$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/D67D6C12D09611ECAE4FA90AC4F9AE02.roa File: D67D6C12D09611ECAE4FA90AC4F9AE02.roa (raw, json) Hash identifier: ohfZG59sEvFb3B98TJzWsPWyWdsfQxGqekH2JoxH6gQ= Subject key identifier: 90:FA:E0:31:80:5D:A2:80:9E:BD:33:16:85:CD:67:FB:8B:4E:A1:D8 Certificate issuer: /CN=A91B6006/serialNumber=12F92E6C72E6CA25C075055B48FE37B65AB6E052 Certificate serial: 1259 Authority key identifier: 12:F9:2E:6C:72:E6:CA:25:C0:75:05:5B:48:FE:37:B6:5A:B6:E0:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EvkubHLmyiXAdQVbSP43tlq24FI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/D67D6C12D09611ECAE4FA90AC4F9AE02.roa Signing time: Tue 24 Sep 2024 17:25:28 +0000 ROA not before: Tue 24 Sep 2024 17:25:28 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.35.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/EvkubHLmyiXAdQVbSP43tlq24FI.crl rsync://rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/EvkubHLmyiXAdQVbSP43tlq24FI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EvkubHLmyiXAdQVbSP43tlq24FI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4697 (0x1259) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6006 Validity Not Before: Sep 24 17:25:28 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66f2f608-eba0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:66:fe:a8:4d:92:52:25:93:b0:cf:5b:f5:af: d7:fe:a9:a6:8a:e2:34:f1:ea:16:6a:41:85:b5:36: 28:c6:12:fc:e6:f8:69:5c:ce:d4:cb:b2:ac:03:2c: 39:fe:96:8f:e5:20:5e:be:bd:e5:d5:4c:eb:65:d3: bc:ce:3a:9e:fe:29:f8:b3:9c:a6:f5:a4:0c:b8:eb: 59:5a:a9:e3:19:bc:ab:7a:08:61:d2:ba:48:12:fe: c6:99:df:5f:5e:ba:d1:52:51:42:7d:04:bb:d5:e9: fe:8a:5a:ba:05:02:be:9f:68:2b:cb:dd:5b:55:f3: 73:45:c7:c9:d8:75:ab:c7:05:b5:2a:d2:ad:91:57: 97:2f:1a:1a:0d:af:d1:3d:b4:13:33:18:69:0a:cf: ef:7f:9f:6f:a6:12:03:3b:ed:7d:0f:82:af:ff:59: 5c:d4:91:55:b2:3e:b3:50:00:3e:9a:a9:f2:98:59: 0c:22:82:46:38:23:61:44:6b:95:ad:e5:71:2a:68: aa:52:a9:0a:1e:de:d6:0d:f4:13:59:da:82:de:d3: 25:e9:15:4a:3c:3d:c4:5a:27:2b:5b:9a:39:12:06: 99:24:68:81:8c:61:a1:a3:11:a5:10:32:79:9b:d6: 1c:52:40:ea:8f:dc:0b:a5:58:7f:64:6b:ba:dc:73: f6:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:FA:E0:31:80:5D:A2:80:9E:BD:33:16:85:CD:67:FB:8B:4E:A1:D8 X509v3 Authority Key Identifier: keyid:12:F9:2E:6C:72:E6:CA:25:C0:75:05:5B:48:FE:37:B6:5A:B6:E0:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/EvkubHLmyiXAdQVbSP43tlq24FI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EvkubHLmyiXAdQVbSP43tlq24FI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6006/E4FDE46AC3E811E8AC76EB16C4F9AE02/D67D6C12D09611ECAE4FA90AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.251.0/24 Signature Algorithm: sha256WithRSAEncryption 35:f8:6f:5a:e6:d7:77:d6:22:23:5d:dc:38:f1:69:e2:ca:b3: 49:df:8b:ea:e4:1f:65:53:04:05:ce:b3:7f:d0:c4:dd:70:f7: d8:9a:d1:d2:83:7e:92:2a:5d:29:80:ac:1c:de:0e:98:eb:12: 85:68:fc:f2:fb:bc:5f:2e:af:d8:09:42:e1:25:2a:7d:1b:24: b6:67:91:c8:fc:61:af:73:70:1f:b0:86:fd:ba:48:c4:0f:07: 2e:ca:30:88:a8:c6:9b:8c:12:0a:e3:d9:5c:ad:02:81:76:af: 34:e3:92:98:a0:0e:ee:3c:3b:d3:fc:b3:14:ac:88:74:7a:67: 91:90:3c:ad:14:8c:03:19:bc:fb:1a:1b:20:e9:2c:ca:06:e1: e8:04:27:a3:b0:81:2e:a3:58:94:e5:5f:9d:19:14:ca:ed:b2: 2e:13:9c:36:3c:b4:8d:89:56:c0:79:86:ff:eb:c4:f1:57:6d: 5f:8c:74:7d:9d:9b:37:f0:f6:ee:4a:6e:a7:ef:e2:03:54:b2: 02:21:4b:d0:a3:1d:c3:da:d7:09:cf:01:69:4e:b6:2c:7f:75: 1b:99:4d:f3:bb:24:5e:ac:43:34:7c:fd:b8:dc:05:1b:3f:2c: 26:22:e3:b4:a9:00:17:ae:a4:b4:17:d6:59:39:5e:0c:e9:29: ee:45:47:ac -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICElkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYwMDYxMTAvBgNVBAUTKDEyRjkyRTZDNzJFNkNBMjVDMDc1MDU1QjQ4RkUzN0I2 NUFCNkUwNTIwHhcNMjQwOTI0MTcyNTI4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYyZjYwOC1lYmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmb+qE2SUiWTsM9b9a/X/qmmiuI08eoWakGFtTYoxhL85vhpXM7Uy7KsAyw5 /paP5SBevr3l1UzrZdO8zjqe/in4s5ym9aQMuOtZWqnjGbyreghh0rpIEv7Gmd9f XrrRUlFCfQS71en+ilq6BQK+n2gry91bVfNzRcfJ2HWrxwW1KtKtkVeXLxoaDa/R PbQTMxhpCs/vf59vphIDO+19D4Kv/1lc1JFVsj6zUAA+mqnymFkMIoJGOCNhRGuV reVxKmiqUqkKHt7WDfQTWdqC3tMl6RVKPD3EWicrW5o5EgaZJGiBjGGhoxGlEDJ5 m9YcUkDqj9wLpVh/ZGu63HP2EQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJD64DGA XaKAnr0zFoXNZ/uLTqHYMB8GA1UdIwQYMBaAFBL5Lmxy5solwHUFW0j+N7ZatuBS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjAwNi9FNEZERTQ2QUMz RTgxMUU4QUM3NkVCMTZDNEY5QUUwMi9Fdmt1YkhMbXlpWEFkUVZiU1A0M3RscTI0 RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0V2a3ViSExteWlYQWRRVmJTUDQzdGxxMjRGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYwMDYvRTRGREU0NkFDM0U4MTFFOEFDNzZFQjE2QzRGOUFFMDIvRDY3RDZDMTJE MDk2MTFFQ0FFNEZBOTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnI/swDQYJKoZIhvcNAQELBQADggEBADX4b1rm13fWIiNd 3DjxaeLKs0nfi+rkH2VTBAXOs3/QxN1w99ia0dKDfpIqXSmArBzeDpjrEoVo/PL7 vF8ur9gJQuElKn0bJLZnkcj8Ya9zcB+whv26SMQPBy7KMIioxpuMEgrj2VytAoF2 rzTjkpigDu48O9P8sxSsiHR6Z5GQPK0UjAMZvPsaGyDpLMoG4egEJ6OwgS6jWJTl X50ZFMrtsi4TnDY8tI2JVsB5hv/rxPFXbV+MdH2dmzfw9u5Kbqfv4gNUsgIhS9Cj HcPa1wnPAWlOtix/dRuZTfO7JF6sQzR8/bjcBRs/LCYi47SpABeupLQX1lk5Xgzp Ke5FR6w= -----END CERTIFICATE-----Generated at Sun Feb 16 15:20:09 2025 by rpki-client