$ rpki-client -vvf rpki.apnic.net/member_repository/A91B423C/2737E6B250EC11ECAA3C137CC4F9AE02/118BA98C51CA11EC9067E22CC4F9AE02.roa File: 118BA98C51CA11EC9067E22CC4F9AE02.roa (raw, json) Hash identifier: L87/P71GLyeOVHRuWVUui3Zcv+2yVuGxBuaLmPWeK04= Subject key identifier: 42:DA:61:B2:3E:F6:8D:E4:5E:C4:68:58:8B:EB:2B:F5:81:4D:F2:04 Certificate issuer: /CN=A91B423C/serialNumber=309F16239A13B0D010428DB551146E52EEB70BB7 Certificate serial: 040F Authority key identifier: 30:9F:16:23:9A:13:B0:D0:10:42:8D:B5:51:14:6E:52:EE:B7:0B:B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MJ8WI5oTsNAQQo21URRuUu63C7c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B423C/2737E6B250EC11ECAA3C137CC4F9AE02/118BA98C51CA11EC9067E22CC4F9AE02.roa Signing time: Wed 11 Dec 2024 00:15:30 +0000 ROA not before: Wed 11 Dec 2024 00:15:30 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 55967 IP address blocks: 103.145.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B423C/2737E6B250EC11ECAA3C137CC4F9AE02/MJ8WI5oTsNAQQo21URRuUu63C7c.crl rsync://rpki.apnic.net/member_repository/A91B423C/2737E6B250EC11ECAA3C137CC4F9AE02/MJ8WI5oTsNAQQo21URRuUu63C7c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MJ8WI5oTsNAQQo21URRuUu63C7c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 23:58:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1039 (0x40f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B423C Validity Not Before: Dec 11 00:15:30 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6758d9a2-c8e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:46:3e:4e:d3:10:48:92:9b:0a:e0:4f:66:b0: f4:74:1a:9a:29:5d:d5:75:f1:5b:57:3c:06:7e:59: e1:0c:5c:0c:03:54:da:7a:b8:69:1a:15:a4:28:80: 54:64:bf:e8:fa:12:66:b4:62:d5:4b:1f:fa:85:61: 5b:ac:22:c2:9b:46:e5:33:91:1d:1c:bd:76:54:37: cc:96:11:eb:d5:51:89:f9:72:84:45:76:e9:72:49: fb:6e:c7:33:18:25:04:d3:53:fd:55:64:d0:c3:ae: 3a:5f:5d:bc:50:33:21:c2:f9:69:91:c9:6f:17:73: d3:9b:ca:cb:05:96:fd:47:05:55:b8:68:97:ad:aa: e3:bc:3e:b6:1a:87:b4:7a:e4:81:87:87:a1:33:e1: 69:17:ee:99:23:8a:5f:d7:e8:bb:5f:70:1d:5b:b1: 8f:0c:25:37:c5:a9:0a:f9:08:6c:a1:1a:88:23:39: c7:00:06:c9:b5:43:89:4f:99:cd:90:e2:54:50:f6: 1c:22:a6:86:86:73:b7:f5:7b:8a:c1:cd:6b:ac:3e: 95:9b:33:c8:26:2f:70:3f:e9:00:a7:d2:9b:80:93: f5:2f:23:c2:b3:5a:41:19:be:1f:13:b9:6b:75:b7: 4f:93:df:05:5e:66:b2:c2:78:a5:dc:24:db:2a:6b: 3d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:DA:61:B2:3E:F6:8D:E4:5E:C4:68:58:8B:EB:2B:F5:81:4D:F2:04 X509v3 Authority Key Identifier: keyid:30:9F:16:23:9A:13:B0:D0:10:42:8D:B5:51:14:6E:52:EE:B7:0B:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B423C/2737E6B250EC11ECAA3C137CC4F9AE02/MJ8WI5oTsNAQQo21URRuUu63C7c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MJ8WI5oTsNAQQo21URRuUu63C7c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B423C/2737E6B250EC11ECAA3C137CC4F9AE02/118BA98C51CA11EC9067E22CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.72.0/24 Signature Algorithm: sha256WithRSAEncryption 20:25:f8:f1:b0:a0:83:42:6d:fe:9e:6a:3e:7c:c5:a6:de:09: ac:9f:89:55:3f:9e:27:16:b9:eb:0d:c7:62:82:c3:4e:65:24: 79:80:09:ad:59:8d:19:f4:d0:19:cb:0a:a5:2b:c5:f5:9b:a9: cd:c6:49:00:8e:bd:52:eb:9f:04:37:dc:90:54:06:25:c3:b6: 05:eb:1d:a0:aa:58:92:16:28:4d:10:9f:35:e1:34:08:f7:a6: b1:71:60:7e:4f:8c:28:2c:39:7d:17:d3:34:f7:d3:67:3f:c2: f7:a0:e6:a6:9c:0a:18:3c:46:e6:c4:11:24:ce:64:0c:63:ae: 3c:e9:26:e0:b7:c1:0f:00:50:cc:36:8c:d5:76:7b:90:fa:9a: b0:35:b0:ef:e2:4d:5a:8b:71:1c:18:ab:d9:46:86:26:a8:5a: f7:88:92:99:e6:57:2c:8c:4d:8e:15:22:d0:fc:90:24:1e:05: e9:ba:f0:07:f2:79:36:16:b3:c1:41:14:87:1d:36:91:bf:74: 5a:2b:bf:3e:a1:26:a9:a6:49:99:27:e1:d3:37:8c:dc:85:ea: 0a:27:d9:91:61:24:97:0d:77:c0:79:6e:bf:af:49:2d:07:77: a4:4e:9a:90:a9:6f:c6:9d:86:a8:55:c5:35:69:4c:ca:65:f8: 2a:dc:0e:67 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyM0MxMTAvBgNVBAUTKDMwOUYxNjIzOUExM0IwRDAxMDQyOERCNTUxMTQ2RTUy RUVCNzBCQjcwHhcNMjQxMjExMDAxNTMwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU4ZDlhMi1jOGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5EY+TtMQSJKbCuBPZrD0dBqaKV3VdfFbVzwGflnhDFwMA1TaerhpGhWkKIBU ZL/o+hJmtGLVSx/6hWFbrCLCm0blM5EdHL12VDfMlhHr1VGJ+XKERXbpckn7bscz GCUE01P9VWTQw646X128UDMhwvlpkclvF3PTm8rLBZb9RwVVuGiXrarjvD62Goe0 euSBh4ehM+FpF+6ZI4pf1+i7X3AdW7GPDCU3xakK+QhsoRqIIznHAAbJtUOJT5nN kOJUUPYcIqaGhnO39XuKwc1rrD6VmzPIJi9wP+kAp9KbgJP1LyPCs1pBGb4fE7lr dbdPk98FXmaywnil3CTbKms9uQIDAQABo4IClTCCApEwHQYDVR0OBBYEFELaYbI+ 9o3kXsRoWIvrK/WBTfIEMB8GA1UdIwQYMBaAFDCfFiOaE7DQEEKNtVEUblLutwu3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDIzQy8yNzM3RTZCMjUw RUMxMUVDQUEzQzEzN0NDNEY5QUUwMi9NSjhXSTVvVHNOQVFRbzIxVVJSdVV1NjND N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01KOFdJNW9Uc05BUVFvMjFVUlJ1VXU2M0M3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjQyM0MvMjczN0U2QjI1MEVDMTFFQ0FBM0MxMzdDQzRGOUFFMDIvMTE4QkE5OEM1 MUNBMTFFQzkwNjdFMjJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnkUgwDQYJKoZIhvcNAQELBQADggEBACAl+PGwoINCbf6e aj58xabeCayfiVU/nicWuesNx2KCw05lJHmACa1ZjRn00BnLCqUrxfWbqc3GSQCO vVLrnwQ33JBUBiXDtgXrHaCqWJIWKE0QnzXhNAj3prFxYH5PjCgsOX0X0zT302c/ wveg5qacChg8RubEESTOZAxjrjzpJuC3wQ8AUMw2jNV2e5D6mrA1sO/iTVqLcRwY q9lGhiaoWveIkpnmVyyMTY4VItD8kCQeBem68AfyeTYWs8FBFIcdNpG/dForvz6h JqmmSZkn4dM3jNyF6gon2ZFhJJcNd8B5br+vSS0Hd6ROmpCpb8adhqhVxTVpTMpl +CrcDmc= -----END CERTIFICATE-----Generated at Thu Apr 10 14:34:46 2025 by rpki-client