$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3737/8294363E335111EEA11F9126C4F9AE02/9F1B80CA372311EEACE5BF61C4F9AE02.roa File: 9F1B80CA372311EEACE5BF61C4F9AE02.roa (raw, json) Hash identifier: GR3/5CWBDLCFuFXDR1pBqo7ZS4ZffgNTqP5rw3l7jgE= Subject key identifier: B9:35:F4:70:EC:FD:C1:C8:A8:8F:1B:2C:66:88:9B:4F:C0:19:20:1F Certificate issuer: /CN=A91D3737/serialNumber=E1E779CB31FFE7731A33B5EB7EAFC6B2ABDB44E3 Certificate serial: B0 Authority key identifier: E1:E7:79:CB:31:FF:E7:73:1A:33:B5:EB:7E:AF:C6:B2:AB:DB:44:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ed5yzH_53MaM7Xrfq_GsqvbROM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3737/8294363E335111EEA11F9126C4F9AE02/9F1B80CA372311EEACE5BF61C4F9AE02.roa Signing time: Mon 17 Jun 2024 07:56:00 +0000 ROA not before: Mon 17 Jun 2024 07:56:00 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.207.60.0/24 maxlen: 24 103.207.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3737/8294363E335111EEA11F9126C4F9AE02/4ed5yzH_53MaM7Xrfq_GsqvbROM.crl rsync://rpki.apnic.net/member_repository/A91D3737/8294363E335111EEA11F9126C4F9AE02/4ed5yzH_53MaM7Xrfq_GsqvbROM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ed5yzH_53MaM7Xrfq_GsqvbROM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 03:05:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3737 Validity Not Before: Jun 17 07:56:00 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=666fec10-ed63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:65:00:bf:f5:97:20:4b:f2:a1:4d:55:5c:4f: 3e:f0:da:b5:e7:02:0e:05:b7:58:9b:a0:43:d6:92: e0:85:94:11:12:c5:fe:9b:85:38:85:31:85:bc:89: ba:14:84:43:b5:7c:36:71:d4:06:0e:69:62:3e:71: f3:5c:b7:1d:8b:5b:19:9d:31:1f:8c:34:8f:e8:a6: ea:12:14:1f:9f:61:3a:e4:4b:ae:f4:0d:89:12:6d: bd:0c:c1:92:b3:06:ed:64:e6:1a:e6:87:b5:55:c1: b0:38:34:59:47:32:1e:b5:5b:67:fa:2f:ed:f8:97: 99:ac:5a:8a:80:fa:b1:23:e5:3b:2f:6b:39:67:09: fd:43:90:cd:3e:ec:0b:9a:41:25:c8:5e:bb:8e:6d: d7:08:05:09:16:04:57:cd:81:0d:23:06:63:3b:6c: 21:7e:27:f0:89:3c:05:2a:14:cd:12:f0:7d:ec:93: 27:0f:6a:51:3d:16:d2:17:d3:b7:4d:40:2c:62:46: 82:e4:21:b7:0d:c8:6d:8d:7b:4c:f4:6b:df:0b:18: b4:75:4a:d1:ff:07:a7:da:72:67:58:b1:2e:96:4e: c5:85:42:bc:9e:72:f1:7b:b8:45:f4:dd:a1:72:52: 95:c1:83:ad:86:da:46:73:70:82:db:af:49:8c:13: 00:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:35:F4:70:EC:FD:C1:C8:A8:8F:1B:2C:66:88:9B:4F:C0:19:20:1F X509v3 Authority Key Identifier: keyid:E1:E7:79:CB:31:FF:E7:73:1A:33:B5:EB:7E:AF:C6:B2:AB:DB:44:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3737/8294363E335111EEA11F9126C4F9AE02/4ed5yzH_53MaM7Xrfq_GsqvbROM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4ed5yzH_53MaM7Xrfq_GsqvbROM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3737/8294363E335111EEA11F9126C4F9AE02/9F1B80CA372311EEACE5BF61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.207.60.0/23 Signature Algorithm: sha256WithRSAEncryption 94:e4:5b:a8:69:0a:f7:7d:38:fc:16:dd:47:bc:a7:a3:ab:c3: f7:11:86:6c:b8:6b:e0:9d:d7:e5:4d:6b:74:43:4c:6a:a2:1e: 7f:60:45:1a:49:4a:49:1d:23:31:ac:30:7d:c2:d0:cd:9b:59: 87:e8:93:18:b6:bb:79:65:fa:b4:a2:23:d4:e9:37:da:d5:69: 49:1f:88:0b:f3:fe:23:4c:52:88:9e:ce:b5:16:96:d1:cd:e1: 92:1d:38:00:40:b6:b2:e7:c9:1b:2a:73:50:85:b2:ea:d9:9d: a8:9a:50:cc:1f:d1:98:a5:d7:65:18:de:96:9b:b4:ab:5c:58: 35:c8:ee:e5:66:6b:87:c5:48:d4:07:4e:6c:46:40:5e:f1:27: 50:14:7c:56:ad:78:a5:f4:8a:a7:76:db:59:61:23:f8:f2:5b: 4c:b6:09:0f:bd:7c:fe:70:59:40:0a:6e:78:9a:c0:1a:5b:4f: 78:b0:a4:65:99:de:6d:5b:0d:69:3e:2d:53:71:87:fc:69:93: f5:33:51:f1:f1:26:cf:c2:28:9d:6a:96:01:a1:f9:de:ed:d2: 6e:d0:75:9e:14:db:2f:c7:66:c5:27:50:ec:8c:44:a9:8d:92: 9c:b7:53:41:e0:0a:1c:64:9c:26:88:29:4e:23:7f:82:94:75: cd:bf:cd:87 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM3MzcxMTAvBgNVBAUTKEUxRTc3OUNCMzFGRkU3NzMxQTMzQjVFQjdFQUZDNkIy QUJEQjQ0RTMwHhcNMjQwNjE3MDc1NjAwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZmZWMxMC1lZDYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWUAv/WXIEvyoU1VXE8+8Nq15wIOBbdYm6BD1pLghZQREsX+m4U4hTGFvIm6 FIRDtXw2cdQGDmliPnHzXLcdi1sZnTEfjDSP6KbqEhQfn2E65Euu9A2JEm29DMGS swbtZOYa5oe1VcGwODRZRzIetVtn+i/t+JeZrFqKgPqxI+U7L2s5Zwn9Q5DNPuwL mkElyF67jm3XCAUJFgRXzYENIwZjO2whfifwiTwFKhTNEvB97JMnD2pRPRbSF9O3 TUAsYkaC5CG3DchtjXtM9GvfCxi0dUrR/wen2nJnWLEulk7FhUK8nnLxe7hF9N2h clKVwYOthtpGc3CC269JjBMABwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLk19HDs /cHIqI8bLGaIm0/AGSAfMB8GA1UdIwQYMBaAFOHnecsx/+dzGjO1636vxrKr20Tj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzczNy84Mjk0MzYzRTMz NTExMUVFQTExRjkxMjZDNEY5QUUwMi80ZWQ1eXpIXzUzTWFNN1hyZnFfR3NxdmJS T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRlZDV5ekhfNTNNYU03WHJmcV9Hc3F2YlJPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDM3MzcvODI5NDM2M0UzMzUxMTFFRUExMUY5MTI2QzRGOUFFMDIvOUYxQjgwQ0Ez NzIzMTFFRUFDRTVCRjYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnzzwwDQYJKoZIhvcNAQELBQADggEBAJTkW6hpCvd9OPwW 3Ue8p6Orw/cRhmy4a+Cd1+VNa3RDTGqiHn9gRRpJSkkdIzGsMH3C0M2bWYfokxi2 u3ll+rSiI9TpN9rVaUkfiAvz/iNMUoiezrUWltHN4ZIdOABAtrLnyRsqc1CFsurZ naiaUMwf0Zil12UY3pabtKtcWDXI7uVma4fFSNQHTmxGQF7xJ1AUfFateKX0iqd2 21lhI/jyW0y2CQ+9fP5wWUAKbniawBpbT3iwpGWZ3m1bDWk+LVNxh/xpk/UzUfHx Js/CKJ1qlgGh+d7t0m7QdZ4U2y/HZsUnUOyMRKmNkpy3U0HgChxknCaIKU4jf4KU dc2/zYc= -----END CERTIFICATE-----Generated at Thu Mar 13 21:56:59 2025 by rpki-client