$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/1E4548E4E1F211EEA360BE22C4F9AE02.roa File: 1E4548E4E1F211EEA360BE22C4F9AE02.roa (raw, json) Hash identifier: elMINW9VmQY5nycCbQ/QKtRjE+I0nxMVlzRRTvQng4k= Subject key identifier: A2:AA:BB:5E:67:74:FF:43:BE:14:13:F5:B0:35:F9:57:57:A7:2A:85 Certificate issuer: /CN=A91F8CAA/serialNumber=3778544E2469548BF09B54DDD803D7D7D90F7E62 Certificate serial: 9A Authority key identifier: 37:78:54:4E:24:69:54:8B:F0:9B:54:DD:D8:03:D7:D7:D9:0F:7E:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/1E4548E4E1F211EEA360BE22C4F9AE02.roa Signing time: Tue 31 Dec 2024 04:48:34 +0000 ROA not before: Tue 31 Dec 2024 04:48:34 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 4755 IP address blocks: 103.145.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.crl rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8CAA Validity Not Before: Dec 31 04:48:34 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=677377a1-90b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:42:9b:5e:f5:06:2e:04:91:96:97:cf:0f:a9: d5:15:7b:49:fd:1b:a1:0d:64:b3:5f:49:d1:30:06: 1f:32:ab:8d:c0:d0:7f:9d:ca:b3:69:52:33:90:30: a9:86:98:4a:f3:50:cf:ca:d8:e6:2a:ff:38:65:92: e1:5e:c3:f6:ca:50:78:4e:14:7b:54:6b:8d:09:30: 21:ff:54:85:df:66:0b:05:6f:4a:3d:d0:59:83:ee: a6:11:ec:86:9a:29:7b:57:55:68:04:02:d0:4c:aa: 95:fd:3f:0b:e7:d1:4e:17:86:c1:70:50:9e:fd:4e: 97:c1:ad:e8:ec:06:a2:03:82:2e:5e:6e:c3:c3:12: 9e:39:05:40:a5:0d:c8:64:4f:46:47:7d:64:d4:f4: a6:0d:4e:ba:03:26:18:a3:33:fa:1f:f1:16:37:bc: 04:97:1c:cf:04:16:90:a8:78:a2:ac:9f:39:66:61: 74:c2:0c:e8:89:4a:b8:d7:fb:9d:03:09:c7:37:94: ea:25:50:71:f7:ad:b9:43:10:a2:b6:67:44:c5:62: ac:2e:4f:3f:69:d9:04:64:88:7b:85:1c:d5:c5:da: b3:88:77:a9:2c:43:26:e1:2c:1c:c8:51:ee:55:84: 35:2f:5f:bb:ea:09:27:eb:9c:c6:e5:9d:38:f5:0a: 36:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:AA:BB:5E:67:74:FF:43:BE:14:13:F5:B0:35:F9:57:57:A7:2A:85 X509v3 Authority Key Identifier: keyid:37:78:54:4E:24:69:54:8B:F0:9B:54:DD:D8:03:D7:D7:D9:0F:7E:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/1E4548E4E1F211EEA360BE22C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.88.0/24 Signature Algorithm: sha256WithRSAEncryption 60:73:b0:0e:75:bd:d7:ab:21:61:51:c7:2e:70:6d:67:e9:9c: b9:57:f5:06:09:af:8d:a1:ee:2a:2b:91:db:7f:12:cf:b2:33: 38:6d:a5:eb:18:a8:e8:2c:99:19:8c:21:c8:fb:f3:53:0c:3a: 51:6e:dd:d9:a5:a4:49:8c:d2:af:cf:a2:88:58:41:b3:4a:e4: 97:c3:31:61:61:0c:1a:d7:e6:af:e8:6c:12:c1:4f:a3:53:d4: a7:55:68:4f:f7:ed:e6:ef:38:f9:32:57:95:d6:2c:67:31:91: 8c:49:83:1b:b3:96:c9:d8:e2:c2:0f:47:bf:ab:f0:44:3d:11: cb:97:b9:ef:62:82:67:5d:f7:8f:4b:a3:85:e9:82:2a:97:f0: d4:d1:bc:ad:1f:b5:27:3e:54:a5:ef:39:e2:4e:62:e5:31:de: d5:51:eb:87:34:a2:69:26:58:9e:05:38:68:bb:e5:76:8e:e0: 01:6b:61:e0:e7:e5:3f:04:ed:80:45:77:51:a2:0e:59:d8:f7: 63:6c:c7:d8:ae:c7:c2:23:a1:84:f0:e9:42:31:be:ae:e5:04: f8:56:d8:62:5b:77:28:25:00:b5:31:9e:58:33:29:ec:0d:5d: c1:e7:ae:67:97:3a:d7:1c:6c:1a:18:07:5f:e8:a9:13:7a:d9: 4a:d0:7e:9b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhDQUExMTAvBgNVBAUTKDM3Nzg1NDRFMjQ2OTU0OEJGMDlCNTREREQ4MDNEN0Q3 RDkwRjdFNjIwHhcNMjQxMjMxMDQ0ODM0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzczNzdhMS05MGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0KbXvUGLgSRlpfPD6nVFXtJ/RuhDWSzX0nRMAYfMquNwNB/ncqzaVIzkDCp hphK81DPytjmKv84ZZLhXsP2ylB4ThR7VGuNCTAh/1SF32YLBW9KPdBZg+6mEeyG mil7V1VoBALQTKqV/T8L59FOF4bBcFCe/U6Xwa3o7AaiA4IuXm7DwxKeOQVApQ3I ZE9GR31k1PSmDU66AyYYozP6H/EWN7wElxzPBBaQqHiirJ85ZmF0wgzoiUq41/ud AwnHN5TqJVBx9625QxCitmdExWKsLk8/adkEZIh7hRzVxdqziHepLEMm4SwcyFHu VYQ1L1+76gkn65zG5Z049Qo2+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKKqu15n dP9DvhQT9bA1+VdXpyqFMB8GA1UdIwQYMBaAFDd4VE4kaVSL8JtU3dgD19fZD35i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOENBQS9EQ0QwMkEyMEUx RUExMUVFOTk5QzcwMkFDNEY5QUUwMi9OM2hVVGlScFZJdndtMVRkMkFQWDE5a1Bm bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04zaFVUaVJwVkl2d20xVGQyQVBYMTlrUGZtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhDQUEvRENEMDJBMjBFMUVBMTFFRTk5OUM3MDJBQzRGOUFFMDIvMUU0NTQ4RTRF MUYyMTFFRUEzNjBCRTIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnkVgwDQYJKoZIhvcNAQELBQADggEBAGBzsA51vderIWFR xy5wbWfpnLlX9QYJr42h7iorkdt/Es+yMzhtpesYqOgsmRmMIcj781MMOlFu3dml pEmM0q/PoohYQbNK5JfDMWFhDBrX5q/obBLBT6NT1KdVaE/37ebvOPkyV5XWLGcx kYxJgxuzlsnY4sIPR7+r8EQ9EcuXue9igmdd949Lo4XpgiqX8NTRvK0ftSc+VKXv OeJOYuUx3tVR64c0omkmWJ4FOGi75XaO4AFrYeDn5T8E7YBFd1GiDlnY92Nsx9iu x8IjoYTw6UIxvq7lBPhW2GJbdyglALUxnlgzKewNXcHnrmeXOtccbBoYB1/oqRN6 2UrQfps= -----END CERTIFICATE-----Generated at Sun Feb 16 22:31:52 2025 by rpki-client