$ rpki-client -vvf rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/06398E92797611EFAD5DCD6DC4F9AE02.roa File: 06398E92797611EFAD5DCD6DC4F9AE02.roa (raw, json) Hash identifier: oB1KrOj+GDSyYCYs5T2AxtFqZGFct9w3bhi2QDabxU4= Subject key identifier: F6:A2:7A:56:CE:5E:8B:B4:E9:6D:6E:89:4C:55:AD:06:0B:99:0C:79 Certificate issuer: /CN=A91B88CA/serialNumber=F625E6CC039026FF5BC9D6BDC42D8D1C18ABF33B Certificate serial: 71 Authority key identifier: F6:25:E6:CC:03:90:26:FF:5B:C9:D6:BD:C4:2D:8D:1C:18:AB:F3:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXmzAOQJv9byda9xC2NHBir8zs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/06398E92797611EFAD5DCD6DC4F9AE02.roa Signing time: Thu 05 Dec 2024 08:28:11 +0000 ROA not before: Thu 05 Dec 2024 08:28:11 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 137443 IP address blocks: 103.117.136.0/24 maxlen: 24 103.117.137.0/24 maxlen: 24 103.117.138.0/24 maxlen: 24 103.117.139.0/24 maxlen: 24 2403:1a40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/9iXmzAOQJv9byda9xC2NHBir8zs.crl rsync://rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/9iXmzAOQJv9byda9xC2NHBir8zs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXmzAOQJv9byda9xC2NHBir8zs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B88CA Validity Not Before: Dec 5 08:28:11 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6751641b-376d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:07:2a:d8:b2:b5:89:52:7d:6c:5d:01:30:e2: f9:9e:86:af:f6:99:84:9c:7f:ff:b7:7d:6e:e9:21: 22:17:6a:9d:31:31:be:43:8c:52:ac:3d:c9:7f:c8: aa:39:a8:7e:4c:91:1b:d1:54:c9:b7:f9:63:8d:dd: 9c:42:56:ff:e0:2b:17:69:97:1b:57:45:34:4d:b8: 81:1e:39:ab:16:a8:81:e0:0f:e5:59:e5:ad:4f:c8: df:1c:2b:80:c6:30:fb:e7:2a:93:2d:38:e5:e3:1e: 93:b0:1d:e8:05:35:02:ca:87:6c:53:e2:e7:64:c2: 70:dc:08:3d:33:fe:65:e6:d6:ef:1d:88:4c:16:a0: bd:27:8f:0b:83:96:e6:39:df:94:ee:94:66:f0:2d: b7:83:f8:3e:05:2c:92:71:9c:bf:ed:35:71:3e:ce: 70:4a:62:d1:ab:57:10:95:e9:92:84:bc:e7:1e:41: 46:2d:2b:71:df:80:4d:53:72:5f:7e:8d:a4:82:19: cf:05:49:64:d2:db:85:45:c9:13:a6:59:6a:e9:e8: a1:e0:54:2f:64:87:bd:10:92:dd:28:02:0b:78:20: b3:00:63:57:64:de:60:f4:72:b1:0f:a1:2b:39:31: 20:e2:3e:d6:d2:f8:99:08:2e:d6:49:2c:76:49:f1: 32:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:A2:7A:56:CE:5E:8B:B4:E9:6D:6E:89:4C:55:AD:06:0B:99:0C:79 X509v3 Authority Key Identifier: keyid:F6:25:E6:CC:03:90:26:FF:5B:C9:D6:BD:C4:2D:8D:1C:18:AB:F3:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/9iXmzAOQJv9byda9xC2NHBir8zs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9iXmzAOQJv9byda9xC2NHBir8zs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B88CA/5696E746346511EFAF6DEB4EC4F9AE02/06398E92797611EFAD5DCD6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.136.0/22 IPv6: 2403:1a40::/32 Signature Algorithm: sha256WithRSAEncryption 68:67:39:ca:f3:64:f8:aa:fa:4c:1b:81:c7:9c:70:03:d6:9e: 33:a9:fe:fc:ee:29:1e:69:ef:e4:4e:07:a3:05:11:04:22:ea: a9:4b:8f:90:7a:cc:b9:e6:72:3d:f1:35:ce:0a:9a:e2:46:e9: f4:3b:e1:62:4f:d1:26:9d:62:6a:8b:95:b8:a5:36:4b:b1:2c: 1f:39:06:09:09:35:86:c0:37:8b:e8:ca:f4:3d:7b:e0:fd:57: e8:97:e7:28:97:24:c6:ea:6f:11:f8:99:b7:30:7b:59:ea:18: d7:29:7c:fa:00:2a:5c:7c:43:aa:34:2a:e5:aa:79:18:f8:38: cc:77:56:ce:eb:ff:8a:52:55:70:81:3b:f6:e7:a9:c0:74:02: 92:12:25:db:cd:7a:80:04:0b:bb:ba:24:f8:09:3f:a8:a4:1b: 3b:37:6e:44:3d:e4:e4:63:81:8b:01:a7:00:e3:6a:d2:9e:27: 2d:06:7b:a3:6f:84:8d:05:d3:81:b4:b3:82:68:92:c7:67:6a: 13:82:03:3a:9d:c0:17:5a:ef:21:d4:00:6b:4a:72:8b:6d:e6: 20:38:2c:8d:8f:e0:40:a3:69:da:89:f1:d8:24:43:d1:1f:c4: 0a:84:d8:9f:54:92:30:21:13:86:06:05:e1:7a:04:1c:9b:92: 4c:12:6f:8b -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC ODhDQTExMC8GA1UEBRMoRjYyNUU2Q0MwMzkwMjZGRjVCQzlENkJEQzQyRDhEMUMx OEFCRjMzQjAeFw0yNDEyMDUwODI4MTFaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NTE2NDFiLTM3NmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFByrYsrWJUn1sXQEw4vmehq/2mYScf/+3fW7pISIXap0xMb5DjFKsPcl/yKo5 qH5MkRvRVMm3+WON3ZxCVv/gKxdplxtXRTRNuIEeOasWqIHgD+VZ5a1PyN8cK4DG MPvnKpMtOOXjHpOwHegFNQLKh2xT4udkwnDcCD0z/mXm1u8diEwWoL0njwuDluY5 35TulGbwLbeD+D4FLJJxnL/tNXE+znBKYtGrVxCV6ZKEvOceQUYtK3HfgE1Tcl9+ jaSCGc8FSWTS24VFyROmWWrp6KHgVC9kh70Qkt0oAgt4ILMAY1dk3mD0crEPoSs5 MSDiPtbS+JkILtZJLHZJ8TIdAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQU9qJ6Vs5e i7TpbW6JTFWtBguZDHkwHwYDVR0jBBgwFoAU9iXmzAOQJv9byda9xC2NHBir8zsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4OENBLzU2OTZFNzQ2MzQ2 NTExRUZBRjZERUI0RUM0RjlBRTAyLzlpWG16QU9RSnY5YnlkYTl4QzJOSEJpcjh6 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOWlYbXpBT1FKdjlieWRhOXhDMk5IQmlyOHpzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODhDQS81Njk2RTc0NjM0NjUxMUVGQUY2REVCNEVDNEY5QUUwMi8wNjM5OEU5Mjc5 NzYxMUVGQUQ1RENENkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAmd1iDANBAIAAjAHAwUAJAMaQDANBgkqhkiG9w0BAQsFAAOC AQEAaGc5yvNk+Kr6TBuBx5xwA9aeM6n+/O4pHmnv5E4HowURBCLqqUuPkHrMueZy PfE1zgqa4kbp9DvhYk/RJp1iaouVuKU2S7EsHzkGCQk1hsA3i+jK9D174P1X6Jfn KJckxupvEfiZtzB7WeoY1yl8+gAqXHxDqjQq5ap5GPg4zHdWzuv/ilJVcIE79uep wHQCkhIl2816gAQLu7ok+Ak/qKQbOzduRD3k5GOBiwGnAONq0p4nLQZ7o2+EjQXT gbSzgmiSx2dqE4IDOp3AF1rvIdQAa0pyi23mIDgsjY/gQKNp2onx2CRD0R/ECoTY n1SSMCEThgYF4XoEHJuSTBJviw== -----END CERTIFICATE-----Generated at Sat Apr 5 07:16:22 2025 by rpki-client