$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5553B5FEE90E11EA998F5735C4F9AE02.roa File: 5553B5FEE90E11EA998F5735C4F9AE02.roa (raw, json) Hash identifier: oSJab/EVi+ifqNiMiViOLz8HkZ1QwjUJBAjTyuVCBBE= Subject key identifier: 87:5F:22:63:F3:0B:E5:BB:38:39:D4:9B:B4:FB:52:4D:6B:E9:8C:66 Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 352D Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5553B5FEE90E11EA998F5735C4F9AE02.roa Signing time: Mon 16 Sep 2024 14:51:10 +0000 ROA not before: Mon 16 Sep 2024 14:51:10 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 3356 IP address blocks: 103.230.68.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 14:47:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13613 (0x352d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90 Validity Not Before: Sep 16 14:51:10 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e845de-7fe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:8a:4f:6a:7f:55:92:8d:49:8c:41:ed:e6:e6: 2a:f6:1b:d5:d9:1c:92:b6:5f:a3:a4:91:d9:52:0a: bc:ef:a9:94:da:77:21:e0:00:f2:a3:02:9d:60:19: d6:4c:81:c0:64:47:6d:77:30:b9:a4:91:66:bc:4b: 0f:a5:ca:6e:89:28:22:a2:b2:59:c3:04:9e:3f:f7: 90:e6:70:d9:a0:b3:05:16:95:22:38:7d:b8:66:03: 26:70:55:5d:3c:e5:ea:3a:11:0c:54:2a:fc:36:e0: b8:36:e5:f7:f0:7a:2c:d3:9d:da:2d:7b:17:c4:f8: aa:4a:34:0e:1f:56:7f:5b:8c:72:3a:2f:05:1f:ad: c3:e8:a6:4a:7e:0d:fc:f2:6c:d7:d1:1d:34:05:a6: e6:92:fd:7c:89:52:63:e7:73:5b:f7:63:e7:c8:9d: 42:6d:fa:cd:10:03:bb:87:1b:72:f4:03:c3:16:64: c0:c1:ed:e7:fd:f2:4b:13:4e:df:7b:7d:52:da:7a: d8:76:dc:de:92:48:26:a0:c4:c1:b0:d9:b3:77:89: b5:10:70:91:25:30:df:66:b4:ae:13:f8:99:a5:b7: 74:f9:ce:22:3c:01:9e:bd:6a:63:ea:0c:90:77:21: eb:4c:9f:8b:de:cf:20:49:20:85:91:9d:22:01:8b: ff:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:5F:22:63:F3:0B:E5:BB:38:39:D4:9B:B4:FB:52:4D:6B:E9:8C:66 X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5553B5FEE90E11EA998F5735C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.230.68.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:50:33:65:42:38:59:07:98:e9:db:06:ce:83:1d:b7:58:94: 50:c4:bf:52:82:89:2b:49:6b:fd:10:61:39:2f:45:2f:75:86: 61:6c:9a:d8:42:76:ce:48:49:ce:62:c2:a1:71:c5:87:b0:b0: f2:c5:b2:ca:9c:07:7a:1b:82:2b:07:e5:3b:a8:fe:af:2e:e3: 64:2c:65:01:e4:fc:10:c5:5f:c2:58:04:d1:b7:66:b5:36:5b: b7:1b:0c:b8:ee:8b:a2:43:9d:ad:89:eb:43:fd:ab:0f:70:d4: 05:64:58:5f:bf:04:29:45:5c:3c:64:cf:d0:8a:f3:e9:d9:bc: 7e:11:14:bd:fa:0c:84:80:ed:7a:55:91:59:76:64:b7:1f:aa: c8:6b:0b:2a:2d:93:e5:95:3f:4b:ce:0c:16:2f:9b:96:d9:aa: ed:1e:71:46:24:41:31:f4:21:89:82:f0:41:09:69:2b:c0:31: ad:a1:ba:44:9e:01:d4:a6:20:a3:88:d5:51:28:98:2a:8a:e1: 1b:aa:eb:92:59:6e:dd:b6:24:d0:71:2d:23:c3:01:e0:9b:39: f0:b0:31:a4:33:c3:b9:2d:f5:39:08:5b:00:90:68:1f:ef:24: c4:c8:ef:2b:31:31:66:3d:e8:22:70:37:59:34:ad:b4:73:d8: 2b:28:e6:67 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjQwOTE2MTQ1MTEwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU4NDVkZS03ZmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4pPan9Vko1JjEHt5uYq9hvV2RyStl+jpJHZUgq876mU2nch4ADyowKdYBnW TIHAZEdtdzC5pJFmvEsPpcpuiSgiorJZwwSeP/eQ5nDZoLMFFpUiOH24ZgMmcFVd POXqOhEMVCr8NuC4NuX38Hos053aLXsXxPiqSjQOH1Z/W4xyOi8FH63D6KZKfg38 8mzX0R00Babmkv18iVJj53Nb92PnyJ1CbfrNEAO7hxty9APDFmTAwe3n/fJLE07f e31S2nrYdtzekkgmoMTBsNmzd4m1EHCRJTDfZrSuE/iZpbd0+c4iPAGevWpj6gyQ dyHrTJ+L3s8gSSCFkZ0iAYv/awIDAQABo4IClTCCApEwHQYDVR0OBBYEFIdfImPz C+W7ODnUm7T7Uk1r6YxmMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvNTU1M0I1RkVF OTBFMTFFQTk5OEY1NzM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn5kQwDQYJKoZIhvcNAQELBQADggEBAF1QM2VCOFkHmOnb Bs6DHbdYlFDEv1KCiStJa/0QYTkvRS91hmFsmthCds5ISc5iwqFxxYewsPLFssqc B3obgisH5Tuo/q8u42QsZQHk/BDFX8JYBNG3ZrU2W7cbDLjui6JDna2J60P9qw9w 1AVkWF+/BClFXDxkz9CK8+nZvH4RFL36DISA7XpVkVl2ZLcfqshrCyotk+WVP0vO DBYvm5bZqu0ecUYkQTH0IYmC8EEJaSvAMa2hukSeAdSmIKOI1VEomCqK4Ruq65JZ bt22JNBxLSPDAeCbOfCwMaQzw7kt9TkIWwCQaB/vJMTI7ysxMWY96CJwN1k0rbRz 2Cso5mc= -----END CERTIFICATE-----Generated at Thu Mar 13 21:57:08 2025 by rpki-client