$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/E8FF9A526FDE11E9AF945067C4F9AE02.roa File: E8FF9A526FDE11E9AF945067C4F9AE02.roa (raw, json) Hash identifier: RrfRQiaJQ/K/F0pEWCxhmnA6Eh04yX02RfUKJUyZudE= Subject key identifier: EE:44:20:C8:2C:F0:81:E9:44:81:A1:22:CC:BF:25:26:4C:94:87:72 Certificate issuer: /CN=A91FE26E/serialNumber=233C0D3B2A75C41AB82E5BEB70DBE2E7342D661F Certificate serial: 1C95 Authority key identifier: 23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/E8FF9A526FDE11E9AF945067C4F9AE02.roa Signing time: Mon 20 Jan 2025 16:13:13 +0000 ROA not before: Mon 20 Jan 2025 16:13:13 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 23881 IP address blocks: 103.92.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7317 (0x1c95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE26E Validity Not Before: Jan 20 16:13:13 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=678e7619-4d8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ef:db:0c:17:e4:8a:15:f9:6a:ce:2d:c7:6d: 40:53:32:2d:34:35:4e:3c:02:4d:8e:c6:22:4a:99: 26:c9:05:7c:7b:3c:85:e3:80:92:28:36:36:49:e9: c6:e8:7b:04:8c:ad:65:1b:4c:b0:27:cf:17:8d:46: 42:3c:ce:a2:cb:9c:6f:cd:5b:96:f0:df:59:22:03: a2:12:f9:de:91:4a:5d:c0:23:55:c0:05:43:ee:21: e5:81:dd:ae:63:66:26:a1:39:90:a4:42:27:e4:66: 65:21:d5:da:46:27:58:5c:46:b7:d9:79:9d:b0:86: 71:96:b7:ae:69:ac:2a:92:45:74:59:35:8c:ac:7c: fd:96:b6:01:9a:c6:6c:db:9d:e3:ec:af:0a:76:ab: ff:2d:41:7e:89:73:f2:bc:df:23:19:99:ee:50:db: 5b:40:c4:33:7d:ac:7c:68:e8:44:fc:fc:ac:8e:46: ff:3c:4a:3d:76:13:04:c3:ba:3c:a5:14:c0:08:9a: 63:82:2c:81:43:a7:02:c3:3e:78:c1:5d:39:d5:da: 5f:e3:67:ef:f0:95:ca:0c:65:9e:2a:8b:e7:b0:6a: ef:fc:bc:9f:fa:f0:8d:1b:43:28:1e:24:11:3f:91: f2:1b:a8:01:ae:6f:59:a2:97:36:ef:07:6d:9a:f6: 4c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:44:20:C8:2C:F0:81:E9:44:81:A1:22:CC:BF:25:26:4C:94:87:72 X509v3 Authority Key Identifier: keyid:23:3C:0D:3B:2A:75:C4:1A:B8:2E:5B:EB:70:DB:E2:E7:34:2D:66:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/IzwNOyp1xBq4LlvrcNvi5zQtZh8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IzwNOyp1xBq4LlvrcNvi5zQtZh8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE26E/87B5CD50C85D11E687056927C4F9AE02/E8FF9A526FDE11E9AF945067C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.92.86.0/24 Signature Algorithm: sha256WithRSAEncryption 07:70:ed:22:78:96:f9:ce:6c:38:55:e0:78:1b:76:ee:87:ab: 48:c4:58:0e:91:1d:b1:b5:a5:70:41:d8:01:86:88:7d:d6:af: 0a:d6:05:76:84:f1:e8:b2:64:55:f4:b8:fa:75:6c:33:26:1e: 42:3f:df:90:94:e1:90:bb:62:3e:cc:39:fd:fd:7d:98:df:79: da:66:1b:62:37:1e:6c:11:0b:1c:d5:3e:e4:ac:d2:f4:f8:b8: ef:8b:49:9b:ad:96:2f:c6:9c:20:76:23:9f:cd:9e:1b:4f:9d: 2a:21:00:1d:07:2e:3c:6b:34:ce:4b:9f:2a:4a:0c:3a:3e:20: 9e:93:ce:6b:a2:63:fb:1a:41:21:90:65:9d:64:5b:7b:70:7b: 23:7e:1d:10:7b:72:1c:d6:7a:0e:fe:af:4f:22:e4:e3:3a:0b: 5b:a3:3c:c2:a8:96:f4:6b:1a:f6:19:cd:07:d6:de:07:41:de: 5d:be:fc:6d:03:ca:df:e2:82:9c:ad:25:b4:2b:1c:da:5a:0c: bc:66:c4:13:72:68:20:b2:f6:36:ac:74:85:52:69:7f:59:8e: 72:e1:44:c3:60:c8:39:fe:9b:03:b4:bb:2b:e1:84:06:22:79: 16:ee:7f:a9:c0:79:85:c9:58:8b:d8:ca:96:27:87:f8:8d:2f: 45:fd:73:98 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkUyNkUxMTAvBgNVBAUTKDIzM0MwRDNCMkE3NUM0MUFCODJFNUJFQjcwREJFMkU3 MzQyRDY2MUYwHhcNMjUwMTIwMTYxMzEzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzhlNzYxOS00ZDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3e/bDBfkihX5as4tx21AUzItNDVOPAJNjsYiSpkmyQV8ezyF44CSKDY2SenG 6HsEjK1lG0ywJ88XjUZCPM6iy5xvzVuW8N9ZIgOiEvnekUpdwCNVwAVD7iHlgd2u Y2YmoTmQpEIn5GZlIdXaRidYXEa32XmdsIZxlreuaawqkkV0WTWMrHz9lrYBmsZs 253j7K8Kdqv/LUF+iXPyvN8jGZnuUNtbQMQzfax8aOhE/Pysjkb/PEo9dhMEw7o8 pRTACJpjgiyBQ6cCwz54wV051dpf42fv8JXKDGWeKovnsGrv/Lyf+vCNG0MoHiQR P5HyG6gBrm9Zopc27wdtmvZMowIDAQABo4IClTCCApEwHQYDVR0OBBYEFO5EIMgs 8IHpRIGhIsy/JSZMlIdyMB8GA1UdIwQYMBaAFCM8DTsqdcQauC5b63Db4uc0LWYf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTI2RS84N0I1Q0Q1MEM4 NUQxMUU2ODcwNTY5MjdDNEY5QUUwMi9JendOT3lwMXhCcTRMbHZyY052aTV6UXRa aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l6d05PeXAxeEJxNExsdnJjTnZpNXpRdFpoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkUyNkUvODdCNUNENTBDODVEMTFFNjg3MDU2OTI3QzRGOUFFMDIvRThGRjlBNTI2 RkRFMTFFOUFGOTQ1MDY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnXFYwDQYJKoZIhvcNAQELBQADggEBAAdw7SJ4lvnObDhV 4Hgbdu6Hq0jEWA6RHbG1pXBB2AGGiH3WrwrWBXaE8eiyZFX0uPp1bDMmHkI/35CU 4ZC7Yj7MOf39fZjfedpmG2I3HmwRCxzVPuSs0vT4uO+LSZutli/GnCB2I5/NnhtP nSohAB0HLjxrNM5LnypKDDo+IJ6TzmuiY/saQSGQZZ1kW3tweyN+HRB7chzWeg7+ r08i5OM6C1ujPMKolvRrGvYZzQfW3gdB3l2+/G0Dyt/igpytJbQrHNpaDLxmxBNy aCCy9jasdIVSaX9ZjnLhRMNgyDn+mwO0uyvhhAYieRbuf6nAeYXJWIvYypYnh/iN L0X9c5g= -----END CERTIFICATE-----Generated at Mon Feb 17 07:43:57 2025 by rpki-client