$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/96A24FE4976E11EF94474159C4F9AE02.roa File: 96A24FE4976E11EF94474159C4F9AE02.roa (raw, json) Hash identifier: iWiM2AkeOiw2pGeGSwzdyuH/Jv85XCJe5bNdGoxl1OE= Subject key identifier: 19:AC:89:86:6B:E7:70:36:80:77:B4:63:BF:A9:1E:1B:2B:D3:49:8C Certificate issuer: /CN=A91A5560/serialNumber=E38EB3F5A5107E30F0CA71DDEA75B170D0B03256 Certificate serial: 77 Authority key identifier: E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/96A24FE4976E11EF94474159C4F9AE02.roa Signing time: Thu 26 Dec 2024 13:14:52 +0000 ROA not before: Thu 26 Dec 2024 13:14:52 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 834 IP address blocks: 103.108.174.0/24 maxlen: 24 103.108.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.crl rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5560 Validity Not Before: Dec 26 13:14:52 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=676d56cc-2a76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:4c:20:72:6f:b0:be:28:63:ac:5b:13:d3:94: ce:38:38:68:98:45:db:34:51:23:ec:55:26:b1:06: ed:17:f3:6d:b0:9f:e8:92:ba:e0:54:37:4d:f9:5f: 26:4c:25:3b:67:00:0e:a3:6b:d7:4c:3b:0a:81:6d: f6:11:9e:7d:4d:31:c2:f7:75:6c:6d:cc:69:07:98: 0b:ea:f7:d0:2a:ec:d1:8b:f7:45:76:15:0a:8c:95: 61:72:e5:a4:4d:27:ff:f7:ea:6f:82:e5:3a:87:85: de:6a:e9:18:65:c9:36:f8:10:80:bd:3f:1f:1b:b9: 9e:e0:fd:33:d6:5a:46:e8:25:be:74:6e:32:fd:ef: bf:c9:6b:8f:70:51:f5:47:d9:49:c2:6d:f9:b7:d3: c4:30:cd:85:6e:1a:6a:29:17:59:3d:77:37:df:d6: 18:de:37:07:f5:cd:48:1a:71:b0:33:4c:5e:da:cc: 33:64:e7:1e:b4:a8:73:8d:56:0b:9f:73:5b:a5:b9: fd:5e:62:b4:ff:55:38:d1:29:ec:d4:b4:fd:d7:ea: c4:2f:e8:55:16:ea:71:4e:61:d4:3d:3f:8d:23:62: 53:d5:44:cf:d8:68:37:84:7d:7b:3c:00:ce:c3:08: d8:2c:e4:9b:3d:96:b3:2a:ba:8f:0d:28:bb:28:31: 3a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:AC:89:86:6B:E7:70:36:80:77:B4:63:BF:A9:1E:1B:2B:D3:49:8C X509v3 Authority Key Identifier: keyid:E3:8E:B3:F5:A5:10:7E:30:F0:CA:71:DD:EA:75:B1:70:D0:B0:32:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/446z9aUQfjDwynHd6nWxcNCwMlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/446z9aUQfjDwynHd6nWxcNCwMlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5560/4C3D6BC0216F11EFAF45EA2DC4F9AE02/96A24FE4976E11EF94474159C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.108.174.0/23 Signature Algorithm: sha256WithRSAEncryption a0:a8:f0:4d:d2:7f:8f:57:37:d6:de:c3:14:fb:94:fc:0b:97: 6b:db:19:db:f8:5a:2e:4e:85:8e:99:c5:cb:2c:09:ca:56:eb: 9c:01:a9:0d:15:77:c7:b1:97:57:2d:9c:54:76:d0:07:f3:40: 64:36:9b:48:fa:2b:b6:5f:71:16:e0:d8:38:0c:3a:b4:24:5e: a8:66:29:58:b3:1f:76:1a:dc:2d:a2:a5:3c:27:b3:2f:0e:0c: b0:10:18:3f:58:8c:fd:b1:fb:ef:85:62:fe:ad:7d:e3:fa:78: 3e:d8:1f:96:80:db:0c:ea:11:80:7e:df:af:4c:31:57:fd:f6: 98:b6:09:87:59:55:f5:3f:87:07:03:9f:fd:5e:81:10:3c:db: b0:79:8c:c2:a1:9b:c8:58:bd:ab:0a:65:df:94:d2:9e:ca:a9: f2:ec:e6:6b:15:a8:eb:b9:4b:82:0b:d8:79:9b:29:91:30:7e: ab:58:3e:0f:b5:76:99:7f:41:f6:08:cc:db:1d:c7:de:fc:f2: 03:6b:89:07:b5:c9:68:f3:24:20:2f:d8:f4:41:43:e0:9f:73: a7:7e:07:60:84:09:12:ad:38:d0:85:2d:d6:46:fe:67:74:c1: cf:b5:98:57:92:53:62:aa:30:79:f6:0c:04:c8:5b:47:7f:20: 83:4e:b4:73 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NTU2MDExMC8GA1UEBRMoRTM4RUIzRjVBNTEwN0UzMEYwQ0E3MURERUE3NUIxNzBE MEIwMzI1NjAeFw0yNDEyMjYxMzE0NTJaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NmQ1NmNjLTJhNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCTCByb7C+KGOsWxPTlM44OGiYRds0USPsVSaxBu0X822wn+iSuuBUN035XyZM JTtnAA6ja9dMOwqBbfYRnn1NMcL3dWxtzGkHmAvq99Aq7NGL90V2FQqMlWFy5aRN J//36m+C5TqHhd5q6RhlyTb4EIC9Px8buZ7g/TPWWkboJb50bjL977/Ja49wUfVH 2UnCbfm308QwzYVuGmopF1k9dzff1hjeNwf1zUgacbAzTF7azDNk5x60qHONVguf c1uluf1eYrT/VTjRKezUtP3X6sQv6FUW6nFOYdQ9P40jYlPVRM/YaDeEfXs8AM7D CNgs5Js9lrMquo8NKLsoMTpXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUGayJhmvn cDaAd7Rjv6keGyvTSYwwHwYDVR0jBBgwFoAU446z9aUQfjDwynHd6nWxcNCwMlYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1NTYwLzRDM0Q2QkMwMjE2 RjExRUZBRjQ1RUEyREM0RjlBRTAyLzQ0Nno5YVVRZmpEd3luSGQ2bld4Y05Dd01s WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNDQ2ejlhVVFmakR3eW5IZDZuV3hjTkN3TWxZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NTU2MC80QzNENkJDMDIxNkYxMUVGQUY0NUVBMkRDNEY5QUUwMi85NkEyNEZFNDk3 NkUxMUVGOTQ0NzQxNTlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWdsrjANBgkqhkiG9w0BAQsFAAOCAQEAoKjwTdJ/j1c31t7D FPuU/AuXa9sZ2/haLk6FjpnFyywJylbrnAGpDRV3x7GXVy2cVHbQB/NAZDabSPor tl9xFuDYOAw6tCReqGYpWLMfdhrcLaKlPCezLw4MsBAYP1iM/bH774Vi/q194/p4 PtgfloDbDOoRgH7fr0wxV/32mLYJh1lV9T+HBwOf/V6BEDzbsHmMwqGbyFi9qwpl 35TSnsqp8uzmaxWo67lLggvYeZspkTB+q1g+D7V2mX9B9gjM2x3H3vzyA2uJB7XJ aPMkIC/Y9EFD4J9zp34HYIQJEq040IUt1kb+Z3TBz7WYV5JTYqowefYMBMhbR38g g060cw== -----END CERTIFICATE-----Generated at Sun Feb 16 15:27:12 2025 by rpki-client