$ rpki-client -vvf rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/A6DF4CF8C34B11ECAFB25A68C4F9AE02.roa File: A6DF4CF8C34B11ECAFB25A68C4F9AE02.roa (raw, json) Hash identifier: o72VLQ1AaTbDR0LUWxX7H2rR6ueROwUZcL0xiM3p7KI= Subject key identifier: 68:8A:7D:11:02:E5:4E:23:7B:FF:5D:8B:2E:F2:7F:48:7B:2A:43:1E Certificate issuer: /CN=A91D56CA/serialNumber=675A8676ED37D16ABBCA2FEF8EAA1F23F257B29F Certificate serial: 178B Authority key identifier: 67:5A:86:76:ED:37:D1:6A:BB:CA:2F:EF:8E:AA:1F:23:F2:57:B2:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z1qGdu030Wq7yi_vjqofI_JXsp8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/A6DF4CF8C34B11ECAFB25A68C4F9AE02.roa Signing time: Tue 26 Nov 2024 16:44:27 +0000 ROA not before: Tue 26 Nov 2024 16:44:27 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 135628 IP address blocks: 103.77.17.0/24 maxlen: 24 103.77.18.0/23 maxlen: 24 203.153.60.0/23 maxlen: 23 203.153.60.0/24 maxlen: 24 203.153.61.0/24 maxlen: 24 203.153.63.0/24 maxlen: 24 2407:8780::/32 maxlen: 32 2407:8780::/48 maxlen: 48 2407:8780:1::/48 maxlen: 48 2407:8780:2::/48 maxlen: 48 2407:8780:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/Z1qGdu030Wq7yi_vjqofI_JXsp8.crl rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/Z1qGdu030Wq7yi_vjqofI_JXsp8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z1qGdu030Wq7yi_vjqofI_JXsp8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6027 (0x178b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D56CA Validity Not Before: Nov 26 16:44:27 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6745faeb-cb39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e3:96:d3:34:ee:7a:46:97:a4:92:52:74:e5: ee:66:fe:44:eb:5a:6f:8c:f6:e7:f1:6e:33:5f:a0: 00:f0:70:36:13:6d:0b:91:8a:5e:e6:93:92:f0:68: a0:c5:de:4a:ef:79:79:fb:73:7f:f9:9e:9a:7f:81: 42:2f:93:bb:1f:71:a3:e4:c5:46:f3:49:95:24:c5: 94:96:9a:72:a4:2f:55:34:60:3f:81:7b:7f:ea:e2: e8:4b:d3:b1:cc:26:91:57:08:f8:44:da:18:bb:53: 3d:16:45:40:fe:56:ee:c4:bd:f0:a3:ee:f2:77:61: bc:58:0d:a0:e8:36:17:c0:72:08:6d:95:1a:e9:a7: 68:7e:db:24:27:84:4f:c4:a1:69:99:98:5d:c4:69: 33:c1:c7:e2:62:52:6b:4e:fc:c1:d2:19:ae:14:63: f0:d7:ca:95:be:f7:59:37:7f:69:10:db:d9:36:44: 49:f9:be:94:ad:6b:cf:80:65:07:41:7f:20:6c:4d: d5:fe:24:78:50:32:3e:c7:c8:a0:62:6a:5e:2b:98: 6f:a1:0b:8b:48:4f:d6:35:8d:4f:88:f5:03:33:ab: 2d:3f:bc:a1:02:e9:5a:83:e6:e9:c9:af:7d:92:89: e8:e3:1e:a5:fd:5a:d9:82:3b:75:06:d8:d9:6c:2d: 05:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:8A:7D:11:02:E5:4E:23:7B:FF:5D:8B:2E:F2:7F:48:7B:2A:43:1E X509v3 Authority Key Identifier: keyid:67:5A:86:76:ED:37:D1:6A:BB:CA:2F:EF:8E:AA:1F:23:F2:57:B2:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/Z1qGdu030Wq7yi_vjqofI_JXsp8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z1qGdu030Wq7yi_vjqofI_JXsp8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/A6DF4CF8C34B11ECAFB25A68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.77.17.0-103.77.19.255 203.153.60.0/23 203.153.63.0/24 IPv6: 2407:8780::/32 Signature Algorithm: sha256WithRSAEncryption aa:a2:4d:5a:27:0e:10:f0:7c:f8:21:e4:cc:01:e2:03:7e:59: b2:93:8d:9d:b5:72:26:96:ff:ad:cf:27:c9:d8:59:51:b4:05: d2:f6:3d:e6:b1:ba:39:9a:ed:4e:84:7f:fe:3d:6c:60:87:0f: f7:e7:8b:6e:02:cf:3e:55:96:72:e2:58:71:df:b6:9d:f3:ae: 98:48:a7:45:b0:3a:86:4e:f0:69:70:72:82:aa:8c:90:0f:85: 1c:cb:02:1e:8b:0b:6b:24:76:cb:4d:00:96:03:39:00:da:72: bb:9d:f8:a5:b4:88:69:88:72:07:b2:68:5b:97:d2:57:0d:23: 15:d5:36:99:3b:44:24:ad:4c:ee:cc:1b:3f:5b:82:bb:58:76: 56:31:a5:67:9c:a3:4c:5c:95:41:da:ef:c2:c3:2e:c5:bf:31: 32:6c:6f:6e:d5:ea:bf:27:3e:01:a3:c2:b2:6a:7f:c7:38:01: d8:fb:68:fa:ef:26:82:fa:2b:79:b1:40:16:5a:76:c9:bd:fc: ad:5f:48:17:7a:d7:15:78:77:a3:83:0e:e9:e5:12:40:a3:9e: 28:ff:c0:e2:c7:a2:d2:de:bb:00:8e:28:80:ae:06:85:a5:3a: 49:1c:b8:64:fc:99:0e:70:48:39:09:de:36:e7:4b:06:42:31: 36:f8:89:fb -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICF4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU2Q0ExMTAvBgNVBAUTKDY3NUE4Njc2RUQzN0QxNkFCQkNBMkZFRjhFQUExRjIz RjI1N0IyOUYwHhcNMjQxMTI2MTY0NDI3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ1ZmFlYi1jYjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2eOW0zTuekaXpJJSdOXuZv5E61pvjPbn8W4zX6AA8HA2E20LkYpe5pOS8Gig xd5K73l5+3N/+Z6af4FCL5O7H3Gj5MVG80mVJMWUlppypC9VNGA/gXt/6uLoS9Ox zCaRVwj4RNoYu1M9FkVA/lbuxL3wo+7yd2G8WA2g6DYXwHIIbZUa6adoftskJ4RP xKFpmZhdxGkzwcfiYlJrTvzB0hmuFGPw18qVvvdZN39pENvZNkRJ+b6UrWvPgGUH QX8gbE3V/iR4UDI+x8igYmpeK5hvoQuLSE/WNY1PiPUDM6stP7yhAulag+bpya99 kono4x6l/VrZgjt1BtjZbC0FLwIDAQABo4ICuDCCArQwHQYDVR0OBBYEFGiKfREC 5U4je/9diy7yf0h7KkMeMB8GA1UdIwQYMBaAFGdahnbtN9Fqu8ov746qHyPyV7Kf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTZDQS85MTRFNTNGNkMw RDExMUU3OEQxRUY4MkJDNEY5QUUwMi9aMXFHZHUwMzBXcTd5aV92anFvZklfSlhz cDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1oxcUdkdTAzMFdxN3lpX3ZqcW9mSV9KWHNwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDU2Q0EvOTE0RTUzRjZDMEQxMTFFNzhEMUVGODJCQzRGOUFFMDIvQTZERjRDRjhD MzRCMTFFQ0FGQjI1QTY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMCAEAgABMBowDAMEAGdNEQMEAmdNEAMEAcuZPAMEAMuZPzANBAIAAjAHAwUA JAeHgDANBgkqhkiG9w0BAQsFAAOCAQEAqqJNWicOEPB8+CHkzAHiA35ZspONnbVy Jpb/rc8nydhZUbQF0vY95rG6OZrtToR//j1sYIcP9+eLbgLPPlWWcuJYcd+2nfOu mEinRbA6hk7waXBygqqMkA+FHMsCHosLayR2y00AlgM5ANpyu534pbSIaYhyB7Jo W5fSVw0jFdU2mTtEJK1M7swbP1uCu1h2VjGlZ5yjTFyVQdrvwsMuxb8xMmxvbtXq vyc+AaPCsmp/xzgB2Pto+u8mgvorebFAFlp2yb38rV9IF3rXFXh3o4MO6eUSQKOe KP/A4sei0t67AI4ogK4GhaU6SRy4ZPyZDnBIOQneNudLBkIxNviJ+w== -----END CERTIFICATE-----Generated at Mon Feb 17 08:22:22 2025 by rpki-client