$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/F3210638F06D11ED9055A212C4F9AE02.roa File: F3210638F06D11ED9055A212C4F9AE02.roa (raw, json) Hash identifier: MagQfzBe5yekFsZC62iyjicRBCCYPyKf7/pA5fRZ3FI= Subject key identifier: 49:E8:8A:3B:8E:EB:60:E8:D5:E6:36:95:8A:BA:41:30:9F:64:AC:37 Certificate issuer: /CN=A91F8ADF/serialNumber=E77050891BF8927432650B706F2BFEDD92A111C9 Certificate serial: 0147 Authority key identifier: E7:70:50:89:1B:F8:92:74:32:65:0B:70:6F:2B:FE:DD:92:A1:11:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53BQiRv4knQyZQtwbyv-3ZKhEck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/F3210638F06D11ED9055A212C4F9AE02.roa Signing time: Sat 25 Jan 2025 03:06:19 +0000 ROA not before: Sat 25 Jan 2025 03:06:19 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 140046 IP address blocks: 103.147.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.crl rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53BQiRv4knQyZQtwbyv-3ZKhEck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8ADF Validity Not Before: Jan 25 03:06:19 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6794552b-827b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6a:8a:94:9d:7e:e8:ec:bb:d6:cf:00:b6:9a: 00:69:d0:63:87:f7:0d:5e:53:76:08:0f:65:68:52: ff:7d:dc:9d:8c:07:38:33:d1:f5:03:e8:9b:2b:b8: 2e:b5:c1:fa:d2:0f:29:98:84:20:1f:f5:21:8c:6e: 0b:12:e6:80:11:d3:de:0b:e2:f8:f4:a3:29:fc:73: 0e:77:1f:e6:0d:23:d5:e9:9e:9f:d2:99:8a:13:d8: fd:d4:16:ba:29:8e:27:6a:a4:0d:23:4a:5d:84:67: e2:94:02:e0:55:28:f8:4f:e3:44:3d:ed:37:d6:c1: a3:e6:f2:f5:b2:45:fb:86:78:de:71:a5:89:6c:ea: 1b:b0:12:9a:06:a7:a0:e8:3c:87:05:0e:2b:68:6c: bd:05:44:e0:76:03:c6:94:60:ae:43:08:31:13:6f: 0e:d3:30:ae:00:9f:12:c2:f6:2a:75:b1:09:4a:34: b8:80:c2:4d:7f:3b:ed:89:3d:c5:bc:61:ec:4c:ef: db:aa:e4:ff:c9:a7:f1:77:e4:90:35:ff:93:f2:8e: 92:03:da:11:2a:5e:13:a5:72:04:c2:4f:8a:31:77: 6c:68:05:43:49:22:68:ec:14:03:e9:0f:65:b1:28: 1e:dc:9b:71:47:48:a8:c0:63:e3:cd:46:89:f8:65: 64:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:E8:8A:3B:8E:EB:60:E8:D5:E6:36:95:8A:BA:41:30:9F:64:AC:37 X509v3 Authority Key Identifier: keyid:E7:70:50:89:1B:F8:92:74:32:65:0B:70:6F:2B:FE:DD:92:A1:11:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/53BQiRv4knQyZQtwbyv-3ZKhEck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/53BQiRv4knQyZQtwbyv-3ZKhEck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8ADF/CDF405C2F06811EDBB978E2DC4F9AE02/F3210638F06D11ED9055A212C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.195.0/24 Signature Algorithm: sha256WithRSAEncryption 43:79:89:7c:06:c1:9e:db:26:10:c2:29:3d:5c:ed:d6:5e:cf: 1c:36:41:dd:b7:9e:f9:87:b3:4b:a0:58:dc:25:f0:b3:13:6a: 15:6f:a0:8c:84:1b:5a:fd:74:4d:d0:e2:0a:db:02:87:b0:4b: 10:89:e5:a3:75:04:3c:9b:cb:50:a4:51:a3:0a:3a:a8:bd:33: 5a:14:d1:13:a2:be:6c:ab:b7:d7:a5:84:49:96:0c:c9:65:04: be:bc:41:eb:ef:11:68:24:70:76:f0:69:19:84:f7:9c:7b:d1: 44:ae:a5:4c:7e:d4:71:4c:b8:d1:74:a7:28:9d:0e:83:c2:3c: 41:cb:d7:5b:02:3f:f0:f2:ef:dd:44:a7:6b:70:b9:be:00:b5: fb:24:1b:89:a9:48:89:2f:fc:e7:b2:69:59:78:91:3c:6a:8a: 41:4e:34:7d:4a:bf:f8:78:ce:a3:3a:8e:d6:ec:41:08:1d:14: f2:8a:7d:9a:5f:1c:1a:b5:53:d5:dc:6c:68:31:c9:f2:93:a2: 86:9c:9c:fe:c6:b8:ef:d9:60:ac:bc:62:30:9f:0f:65:2d:fd: 32:fe:ef:18:c8:49:4a:72:f1:8b:b2:75:d0:5c:e4:17:a3:90: 73:2f:90:85:8a:a6:66:ec:da:1e:98:e5:2d:32:48:21:82:b9: 13:47:dd:ef -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBREYxMTAvBgNVBAUTKEU3NzA1MDg5MUJGODkyNzQzMjY1MEI3MDZGMkJGRURE OTJBMTExQzkwHhcNMjUwMTI1MDMwNjE5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk0NTUyYi04MjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWqKlJ1+6Oy71s8AtpoAadBjh/cNXlN2CA9laFL/fdydjAc4M9H1A+ibK7gu tcH60g8pmIQgH/UhjG4LEuaAEdPeC+L49KMp/HMOdx/mDSPV6Z6f0pmKE9j91Ba6 KY4naqQNI0pdhGfilALgVSj4T+NEPe031sGj5vL1skX7hnjecaWJbOobsBKaBqeg 6DyHBQ4raGy9BUTgdgPGlGCuQwgxE28O0zCuAJ8SwvYqdbEJSjS4gMJNfzvtiT3F vGHsTO/bquT/yafxd+SQNf+T8o6SA9oRKl4TpXIEwk+KMXdsaAVDSSJo7BQD6Q9l sSge3JtxR0iowGPjzUaJ+GVkUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEnoijuO 62Do1eY2lYq6QTCfZKw3MB8GA1UdIwQYMBaAFOdwUIkb+JJ0MmULcG8r/t2SoRHJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEFERi9DREY0MDVDMkYw NjgxMUVEQkI5NzhFMkRDNEY5QUUwMi81M0JRaVJ2NGtuUXlaUXR3Ynl2LTNaS2hF Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUzQlFpUnY0a25ReVpRdHdieXYtM1pLaEVjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhBREYvQ0RGNDA1QzJGMDY4MTFFREJCOTc4RTJEQzRGOUFFMDIvRjMyMTA2MzhG MDZEMTFFRDkwNTVBMjEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnk8MwDQYJKoZIhvcNAQELBQADggEBAEN5iXwGwZ7bJhDC KT1c7dZezxw2Qd23nvmHs0ugWNwl8LMTahVvoIyEG1r9dE3Q4grbAoewSxCJ5aN1 BDyby1CkUaMKOqi9M1oU0ROivmyrt9elhEmWDMllBL68QevvEWgkcHbwaRmE95x7 0USupUx+1HFMuNF0pyidDoPCPEHL11sCP/Dy791Ep2twub4AtfskG4mpSIkv/Oey aVl4kTxqikFONH1Kv/h4zqM6jtbsQQgdFPKKfZpfHBq1U9XcbGgxyfKTooacnP7G uO/ZYKy8YjCfD2Ut/TL+7xjISUpy8YuyddBc5BejkHMvkIWKpmbs2h6Y5S0ySCGC uRNH3e8= -----END CERTIFICATE-----Generated at Sun Feb 16 20:37:56 2025 by rpki-client