$ rpki-client -vvf rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/AB659244056211EBAE3DBC4CC4F9AE02.roa File: AB659244056211EBAE3DBC4CC4F9AE02.roa (raw, json) Hash identifier: Ptv1d6l4zCzsDfAGIqW3ARxnruAqZbwm3s5WFQRyBpQ= Subject key identifier: C4:EC:A6:4B:7E:DA:58:69:B0:78:6D:39:17:84:8B:98:30:7B:FF:63 Certificate issuer: /CN=A91C20AB/serialNumber=1B566DEF5F78E319BFC0D1400DE755E264A82BBC Certificate serial: 088E Authority key identifier: 1B:56:6D:EF:5F:78:E3:19:BF:C0:D1:40:0D:E7:55:E2:64:A8:2B:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G1Zt71944xm_wNFADedV4mSoK7w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/AB659244056211EBAE3DBC4CC4F9AE02.roa Signing time: Tue 10 Dec 2024 20:49:17 +0000 ROA not before: Tue 10 Dec 2024 20:49:17 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 19905 IP address blocks: 103.106.117.0/24 maxlen: 24 103.120.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/G1Zt71944xm_wNFADedV4mSoK7w.crl rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/G1Zt71944xm_wNFADedV4mSoK7w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G1Zt71944xm_wNFADedV4mSoK7w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2190 (0x88e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C20AB Validity Not Before: Dec 10 20:49:17 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6758a94d-d944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:2b:22:73:53:9a:a8:11:92:df:ec:a4:76:55: 9e:5f:40:2e:86:fa:30:62:e0:dc:31:7a:e5:a9:dd: a5:5a:a0:78:ff:81:ef:97:38:27:67:f1:51:d1:12: f7:2c:86:ee:a8:9a:1b:3e:86:0e:d3:dc:93:36:9b: 0c:5a:93:13:0f:c7:cd:4a:6d:3c:1d:4a:78:15:75: 8c:da:77:10:06:57:c4:a5:45:90:95:3e:6f:af:6c: a6:94:d2:c8:b0:92:28:11:35:59:eb:e9:ff:6e:7a: 7d:4f:85:6a:f0:b2:0d:4f:b9:31:9f:20:24:8c:a8: c8:c9:c8:d3:ac:02:ea:de:11:21:3a:e3:4c:78:d8: c4:53:52:73:ce:00:a3:98:09:17:4d:ee:f6:0a:05: 38:dc:89:a2:94:71:51:e6:8f:ac:e6:66:67:30:71: 63:8b:38:9d:f3:5c:c9:ef:86:15:b0:4b:7a:2d:cf: bd:8d:32:95:bb:14:39:94:dc:4d:33:fc:0a:f3:26: 34:d2:d3:e4:1d:3f:46:16:5d:68:f7:f1:07:e8:78: 33:ab:1e:74:01:c1:fa:71:31:df:66:13:18:22:e2: d6:94:a6:54:77:80:b2:fe:04:b1:b4:ad:31:08:38: 18:ca:be:f8:4f:86:91:5b:b3:eb:4d:26:8f:c8:b2: bf:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:EC:A6:4B:7E:DA:58:69:B0:78:6D:39:17:84:8B:98:30:7B:FF:63 X509v3 Authority Key Identifier: keyid:1B:56:6D:EF:5F:78:E3:19:BF:C0:D1:40:0D:E7:55:E2:64:A8:2B:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/G1Zt71944xm_wNFADedV4mSoK7w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G1Zt71944xm_wNFADedV4mSoK7w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/AB659244056211EBAE3DBC4CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.117.0/24 103.120.41.0/24 Signature Algorithm: sha256WithRSAEncryption 47:56:6d:1d:05:df:47:a5:b6:11:19:bd:ed:6f:c6:db:02:23: 5d:81:c2:60:20:cf:53:ec:60:be:57:bd:ca:2f:17:34:ba:32: c9:08:49:8e:3f:91:d8:a0:5e:eb:19:b8:0a:00:32:4e:80:9d: 43:24:9c:ea:ca:8d:02:47:63:d8:95:3c:24:2f:5b:3e:e4:db: 94:1d:89:01:4c:da:cb:53:98:ea:d6:06:65:e9:f6:25:9f:ed: 52:68:10:1a:28:cb:20:bf:b7:8e:14:eb:5f:e0:23:43:3d:b0: 14:f2:8e:13:b0:bc:36:30:22:c8:68:2e:4f:ea:42:70:87:96: f7:cd:20:d3:86:61:06:46:9d:1b:23:0d:89:4a:20:59:ef:11: 57:db:e6:92:d4:60:5b:9f:81:fe:bd:af:81:95:e6:71:ee:4c: 21:3e:cb:53:67:04:90:98:47:3d:75:14:94:04:73:bf:38:2e: 7f:ee:96:13:f6:9f:44:02:fd:38:eb:85:e6:9a:03:d5:88:0f: 4d:19:94:65:df:09:3a:80:54:a5:77:7b:c2:45:bf:fc:97:8d: b7:03:8f:da:3e:30:99:96:84:37:1e:74:e4:02:a2:9c:12:03: 2b:a9:26:5e:a9:59:a3:5e:52:f0:45:b5:c3:a0:30:21:80:01: 51:f0:f7:40 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIwQUIxMTAvBgNVBAUTKDFCNTY2REVGNUY3OEUzMTlCRkMwRDE0MDBERTc1NUUy NjRBODJCQkMwHhcNMjQxMjEwMjA0OTE3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU4YTk0ZC1kOTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ysic1OaqBGS3+ykdlWeX0AuhvowYuDcMXrlqd2lWqB4/4HvlzgnZ/FR0RL3 LIbuqJobPoYO09yTNpsMWpMTD8fNSm08HUp4FXWM2ncQBlfEpUWQlT5vr2ymlNLI sJIoETVZ6+n/bnp9T4Vq8LINT7kxnyAkjKjIycjTrALq3hEhOuNMeNjEU1JzzgCj mAkXTe72CgU43ImilHFR5o+s5mZnMHFjizid81zJ74YVsEt6Lc+9jTKVuxQ5lNxN M/wK8yY00tPkHT9GFl1o9/EH6Hgzqx50AcH6cTHfZhMYIuLWlKZUd4Cy/gSxtK0x CDgYyr74T4aRW7PrTSaPyLK/dwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMTspkt+ 2lhpsHhtOReEi5gwe/9jMB8GA1UdIwQYMBaAFBtWbe9feOMZv8DRQA3nVeJkqCu8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjBBQi82QkU1NTBCMEIw OTMxMUVBOEFGMzE3NUVDNEY5QUUwMi9HMVp0NzE5NDR4bV93TkZBRGVkVjRtU29L N3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0cxWnQ3MTk0NHhtX3dORkFEZWRWNG1Tb0s3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzIwQUIvNkJFNTUwQjBCMDkzMTFFQThBRjMxNzVFQzRGOUFFMDIvQUI2NTkyNDQw NTYyMTFFQkFFM0RCQzRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnanUDBABneCkwDQYJKoZIhvcNAQELBQADggEBAEdWbR0F 30elthEZve1vxtsCI12BwmAgz1PsYL5XvcovFzS6MskISY4/kdigXusZuAoAMk6A nUMknOrKjQJHY9iVPCQvWz7k25QdiQFM2stTmOrWBmXp9iWf7VJoEBooyyC/t44U 61/gI0M9sBTyjhOwvDYwIshoLk/qQnCHlvfNINOGYQZGnRsjDYlKIFnvEVfb5pLU YFufgf69r4GV5nHuTCE+y1NnBJCYRz11FJQEc784Ln/ulhP2n0QC/TjrheaaA9WI D00ZlGXfCTqAVKV3e8JFv/yXjbcDj9o+MJmWhDcedOQCopwSAyupJl6pWaNeUvBF tcOgMCGAAVHw90A= -----END CERTIFICATE-----Generated at Sun Feb 16 15:27:18 2025 by rpki-client