$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/0B5DBB081C0311EF8B8AB54DC4F9AE02.roa File: 0B5DBB081C0311EF8B8AB54DC4F9AE02.roa (raw, json) Hash identifier: +l7KzNw3VW+RHOqRN7o7MYFbDiz9Uue5nL0WGR6JFyA= Subject key identifier: AA:78:1C:6B:6D:83:8A:EF:12:12:94:A0:9E:EE:A5:CF:15:24:ED:13 Certificate issuer: /CN=A91F4FB0/serialNumber=876E6813BF2C1811CD11DE99281ACD44BEC0DE73 Certificate serial: CA Authority key identifier: 87:6E:68:13:BF:2C:18:11:CD:11:DE:99:28:1A:CD:44:BE:C0:DE:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/0B5DBB081C0311EF8B8AB54DC4F9AE02.roa Signing time: Wed 29 Jan 2025 05:08:51 +0000 ROA not before: Wed 29 Jan 2025 05:08:51 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.177.196.0/23 maxlen: 24 2400:3d20::/44 maxlen: 48 2400:3d20:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.crl rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4FB0 Validity Not Before: Jan 29 05:08:51 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6799b7e2-27d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c7:cb:01:dd:6a:96:69:56:d2:d7:f8:5e:cc: 14:3c:b5:41:d8:38:96:81:14:da:c7:84:f6:7c:3f: e4:2c:04:5b:8d:58:e5:86:12:90:37:74:97:1f:60: 8e:03:45:d2:33:16:e7:22:55:e9:b6:cc:b9:4f:4b: 28:01:8e:f0:1e:4a:ef:46:2b:37:41:d0:9f:85:24: d3:a6:94:92:dd:59:20:86:6e:10:5a:29:5a:91:96: 01:eb:f0:c5:68:57:48:09:30:d2:6d:49:21:1c:d8: 40:a0:7d:1d:4f:ec:c6:5d:eb:b3:06:13:66:29:7c: 95:1b:36:21:d8:49:2d:64:3f:d2:61:ae:d9:45:e6: 63:af:64:87:27:7d:44:e6:3f:59:01:64:b6:b7:84: d9:c2:1d:69:5f:c2:96:43:f8:ef:fb:c3:70:9c:c0: 92:b6:ac:f9:70:99:1b:c3:91:ec:40:62:9f:3a:80: e5:a3:e3:8d:66:b0:e3:96:4e:32:b8:6e:f9:5d:d5: 2b:05:e8:71:d2:0c:c3:e0:f7:12:e0:5d:95:ac:57: 4a:96:6e:ac:7d:d3:59:d7:0f:d6:9b:aa:4b:78:01: d3:12:8e:66:6f:85:53:91:5b:14:f0:8b:df:25:8e: b4:dc:29:79:a0:ff:0c:35:13:9f:a3:d9:ab:4f:db: 26:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:78:1C:6B:6D:83:8A:EF:12:12:94:A0:9E:EE:A5:CF:15:24:ED:13 X509v3 Authority Key Identifier: keyid:87:6E:68:13:BF:2C:18:11:CD:11:DE:99:28:1A:CD:44:BE:C0:DE:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/h25oE78sGBHNEd6ZKBrNRL7A3nM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h25oE78sGBHNEd6ZKBrNRL7A3nM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4FB0/058CEC1419BD11EFBD33E082C4F9AE02/0B5DBB081C0311EF8B8AB54DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.177.196.0/23 IPv6: 2400:3d20::/44 2400:3d20:1000::/40 Signature Algorithm: sha256WithRSAEncryption 6b:18:73:0c:b6:a2:1f:c6:2e:aa:88:66:69:32:1f:d7:3c:3f: 0c:81:61:b3:9a:d1:59:03:01:35:5d:80:0b:62:81:02:0f:07: 19:b3:c3:39:7c:c4:43:a9:5f:3e:e9:fa:ba:b9:7b:41:a1:47: 25:e2:d7:a8:24:2f:dc:91:56:e8:dc:b9:84:7a:ff:f4:dc:b4: 28:c5:0b:5e:2e:29:6b:bd:3b:f2:a9:52:55:88:17:5a:7d:de: a4:6d:0b:94:66:cf:b9:24:95:dc:bb:c2:e5:f2:c1:a7:b9:84: 98:6f:28:be:b0:38:cb:a4:1a:e4:b3:9f:c4:49:eb:08:51:35: 0e:0c:f4:c2:4c:ee:59:f4:32:66:63:66:e2:97:ea:75:7e:a7: 20:65:47:7d:8f:61:db:55:26:ce:8f:4a:af:74:cc:41:66:d2: a0:5b:2d:40:b8:94:cc:c2:02:cf:28:8f:79:29:4c:c6:4f:c0: 06:f9:8d:dc:24:66:37:2a:c0:5c:24:92:70:ee:a1:e3:79:75: d2:ba:d0:72:91:20:b3:d8:2b:68:f8:22:57:89:48:89:96:d1: 85:71:8d:b2:5f:36:e7:9c:18:43:d1:61:d6:fa:4e:cc:4f:70: f0:fd:c6:13:19:6f:21:eb:8e:d6:2b:86:61:73:05:0f:2e:e6: ce:bd:d4:63 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGQjAxMTAvBgNVBAUTKDg3NkU2ODEzQkYyQzE4MTFDRDExREU5OTI4MUFDRDQ0 QkVDMERFNzMwHhcNMjUwMTI5MDUwODUxWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk5YjdlMi0yN2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8fLAd1qlmlW0tf4XswUPLVB2DiWgRTax4T2fD/kLARbjVjlhhKQN3SXH2CO A0XSMxbnIlXptsy5T0soAY7wHkrvRis3QdCfhSTTppSS3Vkghm4QWilakZYB6/DF aFdICTDSbUkhHNhAoH0dT+zGXeuzBhNmKXyVGzYh2EktZD/SYa7ZReZjr2SHJ31E 5j9ZAWS2t4TZwh1pX8KWQ/jv+8NwnMCStqz5cJkbw5HsQGKfOoDlo+ONZrDjlk4y uG75XdUrBehx0gzD4PcS4F2VrFdKlm6sfdNZ1w/Wm6pLeAHTEo5mb4VTkVsU8Ivf JY603Cl5oP8MNROfo9mrT9smGwIDAQABo4ICrjCCAqowHQYDVR0OBBYEFKp4HGtt g4rvEhKUoJ7upc8VJO0TMB8GA1UdIwQYMBaAFIduaBO/LBgRzRHemSgazUS+wN5z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEZCMC8wNThDRUMxNDE5 QkQxMUVGQkQzM0UwODJDNEY5QUUwMi9oMjVvRTc4c0dCSE5FZDZaS0JyTlJMN0Ez bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gyNW9FNzhzR0JITkVkNlpLQnJOUkw3QTNuTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjRGQjAvMDU4Q0VDMTQxOUJEMTFFRkJEMzNFMDgyQzRGOUFFMDIvMEI1REJCMDgx QzAzMTFFRjhCOEFCNTREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMAwEAgABMAYDBAFnscQwFwQCAAIwEQMHBCQAPSAAAAMGACQAPSAQMA0GCSqG SIb3DQEBCwUAA4IBAQBrGHMMtqIfxi6qiGZpMh/XPD8MgWGzmtFZAwE1XYALYoEC DwcZs8M5fMRDqV8+6fq6uXtBoUcl4teoJC/ckVbo3LmEev/03LQoxQteLilrvTvy qVJViBdafd6kbQuUZs+5JJXcu8Ll8sGnuYSYbyi+sDjLpBrks5/ESesIUTUODPTC TO5Z9DJmY2bil+p1fqcgZUd9j2HbVSbOj0qvdMxBZtKgWy1AuJTMwgLPKI95KUzG T8AG+Y3cJGY3KsBcJJJw7qHjeXXSutBykSCz2Cto+CJXiUiJltGFcY2yXzbnnBhD 0WHW+k7MT3Dw/cYTGW8h647WK4ZhcwUPLubOvdRj -----END CERTIFICATE-----Generated at Sun Feb 16 15:43:43 2025 by rpki-client