$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/0E9CF77EBA6811EC8058A213C4F9AE02.roa File: 0E9CF77EBA6811EC8058A213C4F9AE02.roa (raw, json) Hash identifier: I5MvmpsL8y59IDd7Mhzk7RlviZnPSJZXIgkWIwxVqvA= Subject key identifier: 99:76:A0:2B:7A:E4:90:99:92:6E:42:FC:5B:64:1C:5F:2E:A2:24:33 Certificate issuer: /CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Certificate serial: 02BC Authority key identifier: 90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/0E9CF77EBA6811EC8058A213C4F9AE02.roa Signing time: Tue 09 Jul 2024 02:44:30 +0000 ROA not before: Tue 09 Jul 2024 02:44:30 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 198949 IP address blocks: 103.35.217.0/24 maxlen: 24 103.232.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 00:40:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 700 (0x2bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2875 Validity Not Before: Jul 9 02:44:30 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=668ca40e-531b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:da:a8:8a:cf:c9:07:5d:47:59:aa:48:ab:9d: 14:d5:f0:f6:20:fd:84:a2:8d:36:c4:e2:7a:af:10: bf:6d:44:87:b9:f9:0f:d7:d1:e9:a3:2a:66:9f:d9: ad:03:5c:4d:c2:70:84:24:df:05:fc:12:9f:b0:cc: bc:d6:14:f9:8a:57:19:65:ae:45:48:4e:68:96:56: ad:fb:17:1d:d5:56:e9:8f:01:98:a0:2a:99:5d:22: 7c:28:ab:30:88:b2:c5:86:09:99:e0:af:b2:d3:09: 15:c0:16:eb:3d:d1:56:9b:e7:e0:1b:b7:94:3a:00: 81:e2:77:60:26:9d:61:58:07:a8:f8:d2:89:7a:0a: 49:9f:f3:9d:67:a8:e9:08:49:57:ea:20:25:c0:bc: e5:c5:be:52:f6:2f:88:48:0f:c5:d4:03:99:6a:d7: cd:cd:0d:4c:f3:2d:5e:90:52:cc:c9:9c:d9:24:17: 52:55:fb:91:1d:c6:de:10:d2:62:b6:1b:07:4b:20: d6:65:79:7f:f8:6c:99:cc:60:b8:f9:e1:a1:07:83: b9:0b:8a:36:84:17:00:3a:77:0c:10:79:33:0d:f3: cc:49:e5:29:d8:69:09:a7:29:78:7b:65:8a:8a:da: a8:8f:94:2c:bd:94:a0:79:43:14:91:f9:6e:e3:bb: 96:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:76:A0:2B:7A:E4:90:99:92:6E:42:FC:5B:64:1C:5F:2E:A2:24:33 X509v3 Authority Key Identifier: keyid:90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/0E9CF77EBA6811EC8058A213C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.217.0/24 103.232.224.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:0f:3d:58:e7:52:75:17:54:d8:5f:96:08:7f:44:f2:01:39: 09:18:24:16:12:a9:b1:5d:b0:c7:9a:6a:5e:be:eb:ab:31:31: 80:04:52:77:6b:d6:56:50:44:73:a0:a6:50:09:89:d7:89:21: f4:87:fb:aa:78:b3:f6:0a:b3:91:56:42:5f:b7:08:79:5d:c1: 02:81:27:c6:c5:ef:fc:cd:d1:a3:33:83:a2:80:7c:65:9a:27: 88:41:53:77:c9:fd:f2:e5:00:5c:63:10:d8:f5:3f:31:21:ce: 62:a2:2a:c6:51:b1:16:68:1c:c8:26:03:06:db:bb:8d:f2:ba: d8:14:20:c8:a9:52:8f:65:d3:a0:8e:5a:25:80:3e:03:96:e4: bd:e4:07:6b:2e:e6:b8:31:0b:c5:a0:4d:fe:83:21:66:54:ab: 43:c1:de:1a:4d:6e:c4:5e:53:cf:18:bf:9c:a4:62:df:1f:40: 74:9d:0f:4d:d9:4b:ce:af:b3:3e:d9:b8:06:02:22:eb:54:07: 69:5e:bb:61:3a:f9:b1:09:93:0f:06:f4:75:2d:78:58:87:5b: e5:7d:0c:69:ca:ff:8b:49:09:be:ba:ab:92:97:36:96:35:a6: f7:15:38:41:db:c6:5c:ff:0c:cd:8c:21:02:38:5f:16:8d:1f: 5e:24:48:76 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICArwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI4NzUxMTAvBgNVBAUTKDkwRDk5QUE4RDc5MTMxNDBBRkFFOUVFMkJGRUJDREEz N0JBMUNEMjgwHhcNMjQwNzA5MDI0NDMwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjhjYTQwZS01MzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Nqois/JB11HWapIq50U1fD2IP2Eoo02xOJ6rxC/bUSHufkP19Hpoypmn9mt A1xNwnCEJN8F/BKfsMy81hT5ilcZZa5FSE5ollat+xcd1VbpjwGYoCqZXSJ8KKsw iLLFhgmZ4K+y0wkVwBbrPdFWm+fgG7eUOgCB4ndgJp1hWAeo+NKJegpJn/OdZ6jp CElX6iAlwLzlxb5S9i+ISA/F1AOZatfNzQ1M8y1ekFLMyZzZJBdSVfuRHcbeENJi thsHSyDWZXl/+GyZzGC4+eGhB4O5C4o2hBcAOncMEHkzDfPMSeUp2GkJpyl4e2WK itqoj5QsvZSgeUMUkflu47uW1QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJl2oCt6 5JCZkm5C/FtkHF8uoiQzMB8GA1UdIwQYMBaAFJDZmqjXkTFAr66e4r/rzaN7oc0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjg3NS9DMjVERTBFNkI0 RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1VQ3ZycDdpdi12Tm8zdWh6 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tObWFxTmVSTVVDdnJwN2l2LXZObzN1aHpTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzI4NzUvQzI1REUwRTZCNEU4MTFFQzk4MEM0NDcxQzRGOUFFMDIvMEU5Q0Y3N0VC QTY4MTFFQzgwNThBMjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnI9kDBABn6OAwDQYJKoZIhvcNAQELBQADggEBAC4PPVjn UnUXVNhflgh/RPIBOQkYJBYSqbFdsMeaal6+66sxMYAEUndr1lZQRHOgplAJideJ IfSH+6p4s/YKs5FWQl+3CHldwQKBJ8bF7/zN0aMzg6KAfGWaJ4hBU3fJ/fLlAFxj ENj1PzEhzmKiKsZRsRZoHMgmAwbbu43yutgUIMipUo9l06COWiWAPgOW5L3kB2su 5rgxC8WgTf6DIWZUq0PB3hpNbsReU88Yv5ykYt8fQHSdD03ZS86vsz7ZuAYCIutU B2leu2E6+bEJkw8G9HUteFiHW+V9DGnK/4tJCb66q5KXNpY1pvcVOEHbxlz/DM2M IQI4XxaNH14kSHY= -----END CERTIFICATE-----Generated at Thu Mar 13 21:57:01 2025 by rpki-client