$ rpki-client -vvf rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/1F99EBD4C66F11EAA0B1B019C4F9AE02.roa File: 1F99EBD4C66F11EAA0B1B019C4F9AE02.roa (raw, json) Hash identifier: mBsQp19MJChPAh0neRjuRaTqTqqlhbgiZ+3pPDgiX8M= Subject key identifier: 59:C0:9C:77:F4:28:F0:85:96:A3:BA:81:17:4D:87:93:6C:97:6D:7A Certificate issuer: /CN=A91B653B/serialNumber=BCAE5732EF219732B49AC8284DB1814E92C86B11 Certificate serial: 07D8 Authority key identifier: BC:AE:57:32:EF:21:97:32:B4:9A:C8:28:4D:B1:81:4E:92:C8:6B:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vK5XMu8hlzK0msgoTbGBTpLIaxE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/1F99EBD4C66F11EAA0B1B019C4F9AE02.roa Signing time: Wed 26 Jun 2024 21:54:58 +0000 ROA not before: Wed 26 Jun 2024 21:54:58 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 14618 IP address blocks: 103.150.161.0/24 maxlen: 24 103.161.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/vK5XMu8hlzK0msgoTbGBTpLIaxE.crl rsync://rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/vK5XMu8hlzK0msgoTbGBTpLIaxE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vK5XMu8hlzK0msgoTbGBTpLIaxE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 20:26:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2008 (0x7d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B653B Validity Not Before: Jun 26 21:54:58 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=667c8e32-7818 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:87:7f:03:7c:79:50:e1:02:36:2d:89:02:0e: 3b:de:f9:17:fc:09:23:60:cc:71:58:19:2a:61:8d: 75:3b:32:67:6b:58:71:e5:f3:fa:99:36:8d:43:55: d0:4a:03:3c:b8:18:8c:6c:6a:f6:8b:d5:8e:87:5e: 6e:bc:4a:a8:d4:a5:f0:c2:2a:94:41:cd:bc:7a:92: d4:3c:67:08:3d:4e:ca:6f:c0:b3:44:61:a9:94:fd: cd:88:a7:e6:3f:2f:be:fe:8d:9a:0b:9a:61:95:c2: bc:1a:bb:95:1c:94:ee:e1:85:d7:e1:15:c8:ab:2c: e4:10:11:6b:1e:99:3f:0d:70:02:bd:35:5c:57:5c: b3:2a:63:73:f3:2d:8b:bb:03:14:bd:11:d4:e7:b6: 9a:48:3a:bc:19:07:b7:40:53:db:c0:5f:4d:4b:cd: 3e:13:81:78:0a:b5:bd:d5:65:22:ce:97:a9:0f:a2: 78:b5:91:b8:83:48:e3:30:3e:cf:d4:72:19:dd:17: 7c:52:dd:a5:14:a8:bc:c8:12:7e:9d:79:4f:6d:57: 8c:00:88:2c:69:3c:e9:71:1f:a7:74:4e:2d:04:ab: 3e:07:29:1d:42:23:d4:59:f3:52:50:59:70:e2:56: 9b:05:4c:15:ac:0a:e9:28:0a:c9:f1:9e:72:dd:b9: 25:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:C0:9C:77:F4:28:F0:85:96:A3:BA:81:17:4D:87:93:6C:97:6D:7A X509v3 Authority Key Identifier: keyid:BC:AE:57:32:EF:21:97:32:B4:9A:C8:28:4D:B1:81:4E:92:C8:6B:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/vK5XMu8hlzK0msgoTbGBTpLIaxE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vK5XMu8hlzK0msgoTbGBTpLIaxE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B653B/29383CDEC20C11EAB812A01AC4F9AE02/1F99EBD4C66F11EAA0B1B019C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.161.0/24 103.161.77.0/24 Signature Algorithm: sha256WithRSAEncryption 74:e8:2e:46:b5:f5:63:08:bd:5a:fc:0f:76:e6:97:ca:d3:58: e8:62:06:d2:bd:a0:4c:28:f6:3c:72:24:26:47:5a:ac:63:9e: 6c:2d:49:79:24:56:1d:b0:6b:27:ba:74:14:ac:08:e4:22:70: 25:45:49:ce:ce:b0:58:81:23:06:eb:e5:0e:e8:95:fb:89:d2: 24:5a:22:cf:0c:b3:eb:ef:13:82:2c:52:24:a1:32:15:7e:80: 62:4d:36:43:59:e2:c1:62:6f:e3:9e:11:c4:45:c2:15:81:fc: 68:5f:1b:19:e8:7d:3d:c8:7e:58:f3:08:f9:b3:33:df:ed:41: a5:ed:2f:51:d3:5a:4c:e6:8b:50:78:3b:ec:ad:08:58:c7:39: ce:a1:c3:52:bb:ce:d6:dd:0c:44:7e:06:1a:7b:ee:58:27:26: d5:c5:f0:80:a6:39:75:8b:51:4a:d2:34:6e:01:a6:38:be:6c: 14:a5:5c:e9:61:04:b2:17:7c:cd:25:c2:cd:81:08:d5:b9:c2: 56:84:e8:2d:91:eb:56:d7:e1:60:e8:31:ae:0b:b5:e7:8c:80: 78:87:d4:cf:db:6a:b8:ac:72:4c:85:c3:db:c7:77:05:b0:9f: a7:5d:3f:a9:b9:5a:f5:6f:0f:58:d3:d2:e7:0c:fc:0c:58:0b: 2a:32:f4:d4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1M0IxMTAvBgNVBAUTKEJDQUU1NzMyRUYyMTk3MzJCNDlBQzgyODREQjE4MTRF OTJDODZCMTEwHhcNMjQwNjI2MjE1NDU4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdjOGUzMi03ODE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxod/A3x5UOECNi2JAg473vkX/AkjYMxxWBkqYY11OzJna1hx5fP6mTaNQ1XQ SgM8uBiMbGr2i9WOh15uvEqo1KXwwiqUQc28epLUPGcIPU7Kb8CzRGGplP3NiKfm Py++/o2aC5phlcK8GruVHJTu4YXX4RXIqyzkEBFrHpk/DXACvTVcV1yzKmNz8y2L uwMUvRHU57aaSDq8GQe3QFPbwF9NS80+E4F4CrW91WUizpepD6J4tZG4g0jjMD7P 1HIZ3Rd8Ut2lFKi8yBJ+nXlPbVeMAIgsaTzpcR+ndE4tBKs+BykdQiPUWfNSUFlw 4labBUwVrArpKArJ8Z5y3bkl9QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFnAnHf0 KPCFlqO6gRdNh5Nsl216MB8GA1UdIwQYMBaAFLyuVzLvIZcytJrIKE2xgU6SyGsR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjUzQi8yOTM4M0NERUMy MEMxMUVBQjgxMkEwMUFDNEY5QUUwMi92SzVYTXU4aGx6SzBtc2dvVGJHQlRwTElh eEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZLNVhNdThobHpLMG1zZ29UYkdCVHBMSWF4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1M0IvMjkzODNDREVDMjBDMTFFQUI4MTJBMDFBQzRGOUFFMDIvMUY5OUVCRDRD NjZGMTFFQUEwQjFCMDE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnlqEDBABnoU0wDQYJKoZIhvcNAQELBQADggEBAHToLka1 9WMIvVr8D3bml8rTWOhiBtK9oEwo9jxyJCZHWqxjnmwtSXkkVh2waye6dBSsCOQi cCVFSc7OsFiBIwbr5Q7olfuJ0iRaIs8Ms+vvE4IsUiShMhV+gGJNNkNZ4sFib+Oe EcRFwhWB/GhfGxnofT3IfljzCPmzM9/tQaXtL1HTWkzmi1B4O+ytCFjHOc6hw1K7 ztbdDER+Bhp77lgnJtXF8ICmOXWLUUrSNG4Bpji+bBSlXOlhBLIXfM0lws2BCNW5 wlaE6C2R61bX4WDoMa4LteeMgHiH1M/barisckyFw9vHdwWwn6ddP6m5WvVvD1jT 0ucM/AxYCyoy9NQ= -----END CERTIFICATE-----Generated at Thu Mar 13 21:54:16 2025 by rpki-client