$ rpki-client -vvf rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/BFF7726E6EF711E69FBC340BC4F9AE02.roa File: BFF7726E6EF711E69FBC340BC4F9AE02.roa (raw, json) Hash identifier: W0ZWmGkhW06fRZVPw8jscLCIBobXeY3y+SwBDvJ1Z0s= Subject key identifier: 79:99:6E:70:76:76:3F:93:AA:B1:E3:20:5B:07:DC:4F:A6:50:01:CE Certificate issuer: /CN=A9110C7C/serialNumber=39D1D595541891353094583618D6CC079C830CE1 Certificate serial: 1E57 Authority key identifier: 39:D1:D5:95:54:18:91:35:30:94:58:36:18:D6:CC:07:9C:83:0C:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/BFF7726E6EF711E69FBC340BC4F9AE02.roa Signing time: Wed 08 Jan 2025 16:03:52 +0000 ROA not before: Wed 08 Jan 2025 16:03:52 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 64076 IP address blocks: 103.38.220.0/24 maxlen: 24 103.205.38.0/24 maxlen: 24 2001:df2:4bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:06:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7767 (0x1e57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110C7C Validity Not Before: Jan 8 16:03:52 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=677ea1e8-791b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:fc:08:13:8d:ce:8d:d4:db:6f:66:b2:91:6f: 5d:32:99:da:22:f0:37:f5:6f:cd:a3:3d:2b:e0:4e: 3b:87:9d:48:4b:18:57:b3:7f:91:5b:74:08:1d:53: 6c:83:83:e7:7d:78:9e:3a:2f:22:02:70:0e:ba:a2: 93:1d:e6:df:c2:07:cd:48:a5:42:7c:88:cc:dc:99: 1a:bc:ef:90:eb:c5:15:4d:ab:b7:a6:9c:3b:bd:cc: ad:36:a3:05:4a:a0:f5:3b:97:b9:e5:2b:c1:db:a8: 75:5f:ff:53:99:84:ca:23:37:b6:22:d5:89:0f:14: c0:bd:8c:6d:b5:28:8f:99:28:8f:1a:d9:f8:87:92: ce:12:fe:26:dc:0e:9e:f4:ff:3b:03:9b:93:61:27: 52:f3:93:47:c0:2f:66:2c:66:52:88:b3:01:59:db: a8:35:88:04:a2:46:8d:8d:73:8e:b0:80:92:48:54: 0d:ef:41:82:9e:48:02:8b:72:d0:d5:c5:c4:a6:41: 47:4e:b7:67:17:2d:1d:3a:4e:45:cb:e4:d3:f7:07: d7:a6:c7:2b:64:fd:69:c2:90:60:f5:bd:06:8d:ca: 68:fc:ea:40:f2:2c:46:b8:b2:1a:b1:51:60:96:45: 3b:09:d0:82:a7:a4:34:1a:19:fc:13:5b:27:c3:41: 59:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:99:6E:70:76:76:3F:93:AA:B1:E3:20:5B:07:DC:4F:A6:50:01:CE X509v3 Authority Key Identifier: keyid:39:D1:D5:95:54:18:91:35:30:94:58:36:18:D6:CC:07:9C:83:0C:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/OdHVlVQYkTUwlFg2GNbMB5yDDOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdHVlVQYkTUwlFg2GNbMB5yDDOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110C7C/29F7A0406EF711E69E32670AC4F9AE02/BFF7726E6EF711E69FBC340BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.220.0/24 103.205.38.0/24 IPv6: 2001:df2:4bc0::/48 Signature Algorithm: sha256WithRSAEncryption 50:4c:1a:11:43:50:8d:2b:3b:5b:c6:0c:12:ac:06:46:46:b5: c4:89:dc:7c:3d:f8:da:00:5a:bf:f4:33:00:b7:f7:96:52:4f: 8f:ef:60:0d:91:fc:91:d5:8a:6e:a2:74:40:8d:23:f3:b2:b9: a3:0f:36:bf:14:c2:ee:fb:ef:57:a4:c2:e5:77:29:3c:9b:9d: 57:a2:d3:90:eb:03:ef:9e:57:1e:4e:76:dd:b5:06:ed:6c:58: b2:6c:e7:a8:86:45:fe:30:28:b7:6f:e8:16:a5:de:e9:bf:f4: 2e:cc:ff:e4:16:d8:ac:07:4d:8b:28:de:60:19:89:fb:4e:5c: 26:b2:2a:b3:c5:7f:09:86:ae:7a:a2:dc:48:01:96:8c:8d:05: e0:b2:da:b2:4d:37:b5:ae:83:25:ab:5f:a1:c8:5f:c5:2c:67: af:21:80:91:b2:f2:0c:84:76:40:5a:cf:1e:a3:76:da:de:2a: 89:69:e4:78:1e:10:47:5d:ee:d8:07:39:c9:74:3d:2d:2a:50: 24:dd:c4:7c:fb:2f:32:f1:06:96:55:7c:a0:23:e2:19:2b:b7: a1:1e:e2:c3:cf:48:25:7d:00:80:7b:49:be:a6:69:f1:b0:86: 4b:20:9b:21:e5:58:c8:fa:9a:4f:1a:4f:4a:45:9e:8d:23:b7: b3:69:93:f7 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICHlcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBDN0MxMTAvBgNVBAUTKDM5RDFENTk1NTQxODkxMzUzMDk0NTgzNjE4RDZDQzA3 OUM4MzBDRTEwHhcNMjUwMTA4MTYwMzUyWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdlYTFlOC03OTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwPwIE43OjdTbb2aykW9dMpnaIvA39W/Noz0r4E47h51ISxhXs3+RW3QIHVNs g4PnfXieOi8iAnAOuqKTHebfwgfNSKVCfIjM3JkavO+Q68UVTau3ppw7vcytNqMF SqD1O5e55SvB26h1X/9TmYTKIze2ItWJDxTAvYxttSiPmSiPGtn4h5LOEv4m3A6e 9P87A5uTYSdS85NHwC9mLGZSiLMBWduoNYgEokaNjXOOsICSSFQN70GCnkgCi3LQ 1cXEpkFHTrdnFy0dOk5Fy+TT9wfXpscrZP1pwpBg9b0Gjcpo/OpA8ixGuLIasVFg lkU7CdCCp6Q0Ghn8E1snw0FZNwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFHmZbnB2 dj+TqrHjIFsH3E+mUAHOMB8GA1UdIwQYMBaAFDnR1ZVUGJE1MJRYNhjWzAecgwzh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEM3Qy8yOUY3QTA0MDZF RjcxMUU2OUUzMjY3MEFDNEY5QUUwMi9PZEhWbFZRWWtUVXdsRmcyR05iTUI1eURE T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kSFZsVlFZa1RVd2xGZzJHTmJNQjV5RERPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTBDN0MvMjlGN0EwNDA2RUY3MTFFNjlFMzI2NzBBQzRGOUFFMDIvQkZGNzcyNkU2 RUY3MTFFNjlGQkMzNDBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnJtwDBABnzSYwDwQCAAIwCQMHACABDfJLwDANBgkqhkiG 9w0BAQsFAAOCAQEAUEwaEUNQjSs7W8YMEqwGRka1xIncfD342gBav/QzALf3llJP j+9gDZH8kdWKbqJ0QI0j87K5ow82vxTC7vvvV6TC5XcpPJudV6LTkOsD755XHk52 3bUG7WxYsmznqIZF/jAot2/oFqXe6b/0Lsz/5BbYrAdNiyjeYBmJ+05cJrIqs8V/ CYaueqLcSAGWjI0F4LLask03ta6DJatfochfxSxnryGAkbLyDIR2QFrPHqN22t4q iWnkeB4QR13u2Ac5yXQ9LSpQJN3EfPsvMvEGllV8oCPiGSu3oR7iw89IJX0AgHtJ vqZp8bCGSyCbIeVYyPqaTxpPSkWejSO3s2mT9w== -----END CERTIFICATE-----Generated at Sat Apr 5 19:33:08 2025 by rpki-client