$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/35575C68844811EAB301615FC4F9AE02.roa File: 35575C68844811EAB301615FC4F9AE02.roa (raw, json) Hash identifier: scAkB2YxvmpKM0vTyAyFR4YKIa6v02k7HMa7T8PXuMU= Subject key identifier: 77:92:8F:C7:BA:5A:5B:2C:9D:68:07:65:4C:06:22:13:23:85:CB:C3 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 35E9 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/35575C68844811EAB301615FC4F9AE02.roa Signing time: Thu 04 Apr 2024 15:21:11 +0000 ROA not before: Thu 04 Apr 2024 15:21:11 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 15347 IP address blocks: 203.135.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13801 (0x35e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832 Validity Not Before: Apr 4 15:21:11 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660ec567-c9f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:fa:fa:1e:ce:bf:e7:aa:16:1f:c7:f5:d9:e1: 72:2f:50:d5:85:6b:42:68:35:74:9f:ae:b0:0d:ce: 8b:92:65:fa:dd:77:58:fd:0a:af:19:e9:ed:20:fd: b5:47:fb:a5:db:f6:6e:d2:97:8c:9a:c8:08:b5:65: 8a:c0:cb:77:a6:d3:71:48:e3:2c:e1:61:2b:78:00: 9b:14:39:fd:81:ca:08:a7:0d:dc:2c:fc:2a:2b:c8: b8:14:6c:81:fc:33:5b:60:17:69:e2:57:ad:4b:71: fc:6e:5f:c4:eb:57:51:5d:5b:2a:71:e7:e2:9d:90: 40:92:47:df:3a:79:d2:af:a9:05:02:e5:56:98:ce: d9:bb:26:86:10:82:97:c1:0e:53:d5:58:c5:6c:86: b7:94:ba:d1:90:5f:2f:56:7a:a3:d3:28:15:64:be: b9:0d:11:d1:93:d2:92:ef:00:fa:0a:2d:83:29:04: 18:d8:ce:40:09:4e:52:19:e9:f6:da:41:05:3f:4f: ab:48:50:0f:9e:bb:5e:f0:a5:75:99:5c:90:f4:ae: 30:1c:9b:dd:27:0e:d2:b7:10:fb:22:51:e0:c6:87: 68:fb:92:2a:52:af:7d:54:fd:a2:3e:57:7f:ee:84: e9:a8:de:92:82:57:5b:07:dc:a8:92:b9:de:22:88: fd:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:92:8F:C7:BA:5A:5B:2C:9D:68:07:65:4C:06:22:13:23:85:CB:C3 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/35575C68844811EAB301615FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.135.1.0/24 Signature Algorithm: sha256WithRSAEncryption 36:04:1b:68:a3:af:39:92:5b:03:50:00:5c:5f:67:5b:da:34: c6:87:7f:23:4e:d6:02:60:68:d6:10:cb:cb:01:dd:0a:01:5b: 63:c2:60:f6:fb:ce:3c:40:ae:6c:58:18:f6:8c:3e:de:72:bc: 24:14:1f:cf:41:e0:10:36:67:62:d0:7e:c9:e8:73:7a:66:08: af:cc:e9:01:27:17:2c:c7:a7:22:ef:c2:1c:f5:93:96:8f:36: bf:53:e6:89:18:a4:7b:53:13:08:3d:4c:27:9d:2a:6c:4b:e4: 96:12:97:1e:e6:57:d7:f7:78:f9:bf:4d:45:6b:66:30:40:d7: b5:4d:2b:ac:74:5d:1a:32:1f:8a:ed:fa:25:ec:55:83:fa:6d: 9e:75:51:a6:b2:b2:4e:6d:42:dc:b7:a1:fa:ac:80:58:49:b2: 1d:37:1f:d0:ff:0e:4c:8e:4f:c0:d5:9f:05:08:c3:99:02:c9: ff:30:2c:ee:70:50:80:70:28:31:14:ed:1b:0f:84:d0:c4:17: 8d:c4:24:b3:a3:a4:67:46:69:ac:b0:5c:0d:4f:1b:e0:48:b5: e5:5c:8b:3f:db:36:4f:b1:fd:77:f0:bc:88:5c:4c:79:82:3e: fd:0e:d8:d0:54:fe:64:c4:96:ec:97:75:70:71:b9:4a:94:bd: 7a:a5:d1:aa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjQwNDA0MTUyMTExWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBlYzU2Ny1jOWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+Pr6Hs6/56oWH8f12eFyL1DVhWtCaDV0n66wDc6LkmX63XdY/QqvGentIP21 R/ul2/Zu0peMmsgItWWKwMt3ptNxSOMs4WEreACbFDn9gcoIpw3cLPwqK8i4FGyB /DNbYBdp4letS3H8bl/E61dRXVsqcefinZBAkkffOnnSr6kFAuVWmM7ZuyaGEIKX wQ5T1VjFbIa3lLrRkF8vVnqj0ygVZL65DRHRk9KS7wD6Ci2DKQQY2M5ACU5SGen2 2kEFP0+rSFAPnrte8KV1mVyQ9K4wHJvdJw7StxD7IlHgxodo+5IqUq99VP2iPld/ 7oTpqN6SgldbB9yokrneIoj9jQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHeSj8e6 WlssnWgHZUwGIhMjhcvDMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvMzU1NzVDNjg4 NDQ4MTFFQUIzMDE2MTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLhwEwDQYJKoZIhvcNAQELBQADggEBADYEG2ijrzmSWwNQ AFxfZ1vaNMaHfyNO1gJgaNYQy8sB3QoBW2PCYPb7zjxArmxYGPaMPt5yvCQUH89B 4BA2Z2LQfsnoc3pmCK/M6QEnFyzHpyLvwhz1k5aPNr9T5okYpHtTEwg9TCedKmxL 5JYSlx7mV9f3ePm/TUVrZjBA17VNK6x0XRoyH4rt+iXsVYP6bZ51Uaaysk5tQty3 ofqsgFhJsh03H9D/DkyOT8DVnwUIw5kCyf8wLO5wUIBwKDEU7RsPhNDEF43EJLOj pGdGaaywXA1PG+BIteVciz/bNk+x/XfwvIhcTHmCPv0O2NBU/mTEluyXdXBxuUqU vXql0ao= -----END CERTIFICATE-----Generated at Sun Feb 16 20:57:12 2025 by rpki-client