$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/68C5CFBE076911EF8569F157C4F9AE02.roa File: 68C5CFBE076911EF8569F157C4F9AE02.roa (raw, json) Hash identifier: tsvfq1JS/MiwyfU6/6stmHXHI8bkcGx85DGNDrytcZ4= Subject key identifier: F8:FF:6A:22:86:F8:87:CF:22:28:A2:53:33:E8:79:C1:C1:7E:19:49 Certificate issuer: /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Certificate serial: 0760 Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/68C5CFBE076911EF8569F157C4F9AE02.roa Signing time: Wed 12 Jun 2024 23:00:56 +0000 ROA not before: Wed 12 Jun 2024 23:00:56 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 997 IP address blocks: 103.213.244.0/22 maxlen: 24 144.48.4.0/22 maxlen: 24 2401:1640::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1888 (0x760) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA10A Validity Not Before: Jun 12 23:00:56 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=666a28a7-caa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8c:62:03:b7:ab:c7:cf:83:86:dc:b9:9a:80: 00:b8:51:d7:87:38:5f:3c:39:66:91:a0:65:c8:49: 9e:15:fa:b0:52:0e:7e:3a:b8:11:93:79:5a:6b:e7: 68:d7:22:8a:68:d5:4a:d0:84:d1:40:12:6d:d7:ef: 71:47:b2:13:bd:54:ce:74:d2:7f:44:39:e9:38:ec: a3:01:f1:59:b3:0a:0b:4f:ff:1f:a8:e6:c0:b6:c4: 6b:13:14:84:13:a4:27:57:9a:ca:59:0b:65:72:98: e1:8f:d9:48:f8:bf:6a:f5:02:3b:95:fc:b9:12:17: 00:21:7a:a9:84:b9:ea:07:bf:3a:0a:93:ad:af:ec: fd:30:4a:ed:be:f5:0c:d4:08:47:c9:4c:05:87:35: bd:84:85:6d:88:01:db:63:6a:40:82:df:97:ce:6d: 50:da:d7:95:e0:b7:74:d9:1b:fb:07:a3:80:39:14: 2b:ce:03:92:c5:9d:61:fa:9f:16:0c:f8:9d:fb:86: f0:e0:51:61:e1:ba:f3:ce:c2:5e:1f:db:47:44:05: b6:bc:63:61:ee:9d:62:e5:8f:01:a6:83:f7:78:a6: e6:73:16:bd:70:2d:86:11:f3:99:43:0c:46:9b:44: 99:2e:38:15:56:2a:3b:c4:a6:fd:c4:f4:ff:00:35: f3:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:FF:6A:22:86:F8:87:CF:22:28:A2:53:33:E8:79:C1:C1:7E:19:49 X509v3 Authority Key Identifier: keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/68C5CFBE076911EF8569F157C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.244.0/22 144.48.4.0/22 IPv6: 2401:1640::/32 Signature Algorithm: sha256WithRSAEncryption 52:72:46:1f:6b:df:fd:53:ad:3b:21:56:ae:1e:7e:f5:89:bc: 6c:b9:51:9a:f4:25:f2:09:63:1d:bf:0a:b7:0b:fe:e2:05:b4: 81:84:2c:34:4b:cc:85:c5:7f:22:67:4b:69:4f:1f:2f:cc:41: 2d:a5:11:07:c4:08:42:7f:0d:37:49:99:b7:ff:7b:fc:f3:f5: 82:d7:49:ae:db:d4:6c:ed:2e:87:e4:2f:74:f0:02:22:bf:81: 88:59:4a:52:04:f8:10:f8:2f:bc:16:a5:bb:11:36:73:53:de: c5:15:0d:14:94:c3:9a:d3:ff:75:94:db:88:04:47:fd:2f:66: 2e:eb:8f:4a:40:6e:29:48:f4:a5:79:46:f6:c8:84:54:9b:7f: 7a:f9:d0:bd:47:da:cd:ef:73:52:fb:06:57:72:e0:d0:24:2a: c8:63:d8:e4:e3:60:67:ae:05:31:22:90:e3:b7:11:50:38:95: e8:36:6f:be:99:1b:4b:fb:b5:18:cb:17:ea:b5:8b:43:93:63: b8:f5:a4:92:3b:51:58:a3:8c:0b:86:0b:df:ec:7e:78:94:3f: 51:7a:8d:73:68:6b:65:4c:0e:37:9b:a3:ff:13:5f:94:d0:9b: 93:07:e4:cb:68:68:e0:11:3c:4f:5c:3f:01:c0:9d:74:f7:61: dc:30:7e:be -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICB2AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExMEExMTAvBgNVBAUTKDQ5QjVBNDY0NjNFM0EyQjcwQTMzNDQ2MDE0RUJGNDBF NUM5RUZFNzQwHhcNMjQwNjEyMjMwMDU2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZhMjhhNy1jYWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0YxiA7erx8+Dhty5moAAuFHXhzhfPDlmkaBlyEmeFfqwUg5+OrgRk3laa+do 1yKKaNVK0ITRQBJt1+9xR7ITvVTOdNJ/RDnpOOyjAfFZswoLT/8fqObAtsRrExSE E6QnV5rKWQtlcpjhj9lI+L9q9QI7lfy5EhcAIXqphLnqB786CpOtr+z9MErtvvUM 1AhHyUwFhzW9hIVtiAHbY2pAgt+Xzm1Q2teV4Ld02Rv7B6OAORQrzgOSxZ1h+p8W DPid+4bw4FFh4brzzsJeH9tHRAW2vGNh7p1i5Y8BpoP3eKbmcxa9cC2GEfOZQwxG m0SZLjgVVio7xKb9xPT/ADXzjQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFPj/aiKG +IfPIiiiUzPoecHBfhlJMB8GA1UdIwQYMBaAFEm1pGRj46K3CjNEYBTr9A5cnv50 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEwQS9FMzQwMjA0Q0Yx ODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9yY0tNMFJnRk92MERseWVf blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NiV2taR1Bqb3JjS00wUmdGT3YwRGx5ZV9uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REExMEEvRTM0MDIwNENGMTg3MTFFQUI5NzM0QjFDQzRGOUFFMDIvNjhDNUNGQkUw NzY5MTFFRjg1NjlGMTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn1fQDBAKQMAQwDQQCAAIwBwMFACQBFkAwDQYJKoZIhvcN AQELBQADggEBAFJyRh9r3/1TrTshVq4efvWJvGy5UZr0JfIJYx2/CrcL/uIFtIGE LDRLzIXFfyJnS2lPHy/MQS2lEQfECEJ/DTdJmbf/e/zz9YLXSa7b1GztLofkL3Tw AiK/gYhZSlIE+BD4L7wWpbsRNnNT3sUVDRSUw5rT/3WU24gER/0vZi7rj0pAbilI 9KV5RvbIhFSbf3r50L1H2s3vc1L7Bldy4NAkKshj2OTjYGeuBTEikOO3EVA4leg2 b76ZG0v7tRjLF+q1i0OTY7j1pJI7UVijjAuGC9/sfniUP1F6jXNoa2VMDjebo/8T X5TQm5MH5MtoaOARPE9cPwHAnXT3Ydwwfr4= -----END CERTIFICATE-----Generated at Sun Feb 16 20:33:11 2025 by rpki-client