$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/53AD6F32DA5E11EBA323F462C4F9AE02.roa File: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (raw, json) Hash identifier: 5yL82AjNiBtE4vdmcnCW/8glBDbdrO2x3U6tcVWP0Uk= Subject key identifier: 8E:C6:B1:20:80:0F:96:ED:55:3A:F5:ED:60:D0:EA:68:05:B5:35:F5 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 04DA Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/53AD6F32DA5E11EBA323F462C4F9AE02.roa Signing time: Tue 25 Jun 2024 00:50:13 +0000 ROA not before: Tue 25 Jun 2024 00:50:13 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.168.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1242 (0x4da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66 Validity Not Before: Jun 25 00:50:13 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667a1445-4ee2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:69:19:4b:82:63:0e:9e:f0:04:b6:23:eb:2e: 02:47:cd:54:09:88:10:d9:57:c9:1c:c3:2e:74:3e: ba:48:75:a8:4d:c9:ce:75:3d:3f:b7:74:64:cb:20: 59:3b:d1:cd:38:d8:fe:f8:52:2e:95:65:e6:12:8c: c9:fb:fb:f5:57:45:f6:17:c7:b7:25:1d:d9:4d:fb: f5:3f:41:da:3f:77:71:16:b1:88:88:95:a4:d2:1e: 7a:60:80:75:fd:62:7a:ba:30:c5:50:bb:b8:25:c7: 63:73:a5:37:fb:50:d5:8a:2c:b6:c3:80:d6:bd:be: e6:03:b2:91:0e:ec:fb:65:f6:40:40:89:eb:0d:56: ad:ce:85:dd:ae:f3:41:26:85:af:da:61:61:a4:71: 29:37:c8:3e:a2:58:7f:1a:c6:ac:09:1c:c3:0e:57: 49:e0:61:a0:6d:4f:41:7f:df:d9:f4:7a:b7:e4:e5: 1f:6f:67:69:73:da:c6:2d:10:f2:2a:12:5d:b7:28: f4:3e:45:53:b8:cf:39:d0:f3:c9:43:5b:82:c1:21: 3a:33:23:18:eb:c1:80:62:65:23:a2:cc:57:9b:1f: 4b:35:86:6f:bb:e1:e7:a5:3d:dc:ca:38:8f:85:66: 2f:e0:e3:d7:3b:7e:cd:c2:25:55:cc:58:f6:48:85: 3c:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:C6:B1:20:80:0F:96:ED:55:3A:F5:ED:60:D0:EA:68:05:B5:35:F5 X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/53AD6F32DA5E11EBA323F462C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.209.0/24 Signature Algorithm: sha256WithRSAEncryption 45:50:1b:57:b9:81:df:0a:d5:bc:98:2f:12:ff:41:53:8e:36: ce:2c:3d:5c:6a:ad:a5:54:1b:ea:70:ce:fe:5a:eb:64:7a:96: 79:57:49:4e:7d:b8:fd:6c:bc:3b:d6:12:e4:7c:6f:41:ce:d8: 60:68:4a:9d:fd:e1:fe:3c:20:d8:8d:19:64:d8:33:c5:af:b7: ca:07:4c:42:c8:7b:f8:67:6f:64:99:83:0e:c2:94:be:32:6a: 24:56:b0:6f:11:4c:b3:e2:4e:c5:07:fd:1c:94:5c:bb:49:5a: d5:89:46:e8:4f:48:08:5d:6c:72:e0:17:54:26:1b:0e:c3:4e: 2c:54:ad:ab:60:31:b2:b6:93:71:54:d7:e8:e3:0b:91:66:00: 61:03:77:c9:40:45:0e:33:e8:c5:44:39:66:5c:d3:77:a2:87: 34:c4:02:48:fc:97:97:bc:0e:b7:a2:ec:d4:5e:9b:3a:ec:8d: d6:a6:55:70:f2:3f:bf:cc:32:0e:04:48:18:ea:26:56:1a:2d: f7:ec:c8:69:81:05:b3:48:07:f5:fd:14:dc:32:64:be:80:aa: 85:aa:9b:bf:6e:1f:0c:cf:d4:80:a4:af:2c:69:f5:3c:72:9d: ab:31:49:3e:14:ae:79:16:27:86:5e:c6:f1:bd:aa:03:3e:55: 90:a8:89:81 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjQwNjI1MDA1MDEzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdhMTQ0NS00ZWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWkZS4JjDp7wBLYj6y4CR81UCYgQ2VfJHMMudD66SHWoTcnOdT0/t3RkyyBZ O9HNONj++FIulWXmEozJ+/v1V0X2F8e3JR3ZTfv1P0HaP3dxFrGIiJWk0h56YIB1 /WJ6ujDFULu4Jcdjc6U3+1DViiy2w4DWvb7mA7KRDuz7ZfZAQInrDVatzoXdrvNB JoWv2mFhpHEpN8g+olh/GsasCRzDDldJ4GGgbU9Bf9/Z9Hq35OUfb2dpc9rGLRDy KhJdtyj0PkVTuM850PPJQ1uCwSE6MyMY68GAYmUjosxXmx9LNYZvu+HnpT3cyjiP hWYv4OPXO37NwiVVzFj2SIU8iQIDAQABo4IClTCCApEwHQYDVR0OBBYEFI7GsSCA D5btVTr17WDQ6mgFtTX1MB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTJCNjYvNTNFOEZCRUFEQTVCMTFFQjgzQkUzNzFBQzRGOUFFMDIvNTNBRDZGMzJE QTVFMTFFQkEzMjNGNDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqNEwDQYJKoZIhvcNAQELBQADggEBAEVQG1e5gd8K1byY LxL/QVOONs4sPVxqraVUG+pwzv5a62R6lnlXSU59uP1svDvWEuR8b0HO2GBoSp39 4f48INiNGWTYM8Wvt8oHTELIe/hnb2SZgw7ClL4yaiRWsG8RTLPiTsUH/RyUXLtJ WtWJRuhPSAhdbHLgF1QmGw7DTixUratgMbK2k3FU1+jjC5FmAGEDd8lARQ4z6MVE OWZc03eihzTEAkj8l5e8Drei7NRemzrsjdamVXDyP7/MMg4ESBjqJlYaLffsyGmB BbNIB/X9FNwyZL6AqoWqm79uHwzP1ICkryxp9TxynasxST4UrnkWJ4ZexvG9qgM+ VZCoiYE= -----END CERTIFICATE-----Generated at Sun Feb 16 15:29:31 2025 by rpki-client