$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/BC148566D22B11EE9443A443C4F9AE02.roa File: BC148566D22B11EE9443A443C4F9AE02.roa (raw, json) Hash identifier: +f0SgnVqjTGf0Ix6OCOZmxBPZxff4HtF7xpjcxcn/GE= Subject key identifier: 6D:05:0F:01:6C:A3:5C:96:BD:CC:7D:B0:0C:8E:92:1E:5E:FC:FB:E6 Certificate issuer: /CN=A91EAAF5/serialNumber=4584AEA2394C46D6934E63ED6887D4726FDF7A13 Certificate serial: 0414 Authority key identifier: 45:84:AE:A2:39:4C:46:D6:93:4E:63:ED:68:87:D4:72:6F:DF:7A:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYSuojlMRtaTTmPtaIfUcm_fehM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/BC148566D22B11EE9443A443C4F9AE02.roa Signing time: Tue 25 Feb 2025 01:53:31 +0000 ROA not before: Tue 25 Feb 2025 01:53:31 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 14618 IP address blocks: 103.179.36.0/24 maxlen: 24 2001:df0:45c4::/46 maxlen: 47 2001:df0:45c4::/47 maxlen: 48 2001:df0:45c6::/48 maxlen: 48 2001:df0:45c8::/45 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/RYSuojlMRtaTTmPtaIfUcm_fehM.crl rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/RYSuojlMRtaTTmPtaIfUcm_fehM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYSuojlMRtaTTmPtaIfUcm_fehM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 00:46:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1044 (0x414) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAAF5 Validity Not Before: Feb 25 01:53:31 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67bd229b-810e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:6e:4d:64:92:e9:84:44:cc:05:dc:c5:26:2f: 02:95:58:ad:18:5a:cd:52:b2:ae:fa:df:f1:d9:12: 96:05:0f:20:71:9a:62:e6:52:f7:dc:0d:7f:fa:be: 0c:90:d8:48:1f:ad:8e:a1:03:2d:43:b4:32:18:56: 08:ac:34:b8:03:ce:28:04:66:15:be:b7:b7:08:7d: 90:be:0c:c6:9d:56:da:28:72:e9:31:aa:b6:1b:e1: 2f:85:db:25:c7:52:a5:0f:19:c7:3f:40:5f:be:a2: 9b:41:10:01:cd:21:e6:bd:ca:4e:9a:1f:03:f7:ff: 9a:8d:3d:cc:f7:e1:56:58:23:48:06:b1:fa:6c:1d: 78:f3:c1:a8:3f:78:2d:d3:d9:dd:4d:e7:8f:83:3a: dc:cd:fe:5d:b4:2b:c2:4d:72:fc:27:4d:76:0b:99: da:c9:ce:50:aa:6f:c9:75:93:9a:21:82:f8:6b:09: 51:d9:7f:29:ec:d6:e8:5d:5f:12:73:fc:f2:36:3b: bb:03:40:38:f7:03:03:63:f0:3b:f6:0e:84:1f:c7: 75:94:5e:a4:7a:b3:37:55:8b:75:94:0f:93:7a:6b: ff:55:c0:f5:7c:79:15:f8:e1:0b:73:e0:eb:56:77: d0:13:81:ae:5a:da:14:d0:ba:f4:bc:57:9a:49:1b: 1e:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:05:0F:01:6C:A3:5C:96:BD:CC:7D:B0:0C:8E:92:1E:5E:FC:FB:E6 X509v3 Authority Key Identifier: keyid:45:84:AE:A2:39:4C:46:D6:93:4E:63:ED:68:87:D4:72:6F:DF:7A:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/RYSuojlMRtaTTmPtaIfUcm_fehM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYSuojlMRtaTTmPtaIfUcm_fehM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAAF5/E99F523A6EC411ECAFD27331C4F9AE02/BC148566D22B11EE9443A443C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.36.0/24 IPv6: 2001:df0:45c4::-2001:df0:45cf:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 3c:65:8f:0c:85:9e:58:fd:81:25:fe:88:0b:74:3f:2d:63:7c: f0:f8:4f:f6:e2:f9:6c:e1:3f:9c:eb:4d:6f:49:ec:f5:3e:29: 43:ef:6a:8c:a7:dd:6e:9d:7b:50:93:bf:dd:e4:ce:75:67:71: fd:8c:e4:fe:cf:9b:fa:76:86:d1:68:bb:c3:09:11:3e:c7:22: c7:80:bd:75:8b:1e:c1:87:2b:70:43:05:16:85:58:29:c1:69: 25:9d:5a:99:2a:d2:a5:64:0a:6f:10:e0:14:ad:69:bd:0e:01: f1:0c:d5:4a:e5:1e:31:15:d1:13:64:45:27:21:13:34:7d:18: 6e:c2:d8:0e:56:e7:bc:e3:3a:2d:0b:68:a8:80:a4:fb:35:9a: 70:d5:5c:b7:ce:85:cf:d9:66:7a:bb:4f:45:58:25:b2:af:2c: 63:5e:4e:7a:a3:bc:01:a5:bf:81:5d:07:73:a0:36:e6:fb:f9: 3f:02:b2:54:a8:4e:e6:86:25:60:82:23:1d:d1:16:01:7c:aa: 9f:3e:29:8d:7b:99:7c:29:b5:08:53:3a:16:75:26:cb:88:38: bb:9e:63:87:a9:ad:e4:03:34:d3:da:4d:df:dd:cb:7a:1d:77: 30:d3:ff:21:a0:d8:12:a4:68:ec:ae:5c:60:62:4e:26:f8:3e: 05:e8:ae:8a -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICBBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFBRjUxMTAvBgNVBAUTKDQ1ODRBRUEyMzk0QzQ2RDY5MzRFNjNFRDY4ODdENDcy NkZERjdBMTMwHhcNMjUwMjI1MDE1MzMxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JkMjI5Yi04MTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0m5NZJLphETMBdzFJi8ClVitGFrNUrKu+t/x2RKWBQ8gcZpi5lL33A1/+r4M kNhIH62OoQMtQ7QyGFYIrDS4A84oBGYVvre3CH2QvgzGnVbaKHLpMaq2G+Evhdsl x1KlDxnHP0BfvqKbQRABzSHmvcpOmh8D9/+ajT3M9+FWWCNIBrH6bB1488GoP3gt 09ndTeePgzrczf5dtCvCTXL8J012C5nayc5Qqm/JdZOaIYL4awlR2X8p7NboXV8S c/zyNju7A0A49wMDY/A79g6EH8d1lF6kerM3VYt1lA+Temv/VcD1fHkV+OELc+Dr VnfQE4GuWtoU0Lr0vFeaSRse+QIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFG0FDwFs o1yWvcx9sAyOkh5e/PvmMB8GA1UdIwQYMBaAFEWErqI5TEbWk05j7WiH1HJv33oT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUFGNS9FOTlGNTIzQTZF QzQxMUVDQUZEMjczMzFDNEY5QUUwMi9SWVN1b2psTVJ0YVRUbVB0YUlmVWNtX2Zl aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZU3VvamxNUnRhVFRtUHRhSWZVY21fZmVoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFBRjUvRTk5RjUyM0E2RUM0MTFFQ0FGRDI3MzMxQzRGOUFFMDIvQkMxNDg1NjZE MjJCMTFFRTk0NDNBNDQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMAwEAgABMAYDBABnsyQwGgQCAAIwFDASAwcCIAEN8EXEAwcEIAEN8EXAMA0G CSqGSIb3DQEBCwUAA4IBAQA8ZY8MhZ5Y/YEl/ogLdD8tY3zw+E/24vls4T+c601v Sez1PilD72qMp91unXtQk7/d5M51Z3H9jOT+z5v6dobRaLvDCRE+xyLHgL11ix7B hytwQwUWhVgpwWklnVqZKtKlZApvEOAUrWm9DgHxDNVK5R4xFdETZEUnIRM0fRhu wtgOVue84zotC2iogKT7NZpw1Vy3zoXP2WZ6u09FWCWyryxjXk56o7wBpb+BXQdz oDbm+/k/ArJUqE7mhiVggiMd0RYBfKqfPimNe5l8KbUIUzoWdSbLiDi7nmOHqa3k AzTT2k3f3ct6HXcw0/8hoNgSpGjsrlxgYk4m+D4F6K6K -----END CERTIFICATE-----Generated at Fri Apr 4 23:52:44 2025 by rpki-client