$ rpki-client -vvf rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AEFA3DD02CE211EC8664D47EC4F9AE02.roa File: AEFA3DD02CE211EC8664D47EC4F9AE02.roa (raw, json) Hash identifier: sOUIWYOFE2CSPs3Drpz/bEhxmM04l8k3SIDOG1UW16M= Subject key identifier: 08:48:5A:11:38:75:52:81:22:DE:83:07:22:CA:AA:5B:68:F3:C4:75 Certificate issuer: /CN=A91A85A8/serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Certificate serial: 043A Authority key identifier: AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AEFA3DD02CE211EC8664D47EC4F9AE02.roa Signing time: Fri 23 Aug 2024 01:13:43 +0000 ROA not before: Fri 23 Aug 2024 01:13:43 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 14618 IP address blocks: 103.70.49.0/24 maxlen: 24 103.70.51.0/24 maxlen: 24 182.54.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1082 (0x43a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A85A8 Validity Not Before: Aug 23 01:13:43 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c7e247-95eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:70:b8:f1:56:40:5d:64:81:f6:b9:94:8a:f5: cd:8f:36:ae:2e:8e:25:8d:68:f8:a6:46:3a:4b:3a: c6:7e:66:d5:ab:39:ad:5a:07:0c:5b:f4:69:92:8b: ea:d1:2b:9a:4d:af:c8:0d:86:e5:d2:d8:c6:a2:cc: 56:67:71:8b:46:f6:d0:15:5d:f3:ba:94:c4:63:2b: 6e:21:0e:00:19:f5:08:7d:02:a6:bb:f6:c0:40:97: cd:ad:28:8f:0a:ab:8d:c7:b7:2a:b9:47:ec:dc:e3: e4:88:58:ff:0b:3c:13:69:76:ea:5d:3b:e3:c8:21: eb:f2:fa:ee:93:77:75:7a:7a:8f:95:d6:27:c7:e2: 25:37:07:90:ae:f0:6e:c2:ce:85:cc:f7:40:62:2c: 02:31:39:11:a5:44:25:51:cd:1f:7b:f3:dc:70:09: 13:35:7e:0f:2f:93:dc:7e:3b:c8:eb:fb:32:21:df: 18:b9:27:4a:01:5c:a2:ef:0c:dd:bf:c8:b0:21:fd: 92:54:7f:6c:4f:27:b9:40:30:b9:a2:24:fc:92:34: 82:31:b3:9e:d9:1f:61:45:68:17:18:16:c2:59:78: cb:cf:bb:41:e6:0d:c0:1a:2c:9b:43:4e:54:f7:29: 19:ff:7d:ed:0b:98:fb:f0:ab:56:c2:a4:a0:57:99: 45:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:48:5A:11:38:75:52:81:22:DE:83:07:22:CA:AA:5B:68:F3:C4:75 X509v3 Authority Key Identifier: keyid:AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AEFA3DD02CE211EC8664D47EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.49.0/24 103.70.51.0/24 182.54.135.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:39:f3:a8:6a:d8:04:d9:7d:73:d9:49:00:52:d0:f1:ca:6b: 6f:6d:3c:12:6b:1f:98:37:e6:08:5d:40:09:8f:78:db:6d:ee: 12:58:2e:d2:ed:20:6e:77:f4:d0:8a:56:3d:29:20:cb:3f:cd: cc:3d:52:37:49:25:41:1f:de:0b:ea:ab:c1:26:05:87:72:f2: 8d:78:52:36:5c:93:c8:d4:e4:a0:05:45:35:6f:c9:e6:41:fa: 5d:14:0f:2f:81:03:24:72:4b:28:43:a8:b5:36:bd:8b:56:d6: 48:19:3c:9f:26:84:12:cb:5f:fc:d3:7e:79:a7:02:e4:6f:15: 02:d0:e0:9b:ec:fd:1d:c5:34:fe:c4:1e:a4:14:cf:d7:83:bd: 7a:f0:71:57:a1:04:7e:b1:58:51:f6:ed:4e:27:a9:0d:cc:a3: 89:97:c2:b1:57:d0:44:33:98:f4:8e:50:9c:8b:a0:88:8e:53: aa:fc:bf:d6:10:cb:e3:62:94:b6:27:0e:ca:21:be:61:b7:92: 85:f7:d2:1b:0c:40:1c:48:71:3a:83:15:b9:38:fa:9e:78:7f: f1:4c:89:9a:7e:7a:f1:e2:84:e1:b0:34:0c:5c:1a:06:17:01: bb:fc:06:4a:11:bf:db:49:7d:c7:63:47:4f:63:f1:f6:0d:da: ea:af:c5:73 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg1QTgxMTAvBgNVBAUTKEFFMEEwRjk4QTA5MDNFMDE1RTVGQzU0Q0I4Q0UwODFE NDI0REI0RDIwHhcNMjQwODIzMDExMzQzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM3ZTI0Ny05NWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXC48VZAXWSB9rmUivXNjzauLo4ljWj4pkY6SzrGfmbVqzmtWgcMW/Rpkovq 0SuaTa/IDYbl0tjGosxWZ3GLRvbQFV3zupTEYytuIQ4AGfUIfQKmu/bAQJfNrSiP CquNx7cquUfs3OPkiFj/CzwTaXbqXTvjyCHr8vruk3d1enqPldYnx+IlNweQrvBu ws6FzPdAYiwCMTkRpUQlUc0fe/PccAkTNX4PL5PcfjvI6/syId8YuSdKAVyi7wzd v8iwIf2SVH9sTye5QDC5oiT8kjSCMbOe2R9hRWgXGBbCWXjLz7tB5g3AGiybQ05U 9ykZ/33tC5j78KtWwqSgV5lFDQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFAhIWhE4 dVKBIt6DByLKqlto88R1MB8GA1UdIwQYMBaAFK4KD5igkD4BXl/FTLjOCB1CTbTS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODVBOC9BNTMwODE0NjJD REUxMUVDQUE2RkU2NzhDNEY5QUUwMi9yZ29QbUtDUVBnRmVYOFZNdU00SUhVSk50 TkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jnb1BtS0NRUGdGZVg4Vk11TTRJSFVKTnROSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg1QTgvQTUzMDgxNDYyQ0RFMTFFQ0FBNkZFNjc4QzRGOUFFMDIvQUVGQTNERDAy Q0UyMTFFQzg2NjRENDdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnRjEDBABnRjMDBAC2NocwDQYJKoZIhvcNAQELBQADggEB AGs586hq2ATZfXPZSQBS0PHKa29tPBJrH5g35ghdQAmPeNtt7hJYLtLtIG539NCK Vj0pIMs/zcw9UjdJJUEf3gvqq8EmBYdy8o14UjZck8jU5KAFRTVvyeZB+l0UDy+B AyRySyhDqLU2vYtW1kgZPJ8mhBLLX/zTfnmnAuRvFQLQ4Jvs/R3FNP7EHqQUz9eD vXrwcVehBH6xWFH27U4nqQ3Mo4mXwrFX0EQzmPSOUJyLoIiOU6r8v9YQy+NilLYn DsohvmG3koX30hsMQBxIcTqDFbk4+p54f/FMiZp+evHihOGwNAxcGgYXAbv8BkoR v9tJfcdjR09j8fYN2uqvxXM= -----END CERTIFICATE-----Generated at Sun Feb 16 15:36:51 2025 by rpki-client