$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/7187CDE60BEF11ECAEF3EA5DC4F9AE02.roa File: 7187CDE60BEF11ECAEF3EA5DC4F9AE02.roa (raw, json) Hash identifier: 4Lt0Tl7CzwPdD+nUN6H8aD5LDx+lA968UPs17P0Yr/M= Subject key identifier: C6:B0:42:D9:F1:A5:63:B7:49:F9:7C:28:FA:19:C5:00:6B:A5:BA:18 Certificate issuer: /CN=A91B5F33/serialNumber=9317BB19FF907F471811EB56100AA0BC92CF1497 Certificate serial: 0469 Authority key identifier: 93:17:BB:19:FF:90:7F:47:18:11:EB:56:10:0A:A0:BC:92:CF:14:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/7187CDE60BEF11ECAEF3EA5DC4F9AE02.roa Signing time: Wed 17 Jul 2024 01:02:47 +0000 ROA not before: Wed 17 Jul 2024 01:02:47 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 14618 IP address blocks: 103.138.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.crl rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 23:22:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1129 (0x469) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5F33 Validity Not Before: Jul 17 01:02:47 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66971837-16b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:32:a7:ff:83:7e:58:4c:bc:6e:07:3f:c9:b6: b4:02:26:ab:9a:f8:d4:13:9a:49:84:37:99:00:f1: e9:af:2c:d7:68:61:94:a2:b7:db:78:b9:71:5e:0c: d2:4e:13:31:2d:61:cc:6f:31:b1:0b:fd:16:4a:ca: 37:12:7e:62:05:9e:fb:f6:43:0d:9e:a2:32:67:68: 42:77:14:6d:38:4b:9c:32:45:a0:b6:6d:b0:5e:12: 26:e1:bb:1f:b6:2f:24:fe:fc:cc:67:a6:b8:e6:b5: 8f:28:45:49:b0:15:e0:5f:fe:e0:a7:dd:44:15:7d: e7:9b:e3:59:39:a9:8c:77:96:db:7f:35:4f:dd:dc: 8d:15:a9:3a:67:c4:72:22:bb:03:67:ed:09:9e:b2: 0a:2a:3f:89:c4:29:71:8a:be:02:58:37:b5:ad:20: d2:b2:a9:49:aa:7e:1d:4e:ed:12:20:36:de:dc:0a: 37:12:7d:f6:8e:51:e5:0d:c9:87:48:97:5f:85:4c: be:b9:93:b4:ce:95:8a:34:d3:26:48:d9:5f:59:6d: 71:36:2d:ba:fc:ef:54:b9:5d:2a:3a:d0:75:31:cc: 2c:86:47:c4:ad:3f:1e:bc:f8:e9:67:2d:af:be:26: 30:0b:8b:d9:27:76:93:5a:71:94:93:bd:5d:c9:2b: a3:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:B0:42:D9:F1:A5:63:B7:49:F9:7C:28:FA:19:C5:00:6B:A5:BA:18 X509v3 Authority Key Identifier: keyid:93:17:BB:19:FF:90:7F:47:18:11:EB:56:10:0A:A0:BC:92:CF:14:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxe7Gf-Qf0cYEetWEAqgvJLPFJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5F33/2F6AC13C0BEC11EC92130D5AC4F9AE02/7187CDE60BEF11ECAEF3EA5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.231.0/24 Signature Algorithm: sha256WithRSAEncryption 72:64:c5:64:f0:af:02:fc:49:85:9c:a5:ce:b0:57:70:21:91: 28:1a:20:18:ef:c5:01:23:b1:37:29:2e:8e:bc:47:a2:73:a3: 83:20:9f:6d:3a:b3:95:d4:79:9a:2b:d1:2a:6c:05:d7:65:ef: 5a:a4:2f:14:e7:52:5e:33:be:e8:98:69:46:29:eb:ca:2d:7d: 0f:e5:10:29:a5:99:81:57:92:62:f3:f9:9a:dd:c3:02:fb:45: 35:11:3f:11:a8:ce:d3:48:5f:83:ea:b6:5b:be:e0:19:8c:77: 82:16:c7:86:55:f7:18:c6:40:17:2c:a3:a7:46:c1:bc:dc:2d: 03:8f:8a:cd:db:16:70:45:64:a7:56:37:4d:77:d1:a3:d3:64: 74:74:db:58:34:0b:8a:5f:ec:75:dd:ad:0e:ff:15:e5:9c:24: ba:41:e8:26:3a:94:8b:de:3d:95:c1:dc:1b:ff:2e:a6:cf:e7: 0c:ec:07:18:33:97:7e:e3:48:01:df:06:d2:4a:fd:e5:e0:18: 8c:18:30:d9:c8:fa:5e:92:dc:b7:da:e2:c9:43:79:50:41:bd: ce:b6:64:90:93:4f:9a:eb:c3:08:4f:ef:96:3f:59:09:ea:e2: c2:fa:f1:4d:72:9d:4b:b8:f0:af:ab:ea:ef:f2:6c:3c:d7:aa: 04:1c:8b:4b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVGMzMxMTAvBgNVBAUTKDkzMTdCQjE5RkY5MDdGNDcxODExRUI1NjEwMEFBMEJD OTJDRjE0OTcwHhcNMjQwNzE3MDEwMjQ3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk3MTgzNy0xNmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTKn/4N+WEy8bgc/yba0AiarmvjUE5pJhDeZAPHpryzXaGGUorfbeLlxXgzS ThMxLWHMbzGxC/0WSso3En5iBZ779kMNnqIyZ2hCdxRtOEucMkWgtm2wXhIm4bsf ti8k/vzMZ6a45rWPKEVJsBXgX/7gp91EFX3nm+NZOamMd5bbfzVP3dyNFak6Z8Ry IrsDZ+0JnrIKKj+JxClxir4CWDe1rSDSsqlJqn4dTu0SIDbe3Ao3En32jlHlDcmH SJdfhUy+uZO0zpWKNNMmSNlfWW1xNi26/O9UuV0qOtB1McwshkfErT8evPjpZy2v viYwC4vZJ3aTWnGUk71dySujOwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMawQtnx pWO3Sfl8KPoZxQBrpboYMB8GA1UdIwQYMBaAFJMXuxn/kH9HGBHrVhAKoLySzxSX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUYzMy8yRjZBQzEzQzBC RUMxMUVDOTIxMzBENUFDNEY5QUUwMi9reGU3R2YtUWYwY1lFZXRXRUFxZ3ZKTFBG SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t4ZTdHZi1RZjBjWUVldFdFQXFndkpMUEZKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVGMzMvMkY2QUMxM0MwQkVDMTFFQzkyMTMwRDVBQzRGOUFFMDIvNzE4N0NERTYw QkVGMTFFQ0FFRjNFQTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniucwDQYJKoZIhvcNAQELBQADggEBAHJkxWTwrwL8SYWc pc6wV3AhkSgaIBjvxQEjsTcpLo68R6Jzo4Mgn206s5XUeZor0SpsBddl71qkLxTn Ul4zvuiYaUYp68otfQ/lECmlmYFXkmLz+ZrdwwL7RTURPxGoztNIX4Pqtlu+4BmM d4IWx4ZV9xjGQBcso6dGwbzcLQOPis3bFnBFZKdWN0130aPTZHR021g0C4pf7HXd rQ7/FeWcJLpB6CY6lIvePZXB3Bv/LqbP5wzsBxgzl37jSAHfBtJK/eXgGIwYMNnI +l6S3Lfa4slDeVBBvc62ZJCTT5rrwwhP75Y/WQnq4sL68U1ynUu48K+r6u/ybDzX qgQci0s= -----END CERTIFICATE-----Generated at Thu Mar 13 21:54:17 2025 by rpki-client