$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/5A76CDC2989511EC821F343DC4F9AE02.roa File: 5A76CDC2989511EC821F343DC4F9AE02.roa (raw, json) Hash identifier: PFHGyRpc2XbCpMP3oZwcoRFS7cS4eDGCTFH+DmvXr+c= Subject key identifier: 21:F2:0B:19:0B:75:6D:EA:15:DF:5D:92:32:A8:81:A3:BA:66:F5:2C Certificate issuer: /CN=A91D5F2D/serialNumber=A013B1388A3933BE106BEAEDDFE9F3B8346D3748 Certificate serial: 0378 Authority key identifier: A0:13:B1:38:8A:39:33:BE:10:6B:EA:ED:DF:E9:F3:B8:34:6D:37:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/5A76CDC2989511EC821F343DC4F9AE02.roa Signing time: Tue 31 Dec 2024 00:43:04 +0000 ROA not before: Tue 31 Dec 2024 00:43:04 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 4755 IP address blocks: 103.82.176.0/24 maxlen: 24 103.82.177.0/24 maxlen: 24 103.82.178.0/24 maxlen: 24 103.82.179.0/24 maxlen: 24 2400:8740:1000::/48 maxlen: 48 2400:8740:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 888 (0x378) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5F2D Validity Not Before: Dec 31 00:43:04 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67733e17-d060 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:f7:cd:51:9a:7c:6a:0a:bc:df:61:90:6c:8a: 0e:5a:29:36:04:62:1f:97:a4:3f:19:93:a5:11:ba: 44:bb:7a:1a:01:2a:7f:e2:02:70:ad:fd:c5:ad:e2: 85:49:0d:20:c7:e1:80:61:3c:27:82:65:4b:f3:5f: 9f:c2:ad:e9:b2:79:ac:90:63:56:6b:39:25:a8:92: 6b:10:84:df:0d:93:24:12:3f:f1:35:a6:1f:0a:29: ef:23:cf:c3:89:6b:aa:9f:a1:d5:62:95:a6:6c:3c: 67:55:f3:6e:e3:7f:9f:b6:96:f7:83:e4:40:c9:0c: 66:ec:f6:6c:45:a3:2d:b5:33:cd:61:d1:bd:13:81: 33:6d:45:01:ae:e7:48:93:66:e8:78:f7:df:3f:2d: a3:bb:20:0f:52:a7:ba:4a:51:a8:09:57:da:19:b4: 89:cf:ff:99:5e:dc:d9:c6:75:23:1d:f7:4f:a3:7d: 8f:1c:f7:64:45:f9:6b:90:50:d6:f0:55:88:18:f8: 4b:3b:3e:51:ee:ac:ae:df:02:93:12:6e:46:e1:a1: b8:48:b1:bc:d9:ba:d7:ef:57:8d:2a:b9:2d:cf:d3: a7:98:19:6b:84:0d:13:cd:a4:f2:1a:a6:b1:7e:35: 53:12:77:51:5e:09:38:e9:e3:1a:c8:c1:97:1e:ff: ea:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:F2:0B:19:0B:75:6D:EA:15:DF:5D:92:32:A8:81:A3:BA:66:F5:2C X509v3 Authority Key Identifier: keyid:A0:13:B1:38:8A:39:33:BE:10:6B:EA:ED:DF:E9:F3:B8:34:6D:37:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/5A76CDC2989511EC821F343DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.176.0/22 IPv6: 2400:8740:1000::/48 2400:8740:2000::/48 Signature Algorithm: sha256WithRSAEncryption e0:41:9a:fb:60:9c:bc:3a:48:bc:d1:be:9a:be:14:99:b1:b3: 6e:8b:72:2d:4e:8e:6f:60:eb:2d:85:0a:49:34:21:1a:69:32: 44:bd:ee:6b:dc:88:4f:92:04:08:96:96:0f:45:81:0a:db:47: 72:99:ad:eb:14:a8:11:29:57:63:f7:c2:a7:e5:e7:4a:d9:1a: 8c:63:83:00:01:17:54:10:21:f6:19:f6:7c:49:92:c0:6c:a5: 86:fb:db:85:36:c7:70:14:c1:5b:b5:75:3f:8a:d5:82:f5:8e: 4c:5a:95:24:05:85:8c:b6:5f:a6:53:c3:f9:5d:19:d0:3e:fa: e2:68:bf:7b:9c:14:11:46:e2:c1:82:4a:d2:13:9c:73:cb:be: b1:d8:fb:d5:f0:cb:00:39:43:13:7a:cc:f6:68:f1:1e:aa:ce: 5d:b8:ca:38:84:8a:79:15:81:41:57:f3:12:3d:7f:89:ba:d0: e8:2b:28:84:9c:14:c7:98:fc:d4:4d:69:84:bf:b7:49:10:1a: f2:f3:23:76:74:df:ff:2c:f9:86:4a:e9:46:bc:1c:cb:5c:a1: af:33:ca:b4:19:9f:7d:41:41:92:41:80:46:4f:7c:5d:00:64: 67:ba:a1:f1:17:af:a2:fe:6d:4a:9c:cd:2a:8d:f6:a2:e7:13: 7e:2a:21:0b -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICA3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVGMkQxMTAvBgNVBAUTKEEwMTNCMTM4OEEzOTMzQkUxMDZCRUFFRERGRTlGM0I4 MzQ2RDM3NDgwHhcNMjQxMjMxMDA0MzA0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzczM2UxNy1kMDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ffNUZp8agq832GQbIoOWik2BGIfl6Q/GZOlEbpEu3oaASp/4gJwrf3FreKF SQ0gx+GAYTwngmVL81+fwq3psnmskGNWazklqJJrEITfDZMkEj/xNaYfCinvI8/D iWuqn6HVYpWmbDxnVfNu43+ftpb3g+RAyQxm7PZsRaMttTPNYdG9E4EzbUUBrudI k2boePffPy2juyAPUqe6SlGoCVfaGbSJz/+ZXtzZxnUjHfdPo32PHPdkRflrkFDW 8FWIGPhLOz5R7qyu3wKTEm5G4aG4SLG82brX71eNKrktz9OnmBlrhA0TzaTyGqax fjVTEndRXgk46eMayMGXHv/qswIDAQABo4ICrzCCAqswHQYDVR0OBBYEFCHyCxkL dW3qFd9dkjKogaO6ZvUsMB8GA1UdIwQYMBaAFKATsTiKOTO+EGvq7d/p87g0bTdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUYyRC9DRDZENkU1Njk4 OTIxMUVDOEY5MzU3M0JDNEY5QUUwMi9vQk94T0lvNU03NFFhLXJ0My1uenVEUnRO MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29CT3hPSW81TTc0UWEtcnQzLW56dURSdE4wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDVGMkQvQ0Q2RDZFNTY5ODkyMTFFQzhGOTM1NzNCQzRGOUFFMDIvNUE3NkNEQzI5 ODk1MTFFQzgyMUYzNDNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAJnUrAwGAQCAAIwEgMHACQAh0AQAAMHACQAh0AgADANBgkq hkiG9w0BAQsFAAOCAQEA4EGa+2CcvDpIvNG+mr4UmbGzbotyLU6Ob2DrLYUKSTQh GmkyRL3ua9yIT5IECJaWD0WBCttHcpmt6xSoESlXY/fCp+XnStkajGODAAEXVBAh 9hn2fEmSwGylhvvbhTbHcBTBW7V1P4rVgvWOTFqVJAWFjLZfplPD+V0Z0D764mi/ e5wUEUbiwYJK0hOcc8u+sdj71fDLADlDE3rM9mjxHqrOXbjKOISKeRWBQVfzEj1/ ibrQ6CsohJwUx5j81E1phL+3SRAa8vMjdnTf/yz5hkrpRrwcy1yhrzPKtBmffUFB kkGARk98XQBkZ7qh8Revov5tSpzNKo32oucTfiohCw== -----END CERTIFICATE-----Generated at Sun Feb 16 22:17:49 2025 by rpki-client