$ rpki-client -vvf rpki.apnic.net/member_repository/A91C278B/06B0B62A0A4811ECBC573D5FC4F9AE02/9D752204479111ECA77ED34DC4F9AE02.roa File: 9D752204479111ECA77ED34DC4F9AE02.roa (raw, json) Hash identifier: XDKnImKrROyw/ip89561zvYG5bmwAM7xctdHrkfLbGA= Subject key identifier: D9:58:79:75:89:7A:C0:F9:05:56:48:38:65:BC:2E:40:D8:F8:52:0C Certificate issuer: /CN=A91C278B/serialNumber=3C433B64E64C46DFD58E63C115284485815231FF Certificate serial: 049B Authority key identifier: 3C:43:3B:64:E6:4C:46:DF:D5:8E:63:C1:15:28:44:85:81:52:31:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PEM7ZOZMRt_VjmPBFShEhYFSMf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C278B/06B0B62A0A4811ECBC573D5FC4F9AE02/9D752204479111ECA77ED34DC4F9AE02.roa Signing time: Sat 07 Sep 2024 01:13:58 +0000 ROA not before: Sat 07 Sep 2024 01:13:57 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.196.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C278B/06B0B62A0A4811ECBC573D5FC4F9AE02/PEM7ZOZMRt_VjmPBFShEhYFSMf8.crl rsync://rpki.apnic.net/member_repository/A91C278B/06B0B62A0A4811ECBC573D5FC4F9AE02/PEM7ZOZMRt_VjmPBFShEhYFSMf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PEM7ZOZMRt_VjmPBFShEhYFSMf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1179 (0x49b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C278B Validity Not Before: Sep 7 01:13:57 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66dba8d5-e2cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:31:be:b1:92:62:b0:6f:b2:a5:78:92:c2:28: f6:55:19:0c:f1:5c:42:21:5c:c7:b4:40:6f:dc:af: 34:d4:1d:38:a8:12:5b:da:70:fd:d6:aa:3c:c7:8c: 5d:05:22:09:e4:20:c4:1a:8a:32:a4:2e:32:bf:7d: 44:3b:5a:8a:1e:2f:ca:9c:a0:b5:3c:be:b4:b7:cb: 8d:a4:68:5e:b2:83:91:9c:43:72:41:76:51:ec:ea: 5d:bf:58:cd:f3:24:cb:e4:1d:cb:48:39:70:2a:ac: c6:72:77:70:a3:b1:7b:2f:df:29:f7:ac:ed:d0:6f: 40:8e:68:2c:95:10:fd:14:6f:de:45:05:a0:c6:f2: f6:97:27:ef:5a:d5:cb:58:f3:b5:46:2a:01:e2:7f: 92:a7:b7:56:69:9b:e4:89:bc:38:96:18:51:d3:27: 0b:a9:9b:47:1c:f8:ae:82:8a:9b:d5:53:87:aa:e0: 56:5d:55:db:80:52:29:6f:c4:13:9a:f9:f8:87:73: be:3a:dc:85:46:4b:05:c2:4e:37:53:b8:69:c8:19: 98:da:ce:06:46:4f:aa:6c:b1:66:72:47:2c:f7:76: ee:cd:81:8d:f7:e0:99:f4:d4:66:f5:bc:fe:6f:34: 03:dc:99:6b:c0:fc:03:a0:7a:c0:8e:cf:6d:6f:33: 52:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:58:79:75:89:7A:C0:F9:05:56:48:38:65:BC:2E:40:D8:F8:52:0C X509v3 Authority Key Identifier: keyid:3C:43:3B:64:E6:4C:46:DF:D5:8E:63:C1:15:28:44:85:81:52:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C278B/06B0B62A0A4811ECBC573D5FC4F9AE02/PEM7ZOZMRt_VjmPBFShEhYFSMf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PEM7ZOZMRt_VjmPBFShEhYFSMf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C278B/06B0B62A0A4811ECBC573D5FC4F9AE02/9D752204479111ECA77ED34DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.196.32.0/24 Signature Algorithm: sha256WithRSAEncryption 91:60:6c:f8:54:10:cd:11:7a:8b:81:33:d4:2f:36:e6:77:83: 5f:5d:48:cd:b1:2f:1f:89:ac:6f:23:6e:85:25:1e:60:e1:31: 2c:3e:bd:38:3d:34:28:d4:80:da:18:88:e0:e9:7f:cb:1c:4d: e5:e7:8a:74:30:c5:f5:60:69:84:03:51:9f:15:0b:a7:ae:94: 67:98:ee:9d:9f:8d:d9:54:42:52:ab:fd:ab:dc:31:8e:fe:bc: 6c:d2:f4:12:73:af:86:b8:1f:fc:fe:08:42:fb:d9:cf:be:4b: 4e:44:aa:0a:08:81:eb:bc:28:dc:db:be:52:f5:2e:bc:5f:c5: 43:81:b1:f1:61:e5:94:2a:54:31:77:d1:d2:6d:8a:d5:a9:60: 74:7a:9b:bd:0f:ee:d4:d9:5d:7d:02:6e:a9:8a:72:4c:1f:2b: 8a:31:6c:9f:11:d7:51:23:15:bb:27:78:e9:ae:e6:f2:cc:af: 7e:af:c0:f2:60:72:83:ae:e9:b8:90:59:03:b4:a5:24:b0:1b: d5:66:c1:58:50:44:db:66:48:17:7a:e1:cc:90:32:2e:02:39: ea:f9:b5:76:17:a9:63:ea:e7:a5:4e:a4:75:5b:bd:e2:09:21: 45:c0:3e:a8:7a:be:af:56:1d:f7:da:d9:52:2a:27:0e:51:86: ce:f9:9d:2a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI3OEIxMTAvBgNVBAUTKDNDNDMzQjY0RTY0QzQ2REZENThFNjNDMTE1Mjg0NDg1 ODE1MjMxRkYwHhcNMjQwOTA3MDExMzU3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiYThkNS1lMmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjG+sZJisG+ypXiSwij2VRkM8VxCIVzHtEBv3K801B04qBJb2nD91qo8x4xd BSIJ5CDEGooypC4yv31EO1qKHi/KnKC1PL60t8uNpGhesoORnENyQXZR7Opdv1jN 8yTL5B3LSDlwKqzGcndwo7F7L98p96zt0G9AjmgslRD9FG/eRQWgxvL2lyfvWtXL WPO1RioB4n+Sp7dWaZvkibw4lhhR0ycLqZtHHPiugoqb1VOHquBWXVXbgFIpb8QT mvn4h3O+OtyFRksFwk43U7hpyBmY2s4GRk+qbLFmckcs93buzYGN9+CZ9NRm9bz+ bzQD3JlrwPwDoHrAjs9tbzNSqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNlYeXWJ esD5BVZIOGW8LkDY+FIMMB8GA1UdIwQYMBaAFDxDO2TmTEbf1Y5jwRUoRIWBUjH/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjc4Qi8wNkIwQjYyQTBB NDgxMUVDQkM1NzNENUZDNEY5QUUwMi9QRU03Wk9aTVJ0X1ZqbVBCRlNoRWhZRlNN ZjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BFTTdaT1pNUnRfVmptUEJGU2hFaFlGU01mOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzI3OEIvMDZCMEI2MkEwQTQ4MTFFQ0JDNTczRDVGQzRGOUFFMDIvOUQ3NTIyMDQ0 NzkxMTFFQ0E3N0VEMzREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnxCAwDQYJKoZIhvcNAQELBQADggEBAJFgbPhUEM0ReouB M9QvNuZ3g19dSM2xLx+JrG8jboUlHmDhMSw+vTg9NCjUgNoYiODpf8scTeXninQw xfVgaYQDUZ8VC6eulGeY7p2fjdlUQlKr/avcMY7+vGzS9BJzr4a4H/z+CEL72c++ S05EqgoIgeu8KNzbvlL1LrxfxUOBsfFh5ZQqVDF30dJtitWpYHR6m70P7tTZXX0C bqmKckwfK4oxbJ8R11EjFbsneOmu5vLMr36vwPJgcoOu6biQWQO0pSSwG9VmwVhQ RNtmSBd64cyQMi4COer5tXYXqWPq56VOpHVbveIJIUXAPqh6vq9WHffa2VIqJw5R hs75nSo= -----END CERTIFICATE-----Generated at Sun Feb 16 15:31:55 2025 by rpki-client