$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/CA1A46101A5B11EE89B07267C4F9AE02.roa File: CA1A46101A5B11EE89B07267C4F9AE02.roa (raw, json) Hash identifier: 8ElsEHtT0SW1j1aAkI7fCGcQz8Vw9D+aynR3ExaKcpk= Subject key identifier: C8:B3:CB:02:B1:E1:DF:BA:67:DE:DD:75:30:70:C5:43:EA:8C:37:A0 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 023F Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/CA1A46101A5B11EE89B07267C4F9AE02.roa Signing time: Thu 05 Sep 2024 04:18:21 +0000 ROA not before: Thu 05 Sep 2024 04:18:21 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 207990 IP address blocks: 103.109.80.0/23 maxlen: 24 103.192.206.0/24 maxlen: 24 103.194.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 575 (0x23f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587 Validity Not Before: Sep 5 04:18:21 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9310d-5b03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:3a:d9:23:b5:e0:f9:cd:8e:87:f4:2d:d0:69: 48:88:61:a4:22:40:b6:ba:1b:38:7a:62:87:73:34: 45:db:c3:57:c5:6d:01:4f:30:1a:03:93:ec:53:31: d8:ab:c6:78:4a:1b:44:c6:2d:8f:9d:da:20:ea:0c: 1d:f8:b6:75:89:47:19:83:13:fd:c4:7f:b5:d8:65: 0d:e5:77:8c:9b:e5:38:72:f0:68:ec:f0:49:12:21: 98:f8:79:e9:79:20:c3:f2:7c:6e:91:8d:2f:23:06: 8c:14:42:7b:29:a9:d3:10:c3:f6:83:64:f1:ce:79: 12:ab:c4:04:9a:57:86:35:cb:cf:b7:7a:48:9d:d1: 34:b4:d8:b5:28:00:ff:a4:74:af:e8:6c:7e:80:a6: 0e:d4:f2:9f:9e:a6:82:71:bd:fc:8c:af:c7:f3:99: 07:ff:77:6c:b9:c7:c1:08:cb:5b:c4:78:0f:95:f1: ad:8b:e1:99:5a:2e:13:75:e9:75:b8:0a:84:66:17: b8:00:ac:be:28:f8:7d:fd:8b:83:02:ed:31:ac:e8: d8:ce:bb:15:0b:ec:da:70:db:d1:a5:9b:32:cf:eb: 35:89:6c:35:7a:e8:f9:7c:d6:1a:ac:23:f1:d5:5a: 12:5d:fa:3e:20:df:45:54:ac:d7:a6:a3:92:66:7a: 55:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:B3:CB:02:B1:E1:DF:BA:67:DE:DD:75:30:70:C5:43:EA:8C:37:A0 X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/CA1A46101A5B11EE89B07267C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.80.0/23 103.192.206.0/24 103.194.114.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:7a:1f:8b:9e:20:cf:a2:d7:ac:a2:e9:97:a5:19:f8:23:27: 6a:64:ae:e0:04:44:89:14:fd:dd:a4:82:4f:2f:93:4f:e3:e2: 8a:29:ae:fb:5b:2d:1f:b5:bc:f9:03:52:05:e0:d2:b3:19:43: 42:eb:b3:1e:11:56:a7:7c:03:47:99:29:0b:42:d8:82:9c:57: 7a:6b:ae:c3:8d:03:9e:81:61:75:4a:ee:2d:e6:fd:12:91:2b: 72:87:ed:9e:33:88:6f:69:0a:97:a8:f7:81:01:26:76:f2:47: 0f:c1:04:ae:7e:80:86:16:e7:b0:aa:fd:4b:ea:b2:48:f0:c5: 7f:72:91:ec:1f:5c:46:a6:8f:7e:20:31:22:ae:4c:2b:b0:b4: 72:7e:17:d9:72:44:13:ce:8b:36:f3:c1:08:7d:45:be:1e:95: 1a:88:ad:21:2c:8d:56:ed:3c:ba:4c:47:7c:ca:5f:4d:6f:6f: 24:2c:9c:34:3b:bb:eb:3c:56:fc:fb:eb:10:3f:04:db:b3:09: ac:48:a2:75:f4:4c:2f:8b:3f:b3:b0:3e:9e:40:a4:da:7c:f1: 91:48:de:f7:ef:61:d5:03:da:69:15:47:0e:88:7d:44:40:14: 5e:36:e5:27:24:06:58:f2:6e:44:ea:62:98:24:1e:70:91:61: e8:ff:be:1d -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjQwOTA1MDQxODIxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MzEwZC01YjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0zrZI7Xg+c2Oh/Qt0GlIiGGkIkC2uhs4emKHczRF28NXxW0BTzAaA5PsUzHY q8Z4ShtExi2Pndog6gwd+LZ1iUcZgxP9xH+12GUN5XeMm+U4cvBo7PBJEiGY+Hnp eSDD8nxukY0vIwaMFEJ7KanTEMP2g2TxznkSq8QEmleGNcvPt3pIndE0tNi1KAD/ pHSv6Gx+gKYO1PKfnqaCcb38jK/H85kH/3dsucfBCMtbxHgPlfGti+GZWi4Tdel1 uAqEZhe4AKy+KPh9/YuDAu0xrOjYzrsVC+zacNvRpZsyz+s1iWw1euj5fNYarCPx 1VoSXfo+IN9FVKzXpqOSZnpVCQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFMizywKx 4d+6Z97ddTBwxUPqjDegMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvQ0ExQTQ2MTAx QTVCMTFFRTg5QjA3MjY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAFnbVADBABnwM4DBABnwnIwDQYJKoZIhvcNAQELBQADggEB AE96H4ueIM+i16yi6ZelGfgjJ2pkruAERIkU/d2kgk8vk0/j4ooprvtbLR+1vPkD UgXg0rMZQ0Lrsx4RVqd8A0eZKQtC2IKcV3prrsONA56BYXVK7i3m/RKRK3KH7Z4z iG9pCpeo94EBJnbyRw/BBK5+gIYW57Cq/UvqskjwxX9ykewfXEamj34gMSKuTCuw tHJ+F9lyRBPOizbzwQh9Rb4elRqIrSEsjVbtPLpMR3zKX01vbyQsnDQ7u+s8Vvz7 6xA/BNuzCaxIonX0TC+LP7OwPp5ApNp88ZFI3vfvYdUD2mkVRw6IfURAFF425Sck BljybkTqYpgkHnCRYej/vh0= -----END CERTIFICATE-----Generated at Sun Feb 16 22:15:23 2025 by rpki-client