$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/A042865C3DB211EE9EB40D3DC4F9AE02.roa File: A042865C3DB211EE9EB40D3DC4F9AE02.roa (raw, json) Hash identifier: 00gQlkZJ/La3W11cygPUEyOgfEz6qTJK4E6QUbIb+4w= Subject key identifier: C2:F6:88:07:E1:17:92:75:5B:B2:A5:AE:B8:19:36:A9:E7:A9:A6:EF Certificate issuer: /CN=A91C0C9B/serialNumber=494202B031E9F427643157A06EFAA4C070C7F3ED Certificate serial: 0460 Authority key identifier: 49:42:02:B0:31:E9:F4:27:64:31:57:A0:6E:FA:A4:C0:70:C7:F3:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/A042865C3DB211EE9EB40D3DC4F9AE02.roa Signing time: Wed 23 Oct 2024 00:34:13 +0000 ROA not before: Wed 23 Oct 2024 00:34:13 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 133752 IP address blocks: 103.134.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.crl rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 23:39:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1120 (0x460) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C9B Validity Not Before: Oct 23 00:34:13 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67184485-15dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:39:f7:99:f0:fa:f2:43:ed:74:0d:2a:1d:6a: 49:52:01:7b:d5:4f:3d:ac:b8:7a:da:3a:49:79:4d: 9c:bb:f8:55:30:da:44:5e:d7:26:f6:5c:13:4a:75: 26:8d:6a:f7:7b:a4:80:9a:f2:b8:9a:fb:b4:5f:41: bd:e4:eb:e8:5a:2b:be:39:30:80:b1:88:ca:a6:ba: 75:d3:ab:e1:5f:a3:ae:e7:04:f6:b9:27:39:02:4e: b2:c7:82:2d:64:b7:be:4b:bd:d6:e5:80:3e:49:85: e9:af:e1:ad:7d:ca:00:c7:b5:1d:11:e7:7e:3d:bc: b2:86:ca:11:25:ae:34:cd:76:9f:d2:6d:c4:0e:ad: fe:2d:c4:a7:e6:63:25:40:5f:f4:a6:c3:6b:41:99: ed:9f:ec:8e:9c:56:b1:7f:9b:c3:3e:12:cf:bd:3a: 5e:4c:73:e4:f3:0f:6c:6f:de:51:85:06:29:d9:7c: 32:85:9f:95:9a:34:ab:f5:62:52:e3:45:5d:b2:42: 34:69:b2:e8:04:0c:26:3e:22:5c:15:93:39:e1:34: 5b:e0:03:2c:dd:87:38:31:05:87:93:e1:51:84:7b: 92:e8:e3:f7:eb:b8:3e:77:f5:44:cb:d6:b1:81:07: 47:59:5c:69:73:d7:d2:2d:8b:7f:ea:6c:1c:66:2a: 79:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:F6:88:07:E1:17:92:75:5B:B2:A5:AE:B8:19:36:A9:E7:A9:A6:EF X509v3 Authority Key Identifier: keyid:49:42:02:B0:31:E9:F4:27:64:31:57:A0:6E:FA:A4:C0:70:C7:F3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/A042865C3DB211EE9EB40D3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.134.75.0/24 Signature Algorithm: sha256WithRSAEncryption 83:f3:44:db:5d:7e:dc:e4:0c:d7:fa:f4:d4:bc:71:ad:c7:af: 82:42:1a:cd:cb:2e:84:61:7d:9a:3a:b8:2c:10:2c:14:ac:88: fd:66:77:82:6c:ab:0c:0d:bd:b6:8a:5b:a6:88:10:f6:96:18: a4:11:5e:0b:e6:61:1d:1f:9c:a3:3a:30:10:3b:08:a9:00:35: 37:f9:b3:9a:39:36:b4:70:d4:1f:f2:66:e6:09:4e:30:fd:ce: 4f:ef:67:e5:6d:8f:49:6c:12:50:62:d5:46:b4:6d:56:5c:0f: 6c:08:27:ab:d3:d8:84:48:61:87:31:c0:e1:d1:41:2f:f4:d6: bd:c0:1e:98:51:a2:82:75:93:5f:a8:9e:fd:81:cf:eb:8f:f5: d7:d9:20:13:19:b5:a2:ec:57:88:dd:52:50:97:c0:4b:be:57: c7:26:32:c9:b6:0d:50:63:ac:1d:e2:a8:f7:33:a5:e8:72:2f: 46:d1:14:36:21:a3:f2:30:03:1a:ec:17:fa:0c:e9:fb:de:a5: 48:ea:da:20:02:35:61:9e:a6:33:b6:11:0a:95:15:49:65:4e: 8f:06:6a:2b:17:d3:c7:03:b5:0e:bc:de:6f:b6:50:df:26:b2: 09:3d:c3:e5:2a:27:26:6a:92:3f:f3:65:e8:a0:94:20:18:ac: b0:5d:84:d8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBGAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDOUIxMTAvBgNVBAUTKDQ5NDIwMkIwMzFFOUY0Mjc2NDMxNTdBMDZFRkFBNEMw NzBDN0YzRUQwHhcNMjQxMDIzMDAzNDEzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE4NDQ4NS0xNWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Dn3mfD68kPtdA0qHWpJUgF71U89rLh62jpJeU2cu/hVMNpEXtcm9lwTSnUm jWr3e6SAmvK4mvu0X0G95OvoWiu+OTCAsYjKprp106vhX6Ou5wT2uSc5Ak6yx4It ZLe+S73W5YA+SYXpr+GtfcoAx7UdEed+PbyyhsoRJa40zXaf0m3EDq3+LcSn5mMl QF/0psNrQZntn+yOnFaxf5vDPhLPvTpeTHPk8w9sb95RhQYp2XwyhZ+VmjSr9WJS 40VdskI0abLoBAwmPiJcFZM54TRb4AMs3Yc4MQWHk+FRhHuS6OP367g+d/VEy9ax gQdHWVxpc9fSLYt/6mwcZip5swIDAQABo4IClTCCApEwHQYDVR0OBBYEFML2iAfh F5J1W7KlrrgZNqnnqabvMB8GA1UdIwQYMBaAFElCArAx6fQnZDFXoG76pMBwx/Pt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEM5Qi9BNDZFOTg5QTMy MkIxMUVDOTdGOENGN0NDNEY5QUUwMi9TVUlDc0RIcDlDZGtNVmVnYnZxa3dIREg4 LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NVSUNzREhwOUNka01WZWdidnFrd0hESDgtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBDOUIvQTQ2RTk4OUEzMjJCMTFFQzk3RjhDRjdDQzRGOUFFMDIvQTA0Mjg2NUMz REIyMTFFRTlFQjQwRDNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnhkswDQYJKoZIhvcNAQELBQADggEBAIPzRNtdftzkDNf6 9NS8ca3Hr4JCGs3LLoRhfZo6uCwQLBSsiP1md4JsqwwNvbaKW6aIEPaWGKQRXgvm YR0fnKM6MBA7CKkANTf5s5o5NrRw1B/yZuYJTjD9zk/vZ+Vtj0lsElBi1Ua0bVZc D2wIJ6vT2IRIYYcxwOHRQS/01r3AHphRooJ1k1+onv2Bz+uP9dfZIBMZtaLsV4jd UlCXwEu+V8cmMsm2DVBjrB3iqPczpehyL0bRFDYho/IwAxrsF/oM6fvepUjq2iAC NWGepjO2EQqVFUllTo8GaisX08cDtQ683m+2UN8msgk9w+UqJyZqkj/zZeiglCAY rLBdhNg= -----END CERTIFICATE-----Generated at Thu Mar 13 21:56:59 2025 by rpki-client