$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/C27BAE1E63B411EF9A87155DC4F9AE02.roa File: C27BAE1E63B411EF9A87155DC4F9AE02.roa (raw, json) Hash identifier: 5eMEB5vOjKQ5wQgd27+ZUWTTg4x5gmrbf6+2h3hRHcw= Subject key identifier: 84:F8:CA:CC:DE:9E:5B:CA:8A:E9:A3:16:77:4E:E9:08:99:DE:1B:52 Certificate issuer: /CN=A91A3F5D/serialNumber=B4081815C6BAED98A1CC950AC6FA10BC60058902 Certificate serial: 4A Authority key identifier: B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/C27BAE1E63B411EF9A87155DC4F9AE02.roa Signing time: Mon 26 Aug 2024 14:09:08 +0000 ROA not before: Mon 26 Aug 2024 14:09:08 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 55933 IP address blocks: 103.23.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.crl rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Mar 2025 05:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3F5D Validity Not Before: Aug 26 14:09:08 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66cc8c84-9a85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9c:a2:c1:68:d0:d4:0c:c3:1e:6a:f9:41:82: 70:98:30:ed:91:2d:b5:5f:2b:aa:b6:5a:4a:ae:dc: ba:e9:3b:b7:33:f5:07:6f:f3:47:ca:e0:6f:3e:cc: 18:3d:43:20:25:a1:ae:4c:70:fd:c2:4c:a4:77:82: e8:4b:ba:35:31:bc:1c:df:d6:85:1e:51:56:42:c5: 7b:49:a3:ad:7e:4c:8f:b6:c7:8b:82:02:4b:5d:3a: 9f:a6:c1:ae:1d:eb:13:96:62:26:5b:53:73:63:c3: e0:91:67:62:eb:35:f3:4a:ec:e0:9f:07:0a:5b:92: 14:86:cd:27:38:66:f1:68:61:42:58:c4:c0:5a:3e: 82:54:1c:09:18:d4:fb:af:ae:d3:1e:d5:0c:f4:7b: a6:7d:5a:8d:a3:5c:28:24:fd:72:70:c1:df:76:eb: c7:ec:00:ab:62:aa:3d:c0:5a:96:74:cf:15:ac:bd: 20:aa:d5:7b:97:4f:45:69:d8:e5:98:1e:c2:35:22: e3:15:85:c8:89:f7:d7:1b:cd:e4:db:55:3f:f1:75: 5e:a1:3e:fc:a3:10:cb:de:81:f5:2d:7b:08:0c:3b: e9:75:16:77:88:75:1a:b9:ab:0a:1d:6d:75:60:e2: 07:65:db:76:a4:e4:5c:74:8f:73:48:cb:b4:5c:49: ed:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:F8:CA:CC:DE:9E:5B:CA:8A:E9:A3:16:77:4E:E9:08:99:DE:1B:52 X509v3 Authority Key Identifier: keyid:B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/C27BAE1E63B411EF9A87155DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.172.0/23 Signature Algorithm: sha256WithRSAEncryption 41:26:04:8c:79:eb:9d:88:08:6c:b9:d2:db:7f:e0:35:89:db: 16:a0:0b:03:11:91:1f:d3:62:d1:c4:83:06:4b:f0:e1:b9:e1: 1e:79:4a:28:e0:de:63:e6:20:47:8a:9c:f8:cf:ee:3f:e6:21: 44:c3:f2:90:9e:38:3f:5d:97:6c:13:76:45:fa:1e:ad:76:b3: a8:38:e3:f1:83:45:f3:ec:28:6e:27:45:65:13:d0:90:d5:18: d2:7c:3a:26:b1:c9:92:b6:72:7b:fb:a9:7e:39:ca:53:15:63: 8e:23:af:e1:cd:b2:22:ef:61:10:3a:14:ee:e4:f6:a3:aa:f6: 89:4a:db:e8:ee:e5:cb:8a:6e:02:35:e1:c0:76:65:04:35:2c: 45:af:5e:1f:31:87:0d:3c:2e:9e:59:75:0f:b2:cf:00:db:84: 22:95:2b:e2:ae:b8:91:4e:b7:6a:2c:e5:6e:f5:7b:23:1b:8c: e8:cb:42:91:38:eb:df:37:87:ca:30:b3:3e:7a:36:81:fb:04: 0f:9e:45:f4:aa:27:a1:20:16:12:b7:81:11:51:94:a5:39:ae: 42:ea:8d:c7:8d:d3:de:b5:92:4c:38:99:c3:1e:47:19:a9:0e: f8:62:93:64:03:56:a9:c8:35:82:d5:7d:23:63:ab:ce:df:de: 4e:85:c3:7f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB M0Y1RDExMC8GA1UEBRMoQjQwODE4MTVDNkJBRUQ5OEExQ0M5NTBBQzZGQTEwQkM2 MDA1ODkwMjAeFw0yNDA4MjYxNDA5MDhaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2Y2M4Yzg0LTlhODUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCznKLBaNDUDMMeavlBgnCYMO2RLbVfK6q2Wkqu3LrpO7cz9Qdv80fK4G8+zBg9 QyAloa5McP3CTKR3guhLujUxvBzf1oUeUVZCxXtJo61+TI+2x4uCAktdOp+mwa4d 6xOWYiZbU3Njw+CRZ2LrNfNK7OCfBwpbkhSGzSc4ZvFoYUJYxMBaPoJUHAkY1Puv rtMe1Qz0e6Z9Wo2jXCgk/XJwwd9268fsAKtiqj3AWpZ0zxWsvSCq1XuXT0Vp2OWY HsI1IuMVhciJ99cbzeTbVT/xdV6hPvyjEMvegfUtewgMO+l1FneIdRq5qwodbXVg 4gdl23ak5Fx0j3NIy7RcSe2bAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUhPjKzN6e W8qK6aMWd07pCJneG1IwHwYDVR0jBBgwFoAUtAgYFca67ZihzJUKxvoQvGAFiQIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEzRjVELzEwRjk0RUYwMDZB QjExRUY4N0JGQTcyNUM0RjlBRTAyL3RBZ1lGY2E2N1ppaHpKVUt4dm9RdkdBRmlR SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdEFnWUZjYTY3WmloekpVS3h2b1F2R0FGaVFJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0Y1RC8xMEY5NEVGMDA2QUIxMUVGODdCRkE3MjVDNEY5QUUwMi9DMjdCQUUxRTYz QjQxMUVGOUE4NzE1NURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWcXrDANBgkqhkiG9w0BAQsFAAOCAQEAQSYEjHnrnYgIbLnS 23/gNYnbFqALAxGRH9Ni0cSDBkvw4bnhHnlKKODeY+YgR4qc+M/uP+YhRMPykJ44 P12XbBN2RfoerXazqDjj8YNF8+wobidFZRPQkNUY0nw6JrHJkrZye/upfjnKUxVj jiOv4c2yIu9hEDoU7uT2o6r2iUrb6O7ly4puAjXhwHZlBDUsRa9eHzGHDTwunll1 D7LPANuEIpUr4q64kU63aizlbvV7IxuM6MtCkTjr3zeHyjCzPno2gfsED55F9Kon oSAWEreBEVGUpTmuQuqNx43T3rWSTDiZwx5HGakO+GKTZANWqcg1gtV9I2Orzt/e ToXDfw== -----END CERTIFICATE-----Generated at Tue Mar 11 05:04:43 2025 by rpki-client