$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE9FF/D3A544D2945B11EC8295DB45C4F9AE02/50A8AF54A1C311EC960A4D2BC4F9AE02.roa File: 50A8AF54A1C311EC960A4D2BC4F9AE02.roa (raw, json) Hash identifier: zGH1hjDu2Uis7TQ7pAiQgWH8lzCYDdBKrQbglVT8f1E= Subject key identifier: FE:39:E9:77:32:9E:C0:25:9C:8B:11:6D:B5:9E:71:87:95:67:A8:3D Certificate issuer: /CN=A91AE9FF/serialNumber=4DE151B0C8A2184125C658E32731CDA1AA234700 Certificate serial: 02F7 Authority key identifier: 4D:E1:51:B0:C8:A2:18:41:25:C6:58:E3:27:31:CD:A1:AA:23:47:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TeFRsMiiGEElxljjJzHNoaojRwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE9FF/D3A544D2945B11EC8295DB45C4F9AE02/50A8AF54A1C311EC960A4D2BC4F9AE02.roa Signing time: Wed 01 May 2024 04:06:38 +0000 ROA not before: Wed 01 May 2024 04:06:38 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.181.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE9FF/D3A544D2945B11EC8295DB45C4F9AE02/TeFRsMiiGEElxljjJzHNoaojRwA.crl rsync://rpki.apnic.net/member_repository/A91AE9FF/D3A544D2945B11EC8295DB45C4F9AE02/TeFRsMiiGEElxljjJzHNoaojRwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TeFRsMiiGEElxljjJzHNoaojRwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 759 (0x2f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE9FF Validity Not Before: May 1 04:06:38 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6631bfce-6617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:1f:83:45:18:2b:3e:a3:b5:b9:af:b7:38:19: 0e:d0:bf:ed:4e:bf:ea:20:c1:29:60:a9:89:e3:c4: 47:29:98:05:95:a9:32:7c:a7:75:f6:30:1c:a9:c5: b5:26:c7:f9:fe:4f:d7:cd:c3:84:de:f0:bc:b3:e6: 41:95:05:ae:6b:95:aa:98:42:15:67:02:b2:06:76: 43:6d:a0:dd:5a:41:3d:d6:11:1b:0d:01:bd:7a:c5: a5:d9:df:6a:a5:1e:66:50:72:f8:c4:4b:ab:71:9f: e5:61:a5:ca:9c:1d:fc:23:fd:52:29:23:14:99:5d: 04:cc:73:40:67:16:be:d7:a2:23:bd:f7:69:00:7f: 36:3a:1d:77:5a:88:8f:90:7e:d8:24:24:18:a6:fe: ae:3b:03:27:e9:fb:a5:01:f7:77:cc:a4:b4:c7:4a: be:e3:fd:b7:91:b3:71:ac:59:32:59:31:7b:95:5e: e5:1a:dc:d5:84:57:66:6e:02:23:72:1c:35:a4:9d: 34:17:ec:84:34:33:e8:6d:06:44:e8:e1:07:25:56: ff:60:67:00:e8:7e:d4:80:62:f8:a6:17:3d:53:1f: f7:b4:ff:c0:72:ff:6a:79:37:06:c7:c0:3f:9a:21: 8e:43:5c:94:05:7c:c8:ca:77:2c:24:db:ff:c8:e7: 62:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:39:E9:77:32:9E:C0:25:9C:8B:11:6D:B5:9E:71:87:95:67:A8:3D X509v3 Authority Key Identifier: keyid:4D:E1:51:B0:C8:A2:18:41:25:C6:58:E3:27:31:CD:A1:AA:23:47:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE9FF/D3A544D2945B11EC8295DB45C4F9AE02/TeFRsMiiGEElxljjJzHNoaojRwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TeFRsMiiGEElxljjJzHNoaojRwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE9FF/D3A544D2945B11EC8295DB45C4F9AE02/50A8AF54A1C311EC960A4D2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.240.0/24 Signature Algorithm: sha256WithRSAEncryption 25:3e:66:7e:1d:30:41:6b:11:d4:55:2f:40:c6:10:40:95:bd: 6e:df:90:23:b0:97:56:96:e5:3b:f9:ae:bb:9c:20:7f:91:cc: 2d:86:0c:49:f0:85:56:d8:05:43:98:07:cb:6a:45:11:a5:2b: 07:a8:5a:22:4c:e1:02:1b:55:47:17:79:96:20:53:06:44:f5: d0:3b:a7:80:c8:d5:32:73:39:1a:00:55:19:46:1d:93:aa:73: d5:ec:8c:55:52:6a:c5:de:a4:7f:66:7a:56:7b:ce:e5:37:b0: f4:5d:1f:1b:8b:ae:c2:ce:d6:45:e6:17:f4:99:6f:34:57:e6: 18:5c:5a:36:04:9b:1d:37:62:0c:f0:da:31:9b:87:ca:ab:d8: 76:b5:fe:b2:d6:0f:67:4d:7d:8f:b5:1b:93:6b:2c:63:61:12: 5e:07:9f:5e:2d:d5:b5:a5:48:9c:b4:06:82:5c:2a:10:a1:f3: 1f:7b:7a:1b:9c:ef:98:11:19:0c:6d:7b:66:8f:47:9d:a1:3d: d2:8b:b5:da:06:bd:2f:19:10:b3:b7:e1:98:df:85:dd:58:3e: 02:52:34:80:5e:1e:b3:c6:2b:54:1e:80:4d:a5:9c:f8:5e:03: 60:fe:a8:99:74:15:c3:7a:82:25:2d:f4:15:1e:f5:86:33:3c: 53:9e:27:9d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAvcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5RkYxMTAvBgNVBAUTKDRERTE1MUIwQzhBMjE4NDEyNUM2NThFMzI3MzFDREEx QUEyMzQ3MDAwHhcNMjQwNTAxMDQwNjM4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxYmZjZS02NjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkx+DRRgrPqO1ua+3OBkO0L/tTr/qIMEpYKmJ48RHKZgFlakyfKd19jAcqcW1 Jsf5/k/XzcOE3vC8s+ZBlQWua5WqmEIVZwKyBnZDbaDdWkE91hEbDQG9esWl2d9q pR5mUHL4xEurcZ/lYaXKnB38I/1SKSMUmV0EzHNAZxa+16IjvfdpAH82Oh13WoiP kH7YJCQYpv6uOwMn6fulAfd3zKS0x0q+4/23kbNxrFkyWTF7lV7lGtzVhFdmbgIj chw1pJ00F+yENDPobQZE6OEHJVb/YGcA6H7UgGL4phc9Ux/3tP/Acv9qeTcGx8A/ miGOQ1yUBXzIyncsJNv/yOdijwIDAQABo4IClTCCApEwHQYDVR0OBBYEFP456Xcy nsAlnIsRbbWecYeVZ6g9MB8GA1UdIwQYMBaAFE3hUbDIohhBJcZY4ycxzaGqI0cA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTlGRi9EM0E1NDREMjk0 NUIxMUVDODI5NURCNDVDNEY5QUUwMi9UZUZSc01paUdFRWx4bGpqSnpITm9hb2pS d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RlRlJzTWlpR0VFbHhsampKekhOb2FvalJ3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUU5RkYvRDNBNTQ0RDI5NDVCMTFFQzgyOTVEQjQ1QzRGOUFFMDIvNTBBOEFGNTRB MUMzMTFFQzk2MEE0RDJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABntfAwDQYJKoZIhvcNAQELBQADggEBACU+Zn4dMEFrEdRV L0DGEECVvW7fkCOwl1aW5Tv5rrucIH+RzC2GDEnwhVbYBUOYB8tqRRGlKweoWiJM 4QIbVUcXeZYgUwZE9dA7p4DI1TJzORoAVRlGHZOqc9XsjFVSasXepH9melZ7zuU3 sPRdHxuLrsLO1kXmF/SZbzRX5hhcWjYEmx03Ygzw2jGbh8qr2Ha1/rLWD2dNfY+1 G5NrLGNhEl4Hn14t1bWlSJy0BoJcKhCh8x97ehuc75gRGQxte2aPR52hPdKLtdoG vS8ZELO34Zjfhd1YPgJSNIBeHrPGK1QegE2lnPheA2D+qJl0FcN6giUt9BUe9YYz PFOeJ50= -----END CERTIFICATE-----Generated at Sun Feb 16 15:38:37 2025 by rpki-client