$ rpki-client -vvf rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AF91ADB42CE211EC8664D47EC4F9AE02.roa File: AF91ADB42CE211EC8664D47EC4F9AE02.roa (raw, json) Hash identifier: vVCpAMW7qiQGHNF6JhfNX4AfCfOmlSNmnkvMLMOZ1EI= Subject key identifier: 4B:81:AC:E7:72:9E:86:82:E5:62:8F:ED:44:C9:37:68:1A:E6:E5:AB Certificate issuer: /CN=A91A85A8/serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Certificate serial: 043B Authority key identifier: AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AF91ADB42CE211EC8664D47EC4F9AE02.roa Signing time: Fri 23 Aug 2024 01:13:44 +0000 ROA not before: Fri 23 Aug 2024 01:13:44 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.70.49.0/24 maxlen: 24 103.70.51.0/24 maxlen: 24 182.54.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1083 (0x43b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A85A8 Validity Not Before: Aug 23 01:13:44 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c7e248-a52e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:fd:90:6e:98:c8:ee:4b:98:d5:29:76:fa:0f: 03:8f:0c:e7:b2:8c:2d:fc:2a:3a:a5:91:21:98:8a: 3c:b8:e9:e1:7b:a2:e1:4b:88:e4:9a:7e:4f:8f:8a: 9d:4d:09:d9:d8:3c:68:07:e8:43:a5:a4:fc:9e:eb: 44:a9:c0:01:18:2d:bd:0c:d7:66:87:e5:ab:aa:82: f2:f4:f1:68:3e:eb:bf:c6:04:91:07:53:30:2b:0a: 61:64:d3:be:47:ee:67:c3:c0:28:5a:85:c4:9a:f1: a0:2c:d6:ee:ca:8e:fa:a6:f2:a8:67:62:94:47:b6: 6b:0d:c5:a2:c2:87:fc:16:fe:2b:7a:44:29:34:4d: 82:b6:3c:6a:ba:4f:e5:08:1a:5c:f7:18:b0:86:04: 3f:47:2c:05:2d:b7:ef:ea:c7:71:bb:4a:8e:91:6e: 60:fe:42:6d:e2:b4:df:79:92:fa:3a:51:a7:d5:e2: a4:a5:8f:72:0f:1a:ca:6e:7a:96:5f:d6:76:5e:93: 3b:08:6c:58:77:42:1e:e4:5e:72:d1:dd:da:92:7e: ac:af:f6:3c:98:39:63:46:e5:0e:40:73:4d:25:a4: 04:b2:3b:33:6a:c0:47:b3:42:cd:59:a8:f1:6b:4a: df:b1:e8:74:39:e8:1e:3b:43:35:30:71:1f:87:e2: eb:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:81:AC:E7:72:9E:86:82:E5:62:8F:ED:44:C9:37:68:1A:E6:E5:AB X509v3 Authority Key Identifier: keyid:AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AF91ADB42CE211EC8664D47EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.49.0/24 103.70.51.0/24 182.54.135.0/24 Signature Algorithm: sha256WithRSAEncryption 89:07:8e:e2:68:45:d0:d1:c1:21:bd:6b:45:26:32:68:df:d5: ce:5b:3d:79:56:ff:3e:d1:45:f9:e5:cd:e1:3d:a8:93:2b:af: ab:dd:8d:da:a2:c9:fe:bc:2b:98:d3:3e:fe:1f:8b:d3:ab:da: 66:a7:2d:53:09:07:5c:89:09:35:20:d7:2f:ba:11:96:bc:97: 0f:c9:e3:b3:e6:a2:60:60:ca:0f:52:ef:be:b6:ad:ba:cb:71: fa:16:18:ff:00:14:91:23:75:ab:09:fa:d0:a0:3b:6e:fe:9d: 1a:38:a9:c6:5b:06:ab:89:42:d5:58:c8:e7:90:03:6f:cd:58: 91:d9:14:a4:4c:54:e1:40:f2:79:7e:ea:58:2f:73:77:77:a5: 47:78:af:ff:ea:7f:20:f7:b0:ae:68:d9:45:57:a3:0f:cd:dd: 16:6e:02:ec:45:aa:c6:cf:5f:e4:8a:9f:13:2d:4f:f6:8d:99: 12:99:12:73:a6:c7:bb:d3:fc:fb:12:1b:4c:53:a8:e7:65:75: fa:b8:8c:d9:5f:28:cc:4b:51:7f:45:3e:a8:5b:a2:46:72:7d: 69:06:77:47:33:62:fb:29:09:1d:ce:82:9b:3d:95:ba:11:c5: b5:cd:b8:79:fb:77:11:d9:32:19:57:ac:17:bd:b0:cf:87:10: dd:57:64:b2 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBDswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg1QTgxMTAvBgNVBAUTKEFFMEEwRjk4QTA5MDNFMDE1RTVGQzU0Q0I4Q0UwODFE NDI0REI0RDIwHhcNMjQwODIzMDExMzQ0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM3ZTI0OC1hNTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0/2QbpjI7kuY1Sl2+g8Djwznsowt/Co6pZEhmIo8uOnhe6LhS4jkmn5Pj4qd TQnZ2DxoB+hDpaT8nutEqcABGC29DNdmh+WrqoLy9PFoPuu/xgSRB1MwKwphZNO+ R+5nw8AoWoXEmvGgLNbuyo76pvKoZ2KUR7ZrDcWiwof8Fv4rekQpNE2Ctjxquk/l CBpc9xiwhgQ/RywFLbfv6sdxu0qOkW5g/kJt4rTfeZL6OlGn1eKkpY9yDxrKbnqW X9Z2XpM7CGxYd0Ie5F5y0d3akn6sr/Y8mDljRuUOQHNNJaQEsjszasBHs0LNWajx a0rfseh0OegeO0M1MHEfh+LrKQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFEuBrOdy noaC5WKP7UTJN2ga5uWrMB8GA1UdIwQYMBaAFK4KD5igkD4BXl/FTLjOCB1CTbTS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODVBOC9BNTMwODE0NjJD REUxMUVDQUE2RkU2NzhDNEY5QUUwMi9yZ29QbUtDUVBnRmVYOFZNdU00SUhVSk50 TkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jnb1BtS0NRUGdGZVg4Vk11TTRJSFVKTnROSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg1QTgvQTUzMDgxNDYyQ0RFMTFFQ0FBNkZFNjc4QzRGOUFFMDIvQUY5MUFEQjQy Q0UyMTFFQzg2NjRENDdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnRjEDBABnRjMDBAC2NocwDQYJKoZIhvcNAQELBQADggEB AIkHjuJoRdDRwSG9a0UmMmjf1c5bPXlW/z7RRfnlzeE9qJMrr6vdjdqiyf68K5jT Pv4fi9Or2manLVMJB1yJCTUg1y+6EZa8lw/J47PmomBgyg9S7762rbrLcfoWGP8A FJEjdasJ+tCgO27+nRo4qcZbBquJQtVYyOeQA2/NWJHZFKRMVOFA8nl+6lgvc3d3 pUd4r//qfyD3sK5o2UVXow/N3RZuAuxFqsbPX+SKnxMtT/aNmRKZEnOmx7vT/PsS G0xTqOdldfq4jNlfKMxLUX9FPqhbokZyfWkGd0czYvspCR3Ogps9lboRxbXNuHn7 dxHZMhlXrBe9sM+HEN1XZLI= -----END CERTIFICATE-----Generated at Sun Feb 16 15:40:33 2025 by rpki-client