: 6d:54:2e:df:b5:30:de:32:0a:ae:b5:c2:30:ab:3b:d1:2b:96: 7b:11:79:56:67:78:a5:1d:8d:58:dd:c9:41:fe:72:d0:1b:4e: 83:f1:36:ca:38:8b:e8:c0:06:d8:12:b6:4e:3f:d7:b5:f9:22: 49:50:cc:e2:de:98:d5:63:06:ef:21:0b:dc:74:4a:af:db:82: 1d:e3:2d:c6:1f:01:86:63:c3:91:b1:ed:f1:9a:70:ec:49:26: d7:5f:7c:d2:b2:82:c8:b5:6d:61:ea:9a:d0:ad:d1:d4:72:3d: 67:ac:0a:9a:02:e9:5c:26:57:ee:aa:7f:ec:bc:88:9f:8e:ca: 57:09:dd:2c:11:72:53:52:33:1e:b5:d9:2c:1f:09:24:2d:0b: 2e:7c:61:0d:5b:7d:b0:23:e6:87:fe:fa:7d:40:fb:3d:9a:a5: ca:c4:e4:ca:83:b3:7d:f4:be:23:85:0e:0c:4d:a1:22:83:c6: b6:0d:a5:db:91:2e:e8:48:92:bc:38:5f:b1:24:47:95:19:73: 88:66:16:8f:56:0c:80:dc:7b:31:ab:35:02:74:54:3a:80:0c: 84:1c:26:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwMzEyMDY0ODUyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2QxMmU1NC1kNzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFaKh83XuOqNMygkiSXpfa6q7uUmiIbzm7I4ABk+Pkqh/HEzcGUIqEnHwvcp T/zi8FLR+vMkQ+eFspSDr+raaaEWO8SkYehsTNl9Qfag1TcIJTFGWUt0KWs9/CqT 1tKLjA8JWr+GnoEKss7m+0CpEctp9js6G1v+gN7wqZL4YqcyGCA4jggcW+f7eJKC COJnkGPsP0I5sc6i8+NW1WAglHPG0lYXYmshgvlMe1a4zJcdvYmHqDtPd1LdEpMX jKS0VvSuQXvSJqaChvNim7DoXvmiS7wMoF8EJ62D/HtU+gEn1LdvpuQqJju/HK6s 4eT6CN62ReAZ5SqYJZ+wurZ+jQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBv2u29F ivvLhkxAFSloK2gposQuMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvMEYzRjVDMjRG RjBFMTFFRkI3QjlBMTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAU7ZyAwDQYJKoZIhvcNAQELBQADggEBAFSU/olvuvhxG7C8 4V/ulWR3B67nzOtlS1SSpFii75bv85h06m1ULt+1MN4yCq61wjCrO9ErlnsReVZn eKUdjVjdyUH+ctAbToPxNso4i+jABtgStk4/17X5IklQzOLemNVjBu8hC9x0Sq/b gh3jLcYfAYZjw5Gx7fGacOxJJtdffNKygsi1bWHqmtCt0dRyPWesCpoC6VwmV+6q f+y8iJ+OylcJ3SwRclNSMx612SwfCSQtCy58YQ1bfbAj5of++n1A+z2apcrE5MqD s330viOFDgxNoSKDxrYNpduRLuhIkrw4X7EkR5UZc4hmFo9WDIDcezGrNQJ0VDqA DIQcJoY= -----END CERTIFICATE-----Generated at Thu Mar 13 06:50:36 2025 by rpki-client