$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/19EF4D1ABE5A11EDAA537748C4F9AE02.roa File: 19EF4D1ABE5A11EDAA537748C4F9AE02.roa (raw, json) Hash identifier: miZMhJRep9ETR17YW7gWoj6LqwgVkbNzRlMxX+ZmBhQ= Subject key identifier: 6B:E3:61:06:7F:56:6D:A9:93:14:FF:C8:73:6C:0A:7F:6B:51:BC:2E Certificate issuer: /CN=A91CA297/serialNumber=57DB42AB9EBBEFBFE21073F5007FC3762C5FBB08 Certificate serial: 0863 Authority key identifier: 57:DB:42:AB:9E:BB:EF:BF:E2:10:73:F5:00:7F:C3:76:2C:5F:BB:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V9tCq56777_iEHP1AH_Ddixfuwg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/19EF4D1ABE5A11EDAA537748C4F9AE02.roa Signing time: Sun 02 Feb 2025 20:59:35 +0000 ROA not before: Sun 02 Feb 2025 20:59:35 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 17408 IP address blocks: 103.224.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/V9tCq56777_iEHP1AH_Ddixfuwg.crl rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/V9tCq56777_iEHP1AH_Ddixfuwg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V9tCq56777_iEHP1AH_Ddixfuwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:47:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2147 (0x863) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA297 Validity Not Before: Feb 2 20:59:35 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=679fdcb7-8d03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:91:0b:a0:39:c2:70:91:00:36:f9:1d:cd:00: a0:74:d2:45:df:a7:35:0a:25:85:ee:c4:9b:dd:15: 5b:06:76:df:31:48:05:38:67:9e:78:25:73:36:66: 6e:76:0c:b2:dd:57:79:2a:eb:69:1a:5e:74:1e:2b: 10:2f:1a:5e:74:f6:41:ec:d3:28:af:23:60:44:95: ee:42:68:5c:00:de:a2:f3:2d:f9:ae:be:0a:07:fc: e0:d9:e0:65:48:61:9b:d4:93:2c:0a:3d:4a:50:35: 62:3d:c2:29:d8:d3:bd:5c:4a:4c:ae:2e:e6:12:87: 6e:5f:f0:0d:05:1d:43:e9:36:e6:07:07:73:10:75: dc:e2:da:ac:ea:17:ba:66:da:90:3d:8f:94:93:75: 95:cd:6a:3d:b4:f1:70:3b:9b:ad:fa:76:67:02:71: 23:66:ef:eb:f1:ba:df:f4:d0:ad:6b:fe:82:e6:e7: 2d:30:a2:e0:c0:46:ad:f4:4f:34:a3:25:1f:31:b2: ff:66:4c:26:f4:18:19:d7:d0:bf:a5:92:65:32:c6: 4d:1d:0d:e6:a5:83:ec:4d:8f:23:1d:a0:eb:ef:33: 37:38:12:83:94:d9:75:2f:d5:10:65:b8:72:bd:03: 41:65:e8:60:e9:a7:92:46:41:6f:93:71:7c:da:59: a9:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:E3:61:06:7F:56:6D:A9:93:14:FF:C8:73:6C:0A:7F:6B:51:BC:2E X509v3 Authority Key Identifier: keyid:57:DB:42:AB:9E:BB:EF:BF:E2:10:73:F5:00:7F:C3:76:2C:5F:BB:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/V9tCq56777_iEHP1AH_Ddixfuwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V9tCq56777_iEHP1AH_Ddixfuwg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA297/24ED2156BC2811EA97F96D41C4F9AE02/19EF4D1ABE5A11EDAA537748C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.224.252.0/22 Signature Algorithm: sha256WithRSAEncryption 82:70:db:55:5f:b7:d4:58:db:f3:f7:8a:08:56:e8:7c:5b:16: 18:3f:94:19:51:d2:94:a8:af:d5:f0:e9:51:80:c6:27:86:9d: 4f:f4:4b:04:f5:d5:3c:f9:5f:59:2e:91:29:fe:88:ff:36:b0: 84:1e:d4:2a:9f:cc:15:3b:5e:b0:10:ca:41:b8:58:e8:bb:97: 79:84:df:61:55:1f:b8:e7:52:be:79:2c:d9:7c:09:9b:20:c7: 9e:ff:94:3e:80:a9:e6:58:c7:0f:a5:58:0d:8b:3e:cf:18:a5: 0e:83:c7:5c:89:a4:ec:b4:ff:82:0d:de:13:35:a4:c7:fd:f0: d7:2c:00:48:bf:7b:fa:d5:96:51:1b:09:00:7f:53:db:11:92: 16:1d:84:6c:90:96:a8:ac:b2:78:77:0b:2b:88:63:6f:bc:c1: ba:a6:7b:5a:1b:46:04:62:c0:3c:c0:6f:bc:19:1c:5f:f6:63: 42:9e:a2:96:95:b4:aa:4a:83:ab:72:ae:a1:51:5c:c8:37:f8: b2:02:05:ba:82:fe:28:0b:a5:95:0a:4b:08:ab:c1:f4:da:95: 2f:89:4d:cf:3c:5d:86:e7:72:02:12:de:f1:16:86:1b:fc:bc: aa:e5:97:90:c0:1c:7a:d8:59:77:d1:11:4e:70:aa:72:b2:16: 00:34:44:ed -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0EyOTcxMTAvBgNVBAUTKDU3REI0MkFCOUVCQkVGQkZFMjEwNzNGNTAwN0ZDMzc2 MkM1RkJCMDgwHhcNMjUwMjAyMjA1OTM1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzlmZGNiNy04ZDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA65ELoDnCcJEANvkdzQCgdNJF36c1CiWF7sSb3RVbBnbfMUgFOGeeeCVzNmZu dgyy3Vd5KutpGl50HisQLxpedPZB7NMoryNgRJXuQmhcAN6i8y35rr4KB/zg2eBl SGGb1JMsCj1KUDViPcIp2NO9XEpMri7mEoduX/ANBR1D6TbmBwdzEHXc4tqs6he6 ZtqQPY+Uk3WVzWo9tPFwO5ut+nZnAnEjZu/r8brf9NCta/6C5uctMKLgwEat9E80 oyUfMbL/Zkwm9BgZ19C/pZJlMsZNHQ3mpYPsTY8jHaDr7zM3OBKDlNl1L9UQZbhy vQNBZehg6aeSRkFvk3F82lmpYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGvjYQZ/ Vm2pkxT/yHNsCn9rUbwuMB8GA1UdIwQYMBaAFFfbQqueu++/4hBz9QB/w3YsX7sI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTI5Ny8yNEVEMjE1NkJD MjgxMUVBOTdGOTZENDFDNEY5QUUwMi9WOXRDcTU2Nzc3X2lFSFAxQUhfRGRpeGZ1 d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y5dENxNTY3NzdfaUVIUDFBSF9EZGl4ZnV3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0EyOTcvMjRFRDIxNTZCQzI4MTFFQTk3Rjk2RDQxQzRGOUFFMDIvMTlFRjREMUFC RTVBMTFFREFBNTM3NzQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn4PwwDQYJKoZIhvcNAQELBQADggEBAIJw21Vft9RY2/P3 ighW6HxbFhg/lBlR0pSor9Xw6VGAxieGnU/0SwT11Tz5X1kukSn+iP82sIQe1Cqf zBU7XrAQykG4WOi7l3mE32FVH7jnUr55LNl8CZsgx57/lD6AqeZYxw+lWA2LPs8Y pQ6Dx1yJpOy0/4IN3hM1pMf98NcsAEi/e/rVllEbCQB/U9sRkhYdhGyQlqissnh3 CyuIY2+8wbqme1obRgRiwDzAb7wZHF/2Y0KeopaVtKpKg6tyrqFRXMg3+LICBbqC /igLpZUKSwirwfTalS+JTc88XYbncgIS3vEWhhv8vKrll5DAHHrYWXfREU5wqnKy FgA0RO0= -----END CERTIFICATE-----Generated at Sat Apr 5 11:23:00 2025 by rpki-client