$ rpki-client -vvf rpki.apnic.net/member_repository/A91D74A6/797E9A86D19C11EF83CEAD3CC4F9AE02/048B6F32D19D11EFB536C03DC4F9AE02.roa File: 048B6F32D19D11EFB536C03DC4F9AE02.roa (raw, json) Hash identifier: KB4EUqrfcsOAzIiEQ7XWVFbrnOWdV6fKnfW3hotUhtE= Subject key identifier: 49:A6:6C:08:23:F9:9A:C8:D2:90:74:96:BB:2F:8B:ED:8E:F2:4C:3F Certificate issuer: /CN=A91D74A6/serialNumber=C22A51ECCE6D96EFF5328BBC25B95318B4C1DA2E Certificate serial: 1A Authority key identifier: C2:2A:51:EC:CE:6D:96:EF:F5:32:8B:BC:25:B9:53:18:B4:C1:DA:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wipR7M5tlu_1Mou8JblTGLTB2i4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D74A6/797E9A86D19C11EF83CEAD3CC4F9AE02/048B6F32D19D11EFB536C03DC4F9AE02.roa Signing time: Wed 05 Feb 2025 06:48:50 +0000 ROA not before: Wed 05 Feb 2025 06:48:50 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 133752 IP address blocks: 43.249.36.0/23 maxlen: 24 103.161.224.0/23 maxlen: 23 2001:df1:801::/48 maxlen: 48 2402:a7c1::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D74A6/797E9A86D19C11EF83CEAD3CC4F9AE02/wipR7M5tlu_1Mou8JblTGLTB2i4.crl rsync://rpki.apnic.net/member_repository/A91D74A6/797E9A86D19C11EF83CEAD3CC4F9AE02/wipR7M5tlu_1Mou8JblTGLTB2i4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wipR7M5tlu_1Mou8JblTGLTB2i4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:48:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26 (0x1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D74A6 Validity Not Before: Feb 5 06:48:50 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a309d1-af23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:bd:f2:95:69:3e:f5:94:03:91:fa:01:de:e8: f9:6e:d9:7f:fe:40:bf:33:59:d0:5e:14:39:94:d5: cc:e7:a2:15:30:9b:42:a3:d6:b5:72:f9:fd:b5:ab: 59:f8:a8:ea:46:42:03:27:58:eb:0b:44:2f:f0:8f: ad:e3:c5:e6:3e:c5:25:82:b0:4e:2d:16:75:08:c6: ff:00:c6:f6:12:94:ba:14:cf:b9:7b:94:27:84:0a: 99:ca:62:b8:ef:80:7f:4a:2a:e5:ab:a2:bd:f8:7d: 71:4b:cd:c8:d7:56:38:ab:c0:92:e4:b4:6f:78:f8: df:67:15:05:2d:c3:e5:4d:6c:44:60:20:1d:76:af: f2:5a:2b:cd:5e:cc:01:87:0f:9a:69:33:0d:81:eb: 54:52:d3:63:1c:dc:38:56:19:b5:a7:4c:20:62:06: 7f:65:49:62:67:de:2a:c3:13:08:38:11:4c:6e:21: 1b:9f:ea:5a:25:89:9e:b2:99:49:cc:96:75:cf:1e: 73:7d:46:de:98:8d:7a:9b:2a:54:34:68:fb:91:5e: c7:12:87:02:32:2d:4a:c7:b0:b6:e4:43:be:6d:e7: 69:df:93:7c:02:fd:bd:8c:e4:b9:a1:0b:32:f9:26: 62:36:c7:5b:82:fc:34:f3:53:64:83:60:ba:76:97: 6f:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:A6:6C:08:23:F9:9A:C8:D2:90:74:96:BB:2F:8B:ED:8E:F2:4C:3F X509v3 Authority Key Identifier: keyid:C2:2A:51:EC:CE:6D:96:EF:F5:32:8B:BC:25:B9:53:18:B4:C1:DA:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D74A6/797E9A86D19C11EF83CEAD3CC4F9AE02/wipR7M5tlu_1Mou8JblTGLTB2i4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wipR7M5tlu_1Mou8JblTGLTB2i4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D74A6/797E9A86D19C11EF83CEAD3CC4F9AE02/048B6F32D19D11EFB536C03DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.249.36.0/23 103.161.224.0/23 IPv6: 2001:df1:801::/48 2402:a7c1::/32 Signature Algorithm: sha256WithRSAEncryption 50:fe:05:27:34:ea:fa:1f:19:4b:29:86:51:cd:d0:56:6c:9a: 18:89:a3:44:4f:96:3a:e6:4b:0b:ee:f3:46:3d:58:5b:8a:78: 9f:07:75:7e:72:9f:28:59:58:aa:fd:7c:04:0a:cb:9e:2b:e9: ae:b6:55:5f:1b:00:14:75:43:18:1b:41:38:95:b6:18:cd:0c: 23:12:d8:2b:bb:00:58:57:7a:70:81:b1:2e:b7:f8:f7:c7:12: e1:97:b4:d3:c3:b6:80:85:be:32:44:3c:3c:c7:95:a1:22:18: a2:75:7f:b9:d0:2d:17:cb:2a:f9:20:33:e8:a5:23:df:cd:1e: 71:f3:dc:13:35:4a:2e:30:6f:42:3d:21:49:00:5a:aa:3c:42: 68:67:70:8b:17:03:74:ae:8c:e4:37:b8:2b:f9:13:75:d8:7a: f8:a7:e6:14:aa:e2:88:3c:84:29:9e:cb:86:b3:64:1f:68:e4: ff:70:30:70:e6:27:28:e4:3d:88:a1:a3:02:fb:5d:4f:cf:d0: bd:3e:f7:83:14:21:8b:50:12:0f:04:bb:f3:41:9f:9f:50:d9: 9d:6a:f3:8d:30:1d:20:43:cd:0f:29:8f:66:2b:cf:ef:d3:d1: 80:d1:2d:5c:0d:d0:2c:8b:e0:37:b6:6f:b7:2f:56:61:c2:e9: 46:d2:fe:e4 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgIBGjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NzRBNjExMC8GA1UEBRMoQzIyQTUxRUNDRTZEOTZFRkY1MzI4QkJDMjVCOTUzMThC NEMxREEyRTAeFw0yNTAyMDUwNjQ4NTBaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YTMwOWQxLWFmMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7vfKVaT71lAOR+gHe6Plu2X/+QL8zWdBeFDmU1cznohUwm0Kj1rVy+f21q1n4 qOpGQgMnWOsLRC/wj63jxeY+xSWCsE4tFnUIxv8AxvYSlLoUz7l7lCeECpnKYrjv gH9KKuWror34fXFLzcjXVjirwJLktG94+N9nFQUtw+VNbERgIB12r/JaK81ezAGH D5ppMw2B61RS02Mc3DhWGbWnTCBiBn9lSWJn3irDEwg4EUxuIRuf6loliZ6ymUnM lnXPHnN9Rt6YjXqbKlQ0aPuRXscShwIyLUrHsLbkQ75t52nfk3wC/b2M5LmhCzL5 JmI2x1uC/DTzU2SDYLp2l29ZAgMBAAGjggKzMIICrzAdBgNVHQ4EFgQUSaZsCCP5 msjSkHSWuy+L7Y7yTD8wHwYDVR0jBBgwFoAUwipR7M5tlu/1Mou8JblTGLTB2i4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ3NEE2Lzc5N0U5QTg2RDE5 QzExRUY4M0NFQUQzQ0M0RjlBRTAyL3dpcFI3TTV0bHVfMU1vdThKYmxUR0xUQjJp NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd2lwUjdNNXRsdV8xTW91OEpibFRHTFRCMmk0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NzRBNi83OTdFOUE4NkQxOUMxMUVGODNDRUFEM0NDNEY5QUUwMi8wNDhCNkYzMkQx OUQxMUVGQjUzNkMwM0RDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA9BggrBgEFBQcBBwEB/wQu MCwwEgQCAAEwDAMEASv5JAMEAWeh4DAWBAIAAjAQAwcAIAEN8QgBAwUAJAKnwTAN BgkqhkiG9w0BAQsFAAOCAQEAUP4FJzTq+h8ZSymGUc3QVmyaGImjRE+WOuZLC+7z Rj1YW4p4nwd1fnKfKFlYqv18BArLnivprrZVXxsAFHVDGBtBOJW2GM0MIxLYK7sA WFd6cIGxLrf498cS4Ze008O2gIW+MkQ8PMeVoSIYonV/udAtF8sq+SAz6KUj380e cfPcEzVKLjBvQj0hSQBaqjxCaGdwixcDdK6M5De4K/kTddh6+KfmFKriiDyEKZ7L hrNkH2jk/3AwcOYnKOQ9iKGjAvtdT8/QvT73gxQhi1ASDwS780Gfn1DZnWrzjTAd IEPNDymPZivP79PRgNEtXA3QLIvgN7Zvty9WYcLpRtL+5A== -----END CERTIFICATE-----Generated at Thu Feb 6 04:43:22 2025 by rpki-client