$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5C90/42E1FD2A3D2911ECB0BCD21FC4F9AE02/CDA06D9C3D2A11EC8ECCEB1FC4F9AE02.roa File: CDA06D9C3D2A11EC8ECCEB1FC4F9AE02.roa (raw, json) Hash identifier: cJIs31sqlgOhonhzClBxUM9SmxEaq46WFcZovXHGcPw= Subject key identifier: DC:3A:F8:70:91:16:B1:FC:2E:2D:DA:51:C2:7D:09:50:52:09:FC:75 Certificate issuer: /CN=A91A5C90/serialNumber=2F77F7ED34F66A6FC67080FB9B61BB26792F85A1 Certificate serial: 0439 Authority key identifier: 2F:77:F7:ED:34:F6:6A:6F:C6:70:80:FB:9B:61:BB:26:79:2F:85:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3f37TT2am_GcID7m2G7JnkvhaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5C90/42E1FD2A3D2911ECB0BCD21FC4F9AE02/CDA06D9C3D2A11EC8ECCEB1FC4F9AE02.roa Signing time: Wed 11 Dec 2024 00:15:12 +0000 ROA not before: Wed 11 Dec 2024 00:15:12 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 14618 IP address blocks: 103.175.120.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5C90/42E1FD2A3D2911ECB0BCD21FC4F9AE02/L3f37TT2am_GcID7m2G7JnkvhaE.crl rsync://rpki.apnic.net/member_repository/A91A5C90/42E1FD2A3D2911ECB0BCD21FC4F9AE02/L3f37TT2am_GcID7m2G7JnkvhaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3f37TT2am_GcID7m2G7JnkvhaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 00:23:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1081 (0x439) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5C90 Validity Not Before: Dec 11 00:15:12 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6758d990-3a66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:99:83:b7:ec:86:90:09:06:61:84:db:31:9f: a4:96:b8:81:ce:7e:91:04:34:ab:2f:c2:b7:9c:8d: 78:1f:42:cd:87:03:85:03:01:90:a1:f1:23:52:dd: 7e:d4:83:10:56:16:cf:4e:b9:18:e9:cc:26:32:55: c7:67:c3:ca:b1:2c:1c:14:10:ae:71:f7:7e:7a:91: 59:8a:f2:f8:3b:fb:d9:04:40:a5:18:83:b0:94:f8: 86:83:a9:7f:8a:cb:19:e3:54:d8:27:14:ef:1f:fa: 39:64:aa:06:af:1d:71:57:e6:0b:6f:23:9f:97:42: 14:13:5f:12:35:55:b8:d8:f6:09:6a:b9:02:16:1a: d0:a6:68:f5:de:1c:62:59:95:42:ab:5b:04:1f:69: b7:10:96:e9:36:61:0a:36:9b:13:25:cc:20:e7:52: 9c:2b:65:ee:60:73:d6:e8:ea:26:67:80:b2:01:41: 65:37:12:87:f2:7b:50:00:85:36:9e:b5:3c:96:ae: 9e:a7:99:d3:d4:79:ae:2d:1f:f6:ea:90:ac:25:93: b8:53:66:45:8c:54:27:09:f5:90:8f:a1:30:8e:38: 65:85:d3:46:f2:d5:51:15:6a:c0:56:78:59:1e:60: 2d:19:1f:6f:09:44:83:56:b2:d0:4b:60:24:de:d3: 6f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:3A:F8:70:91:16:B1:FC:2E:2D:DA:51:C2:7D:09:50:52:09:FC:75 X509v3 Authority Key Identifier: keyid:2F:77:F7:ED:34:F6:6A:6F:C6:70:80:FB:9B:61:BB:26:79:2F:85:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5C90/42E1FD2A3D2911ECB0BCD21FC4F9AE02/L3f37TT2am_GcID7m2G7JnkvhaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3f37TT2am_GcID7m2G7JnkvhaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5C90/42E1FD2A3D2911ECB0BCD21FC4F9AE02/CDA06D9C3D2A11EC8ECCEB1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.120.0/23 Signature Algorithm: sha256WithRSAEncryption 39:48:24:34:d1:a2:4d:3a:77:dd:a6:8d:91:ac:8b:7b:17:d4: aa:d8:00:62:4c:f1:a4:d1:02:57:09:ac:a7:5b:04:0c:8c:ad: c5:34:3b:4a:3c:2b:1f:54:60:63:0a:e8:ff:12:41:09:8f:2e: 2e:5e:d0:64:35:10:00:3e:60:8a:a5:2b:26:e5:ac:ce:b8:7b: 3e:14:1e:bd:2b:75:ed:c0:a1:68:45:ed:d0:2c:d0:50:20:59: ee:d0:c5:18:e4:c7:1a:e9:ad:80:ce:af:e2:16:f7:4e:bf:e8: fa:39:60:92:aa:ea:12:73:8d:e1:8a:d5:93:a6:88:8a:99:31: 25:d1:c1:c9:0a:e4:ca:e9:bd:1e:02:42:3c:f0:d9:d2:21:57: 50:b0:2c:4a:b5:14:73:cd:44:c0:db:10:bb:7c:a5:d5:fb:ea: 44:95:84:1c:0b:e7:ab:9f:16:98:56:0f:7e:ce:04:ec:60:ea: 7e:2e:8b:55:b5:11:ad:46:5f:f9:eb:2d:9a:b4:5a:66:e0:bd: 95:2f:37:75:c7:8c:1e:97:0f:55:f9:b7:12:51:2d:27:1e:29: 5e:51:25:ae:99:0d:61:6f:c1:1b:a3:2f:8e:11:9a:bf:49:78: 3e:fe:67:f5:17:ba:28:19:d8:63:26:3a:69:d0:1f:05:cc:8d: e1:85:a9:ff -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVDOTAxMTAvBgNVBAUTKDJGNzdGN0VEMzRGNjZBNkZDNjcwODBGQjlCNjFCQjI2 NzkyRjg1QTEwHhcNMjQxMjExMDAxNTEyWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU4ZDk5MC0zYTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvJmDt+yGkAkGYYTbMZ+klriBzn6RBDSrL8K3nI14H0LNhwOFAwGQofEjUt1+ 1IMQVhbPTrkY6cwmMlXHZ8PKsSwcFBCucfd+epFZivL4O/vZBEClGIOwlPiGg6l/ issZ41TYJxTvH/o5ZKoGrx1xV+YLbyOfl0IUE18SNVW42PYJarkCFhrQpmj13hxi WZVCq1sEH2m3EJbpNmEKNpsTJcwg51KcK2XuYHPW6OomZ4CyAUFlNxKH8ntQAIU2 nrU8lq6ep5nT1HmuLR/26pCsJZO4U2ZFjFQnCfWQj6EwjjhlhdNG8tVRFWrAVnhZ HmAtGR9vCUSDVrLQS2Ak3tNvwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNw6+HCR FrH8Li3aUcJ9CVBSCfx1MB8GA1UdIwQYMBaAFC939+009mpvxnCA+5thuyZ5L4Wh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUM5MC80MkUxRkQyQTNE MjkxMUVDQjBCQ0QyMUZDNEY5QUUwMi9MM2YzN1RUMmFtX0djSUQ3bTJHN0pua3Zo YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wzZjM3VFQyYW1fR2NJRDdtMkc3Sm5rdmhhRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVDOTAvNDJFMUZEMkEzRDI5MTFFQ0IwQkNEMjFGQzRGOUFFMDIvQ0RBMDZEOUMz RDJBMTFFQzhFQ0NFQjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnr3gwDQYJKoZIhvcNAQELBQADggEBADlIJDTRok06d92m jZGsi3sX1KrYAGJM8aTRAlcJrKdbBAyMrcU0O0o8Kx9UYGMK6P8SQQmPLi5e0GQ1 EAA+YIqlKyblrM64ez4UHr0rde3AoWhF7dAs0FAgWe7QxRjkxxrprYDOr+IW906/ 6Po5YJKq6hJzjeGK1ZOmiIqZMSXRwckK5MrpvR4CQjzw2dIhV1CwLEq1FHPNRMDb ELt8pdX76kSVhBwL56ufFphWD37OBOxg6n4ui1W1Ea1GX/nrLZq0WmbgvZUvN3XH jB6XD1X5txJRLSceKV5RJa6ZDWFvwRujL44Rmr9JeD7+Z/UXuigZ2GMmOmnQHwXM jeGFqf8= -----END CERTIFICATE-----Generated at Fri Apr 4 23:54:17 2025 by rpki-client