$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/41A8950C272F11EF9D0A0C5CC4F9AE02.roa File: 41A8950C272F11EF9D0A0C5CC4F9AE02.roa (raw, json) Hash identifier: Zeo9E1pvK7pqXxcoNJpNgvy4k5rrUkurswNhSqNf24s= Subject key identifier: D1:B1:E4:A4:E5:38:A8:E8:6B:D4:74:A7:DB:91:B5:62:5F:56:1A:A4 Certificate issuer: /CN=A91C2C8A/serialNumber=6CE7B5750E6E17D3D39EB5B087FD3FAD5959F325 Certificate serial: 53 Authority key identifier: 6C:E7:B5:75:0E:6E:17:D3:D3:9E:B5:B0:87:FD:3F:AD:59:59:F3:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/41A8950C272F11EF9D0A0C5CC4F9AE02.roa Signing time: Wed 09 Oct 2024 06:20:24 +0000 ROA not before: Wed 09 Oct 2024 06:20:24 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 32787 IP address blocks: 103.37.228.0/24 maxlen: 24 103.55.52.0/24 maxlen: 24 103.55.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.crl rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2C8A Validity Not Before: Oct 9 06:20:24 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670620a8-72b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b8:cc:8f:7b:b2:8a:54:d9:fb:fa:ea:81:3e: d2:6f:9a:7d:f5:8e:7c:bf:0f:0b:dc:f9:4d:b5:65: 12:06:92:3c:54:22:cf:24:f7:39:86:4f:7c:d8:33: 56:6a:59:5e:9b:cf:21:77:48:b5:7c:3b:64:b5:59: 23:94:1d:fa:e0:9f:6b:c1:01:b0:34:5c:be:3c:d4: 72:84:3b:7c:84:26:a5:80:e9:7d:3b:d9:95:1c:85: ae:88:cb:54:dc:79:10:cd:17:c7:6a:29:7f:a4:da: 0f:21:ed:2c:bb:ad:1b:db:69:c0:41:05:39:e9:65: 87:87:0b:00:44:d9:cb:4a:a3:e7:99:4c:21:88:f0: df:7e:15:24:96:c5:4b:bb:2a:22:01:81:a0:4a:42: 23:d1:ee:5e:a0:4e:b8:59:04:3b:03:bf:fc:24:2f: d8:e5:c7:db:4f:29:31:de:7d:7f:05:27:26:99:2a: 88:ed:6e:3e:ad:3f:69:15:d9:c3:a3:e2:d3:b1:e9: 65:9b:ed:78:6c:cc:ab:be:e0:f1:85:36:bb:1d:55: b2:56:4b:88:8f:e0:dc:47:74:3c:41:94:1b:74:a4: 3f:e0:08:eb:ee:27:70:fc:bf:83:13:44:35:8f:69: 5d:2d:87:2a:31:41:ae:6a:aa:65:a5:ed:87:1c:db: ef:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:B1:E4:A4:E5:38:A8:E8:6B:D4:74:A7:DB:91:B5:62:5F:56:1A:A4 X509v3 Authority Key Identifier: keyid:6C:E7:B5:75:0E:6E:17:D3:D3:9E:B5:B0:87:FD:3F:AD:59:59:F3:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bOe1dQ5uF9PTnrWwh_0_rVlZ8yU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2C8A/61EC491624C911EF9C8C6259C4F9AE02/41A8950C272F11EF9D0A0C5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.37.228.0/24 103.55.52.0/23 Signature Algorithm: sha256WithRSAEncryption 53:ac:60:e5:ab:61:93:b4:67:2c:e3:1d:b6:60:1f:7d:44:a6: b3:08:6d:7d:ac:1e:5b:45:84:20:3e:13:d1:09:e5:ad:08:f2: 85:6e:62:43:74:c4:19:cf:fe:6d:85:22:8a:d7:be:9d:0a:7d: da:29:ec:67:2a:61:b6:ce:6c:81:2e:3f:bc:6e:17:ac:a4:ef: ad:a5:22:3d:17:98:0c:d7:94:03:0d:85:47:07:63:f9:3c:cc: 69:1b:79:22:8d:1c:5d:73:91:eb:a9:3c:d0:49:0d:88:1a:7e: c9:ad:56:e1:df:27:35:72:45:1e:88:25:3c:fb:fa:65:a7:85: cc:da:74:3b:78:fe:f1:d7:9b:2f:ba:3f:21:2d:d0:fe:29:3b: 7b:53:57:9a:c7:e2:5c:da:41:b8:cf:27:ec:29:b7:b6:da:58: b7:c0:63:22:1c:1a:20:e7:54:3b:67:56:e3:13:41:d3:52:dd: 69:d9:64:79:34:6a:1a:68:bf:ae:aa:30:68:aa:26:90:51:fb: ee:b1:e3:2b:34:35:4b:cb:5e:e4:ff:0f:6a:57:20:22:e3:e4: 82:2c:84:24:1d:5a:e6:e5:ec:01:c1:9d:3d:22:ab:6f:f9:e0: 5b:9e:61:23:f3:eb:ea:8c:ff:43:d0:b9:a2:a5:d7:a0:f2:62: 7f:4e:77:ed -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MkM4QTExMC8GA1UEBRMoNkNFN0I1NzUwRTZFMTdEM0QzOUVCNUIwODdGRDNGQUQ1 OTU5RjMyNTAeFw0yNDEwMDkwNjIwMjRaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDYyMGE4LTcyYjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkuMyPe7KKVNn7+uqBPtJvmn31jny/Dwvc+U21ZRIGkjxUIs8k9zmGT3zYM1Zq WV6bzyF3SLV8O2S1WSOUHfrgn2vBAbA0XL481HKEO3yEJqWA6X072ZUcha6Iy1Tc eRDNF8dqKX+k2g8h7Sy7rRvbacBBBTnpZYeHCwBE2ctKo+eZTCGI8N9+FSSWxUu7 KiIBgaBKQiPR7l6gTrhZBDsDv/wkL9jlx9tPKTHefX8FJyaZKojtbj6tP2kV2cOj 4tOx6WWb7XhszKu+4PGFNrsdVbJWS4iP4NxHdDxBlBt0pD/gCOvuJ3D8v4MTRDWP aV0thyoxQa5qqmWl7Ycc2++PAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU0bHkpOU4 qOhr1HSn25G1Yl9WGqQwHwYDVR0jBBgwFoAUbOe1dQ5uF9PTnrWwh/0/rVlZ8yUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMyQzhBLzYxRUM0OTE2MjRD OTExRUY5QzhDNjI1OUM0RjlBRTAyL2JPZTFkUTV1RjlQVG5yV3doXzBfclZsWjh5 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYk9lMWRRNXVGOVBUbnJXd2hfMF9yVmxaOHlVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkM4QS82MUVDNDkxNjI0QzkxMUVGOUM4QzYyNTlDNEY5QUUwMi80MUE4OTUwQzI3 MkYxMUVGOUQwQTBDNUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAGcl5AMEAWc3NDANBgkqhkiG9w0BAQsFAAOCAQEAU6xg5ath k7RnLOMdtmAffUSmswhtfaweW0WEID4T0QnlrQjyhW5iQ3TEGc/+bYUiite+nQp9 2insZyphts5sgS4/vG4XrKTvraUiPReYDNeUAw2FRwdj+TzMaRt5Io0cXXOR66k8 0EkNiBp+ya1W4d8nNXJFHoglPPv6ZaeFzNp0O3j+8debL7o/IS3Q/ik7e1NXmsfi XNpBuM8n7Cm3ttpYt8BjIhwaIOdUO2dW4xNB01LdadlkeTRqGmi/rqowaKomkFH7 7rHjKzQ1S8te5P8PalcgIuPkgiyEJB1a5uXsAcGdPSKrb/ngW55hI/Pr6oz/Q9C5 oqXXoPJif0537Q== -----END CERTIFICATE-----Generated at Sun Feb 16 15:37:32 2025 by rpki-client