$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/5509870E6B6911EFA634B086C4F9AE02.roa File: 5509870E6B6911EFA634B086C4F9AE02.roa (raw, json) Hash identifier: asEJPU7qXLCzqaXYCgM2ewsC/Ljdl61VbAkeSxk2z2Y= Subject key identifier: E1:AD:89:20:A6:FD:9A:2D:31:F8:2C:45:BB:5C:42:DC:6A:38:6D:30 Certificate issuer: /CN=A91C0E6A/serialNumber=F5459CBA31F933F9073B514C9CBBEC34F6ED2E4A Certificate serial: 0102 Authority key identifier: F5:45:9C:BA:31:F9:33:F9:07:3B:51:4C:9C:BB:EC:34:F6:ED:2E:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UWcujH5M_kHO1FMnLvsNPbtLko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/5509870E6B6911EFA634B086C4F9AE02.roa Signing time: Thu 05 Sep 2024 09:29:22 +0000 ROA not before: Thu 05 Sep 2024 09:29:22 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 150371 IP address blocks: 103.130.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/9UWcujH5M_kHO1FMnLvsNPbtLko.crl rsync://rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/9UWcujH5M_kHO1FMnLvsNPbtLko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UWcujH5M_kHO1FMnLvsNPbtLko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E6A Validity Not Before: Sep 5 09:29:22 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66d979f1-cb34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:bb:1b:d7:8c:c0:cd:87:bb:6b:37:7c:ff:12: 3a:f6:da:3c:8a:9b:17:27:e5:95:ed:05:99:2e:22: 47:7d:0e:56:50:41:3d:bc:ec:23:f2:06:62:d5:8c: 92:9a:d0:54:1e:3e:71:fb:1b:99:11:2c:7b:4a:f9: e1:04:29:aa:44:06:35:3d:5a:d5:87:b8:c4:c6:bc: 76:8c:fb:34:df:87:65:74:94:59:51:3f:a2:e9:0f: 1e:cf:24:1e:4a:4e:b1:57:6d:ec:07:04:c1:ae:6f: 11:90:6f:63:70:ba:99:3d:b0:c1:dd:6c:14:fd:f9: 0c:6a:13:d9:4b:62:56:1c:99:8a:20:d6:f7:77:ff: 65:ad:44:f5:ff:6d:60:88:54:1f:cb:06:15:1d:e4: c7:1d:9b:6f:20:a4:9c:2f:8e:ff:a8:47:5d:e9:86: 75:5a:5a:17:e8:22:d3:ae:6c:fb:e2:67:7c:14:4b: aa:71:61:5a:1e:f5:bf:a9:a3:05:cc:be:1f:76:e6: 5d:63:65:eb:a4:93:d4:f9:24:65:76:1a:62:32:8f: bd:25:fd:8b:69:bf:b4:9f:9b:be:31:82:e6:e6:12: 67:06:92:5f:90:73:a2:c9:ec:92:08:3d:d9:2f:de: ac:a4:e1:b7:2f:50:8c:da:aa:e7:f5:6d:8f:dd:69: 8e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:AD:89:20:A6:FD:9A:2D:31:F8:2C:45:BB:5C:42:DC:6A:38:6D:30 X509v3 Authority Key Identifier: keyid:F5:45:9C:BA:31:F9:33:F9:07:3B:51:4C:9C:BB:EC:34:F6:ED:2E:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/9UWcujH5M_kHO1FMnLvsNPbtLko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UWcujH5M_kHO1FMnLvsNPbtLko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E6A/4C281BBE11A611EEB3346926C4F9AE02/5509870E6B6911EFA634B086C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.130.239.0/24 Signature Algorithm: sha256WithRSAEncryption 90:72:d7:50:c0:5d:5f:79:c0:47:85:3a:f0:91:ed:7d:51:26: 73:01:3f:3b:37:6a:15:00:36:be:e8:d0:39:d6:8e:94:c5:3e: a1:cd:65:ae:83:9d:e8:17:e9:2d:00:ab:a4:43:5e:6f:7e:0d: 70:f5:e0:09:78:fe:e6:c9:b3:19:17:1d:a6:2b:84:e8:56:99: d1:38:3a:6f:be:5c:c7:8b:a8:d8:52:d6:06:28:10:ab:ab:b2: 35:67:38:17:b0:d2:46:da:94:ab:d9:90:fa:8b:e5:d5:d3:7d: 34:bc:da:5a:3f:33:41:fc:56:8c:dd:b4:4f:cd:d6:04:a7:b5: a9:9e:80:88:c1:2f:29:c2:a8:4d:67:2a:26:f0:31:03:b9:d1: 13:6c:3f:48:18:97:6e:42:31:45:47:3e:ea:00:bc:23:a2:ca: 12:44:b5:04:bc:ec:12:8f:cd:69:94:61:77:1d:4a:14:19:e3: 42:e6:ec:b3:ac:ec:3d:77:20:ee:ce:bc:29:d7:a6:52:55:4b: a6:94:73:f2:7c:b6:0e:e1:13:c8:b5:f9:55:66:a5:31:27:5e: 4d:06:89:63:93:30:f3:e9:f8:3f:26:1b:db:9a:99:74:fc:c1: 81:ff:6d:59:0e:8d:95:e9:d7:5a:b9:3f:5b:0b:6b:bb:4b:9e: d7:80:c8:5a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNkExMTAvBgNVBAUTKEY1NDU5Q0JBMzFGOTMzRjkwNzNCNTE0QzlDQkJFQzM0 RjZFRDJFNEEwHhcNMjQwOTA1MDkyOTIyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5NzlmMS1jYjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybsb14zAzYe7azd8/xI69to8ipsXJ+WV7QWZLiJHfQ5WUEE9vOwj8gZi1YyS mtBUHj5x+xuZESx7SvnhBCmqRAY1PVrVh7jExrx2jPs034dldJRZUT+i6Q8ezyQe Sk6xV23sBwTBrm8RkG9jcLqZPbDB3WwU/fkMahPZS2JWHJmKINb3d/9lrUT1/21g iFQfywYVHeTHHZtvIKScL47/qEdd6YZ1WloX6CLTrmz74md8FEuqcWFaHvW/qaMF zL4fduZdY2XrpJPU+SRldhpiMo+9Jf2Lab+0n5u+MYLm5hJnBpJfkHOiyeySCD3Z L96spOG3L1CM2qrn9W2P3WmOyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOGtiSCm /ZotMfgsRbtcQtxqOG0wMB8GA1UdIwQYMBaAFPVFnLox+TP5BztRTJy77DT27S5K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU2QS80QzI4MUJCRTEx QTYxMUVFQjMzNDY5MjZDNEY5QUUwMi85VVdjdWpINU1fa0hPMUZNbkx2c05QYnRM a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlVV2N1akg1TV9rSE8xRk1uTHZzTlBidExrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBFNkEvNEMyODFCQkUxMUE2MTFFRUIzMzQ2OTI2QzRGOUFFMDIvNTUwOTg3MEU2 QjY5MTFFRkE2MzRCMDg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABngu8wDQYJKoZIhvcNAQELBQADggEBAJBy11DAXV95wEeF OvCR7X1RJnMBPzs3ahUANr7o0DnWjpTFPqHNZa6DnegX6S0Aq6RDXm9+DXD14Al4 /ubJsxkXHaYrhOhWmdE4Om++XMeLqNhS1gYoEKursjVnOBew0kbalKvZkPqL5dXT fTS82lo/M0H8VozdtE/N1gSntamegIjBLynCqE1nKibwMQO50RNsP0gYl25CMUVH PuoAvCOiyhJEtQS87BKPzWmUYXcdShQZ40Lm7LOs7D13IO7OvCnXplJVS6aUc/J8 tg7hE8i1+VVmpTEnXk0GiWOTMPPp+D8mG9uamXT8wYH/bVkOjZXp11q5P1sLa7tL nteAyFo= -----END CERTIFICATE-----Generated at Sun Feb 16 20:31:05 2025 by rpki-client