$ rpki-client -vvf rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/74444F50490E11EFA7EAAA70C4F9AE02.roa File: 74444F50490E11EFA7EAAA70C4F9AE02.roa (raw, json) Hash identifier: 2y8wJ1PVjmvj/h6RNUPibqQJhsY3FKf+7tKEQmy95j0= Subject key identifier: 31:2A:DC:9E:E3:07:FE:6E:E0:69:63:56:19:56:79:B8:A1:3D:02:40 Certificate issuer: /CN=A91A27AB/serialNumber=59D588125A716698738D1D1E9E6D8A68D7409B27 Certificate serial: 010F Authority key identifier: 59:D5:88:12:5A:71:66:98:73:8D:1D:1E:9E:6D:8A:68:D7:40:9B:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WdWIElpxZphzjR0enm2KaNdAmyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/74444F50490E11EFA7EAAA70C4F9AE02.roa Signing time: Sat 05 Oct 2024 04:37:54 +0000 ROA not before: Sat 05 Oct 2024 04:37:54 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 26383 IP address blocks: 103.99.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/WdWIElpxZphzjR0enm2KaNdAmyc.crl rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/WdWIElpxZphzjR0enm2KaNdAmyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WdWIElpxZphzjR0enm2KaNdAmyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A27AB Validity Not Before: Oct 5 04:37:54 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6700c2a2-4bde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:39:e5:ab:95:6c:a0:26:3c:57:49:5a:2e:da: 69:10:af:76:01:3a:24:bc:c8:7f:86:1f:42:e7:b2: d2:4f:7f:94:1c:f0:31:91:e4:61:9f:8a:b1:b4:89: 48:ea:d6:2e:ce:39:5e:ce:2f:a5:a1:24:c3:c8:f1: 97:16:d4:9e:b6:17:ad:34:90:12:dc:e0:e8:ae:8e: 6c:e6:f4:fd:7d:24:66:a5:a1:df:40:b0:22:0e:c1: d0:4f:a0:2f:81:e5:f4:2a:91:b0:a2:31:bb:f3:4b: f6:55:40:fc:10:b7:23:e6:8d:1d:83:36:55:d6:a1: 4a:4c:bb:c3:fc:0c:6b:02:9c:72:54:3a:86:cf:50: 99:e4:f8:1a:55:20:af:b5:b4:9a:71:6d:d2:ee:8f: 30:72:19:ec:68:33:ed:99:4d:92:47:18:c6:f1:56: ae:d6:5c:79:16:18:8f:2c:e6:f7:b9:19:6a:ed:80: c5:5f:ca:2e:23:58:7f:70:1d:85:df:da:b8:ba:f0: 70:5e:61:56:01:3c:de:44:c9:bb:bf:1b:93:28:12: 8e:62:a8:9c:3f:2d:65:1f:58:e3:e7:d9:9f:5e:97: 20:c6:ee:c9:15:fa:7c:b2:22:68:79:ef:78:c4:7e: 50:9e:17:91:00:25:44:e7:78:30:3b:83:1b:29:15: bb:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:2A:DC:9E:E3:07:FE:6E:E0:69:63:56:19:56:79:B8:A1:3D:02:40 X509v3 Authority Key Identifier: keyid:59:D5:88:12:5A:71:66:98:73:8D:1D:1E:9E:6D:8A:68:D7:40:9B:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/WdWIElpxZphzjR0enm2KaNdAmyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WdWIElpxZphzjR0enm2KaNdAmyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A27AB/6F6E9828310E11EE889FF03FC4F9AE02/74444F50490E11EFA7EAAA70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.52.0/24 Signature Algorithm: sha256WithRSAEncryption ba:cf:47:c9:b8:03:00:df:65:17:62:95:cd:e5:8a:96:5a:b2: d9:97:0d:a3:46:b0:6c:dc:7e:ff:1b:ce:67:85:c1:07:ed:c4: 38:3f:d2:33:6c:1f:42:65:d4:f3:cb:55:45:a4:ee:8b:86:54: f8:e5:e2:89:d3:da:56:a3:d1:85:21:dc:9d:a3:f6:94:5e:d8: bc:62:e6:2c:1d:74:5c:a5:56:d3:69:bf:43:8d:4a:d5:d0:45: 01:1d:e8:4e:b6:0c:f1:89:3a:6d:56:42:48:22:f6:6e:2c:de: 14:7a:ee:47:07:da:07:2f:25:34:e5:04:ab:e0:61:41:c8:ed: 62:49:0d:8f:1d:5e:73:f8:b8:a8:bc:91:d0:6d:b5:04:cd:41: cb:6b:57:fe:23:be:fa:45:bc:40:75:2d:cd:6b:91:d2:b4:75: c6:91:ad:99:4b:06:12:73:90:e0:8b:95:e2:d3:00:af:f4:f2: 69:11:e4:8e:ac:16:1b:a6:6f:f2:bc:5f:fc:2e:17:71:0e:1a: f6:c2:01:b1:77:b7:b7:62:4d:0c:04:e5:e1:25:bf:d7:8f:ad: a7:fd:ef:26:85:1a:53:c0:ff:e6:dd:2e:c9:6d:8d:4d:3c:ab: 3e:25:f0:03:c0:ed:81:a7:12:3a:66:02:0f:e3:19:47:fa:ad: 92:2c:4a:07 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI3QUIxMTAvBgNVBAUTKDU5RDU4ODEyNUE3MTY2OTg3MzhEMUQxRTlFNkQ4QTY4 RDc0MDlCMjcwHhcNMjQxMDA1MDQzNzU0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwYzJhMi00YmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTnlq5VsoCY8V0laLtppEK92ATokvMh/hh9C57LST3+UHPAxkeRhn4qxtIlI 6tYuzjlezi+loSTDyPGXFtSethetNJAS3ODoro5s5vT9fSRmpaHfQLAiDsHQT6Av geX0KpGwojG780v2VUD8ELcj5o0dgzZV1qFKTLvD/AxrApxyVDqGz1CZ5PgaVSCv tbSacW3S7o8wchnsaDPtmU2SRxjG8Vau1lx5FhiPLOb3uRlq7YDFX8ouI1h/cB2F 39q4uvBwXmFWATzeRMm7vxuTKBKOYqicPy1lH1jj59mfXpcgxu7JFfp8siJoee94 xH5QnheRACVE53gwO4MbKRW7twIDAQABo4IClTCCApEwHQYDVR0OBBYEFDEq3J7j B/5u4GljVhlWebihPQJAMB8GA1UdIwQYMBaAFFnViBJacWaYc40dHp5timjXQJsn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjdBQi82RjZFOTgyODMx MEUxMUVFODg5RkYwM0ZDNEY5QUUwMi9XZFdJRWxweFpwaHpqUjBlbm0yS2FOZEFt eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dkV0lFbHB4WnBoempSMGVubTJLYU5kQW15Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTI3QUIvNkY2RTk4MjgzMTBFMTFFRTg4OUZGMDNGQzRGOUFFMDIvNzQ0NDRGNTA0 OTBFMTFFRkE3RUFBQTcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnYzQwDQYJKoZIhvcNAQELBQADggEBALrPR8m4AwDfZRdi lc3lipZastmXDaNGsGzcfv8bzmeFwQftxDg/0jNsH0Jl1PPLVUWk7ouGVPjl4onT 2laj0YUh3J2j9pRe2Lxi5iwddFylVtNpv0ONStXQRQEd6E62DPGJOm1WQkgi9m4s 3hR67kcH2gcvJTTlBKvgYUHI7WJJDY8dXnP4uKi8kdBttQTNQctrV/4jvvpFvEB1 Lc1rkdK0dcaRrZlLBhJzkOCLleLTAK/08mkR5I6sFhumb/K8X/wuF3EOGvbCAbF3 t7diTQwE5eElv9ePraf97yaFGlPA/+bdLsltjU08qz4l8APA7YGnEjpmAg/jGUf6 rZIsSgc= -----END CERTIFICATE-----Generated at Sun Feb 16 20:34:36 2025 by rpki-client