$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6721/A3C06AD6A9BF11EAA304A023C4F9AE02/CD77D766287911ED93621A30C4F9AE02.roa File: CD77D766287911ED93621A30C4F9AE02.roa (raw, json) Hash identifier: 9wjECpQxMHiWIScEWQz9Aw6dt/TmNOFZhpVGY5NdNQY= Subject key identifier: 72:CC:09:DA:1B:BA:DD:6C:75:5C:08:B3:A1:69:38:F6:56:52:AB:22 Certificate issuer: /CN=A91D6721/serialNumber=71C63D59093F04D04B39BB1EA2B4692CDFD16FE1 Certificate serial: 0861 Authority key identifier: 71:C6:3D:59:09:3F:04:D0:4B:39:BB:1E:A2:B4:69:2C:DF:D1:6F:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccY9WQk_BNBLObseorRpLN_Rb-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6721/A3C06AD6A9BF11EAA304A023C4F9AE02/CD77D766287911ED93621A30C4F9AE02.roa Signing time: Tue 30 Jul 2024 21:18:35 +0000 ROA not before: Tue 30 Jul 2024 21:18:35 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 138346 IP address blocks: 103.152.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6721/A3C06AD6A9BF11EAA304A023C4F9AE02/ccY9WQk_BNBLObseorRpLN_Rb-E.crl rsync://rpki.apnic.net/member_repository/A91D6721/A3C06AD6A9BF11EAA304A023C4F9AE02/ccY9WQk_BNBLObseorRpLN_Rb-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccY9WQk_BNBLObseorRpLN_Rb-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2145 (0x861) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6721 Validity Not Before: Jul 30 21:18:35 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a958ab-76a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8e:a8:82:85:04:c6:ee:d8:c5:26:47:0e:00: de:b7:e8:3e:9b:18:79:5e:1a:ac:40:1f:08:91:ad: de:a0:8a:47:1d:1f:b5:d6:41:a5:a4:6d:60:8f:27: 34:eb:81:d3:26:57:e2:1f:c6:62:98:93:18:d1:c7: 0a:5c:c5:5c:c5:be:22:14:48:fa:af:b2:b8:3e:a1: 76:20:c5:0e:da:f4:3c:3b:e5:f3:c8:58:4d:b0:78: 94:38:63:cb:3f:a6:05:13:3c:2b:b6:4e:02:f8:2e: b0:6a:a1:65:da:a6:17:2e:64:44:80:98:e7:f9:56: b3:ed:15:d6:c1:eb:7f:b1:a2:98:56:87:4d:14:64: 56:8f:34:43:59:b8:83:7f:dd:4f:07:93:6e:19:a8: ac:fa:42:83:90:79:61:19:16:01:ba:60:28:f5:49: f3:26:a0:f3:dd:fc:33:4c:6c:2c:1e:ea:a6:90:01: c1:cc:b4:9e:0d:79:9d:cc:a1:64:d8:fc:30:80:f9: 36:25:08:91:7b:69:9c:98:01:7b:1e:73:52:ea:ba: d3:8a:55:fc:c0:d8:57:04:7e:4b:b7:ee:1d:0f:87: 03:7d:35:73:88:8c:1a:2c:51:26:7d:d1:7a:f9:90: 4f:b1:a1:81:f8:6c:3c:24:d2:f0:3f:9a:2e:c4:6f: d0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:CC:09:DA:1B:BA:DD:6C:75:5C:08:B3:A1:69:38:F6:56:52:AB:22 X509v3 Authority Key Identifier: keyid:71:C6:3D:59:09:3F:04:D0:4B:39:BB:1E:A2:B4:69:2C:DF:D1:6F:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6721/A3C06AD6A9BF11EAA304A023C4F9AE02/ccY9WQk_BNBLObseorRpLN_Rb-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccY9WQk_BNBLObseorRpLN_Rb-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6721/A3C06AD6A9BF11EAA304A023C4F9AE02/CD77D766287911ED93621A30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.1.0/24 Signature Algorithm: sha256WithRSAEncryption 94:70:cf:8a:6f:35:f6:8b:cc:4e:bd:44:dc:d1:17:a2:13:c7: 44:d4:c6:f6:93:e7:77:c4:c4:69:3b:10:30:c4:18:c2:35:c8: d9:15:04:2e:42:03:5d:33:c4:02:1b:ed:38:eb:70:b4:84:38: 3a:92:f9:47:f8:c1:d5:35:3f:41:91:2a:00:cb:8e:de:16:94: be:bc:be:d0:9f:7d:b9:97:93:0a:59:5f:ec:82:64:a5:b2:8d: 9a:44:90:8d:ab:a1:b2:00:8e:f7:18:1a:7f:d8:92:7e:ff:da: a7:78:77:29:ef:41:25:9a:59:43:42:f4:3a:0c:8f:d9:c3:09: c3:87:2a:c6:eb:d2:c3:9b:b6:5c:5a:8d:f0:aa:6b:4f:7c:3a: 67:65:6d:d5:5c:1b:fb:f2:e8:ac:a3:f7:c5:59:31:45:6f:56: 17:3b:24:be:a5:c2:d1:82:fc:db:69:df:46:eb:ab:04:6f:b4: 4c:ed:ba:ce:38:22:ee:a0:fd:39:7e:f7:07:76:49:28:06:76: 89:de:06:59:2e:f4:50:45:c0:36:dc:55:5f:ff:2e:13:9f:75: cf:a4:05:b7:ef:c8:1b:27:ce:34:8d:27:2a:e9:73:da:c4:3b: 39:08:ed:ba:1f:10:f4:44:26:6b:c5:83:c5:f0:b1:c4:6c:14: e8:3d:f9:46 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY3MjExMTAvBgNVBAUTKDcxQzYzRDU5MDkzRjA0RDA0QjM5QkIxRUEyQjQ2OTJD REZEMTZGRTEwHhcNMjQwNzMwMjExODM1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5NThhYi03NmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwI6ogoUExu7YxSZHDgDet+g+mxh5XhqsQB8Ika3eoIpHHR+11kGlpG1gjyc0 64HTJlfiH8ZimJMY0ccKXMVcxb4iFEj6r7K4PqF2IMUO2vQ8O+XzyFhNsHiUOGPL P6YFEzwrtk4C+C6waqFl2qYXLmREgJjn+Vaz7RXWwet/saKYVodNFGRWjzRDWbiD f91PB5NuGais+kKDkHlhGRYBumAo9UnzJqDz3fwzTGwsHuqmkAHBzLSeDXmdzKFk 2PwwgPk2JQiRe2mcmAF7HnNS6rrTilX8wNhXBH5Lt+4dD4cDfTVziIwaLFEmfdF6 +ZBPsaGB+Gw8JNLwP5ouxG/QmwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHLMCdob ut1sdVwIs6FpOPZWUqsiMB8GA1UdIwQYMBaAFHHGPVkJPwTQSzm7HqK0aSzf0W/h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjcyMS9BM0MwNkFENkE5 QkYxMUVBQTMwNEEwMjNDNEY5QUUwMi9jY1k5V1FrX0JOQkxPYnNlb3JScExOX1Ji LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NjWTlXUWtfQk5CTE9ic2VvclJwTE5fUmItRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY3MjEvQTNDMDZBRDZBOUJGMTFFQUEzMDRBMDIzQzRGOUFFMDIvQ0Q3N0Q3NjYy ODc5MTFFRDkzNjIxQTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmAEwDQYJKoZIhvcNAQELBQADggEBAJRwz4pvNfaLzE69 RNzRF6ITx0TUxvaT53fExGk7EDDEGMI1yNkVBC5CA10zxAIb7TjrcLSEODqS+Uf4 wdU1P0GRKgDLjt4WlL68vtCffbmXkwpZX+yCZKWyjZpEkI2robIAjvcYGn/Ykn7/ 2qd4dynvQSWaWUNC9DoMj9nDCcOHKsbr0sObtlxajfCqa098OmdlbdVcG/vy6Kyj 98VZMUVvVhc7JL6lwtGC/Ntp30brqwRvtEztus44Iu6g/Tl+9wd2SSgGdoneBlku 9FBFwDbcVV//LhOfdc+kBbfvyBsnzjSNJyrpc9rEOzkI7bofEPREJmvFg8XwscRs FOg9+UY= -----END CERTIFICATE-----Generated at Mon Feb 17 08:08:47 2025 by rpki-client