$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/234205EA327A11E8A1143B79C4F9AE02.roa File: 234205EA327A11E8A1143B79C4F9AE02.roa (raw, json) Hash identifier: TNm1D3H84N7whf8ekQ/vCF3rhsZGPVYvMkkPOGLONIM= Subject key identifier: B6:E6:E1:90:06:78:DE:7D:6C:75:B9:72:1E:31:18:29:5A:C1:C7:EF Certificate issuer: /CN=A91DCD09/serialNumber=18F97D098E4EBD0610D54F48D5B3E1AA743A2029 Certificate serial: 19A1 Authority key identifier: 18:F9:7D:09:8E:4E:BD:06:10:D5:4F:48:D5:B3:E1:AA:74:3A:20:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/234205EA327A11E8A1143B79C4F9AE02.roa Signing time: Tue 24 Sep 2024 16:54:14 +0000 ROA not before: Tue 24 Sep 2024 16:54:14 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 19905 IP address blocks: 103.241.84.0/24 maxlen: 24 103.241.85.0/24 maxlen: 24 103.241.86.0/24 maxlen: 24 103.241.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.crl rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6561 (0x19a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCD09 Validity Not Before: Sep 24 16:54:14 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f2eeb6-687c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:44:95:04:8f:cb:e1:7e:8e:e1:15:13:6c:75: 58:d1:12:af:61:1e:47:cd:6e:da:85:e5:c5:7b:9e: 75:6b:be:ec:1c:89:f5:d3:64:36:8f:dc:c9:10:88: 6a:6c:7b:8b:2f:2f:1b:e7:0a:f0:20:a2:c8:14:df: e0:04:56:77:2d:34:8d:9c:e4:d5:18:c2:1b:ee:da: a8:e3:e2:1e:b5:fa:26:33:12:d0:fb:98:26:29:15: 2b:0e:29:7e:e1:ab:b3:93:01:9f:3b:16:6d:7c:60: 23:99:e2:9b:38:53:3c:06:4a:b0:0d:d3:bb:f1:38: 46:1f:65:dc:cc:e5:c0:f6:a0:be:6e:a4:78:ff:27: 7e:2f:c7:54:af:11:1e:7e:30:c0:fb:87:55:ee:82: a2:96:6f:b6:85:20:f0:94:a1:74:09:aa:7c:f8:9d: 8c:33:e0:3b:f4:00:14:98:84:fa:9a:7a:b2:98:8a: 85:18:de:1a:30:21:73:a8:67:3e:36:a4:06:28:4c: e1:39:c5:f5:6e:02:42:7d:c3:18:3f:13:c3:60:a1: 72:93:67:53:49:eb:48:bc:93:fe:c9:20:2d:e6:5b: 6d:bf:d7:6d:4a:94:91:8e:04:33:96:4f:9a:2e:3d: 71:6f:49:8e:28:ee:47:f2:95:68:5d:95:5d:73:24: 68:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:E6:E1:90:06:78:DE:7D:6C:75:B9:72:1E:31:18:29:5A:C1:C7:EF X509v3 Authority Key Identifier: keyid:18:F9:7D:09:8E:4E:BD:06:10:D5:4F:48:D5:B3:E1:AA:74:3A:20:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/234205EA327A11E8A1143B79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.241.84.0/22 Signature Algorithm: sha256WithRSAEncryption 54:0b:49:80:fd:ab:0f:eb:5e:99:4e:8d:07:23:1d:bb:c8:e6: 01:18:c1:06:74:3f:a2:77:9d:94:5e:bf:ba:63:b4:8a:16:e1: f2:c4:04:0d:7e:53:74:3b:58:66:7c:5b:51:81:10:76:1b:b3: 5c:05:12:16:ed:2d:5d:fa:b2:f5:89:78:31:26:42:a0:0d:08: 16:d9:87:c3:90:f9:bc:54:bb:1f:6b:26:04:13:46:19:f8:6a: ff:fa:1b:c7:16:93:ee:23:69:f9:32:65:93:f6:db:c7:0d:83: 99:4f:e1:29:2f:e2:bc:a7:93:31:97:21:ae:20:71:3a:7a:93: df:f5:8b:bb:26:cd:9d:b2:18:4a:c9:a1:8b:c2:3c:e2:4a:c7: 75:e0:c1:ff:73:0c:a1:36:72:5e:63:4f:36:80:14:d5:0c:96: 5b:c5:e7:ae:21:7e:da:c6:ff:6f:06:12:94:d3:30:70:58:fb: c9:8c:9d:80:51:75:20:e6:19:12:c4:6a:c0:9c:5e:00:3a:f0: 6d:c5:61:8f:9d:22:2f:5a:aa:75:5e:65:e2:30:40:23:51:57: e2:1d:9e:cc:1b:00:93:60:a0:1b:8c:00:94:a1:31:0f:9c:e3: 37:c7:92:d6:86:82:62:5d:4e:ef:fd:0f:65:7b:f1:e6:34:fd: 9b:11:85:63 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENEMDkxMTAvBgNVBAUTKDE4Rjk3RDA5OEU0RUJEMDYxMEQ1NEY0OEQ1QjNFMUFB NzQzQTIwMjkwHhcNMjQwOTI0MTY1NDE0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYyZWViNi02ODdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs0SVBI/L4X6O4RUTbHVY0RKvYR5HzW7aheXFe551a77sHIn102Q2j9zJEIhq bHuLLy8b5wrwIKLIFN/gBFZ3LTSNnOTVGMIb7tqo4+IetfomMxLQ+5gmKRUrDil+ 4auzkwGfOxZtfGAjmeKbOFM8BkqwDdO78ThGH2XczOXA9qC+bqR4/yd+L8dUrxEe fjDA+4dV7oKilm+2hSDwlKF0Cap8+J2MM+A79AAUmIT6mnqymIqFGN4aMCFzqGc+ NqQGKEzhOcX1bgJCfcMYPxPDYKFyk2dTSetIvJP+ySAt5lttv9dtSpSRjgQzlk+a Lj1xb0mOKO5H8pVoXZVdcyRoUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLbm4ZAG eN59bHW5ch4xGClawcfvMB8GA1UdIwQYMBaAFBj5fQmOTr0GENVPSNWz4ap0OiAp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0QwOS8yRjhCODU1MjU0 ODUxMUU3QjFEODQ3MTNDNEY5QUUwMi9HUGw5Q1k1T3ZRWVExVTlJMWJQaHFuUTZJ Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dQbDlDWTVPdlFZUTFVOUkxYlBocW5RNklDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENEMDkvMkY4Qjg1NTI1NDg1MTFFN0IxRDg0NzEzQzRGOUFFMDIvMjM0MjA1RUEz MjdBMTFFOEExMTQzQjc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn8VQwDQYJKoZIhvcNAQELBQADggEBAFQLSYD9qw/rXplO jQcjHbvI5gEYwQZ0P6J3nZRev7pjtIoW4fLEBA1+U3Q7WGZ8W1GBEHYbs1wFEhbt LV36svWJeDEmQqANCBbZh8OQ+bxUux9rJgQTRhn4av/6G8cWk+4jafkyZZP228cN g5lP4Skv4rynkzGXIa4gcTp6k9/1i7smzZ2yGErJoYvCPOJKx3Xgwf9zDKE2cl5j TzaAFNUMllvF564hftrG/28GEpTTMHBY+8mMnYBRdSDmGRLEasCcXgA68G3FYY+d Ii9aqnVeZeIwQCNRV+IdnswbAJNgoBuMAJShMQ+c4zfHktaGgmJdTu/9D2V78eY0 /ZsRhWM= -----END CERTIFICATE-----Generated at Sun Feb 16 15:44:19 2025 by rpki-client