$ rpki-client -vvf rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/3C09B1A2640F11ECBC536111C4F9AE02.roa File: 3C09B1A2640F11ECBC536111C4F9AE02.roa (raw, json) Hash identifier: x1o/7SXGT/4CedCgS5u41onm9GYNi5PSdU5ws280Sfc= Subject key identifier: 54:D5:5E:EF:16:FB:7F:42:B3:65:4D:88:53:78:47:92:DE:0D:4F:0B Certificate issuer: /CN=A9112AD5/serialNumber=F385F379177020F088BF74DA2C0346D879C22A1D Certificate serial: 03CE Authority key identifier: F3:85:F3:79:17:70:20:F0:88:BF:74:DA:2C:03:46:D8:79:C2:2A:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/3C09B1A2640F11ECBC536111C4F9AE02.roa Signing time: Fri 29 Nov 2024 00:33:36 +0000 ROA not before: Fri 29 Nov 2024 00:33:36 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 149005 IP address blocks: 103.176.14.0/24 maxlen: 24 2001:df0:8c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.crl rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 18:24:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 974 (0x3ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112AD5, serialNumber=F385F379177020F088BF74DA2C0346D879C22A1D Validity Not Before: Nov 29 00:33:36 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67490bdf-8d1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:11:4b:63:5d:28:b9:14:b2:45:d8:40:71:e3: 77:76:6c:4c:45:dc:4a:f1:09:c2:b2:75:5a:8a:d6: e3:db:76:64:1e:c7:5e:ff:2e:4a:c1:48:c1:da:17: df:85:44:c9:1b:46:c2:fc:91:ef:09:c6:a6:2b:cd: cc:3c:77:8c:10:f2:e3:be:19:1a:6d:55:f3:69:9b: ac:cb:d2:fe:18:f4:01:87:35:d3:bf:23:1c:6c:ca: 43:23:e6:97:f1:d2:ed:fd:8a:15:7d:eb:87:24:35: 5e:7b:4d:85:70:19:43:dc:fc:68:c2:a7:49:50:8a: 19:82:ca:d2:8f:c4:47:c6:5d:c4:a4:6c:77:d6:fb: 9a:b1:f3:42:c0:cb:79:b4:af:bc:1c:6e:43:f1:b1: 9b:17:03:cf:ba:f6:e9:af:ed:91:d8:d1:07:b3:45: 68:44:9d:71:d9:02:33:e0:15:67:59:12:8e:bf:2f: 32:df:61:a0:08:52:fe:dc:d4:91:56:df:6c:68:45: d6:a1:e8:d5:cb:01:4b:a4:b9:90:09:a6:f7:aa:ce: 79:4b:0f:c9:0e:ab:bc:3c:c2:52:06:93:cb:ed:b6: b2:17:2e:0f:03:8f:91:26:3f:b7:9e:55:a6:17:4a: 00:66:53:6f:46:2f:8b:c8:72:16:a3:5b:e0:b4:ef: 44:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:D5:5E:EF:16:FB:7F:42:B3:65:4D:88:53:78:47:92:DE:0D:4F:0B X509v3 Authority Key Identifier: keyid:F3:85:F3:79:17:70:20:F0:88:BF:74:DA:2C:03:46:D8:79:C2:2A:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/84XzeRdwIPCIv3TaLANG2HnCKh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84XzeRdwIPCIv3TaLANG2HnCKh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112AD5/F479580E640B11ECAA22100BC4F9AE02/3C09B1A2640F11ECBC536111C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.14.0/24 IPv6: 2001:df0:8c0::/48 Signature Algorithm: sha256WithRSAEncryption 56:5a:76:b9:6f:56:56:8c:62:ba:a9:8b:c4:54:88:f3:83:24: 80:86:bf:87:20:6d:8e:51:f5:88:02:dc:c0:f8:35:e2:16:75: 96:54:48:59:1e:3e:6a:3d:63:e5:f3:df:3c:e6:7e:c6:ee:b5: eb:01:5c:04:e4:c3:81:a7:94:81:a5:41:85:6f:f7:5b:52:d9: cc:68:96:57:a4:05:08:a4:fc:3b:e6:f4:d0:73:0d:1b:15:c2: 5a:51:b9:47:57:4c:df:55:8b:4d:0c:f4:13:4b:83:99:fb:d3: 27:1f:23:a2:c5:82:fd:20:a5:14:17:fe:b6:10:c2:c1:3d:63: 91:33:78:99:98:63:4c:a5:d4:ce:02:4f:0f:da:16:fc:18:ee: cc:56:65:fd:df:8b:7f:9f:9e:89:be:63:9d:ce:71:6b:58:c3: c0:29:75:8d:aa:49:dc:b5:6c:48:b5:f5:39:c1:73:75:be:b5: 01:58:71:d6:0d:88:3d:9d:1f:e7:8f:71:2d:04:cc:a0:7c:51: d3:47:49:f2:b5:24:12:d8:2b:99:a2:87:5a:c9:b5:83:f1:0f: 09:39:84:31:11:b2:cf:3d:5c:ba:22:7c:d1:4b:ec:88:59:fa: b6:e7:d8:87:05:a9:e7:6d:f3:ce:99:a9:9e:ac:84:f4:e9:ef: a1:72:95:bb -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJBRDUxMTAvBgNVBAUTKEYzODVGMzc5MTc3MDIwRjA4OEJGNzREQTJDMDM0NkQ4 NzlDMjJBMUQwHhcNMjQxMTI5MDAzMzM2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ5MGJkZi04ZDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyRFLY10ouRSyRdhAceN3dmxMRdxK8QnCsnVaitbj23ZkHsde/y5KwUjB2hff hUTJG0bC/JHvCcamK83MPHeMEPLjvhkabVXzaZusy9L+GPQBhzXTvyMcbMpDI+aX 8dLt/YoVfeuHJDVee02FcBlD3PxowqdJUIoZgsrSj8RHxl3EpGx31vuasfNCwMt5 tK+8HG5D8bGbFwPPuvbpr+2R2NEHs0VoRJ1x2QIz4BVnWRKOvy8y32GgCFL+3NSR Vt9saEXWoejVywFLpLmQCab3qs55Sw/JDqu8PMJSBpPL7bayFy4PA4+RJj+3nlWm F0oAZlNvRi+LyHIWo1vgtO9EpQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFTVXu8W +39Cs2VNiFN4R5LeDU8LMB8GA1UdIwQYMBaAFPOF83kXcCDwiL902iwDRth5wiod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkFENS9GNDc5NTgwRTY0 MEIxMUVDQUEyMjEwMEJDNEY5QUUwMi84NFh6ZVJkd0lQQ0l2M1RhTEFORzJIbkNL aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg0WHplUmR3SVBDSXYzVGFMQU5HMkhuQ0toMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTJBRDUvRjQ3OTU4MEU2NDBCMTFFQ0FBMjIxMDBCQzRGOUFFMDIvM0MwOUIxQTI2 NDBGMTFFQ0JDNTM2MTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnsA4wDwQCAAIwCQMHACABDfAIwDANBgkqhkiG9w0BAQsF AAOCAQEAVlp2uW9WVoxiuqmLxFSI84MkgIa/hyBtjlH1iALcwPg14hZ1llRIWR4+ aj1j5fPfPOZ+xu616wFcBOTDgaeUgaVBhW/3W1LZzGiWV6QFCKT8O+b00HMNGxXC WlG5R1dM31WLTQz0E0uDmfvTJx8josWC/SClFBf+thDCwT1jkTN4mZhjTKXUzgJP D9oW/BjuzFZl/d+Lf5+eib5jnc5xa1jDwCl1japJ3LVsSLX1OcFzdb61AVhx1g2I PZ0f549xLQTMoHxR00dJ8rUkEtgrmaKHWsm1g/EPCTmEMRGyzz1cuiJ80UvsiFn6 tufYhwWp523zzpmpnqyE9OnvoXKVuw== -----END CERTIFICATE-----Generated at Sat Apr 19 03:45:14 2025 by rpki-client