$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/EDE820B6A26711ECAFB48B53C4F9AE02.roa File: EDE820B6A26711ECAFB48B53C4F9AE02.roa (raw, json) Hash identifier: GJiUmX3/HTWKDyD6ZSjgX6IZE0JTW/U81xlvCFIWxoU= Subject key identifier: 7A:C0:8E:8E:33:72:D7:FA:C9:DF:36:8A:3C:06:95:20:93:6B:A5:F2 Certificate issuer: /CN=A91AEB80/serialNumber=6F23F27F090BEF4531802072E1DACF210D9D423C Certificate serial: 03C1 Authority key identifier: 6F:23:F2:7F:09:0B:EF:45:31:80:20:72:E1:DA:CF:21:0D:9D:42:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/byPyfwkL70UxgCBy4drPIQ2dQjw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/EDE820B6A26711ECAFB48B53C4F9AE02.roa Signing time: Sun 29 Dec 2024 00:13:50 +0000 ROA not before: Sun 29 Dec 2024 00:13:50 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 14618 IP address blocks: 103.180.108.0/24 maxlen: 24 103.180.109.0/24 maxlen: 24 2001:df0:59c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/byPyfwkL70UxgCBy4drPIQ2dQjw.crl rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/byPyfwkL70UxgCBy4drPIQ2dQjw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/byPyfwkL70UxgCBy4drPIQ2dQjw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 961 (0x3c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEB80 Validity Not Before: Dec 29 00:13:50 2024 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6770943e-f25f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:63:e6:3e:ae:31:d0:24:4a:ff:18:bb:9f:95: ff:67:3e:28:82:47:1b:5f:71:14:1b:b7:11:7f:e8: 10:c6:ab:2b:c8:84:57:b0:49:10:d1:90:1e:4d:25: d3:85:69:b6:a7:60:7f:61:26:73:09:66:b9:1d:8c: 35:12:6d:e8:16:d2:7d:53:b2:9e:61:11:82:24:ff: 36:4e:65:71:cb:38:64:ed:e0:ca:57:ba:f4:a8:20: 11:e2:80:d6:ea:d2:3b:66:45:83:24:e7:26:fd:ec: 17:cd:61:8b:ef:98:c7:74:4b:51:e0:ee:36:f0:e4: 0e:71:8f:1e:bd:9f:bc:1e:14:37:1f:0b:cb:7b:41: 8c:9f:76:86:04:fc:46:b0:30:08:36:94:86:5f:e1: 63:b8:f2:5a:89:d9:70:0c:f3:01:b1:1a:cb:a9:09: 7e:73:2b:a3:0e:83:36:69:e3:49:2d:c5:c8:d9:8c: f2:58:86:f6:e6:a2:4b:45:c3:07:84:30:19:c4:58: d2:04:4d:7b:80:27:59:21:3b:20:e7:6d:7f:3a:32: 7f:d6:7e:8e:39:b1:0c:44:4a:13:79:26:74:34:06: 9f:a4:d4:99:67:ab:4e:f6:0c:f0:c7:c2:b6:64:6c: 9c:98:60:ee:de:f6:81:43:46:47:05:64:52:51:2a: f9:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:C0:8E:8E:33:72:D7:FA:C9:DF:36:8A:3C:06:95:20:93:6B:A5:F2 X509v3 Authority Key Identifier: keyid:6F:23:F2:7F:09:0B:EF:45:31:80:20:72:E1:DA:CF:21:0D:9D:42:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/byPyfwkL70UxgCBy4drPIQ2dQjw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/byPyfwkL70UxgCBy4drPIQ2dQjw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEB80/7762FC5A7E6C11EC873D6783C4F9AE02/EDE820B6A26711ECAFB48B53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.180.108.0/23 IPv6: 2001:df0:59c0::/48 Signature Algorithm: sha256WithRSAEncryption cc:b7:f0:69:4d:28:c0:ad:d0:aa:29:6f:34:ca:45:59:79:e7: 50:95:b3:9c:4c:92:a6:80:8a:d0:f3:86:e1:4d:8d:45:13:15: 22:a0:d1:0b:bd:a9:b0:8d:87:6a:df:ce:c2:7f:e5:c2:ee:62: 5e:23:69:aa:ff:f6:46:a8:ea:43:13:68:0e:a2:e1:da:b9:ee: 5b:a8:e4:a0:cc:c3:ac:50:2e:2a:c2:ae:b8:9f:eb:39:f4:41: 7e:3d:7f:0f:46:01:34:de:59:55:82:0c:8c:cf:b2:1f:11:9f: c3:72:06:78:70:ff:2c:8a:dd:ff:61:6f:9e:7d:d8:20:32:ef: b0:9f:0c:d4:e1:e0:d0:f6:c2:c4:6b:67:ac:00:09:b0:de:fc: 86:ac:98:72:e1:9b:f2:39:c7:8c:fe:27:1b:b6:a3:16:f1:d0: a1:6e:c0:b9:ec:f0:1a:44:ee:19:47:6e:42:da:2b:d0:97:f3: fd:93:37:1a:d4:85:cc:c7:e8:1d:ab:66:f8:aa:2b:05:af:d2: c6:32:be:c1:aa:4b:57:d9:68:de:20:80:a9:a4:8c:d4:3e:3f: 89:8d:b3:02:e2:00:b5:31:f2:68:7e:3b:72:d7:38:5a:83:73: 51:88:bc:ca:94:51:6d:4c:75:b7:99:e7:ca:c0:da:2c:16:79: 59:94:ad:6e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVCODAxMTAvBgNVBAUTKDZGMjNGMjdGMDkwQkVGNDUzMTgwMjA3MkUxREFDRjIx MEQ5RDQyM0MwHhcNMjQxMjI5MDAxMzUwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzcwOTQzZS1mMjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4WPmPq4x0CRK/xi7n5X/Zz4ogkcbX3EUG7cRf+gQxqsryIRXsEkQ0ZAeTSXT hWm2p2B/YSZzCWa5HYw1Em3oFtJ9U7KeYRGCJP82TmVxyzhk7eDKV7r0qCAR4oDW 6tI7ZkWDJOcm/ewXzWGL75jHdEtR4O428OQOcY8evZ+8HhQ3HwvLe0GMn3aGBPxG sDAINpSGX+FjuPJaidlwDPMBsRrLqQl+cyujDoM2aeNJLcXI2YzyWIb25qJLRcMH hDAZxFjSBE17gCdZITsg521/OjJ/1n6OObEMREoTeSZ0NAafpNSZZ6tO9gzwx8K2 ZGycmGDu3vaBQ0ZHBWRSUSr5PQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHrAjo4z ctf6yd82ijwGlSCTa6XyMB8GA1UdIwQYMBaAFG8j8n8JC+9FMYAgcuHazyENnUI8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUI4MC83NzYyRkM1QTdF NkMxMUVDODczRDY3ODNDNEY5QUUwMi9ieVB5ZndrTDcwVXhnQ0J5NGRyUElRMmRR ancuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5UHlmd2tMNzBVeGdDQnk0ZHJQSVEyZFFqdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUVCODAvNzc2MkZDNUE3RTZDMTFFQzg3M0Q2NzgzQzRGOUFFMDIvRURFODIwQjZB MjY3MTFFQ0FGQjQ4QjUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFntGwwDwQCAAIwCQMHACABDfBZwDANBgkqhkiG9w0BAQsF AAOCAQEAzLfwaU0owK3QqilvNMpFWXnnUJWznEySpoCK0POG4U2NRRMVIqDRC72p sI2Hat/Own/lwu5iXiNpqv/2RqjqQxNoDqLh2rnuW6jkoMzDrFAuKsKuuJ/rOfRB fj1/D0YBNN5ZVYIMjM+yHxGfw3IGeHD/LIrd/2Fvnn3YIDLvsJ8M1OHg0PbCxGtn rAAJsN78hqyYcuGb8jnHjP4nG7ajFvHQoW7AuezwGkTuGUduQtor0Jfz/ZM3GtSF zMfoHatm+KorBa/SxjK+wapLV9lo3iCAqaSM1D4/iY2zAuIAtTHyaH47ctc4WoNz UYi8ypRRbUx1t5nnysDaLBZ5WZStbg== -----END CERTIFICATE-----Generated at Sun Feb 16 15:45:19 2025 by rpki-client