$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/99DF3B20183A11EBB9F78E80C4F9AE02.roa File: 99DF3B20183A11EBB9F78E80C4F9AE02.roa (raw, json) Hash identifier: E+nOxjyrsiWeh2pSdTI7eBtCxdY2UG5bXebW7kl/SNQ= Subject key identifier: B6:52:E0:30:7D:BC:46:CC:BB:83:8A:11:06:B5:DC:C7:19:06:32:C7 Certificate issuer: /CN=A91D2779/serialNumber=BB03B8D2447EF813A37A9587766A01F7359DD740 Certificate serial: 0765 Authority key identifier: BB:03:B8:D2:44:7E:F8:13:A3:7A:95:87:76:6A:01:F7:35:9D:D7:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uwO40kR--BOjepWHdmoB9zWd10A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/99DF3B20183A11EBB9F78E80C4F9AE02.roa Signing time: Thu 06 Feb 2025 21:19:53 +0000 ROA not before: Thu 06 Feb 2025 21:19:53 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 19905 IP address blocks: 103.225.112.0/24 maxlen: 24 103.225.113.0/24 maxlen: 24 103.225.114.0/24 maxlen: 24 103.225.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/uwO40kR--BOjepWHdmoB9zWd10A.crl rsync://rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/uwO40kR--BOjepWHdmoB9zWd10A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uwO40kR--BOjepWHdmoB9zWd10A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1893 (0x765) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2779 Validity Not Before: Feb 6 21:19:53 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a52778-0110 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:26:2e:f9:60:56:47:ad:1d:09:3c:b0:de:f7: 7d:1e:ef:6d:29:10:8a:3d:63:45:9c:d0:66:56:d0: fa:b5:9b:6c:35:a9:2e:60:ea:22:da:a4:0f:7d:86: fe:d2:a0:c5:a5:84:26:7e:99:88:85:91:c8:39:a1: df:82:94:b8:67:42:3e:d0:b4:33:44:5b:03:5e:33: c5:4b:d8:c5:74:39:b6:2a:f0:a5:64:da:be:54:e2: c5:5a:33:70:2c:da:f9:da:e9:9c:74:bd:5b:16:de: f0:fd:db:c5:81:21:ad:1a:8f:07:84:70:f5:bb:d1: da:2d:61:6f:36:7f:ca:f3:8e:9a:61:a9:6a:ba:ed: 5f:f7:75:42:cb:39:cb:b0:d8:5d:3c:a4:03:4c:b4: 6b:ad:0f:67:8b:25:d5:31:ba:67:ed:ea:54:6d:78: 72:42:a7:0e:5f:de:97:4a:9f:6b:b2:fd:4e:1f:7a: 3d:06:4c:4d:c2:b9:3f:16:0a:7b:fd:a8:f9:ab:d5: 80:cc:7e:03:c5:a6:95:e0:7e:07:b2:c1:9f:5d:63: 59:eb:26:bc:63:47:02:01:20:03:66:87:7e:50:e2: cd:ef:da:56:81:54:05:49:bb:8b:1d:5c:e2:4d:37: a9:65:57:9b:6c:80:33:76:e6:65:47:f0:8c:8d:49: 7c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:52:E0:30:7D:BC:46:CC:BB:83:8A:11:06:B5:DC:C7:19:06:32:C7 X509v3 Authority Key Identifier: keyid:BB:03:B8:D2:44:7E:F8:13:A3:7A:95:87:76:6A:01:F7:35:9D:D7:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/uwO40kR--BOjepWHdmoB9zWd10A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uwO40kR--BOjepWHdmoB9zWd10A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/99DF3B20183A11EBB9F78E80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.225.112.0/22 Signature Algorithm: sha256WithRSAEncryption 54:2e:00:1b:d0:d8:ba:50:ba:86:1f:a5:c5:6c:40:6b:cc:54: 19:02:b9:74:e5:e5:3d:1e:0f:f5:0a:14:a8:6d:0b:ba:cf:c9: c9:04:c7:ab:24:24:86:68:aa:68:de:ed:f8:fa:ad:04:f6:12: 9e:f7:8c:08:a5:bd:4f:69:9e:48:e5:05:4e:b3:c3:27:70:f9: 67:60:8e:cc:14:e1:30:26:45:93:54:ac:76:4b:1c:b7:2e:b6: e8:44:d2:7d:3f:35:59:47:34:61:d9:47:d1:22:80:4c:5c:3f: da:c1:e4:f6:48:98:59:3f:ab:5a:44:a6:b2:4e:51:47:97:31: a5:51:f5:6f:96:f8:73:d0:a1:3c:22:18:0b:92:05:0d:18:cf: 9a:e5:6e:be:1a:30:8b:82:d7:e6:d9:8d:cc:6a:a1:43:10:41: 60:f7:af:b4:17:a9:b7:1f:c1:75:33:94:78:3c:a0:06:69:f9: 51:bf:1b:cc:f4:34:0f:8b:a1:6d:12:ae:af:38:d6:21:0a:bf: 46:15:84:bc:ad:3f:bb:c5:6a:41:07:fc:59:d0:94:a9:ce:1e: 1d:2f:c2:18:7a:54:0c:58:b9:86:82:70:29:a6:4a:5a:0f:2a: 1f:34:6d:c7:87:79:85:4b:fb:9f:bf:4a:f2:6a:ce:0e:ec:97: 71:86:7c:b4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI3NzkxMTAvBgNVBAUTKEJCMDNCOEQyNDQ3RUY4MTNBMzdBOTU4Nzc2NkEwMUY3 MzU5REQ3NDAwHhcNMjUwMjA2MjExOTUzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E1Mjc3OC0wMTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoyYu+WBWR60dCTyw3vd9Hu9tKRCKPWNFnNBmVtD6tZtsNakuYOoi2qQPfYb+ 0qDFpYQmfpmIhZHIOaHfgpS4Z0I+0LQzRFsDXjPFS9jFdDm2KvClZNq+VOLFWjNw LNr52umcdL1bFt7w/dvFgSGtGo8HhHD1u9HaLWFvNn/K846aYalquu1f93VCyznL sNhdPKQDTLRrrQ9niyXVMbpn7epUbXhyQqcOX96XSp9rsv1OH3o9BkxNwrk/Fgp7 /aj5q9WAzH4DxaaV4H4HssGfXWNZ6ya8Y0cCASADZod+UOLN79pWgVQFSbuLHVzi TTepZVebbIAzduZlR/CMjUl8twIDAQABo4IClTCCApEwHQYDVR0OBBYEFLZS4DB9 vEbMu4OKEQa13McZBjLHMB8GA1UdIwQYMBaAFLsDuNJEfvgTo3qVh3ZqAfc1nddA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjc3OS84OTAyNDk5NDE4 MzcxMUVCODA2NEIwN0FDNEY5QUUwMi91d080MGtSLS1CT2plcFdIZG1vQjl6V2Qx MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V3TzQwa1ItLUJPamVwV0hkbW9COXpXZDEwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDI3NzkvODkwMjQ5OTQxODM3MTFFQjgwNjRCMDdBQzRGOUFFMDIvOTlERjNCMjAx ODNBMTFFQkI5Rjc4RTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn4XAwDQYJKoZIhvcNAQELBQADggEBAFQuABvQ2LpQuoYf pcVsQGvMVBkCuXTl5T0eD/UKFKhtC7rPyckEx6skJIZoqmje7fj6rQT2Ep73jAil vU9pnkjlBU6zwydw+WdgjswU4TAmRZNUrHZLHLcutuhE0n0/NVlHNGHZR9EigExc P9rB5PZImFk/q1pEprJOUUeXMaVR9W+W+HPQoTwiGAuSBQ0Yz5rlbr4aMIuC1+bZ jcxqoUMQQWD3r7QXqbcfwXUzlHg8oAZp+VG/G8z0NA+LoW0Srq841iEKv0YVhLyt P7vFakEH/FnQlKnOHh0vwhh6VAxYuYaCcCmmSloPKh80bceHeYVL+5+/SvJqzg7s l3GGfLQ= -----END CERTIFICATE-----Generated at Sun Feb 16 15:20:52 2025 by rpki-client