$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/1EC90968E1F211EEA360BE22C4F9AE02.roa File: 1EC90968E1F211EEA360BE22C4F9AE02.roa (raw, json) Hash identifier: XRFVx29hjFc5pKNr7AkvLob3HQjLTaD9Ns3C1RRvN4w= Subject key identifier: A4:62:2B:F7:86:06:A3:06:EA:1F:CF:6F:96:2A:06:E6:46:E0:33:CB Certificate issuer: /CN=A91F8CAA/serialNumber=3778544E2469548BF09B54DDD803D7D7D90F7E62 Certificate serial: 9B Authority key identifier: 37:78:54:4E:24:69:54:8B:F0:9B:54:DD:D8:03:D7:D7:D9:0F:7E:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/1EC90968E1F211EEA360BE22C4F9AE02.roa Signing time: Tue 31 Dec 2024 04:48:35 +0000 ROA not before: Tue 31 Dec 2024 04:48:35 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 6453 IP address blocks: 103.145.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.crl rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 04:57:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8CAA Validity Not Before: Dec 31 04:48:35 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=677377a2-ff8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:42:f9:56:7a:28:a1:93:5f:ee:66:97:e0:d4: a8:46:0f:db:53:51:f1:5d:e6:bd:95:13:92:94:36: 82:88:93:94:80:9c:16:34:6b:50:d0:77:cb:52:78: cd:f5:3b:da:ea:6e:58:d6:65:53:50:d1:de:4e:0f: a0:b4:8c:bd:13:bb:5c:55:e4:c6:ff:d5:17:c3:b4: d9:1b:d9:0a:17:6a:0d:a5:37:a4:cd:9d:80:ad:bd: 65:29:ed:ec:b1:1e:db:bf:91:ff:6a:2a:0f:bc:8d: f5:f9:91:b8:74:0f:28:1f:17:22:0c:7a:4a:31:33: 45:f1:b7:2b:b9:95:b3:2a:0f:5c:37:07:ec:9f:bb: 53:8e:8a:c5:96:82:f1:bb:bd:60:02:7b:93:d2:a7: f7:72:2e:99:c2:6a:80:e2:3a:3a:b4:ec:d2:34:bc: be:69:fb:9f:a7:39:ae:96:7d:52:d3:1d:ea:23:40: 3e:ef:f1:df:ab:6a:d2:e0:d7:cc:a9:49:72:54:67: 8a:19:7d:59:d6:96:08:20:46:a9:86:d6:88:7f:45: 4e:25:20:9d:de:71:90:dc:3b:b5:82:03:b5:a0:34: 10:af:b7:06:99:98:cc:ee:e0:da:18:a6:85:11:a8: b4:9c:2c:de:4b:93:0f:ec:56:90:39:12:5e:02:eb: 9b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:62:2B:F7:86:06:A3:06:EA:1F:CF:6F:96:2A:06:E6:46:E0:33:CB X509v3 Authority Key Identifier: keyid:37:78:54:4E:24:69:54:8B:F0:9B:54:DD:D8:03:D7:D7:D9:0F:7E:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/N3hUTiRpVIvwm1Td2APX19kPfmI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N3hUTiRpVIvwm1Td2APX19kPfmI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8CAA/DCD02A20E1EA11EE999C702AC4F9AE02/1EC90968E1F211EEA360BE22C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.88.0/24 Signature Algorithm: sha256WithRSAEncryption a9:ad:aa:98:e6:6c:28:f7:b8:ca:fd:ae:e4:f7:57:e4:7a:8e: 2f:26:d4:29:22:53:ee:42:84:9d:f4:79:f6:9d:a8:e6:4c:50: 3c:57:9b:b4:9d:c7:16:88:d8:26:57:bc:a9:49:df:74:b0:02: 98:b6:a2:3c:80:84:e3:3d:db:4f:8a:5a:f7:7a:88:86:e6:7d: 5b:cf:1e:a3:07:32:e3:0a:a3:16:73:5e:d4:16:74:2d:38:5f: 86:56:f8:04:fe:13:95:bb:86:db:ad:9b:b8:05:ee:c8:b3:74: 45:99:d6:36:03:2b:3f:48:d3:a1:b9:2c:b7:38:88:f1:12:02: 42:6d:39:02:fc:9c:c4:c0:85:b4:1b:f4:c6:21:9b:bb:81:2a: 84:d2:72:82:59:44:95:32:84:63:0e:1c:76:0a:77:53:74:66: e5:e2:e7:84:fe:6f:3f:af:7c:8a:ff:0f:fe:34:69:cf:93:df: ab:18:7e:7a:7c:09:19:0a:4d:4c:e0:57:2b:a9:6c:32:8b:93: 8a:66:c2:77:da:63:f3:b8:f5:1a:0d:ab:79:ee:41:58:cf:b1: 89:4c:cd:7d:34:96:be:9e:83:fb:71:79:2c:a8:6f:6b:0f:bf: 50:64:a1:74:4a:a1:d4:ce:94:ed:5b:97:36:72:98:50:92:7c: fa:5b:17:7b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhDQUExMTAvBgNVBAUTKDM3Nzg1NDRFMjQ2OTU0OEJGMDlCNTREREQ4MDNEN0Q3 RDkwRjdFNjIwHhcNMjQxMjMxMDQ0ODM1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzczNzdhMi1mZjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1kL5VnoooZNf7maX4NSoRg/bU1HxXea9lROSlDaCiJOUgJwWNGtQ0HfLUnjN 9Tva6m5Y1mVTUNHeTg+gtIy9E7tcVeTG/9UXw7TZG9kKF2oNpTekzZ2Arb1lKe3s sR7bv5H/aioPvI31+ZG4dA8oHxciDHpKMTNF8bcruZWzKg9cNwfsn7tTjorFloLx u71gAnuT0qf3ci6ZwmqA4jo6tOzSNLy+afufpzmuln1S0x3qI0A+7/Hfq2rS4NfM qUlyVGeKGX1Z1pYIIEaphtaIf0VOJSCd3nGQ3Du1ggO1oDQQr7cGmZjM7uDaGKaF Eai0nCzeS5MP7FaQORJeAuubUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKRiK/eG BqMG6h/Pb5YqBuZG4DPLMB8GA1UdIwQYMBaAFDd4VE4kaVSL8JtU3dgD19fZD35i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOENBQS9EQ0QwMkEyMEUx RUExMUVFOTk5QzcwMkFDNEY5QUUwMi9OM2hVVGlScFZJdndtMVRkMkFQWDE5a1Bm bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL04zaFVUaVJwVkl2d20xVGQyQVBYMTlrUGZtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhDQUEvRENEMDJBMjBFMUVBMTFFRTk5OUM3MDJBQzRGOUFFMDIvMUVDOTA5NjhF MUYyMTFFRUEzNjBCRTIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnkVgwDQYJKoZIhvcNAQELBQADggEBAKmtqpjmbCj3uMr9 ruT3V+R6ji8m1CkiU+5ChJ30efadqOZMUDxXm7SdxxaI2CZXvKlJ33SwApi2ojyA hOM920+KWvd6iIbmfVvPHqMHMuMKoxZzXtQWdC04X4ZW+AT+E5W7htutm7gF7siz dEWZ1jYDKz9I06G5LLc4iPESAkJtOQL8nMTAhbQb9MYhm7uBKoTScoJZRJUyhGMO HHYKd1N0ZuXi54T+bz+vfIr/D/40ac+T36sYfnp8CRkKTUzgVyupbDKLk4pmwnfa Y/O49RoNq3nuQVjPsYlMzX00lr6eg/txeSyob2sPv1BkoXRKodTOlO1blzZymFCS fPpbF3s= -----END CERTIFICATE-----Generated at Sat Apr 12 08:35:20 2025 by rpki-client