$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/F3B716768F2F11EE86964D62C4F9AE02.roa File: F3B716768F2F11EE86964D62C4F9AE02.roa (raw, json) Hash identifier: JyMg/EdjARK9CrqMTXHM5U+yTBgU1TCFV25bTHvbz3E= Subject key identifier: 13:10:7F:97:53:18:2E:35:27:11:3F:BF:39:02:9F:14:B3:BB:7A:06 Certificate issuer: /CN=A91DE2AE/serialNumber=697620515E7B1EE8AC7F3F6D13BEAEBA62C4EDA9 Certificate serial: 01A2 Authority key identifier: 69:76:20:51:5E:7B:1E:E8:AC:7F:3F:6D:13:BE:AE:BA:62:C4:ED:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/F3B716768F2F11EE86964D62C4F9AE02.roa Signing time: Fri 31 Jan 2025 03:19:27 +0000 ROA not before: Fri 31 Jan 2025 03:19:27 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 140721 IP address blocks: 103.152.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.crl rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE2AE Validity Not Before: Jan 31 03:19:27 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=679c413f-54a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2a:3f:93:c1:7e:89:57:31:99:2c:fc:57:95: 36:63:bf:c7:60:b6:51:4c:b7:09:df:98:09:b5:36: 58:27:96:8c:52:0f:ef:8c:aa:9a:79:f4:43:61:2d: 40:31:a0:7a:da:61:ad:8c:66:43:de:2b:2a:e4:5a: 5f:d4:5f:08:84:92:ef:5f:55:f5:e3:b0:7c:6c:f2: 7c:4c:84:5d:e6:9e:c0:86:38:e2:3c:04:f9:b2:4b: 32:6c:fe:0b:39:2f:24:54:b4:39:fe:ea:f6:a2:af: f4:1a:32:5f:d5:f0:04:70:4e:09:ea:58:86:20:3b: bd:2d:4e:51:4d:e6:db:a0:3f:11:fa:01:df:8d:15: 35:92:4c:f9:30:5d:84:6a:11:ff:c5:63:9b:c9:e2: 04:b7:9f:4b:96:fe:8a:c8:43:17:d5:2c:57:a2:8f: ba:42:67:ca:fc:ab:9a:93:3c:25:1d:a1:5c:e8:f2: f8:f1:9a:5f:0d:d9:9b:a2:2d:fa:0a:be:a7:1a:dd: 3a:d5:c9:4e:04:28:6c:4f:3a:a9:f5:bb:e6:77:fe: 17:13:8d:47:1f:df:e7:b5:a9:60:23:7c:5c:e6:f8: 2d:5d:3a:a2:ba:47:38:c9:3e:af:fe:5c:0c:26:00: 07:94:aa:c1:14:38:c4:3f:af:89:73:6b:53:dd:9d: aa:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:10:7F:97:53:18:2E:35:27:11:3F:BF:39:02:9F:14:B3:BB:7A:06 X509v3 Authority Key Identifier: keyid:69:76:20:51:5E:7B:1E:E8:AC:7F:3F:6D:13:BE:AE:BA:62:C4:ED:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/aXYgUV57Huisfz9tE76uumLE7ak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aXYgUV57Huisfz9tE76uumLE7ak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE2AE/C70FEA2A8C2011EDADD5C809C4F9AE02/F3B716768F2F11EE86964D62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.43.0/24 Signature Algorithm: sha256WithRSAEncryption 63:88:11:d7:20:73:37:7f:75:c2:e7:c7:39:7a:7a:ac:0d:47: a0:ef:59:07:08:28:c4:17:f5:ad:cf:74:8a:5e:68:28:18:03: 92:d0:1c:36:f5:36:e1:83:65:29:a5:21:b9:a9:b2:fe:37:17: 2e:d3:6c:56:57:29:29:4a:d4:d1:d3:24:04:e7:41:d8:a0:82: 4e:80:97:5f:44:52:5f:81:54:56:29:36:0f:13:c1:14:0d:b6: dd:c8:01:52:3d:da:ae:a5:8c:51:40:91:e7:36:15:08:26:c9: 16:11:98:2c:d6:1b:74:cd:ff:2c:43:f2:2d:61:69:bd:41:97: 21:3a:c6:8a:18:54:2a:21:40:23:83:cf:78:e5:8f:25:78:03: e7:04:09:70:64:64:ef:52:aa:38:71:26:93:c5:5c:be:27:6e: e8:36:ae:0b:03:1e:f5:61:c5:e4:2d:49:8f:8c:28:8f:d8:22: 0b:be:c0:b4:28:47:d0:56:95:ae:8b:31:4d:4d:2d:2f:4a:35: b5:b5:c7:d2:91:e4:62:69:96:f4:35:60:b5:ff:40:f7:82:1a: dd:9c:2a:81:a5:ba:f8:b5:f5:6a:c2:68:e8:b2:4e:1a:69:ea: f7:b4:92:1a:e1:50:e4:6c:55:9f:71:5c:45:16:11:47:21:8d: 20:29:6f:2f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUyQUUxMTAvBgNVBAUTKDY5NzYyMDUxNUU3QjFFRThBQzdGM0Y2RDEzQkVBRUJB NjJDNEVEQTkwHhcNMjUwMTMxMDMxOTI3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzljNDEzZi01NGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyo/k8F+iVcxmSz8V5U2Y7/HYLZRTLcJ35gJtTZYJ5aMUg/vjKqaefRDYS1A MaB62mGtjGZD3isq5Fpf1F8IhJLvX1X147B8bPJ8TIRd5p7AhjjiPAT5sksybP4L OS8kVLQ5/ur2oq/0GjJf1fAEcE4J6liGIDu9LU5RTebboD8R+gHfjRU1kkz5MF2E ahH/xWObyeIEt59Llv6KyEMX1SxXoo+6QmfK/KuakzwlHaFc6PL48ZpfDdmboi36 Cr6nGt061clOBChsTzqp9bvmd/4XE41HH9/ntalgI3xc5vgtXTqiukc4yT6v/lwM JgAHlKrBFDjEP6+Jc2tT3Z2qcQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBMQf5dT GC41JxE/vzkCnxSzu3oGMB8GA1UdIwQYMBaAFGl2IFFeex7orH8/bRO+rrpixO2p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTJBRS9DNzBGRUEyQThD MjAxMUVEQURENUM4MDlDNEY5QUUwMi9hWFlnVVY1N0h1aXNmejl0RTc2dXVtTEU3 YWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FYWWdVVjU3SHVpc2Z6OXRFNzZ1dW1MRTdhay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REUyQUUvQzcwRkVBMkE4QzIwMTFFREFERDVDODA5QzRGOUFFMDIvRjNCNzE2NzY4 RjJGMTFFRTg2OTY0RDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmCswDQYJKoZIhvcNAQELBQADggEBAGOIEdcgczd/dcLn xzl6eqwNR6DvWQcIKMQX9a3PdIpeaCgYA5LQHDb1NuGDZSmlIbmpsv43Fy7TbFZX KSlK1NHTJATnQdiggk6Al19EUl+BVFYpNg8TwRQNtt3IAVI92q6ljFFAkec2FQgm yRYRmCzWG3TN/yxD8i1hab1BlyE6xooYVCohQCODz3jljyV4A+cECXBkZO9Sqjhx JpPFXL4nbug2rgsDHvVhxeQtSY+MKI/YIgu+wLQoR9BWla6LMU1NLS9KNbW1x9KR 5GJplvQ1YLX/QPeCGt2cKoGluvi19WrCaOiyThpp6ve0khrhUORsVZ9xXEUWEUch jSApby8= -----END CERTIFICATE-----Generated at Mon Feb 17 08:08:42 2025 by rpki-client