$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/9DF7DA5C557C11E7B34BCE81C4F9AE02.roa File: 9DF7DA5C557C11E7B34BCE81C4F9AE02.roa (raw, json) Hash identifier: 8/w05fSu74dL03k0q9KVl8WrlCWTBNHjvuwvJNrIN8w= Subject key identifier: 48:A7:0B:DA:44:E0:36:9A:72:F2:45:DD:F2:E5:DD:A4:60:30:F8:8C Certificate issuer: /CN=A91DCD09/serialNumber=18F97D098E4EBD0610D54F48D5B3E1AA743A2029 Certificate serial: 19A0 Authority key identifier: 18:F9:7D:09:8E:4E:BD:06:10:D5:4F:48:D5:B3:E1:AA:74:3A:20:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/9DF7DA5C557C11E7B34BCE81C4F9AE02.roa Signing time: Tue 24 Sep 2024 16:54:13 +0000 ROA not before: Tue 24 Sep 2024 16:54:13 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 134433 IP address blocks: 103.241.84.0/24 maxlen: 24 103.241.85.0/24 maxlen: 24 103.241.86.0/24 maxlen: 24 103.241.87.0/24 maxlen: 24 2407:d500::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.crl rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6560 (0x19a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCD09 Validity Not Before: Sep 24 16:54:13 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f2eeb5-b2ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:bf:3d:fd:c5:4b:5d:d1:5b:7c:c4:bc:79:6d: fd:98:aa:0f:a0:be:c7:c9:a6:f8:e6:f3:8a:16:93: ae:46:85:7b:35:6b:93:92:4f:48:ab:b9:93:5a:5b: 3f:f8:fa:9e:91:1e:5a:8c:98:43:20:2d:9e:74:13: 67:d2:cc:ec:97:a5:03:2c:d7:3d:81:a9:d9:84:17: 8d:ed:86:8a:58:2d:75:43:23:ee:be:e3:2d:07:11: cf:bb:2f:6a:64:ac:76:84:d8:52:c4:ed:ac:59:03: 07:6e:18:a0:4c:68:8e:8d:0f:f7:c2:c9:bb:87:61: c8:c7:68:4b:69:29:ff:15:7f:e2:61:53:7f:e4:fa: 39:1b:f1:91:a4:c1:50:08:41:49:91:ca:fd:2b:13: df:02:a1:5d:32:ac:69:06:dd:ca:12:86:c0:97:bd: 30:c3:58:a8:7b:e8:17:75:10:7b:08:a3:f4:ca:93: a0:78:66:b5:91:b0:38:a6:63:d8:b7:df:09:83:b8: 26:60:09:26:24:55:08:b9:7e:36:f3:fd:ed:1c:cc: 85:e6:77:ed:e2:7d:e9:1d:b6:8d:15:3a:41:f1:f9: dd:19:8a:52:7e:ec:f1:f3:a6:f3:75:f5:6e:4f:80: b9:f6:52:5f:2a:cb:2c:55:65:8d:c1:fd:e5:b8:98: 97:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:A7:0B:DA:44:E0:36:9A:72:F2:45:DD:F2:E5:DD:A4:60:30:F8:8C X509v3 Authority Key Identifier: keyid:18:F9:7D:09:8E:4E:BD:06:10:D5:4F:48:D5:B3:E1:AA:74:3A:20:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/9DF7DA5C557C11E7B34BCE81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.241.84.0/22 IPv6: 2407:d500::/32 Signature Algorithm: sha256WithRSAEncryption 94:26:47:cc:04:53:52:f4:8e:40:8f:30:52:46:f7:fa:73:dc: da:72:be:12:0d:a4:64:62:1d:2f:96:fa:c9:5b:d6:25:72:fa: 08:99:c6:03:fb:e2:6f:8c:3e:7d:15:56:78:46:a1:22:80:4a: 27:7c:37:28:64:e5:b4:41:3e:42:cc:8a:53:25:65:04:4f:cd: 47:6b:8d:8f:d8:77:03:e6:6a:4f:cb:cc:9f:bd:68:20:62:65: 86:3c:15:4a:30:a2:03:c2:a3:57:2c:99:05:a9:da:85:a4:35: 68:9f:cd:ea:7b:10:48:64:9f:23:37:72:d5:07:62:f3:04:1b: aa:3c:52:59:58:3c:af:00:c0:11:a5:c8:7b:e1:37:f5:58:e7: 88:a7:f3:99:ea:79:c7:9c:a1:a3:6f:73:2f:1a:02:f9:e6:62: ba:8d:c8:74:56:af:36:4d:1a:13:f7:6f:82:7b:41:be:d8:e6: 83:bf:4c:06:9e:23:27:d1:5c:4a:4a:e2:6b:b8:44:46:92:25: 59:4a:b7:db:f1:c2:15:37:31:47:7a:85:ba:34:7b:b6:a7:d6: b0:f1:21:3a:e4:d4:ba:74:6e:fa:2b:1b:60:16:be:c5:8a:77: af:19:ab:a5:76:b8:42:a6:47:16:96:e4:de:62:ae:55:1d:41: 26:1f:5b:eb -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICGaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENEMDkxMTAvBgNVBAUTKDE4Rjk3RDA5OEU0RUJEMDYxMEQ1NEY0OEQ1QjNFMUFB NzQzQTIwMjkwHhcNMjQwOTI0MTY1NDEzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYyZWViNS1iMmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArL89/cVLXdFbfMS8eW39mKoPoL7Hyab45vOKFpOuRoV7NWuTkk9Iq7mTWls/ +PqekR5ajJhDIC2edBNn0szsl6UDLNc9ganZhBeN7YaKWC11QyPuvuMtBxHPuy9q ZKx2hNhSxO2sWQMHbhigTGiOjQ/3wsm7h2HIx2hLaSn/FX/iYVN/5Po5G/GRpMFQ CEFJkcr9KxPfAqFdMqxpBt3KEobAl70ww1ioe+gXdRB7CKP0ypOgeGa1kbA4pmPY t98Jg7gmYAkmJFUIuX428/3tHMyF5nft4n3pHbaNFTpB8fndGYpSfuzx86bzdfVu T4C59lJfKsssVWWNwf3luJiXyQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFEinC9pE 4DaacvJF3fLl3aRgMPiMMB8GA1UdIwQYMBaAFBj5fQmOTr0GENVPSNWz4ap0OiAp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0QwOS8yRjhCODU1MjU0 ODUxMUU3QjFEODQ3MTNDNEY5QUUwMi9HUGw5Q1k1T3ZRWVExVTlJMWJQaHFuUTZJ Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dQbDlDWTVPdlFZUTFVOUkxYlBocW5RNklDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENEMDkvMkY4Qjg1NTI1NDg1MTFFN0IxRDg0NzEzQzRGOUFFMDIvOURGN0RBNUM1 NTdDMTFFN0IzNEJDRTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJn8VQwDQQCAAIwBwMFACQH1QAwDQYJKoZIhvcNAQELBQAD ggEBAJQmR8wEU1L0jkCPMFJG9/pz3NpyvhINpGRiHS+W+slb1iVy+giZxgP74m+M Pn0VVnhGoSKASid8Nyhk5bRBPkLMilMlZQRPzUdrjY/YdwPmak/LzJ+9aCBiZYY8 FUowogPCo1csmQWp2oWkNWifzep7EEhknyM3ctUHYvMEG6o8UllYPK8AwBGlyHvh N/VY54in85nqececoaNvcy8aAvnmYrqNyHRWrzZNGhP3b4J7Qb7Y5oO/TAaeIyfR XEpK4mu4REaSJVlKt9vxwhU3MUd6hbo0e7an1rDxITrk1Lp0bvorG2AWvsWKd68Z q6V2uEKmRxaW5N5irlUdQSYfW+s= -----END CERTIFICATE-----Generated at Sun Feb 16 20:44:16 2025 by rpki-client