$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/C18E7856446C11EDA55DB951C4F9AE02.roa File: C18E7856446C11EDA55DB951C4F9AE02.roa (raw, json) Hash identifier: AKVXd/DH9YanLRhXJZMqC5LiMXYq5bZo14nqm8XdwR0= Subject key identifier: 95:52:B7:77:85:87:FA:59:34:2E:67:5A:42:53:17:3B:F2:AA:31:BD Certificate issuer: /CN=A91F1B39/serialNumber=D18F98A41C0ADC8C8184B826A71F3EF27F195323 Certificate serial: 0177 Authority key identifier: D1:8F:98:A4:1C:0A:DC:8C:81:84:B8:26:A7:1F:3E:F2:7F:19:53:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/C18E7856446C11EDA55DB951C4F9AE02.roa Signing time: Tue 01 Oct 2024 03:16:22 +0000 ROA not before: Tue 01 Oct 2024 03:16:22 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 137006 IP address blocks: 103.101.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 28 Feb 2025 03:46:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1B39 Validity Not Before: Oct 1 03:16:22 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fb6985-602b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:43:ce:46:3e:7c:49:2f:c1:a5:24:47:01:6d: db:e9:4d:6a:a2:8c:89:3e:f2:6a:cd:07:9d:21:ae: 91:45:65:4b:6e:2f:5d:f7:a5:34:39:e5:c2:cf:7a: fa:75:20:15:4c:da:71:be:dd:a3:f8:9b:64:9b:49: 61:7d:a4:96:6c:58:76:1f:76:d3:79:71:2f:7c:8d: d7:a2:5e:1a:1e:6d:a1:63:51:2e:dc:36:a6:d8:69: 18:27:08:f3:9e:25:dd:fd:b5:e4:7f:9f:15:97:df: 38:a0:91:61:e5:50:2b:90:be:6c:1e:28:1a:48:24: f0:c7:f2:e1:34:fe:bd:48:66:66:e8:d2:38:e3:d8: c8:12:73:d2:3f:25:38:2c:ec:e9:cf:0d:be:fa:02: a9:8c:8a:81:db:58:99:52:ee:eb:b9:d4:5c:2f:66: c0:22:3b:dd:60:75:23:92:9c:82:8b:ef:a4:53:0c: eb:5b:eb:1e:6d:a3:31:d9:c2:4e:0a:98:9a:e5:cc: 11:d2:0a:76:d1:61:98:18:b4:06:8b:d7:a4:28:37: d8:3c:bb:a3:35:7c:a9:90:ab:ba:6e:57:9a:34:5c: 7f:87:20:b8:88:04:d8:02:52:04:22:65:28:4c:5e: cd:b1:08:6e:4e:3b:9c:d3:be:1d:c8:fe:f0:49:e8: 24:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:52:B7:77:85:87:FA:59:34:2E:67:5A:42:53:17:3B:F2:AA:31:BD X509v3 Authority Key Identifier: keyid:D1:8F:98:A4:1C:0A:DC:8C:81:84:B8:26:A7:1F:3E:F2:7F:19:53:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/C18E7856446C11EDA55DB951C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.133.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:7f:26:ca:64:cb:35:10:1c:33:1b:1f:e7:b9:22:cd:59:4f: 3e:d5:66:8f:b8:56:a0:57:be:81:38:73:e2:e1:bd:b5:8d:e3: b8:83:a0:7f:54:df:79:33:e4:ff:05:b0:4e:f4:bc:8d:b7:25: 93:96:5f:f5:ac:49:c9:e6:55:87:59:aa:6e:fe:fd:71:b0:03: c5:05:4b:d5:b7:2a:74:2c:e3:20:6b:29:d0:66:23:68:63:56: d8:7e:fa:00:04:5c:c6:bb:4e:23:9b:47:df:9c:98:fb:aa:e1: df:50:ea:ea:c2:c9:c5:a6:31:75:d0:5c:33:d8:4a:14:ee:77: df:3b:96:79:26:c7:c6:64:b5:cf:cd:0e:7e:90:98:73:03:e2: 6c:0b:69:e5:ef:da:90:b7:6f:d7:e9:e6:00:3e:77:50:4d:f9: 58:92:ab:94:c9:3b:51:75:7f:7d:10:1b:d9:fb:6e:c1:52:6f: 2e:ec:76:74:94:68:8f:5c:d5:8f:e0:b3:ec:48:77:ca:a0:4c: 94:d3:d1:b4:19:1e:8f:92:ba:d7:b8:f6:7f:21:f6:ad:10:1a: cc:7f:73:8d:d9:d6:a6:48:55:c1:cf:af:bf:25:20:35:0d:9d: c2:64:69:23:ec:4d:11:ed:7a:9e:d2:42:f1:65:b7:f0:eb:c5: 0a:16:ee:83 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFCMzkxMTAvBgNVBAUTKEQxOEY5OEE0MUMwQURDOEM4MTg0QjgyNkE3MUYzRUYy N0YxOTUzMjMwHhcNMjQxMDAxMDMxNjIyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZiNjk4NS02MDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0PORj58SS/BpSRHAW3b6U1qooyJPvJqzQedIa6RRWVLbi9d96U0OeXCz3r6 dSAVTNpxvt2j+Jtkm0lhfaSWbFh2H3bTeXEvfI3Xol4aHm2hY1Eu3Dam2GkYJwjz niXd/bXkf58Vl984oJFh5VArkL5sHigaSCTwx/LhNP69SGZm6NI449jIEnPSPyU4 LOzpzw2++gKpjIqB21iZUu7rudRcL2bAIjvdYHUjkpyCi++kUwzrW+sebaMx2cJO Cpia5cwR0gp20WGYGLQGi9ekKDfYPLujNXypkKu6bleaNFx/hyC4iATYAlIEImUo TF7NsQhuTjuc074dyP7wSegkMwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJVSt3eF h/pZNC5nWkJTFzvyqjG9MB8GA1UdIwQYMBaAFNGPmKQcCtyMgYS4JqcfPvJ/GVMj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUIzOS9CNzY5OUQyQzQ0 NjkxMUVEQkU0RTc5NENDNEY5QUUwMi8wWS1ZcEJ3SzNJeUJoTGdtcHg4LThuOFpV eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBZLVlwQndLM0l5QmhMZ21weDgtOG44WlV5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjFCMzkvQjc2OTlEMkM0NDY5MTFFREJFNEU3OTRDQzRGOUFFMDIvQzE4RTc4NTY0 NDZDMTFFREE1NURCOTUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnZYUwDQYJKoZIhvcNAQELBQADggEBAB1/JspkyzUQHDMb H+e5Is1ZTz7VZo+4VqBXvoE4c+LhvbWN47iDoH9U33kz5P8FsE70vI23JZOWX/Ws ScnmVYdZqm7+/XGwA8UFS9W3KnQs4yBrKdBmI2hjVth++gAEXMa7TiObR9+cmPuq 4d9Q6urCycWmMXXQXDPYShTud987lnkmx8Zktc/NDn6QmHMD4mwLaeXv2pC3b9fp 5gA+d1BN+ViSq5TJO1F1f30QG9n7bsFSby7sdnSUaI9c1Y/gs+xId8qgTJTT0bQZ Ho+Sute49n8h9q0QGsx/c43Z1qZIVcHPr78lIDUNncJkaSPsTRHtep7SQvFlt/Dr xQoW7oM= -----END CERTIFICATE-----Generated at Fri Feb 21 12:48:06 2025 by rpki-client