$ rpki-client -vvf rpki.apnic.net/member_repository/A9117257/94F497EE1E8211EE90B6263BC4F9AE02/7138FC520BBE11F0B8594F31C4F9AE02.roa File: 7138FC520BBE11F0B8594F31C4F9AE02.roa (raw, json) Hash identifier: u0TZfdXd2yD8hw46tFZAqpMuUqoJV/+SKPoCBFmssmc= Subject key identifier: FF:DA:DC:1B:CC:9C:97:B4:77:60:DB:05:A2:AB:6D:38:68:AF:C8:63 Certificate issuer: /CN=A9117257/serialNumber=E9B600C9E6DD8CEEC972195D6349C89838F745BE Certificate serial: 0160 Authority key identifier: E9:B6:00:C9:E6:DD:8C:EE:C9:72:19:5D:63:49:C8:98:38:F7:45:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6bYAyebdjO7JchldY0nImDj3Rb4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117257/94F497EE1E8211EE90B6263BC4F9AE02/7138FC520BBE11F0B8594F31C4F9AE02.roa Signing time: Fri 28 Mar 2025 10:21:42 +0000 ROA not before: Fri 28 Mar 2025 10:21:42 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 7489 IP address blocks: 103.122.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117257/94F497EE1E8211EE90B6263BC4F9AE02/6bYAyebdjO7JchldY0nImDj3Rb4.crl rsync://rpki.apnic.net/member_repository/A9117257/94F497EE1E8211EE90B6263BC4F9AE02/6bYAyebdjO7JchldY0nImDj3Rb4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6bYAyebdjO7JchldY0nImDj3Rb4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:39:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 352 (0x160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117257 Validity Not Before: Mar 28 10:21:42 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67e67836-4460 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:79:ab:b0:ed:93:e5:b7:f1:e4:c0:c8:a0:4c: 30:99:65:32:5b:2b:f6:a8:72:f3:f2:b3:10:fe:a1: 3a:bb:b7:a9:2c:bc:b9:bd:b2:ce:8f:0f:1c:f4:06: 50:a4:e5:de:6e:a5:d0:74:53:e7:4b:3e:4f:35:ae: 1a:93:59:72:fd:b6:7d:cc:a1:fd:fd:1f:dd:06:dc: 10:87:26:82:04:0f:d9:69:a4:13:4e:8f:e4:79:c7: e4:c3:b0:4c:f6:3e:38:1c:44:9d:ee:3a:26:de:36: 10:b4:12:94:5b:40:6a:29:4e:db:ee:f8:cb:0d:48: d3:f9:f4:a9:52:43:11:27:50:0e:5c:53:99:ca:8c: 92:cd:48:1b:2a:0b:b1:1b:ea:06:5d:b4:c7:63:4c: 27:ac:dd:31:2a:db:49:28:79:30:c4:9d:7c:81:34: ee:25:b1:89:ab:a7:79:2e:0b:ab:f0:c2:59:58:db: 53:36:78:3c:2a:3b:02:84:48:ed:07:f4:86:ee:fc: 97:48:4e:bf:28:fc:01:c6:97:3c:63:b3:47:62:76: 6f:35:18:88:31:8c:be:cc:a4:1a:61:88:06:38:a8: 17:15:ed:f7:8b:26:51:a9:38:07:3a:3b:00:de:43: 83:32:b6:15:9e:43:73:c9:e1:c3:13:a5:e9:b1:b5: 1e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:DA:DC:1B:CC:9C:97:B4:77:60:DB:05:A2:AB:6D:38:68:AF:C8:63 X509v3 Authority Key Identifier: keyid:E9:B6:00:C9:E6:DD:8C:EE:C9:72:19:5D:63:49:C8:98:38:F7:45:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117257/94F497EE1E8211EE90B6263BC4F9AE02/6bYAyebdjO7JchldY0nImDj3Rb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6bYAyebdjO7JchldY0nImDj3Rb4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117257/94F497EE1E8211EE90B6263BC4F9AE02/7138FC520BBE11F0B8594F31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.247.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:5f:a9:cf:02:27:88:9c:0b:03:89:db:80:5a:9a:e5:ab:66: 1d:dc:df:98:44:d0:56:1b:12:59:be:c9:5b:02:43:a2:d0:19: ae:f1:6e:26:d6:d3:74:cb:34:fd:a3:ec:62:46:e6:5a:57:42: ff:05:0c:5c:19:f9:f6:2e:46:b9:cb:cc:70:58:7f:af:a5:d8: d7:fa:e9:63:a8:c1:1b:b7:6d:87:42:e3:85:fa:60:2b:5d:d9: 81:36:0b:ae:22:d4:a1:68:9d:9d:97:13:e7:f4:52:d2:3c:46: 16:52:3e:f1:45:a5:bc:9f:32:57:6b:3e:db:3c:fc:da:db:64: 7d:a9:c9:08:8a:67:17:b9:3f:31:20:2f:c1:ab:3f:cc:03:4f: 52:08:f3:fe:39:b9:97:3a:2e:ab:95:be:a4:54:2b:cb:d3:b6: 80:a6:5e:94:b0:66:fe:61:49:f8:6c:9b:8e:da:c8:1c:eb:26: 12:ab:89:d0:d9:c8:07:e4:de:7d:8b:6d:6c:4e:1c:5c:9f:4b: 7f:3e:46:40:3e:81:1c:98:73:38:d6:72:44:6d:f2:85:aa:ff: dd:e2:8d:f3:56:bf:02:82:dd:07:4c:c9:c6:31:3c:8f:ed:0d: cb:f4:5e:a9:ec:c5:4d:42:f8:05:9b:5d:bc:a8:c0:b1:cf:23: 69:ee:85:72 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTcyNTcxMTAvBgNVBAUTKEU5QjYwMEM5RTZERDhDRUVDOTcyMTk1RDYzNDlDODk4 MzhGNzQ1QkUwHhcNMjUwMzI4MTAyMTQyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2U2NzgzNi00NDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAznmrsO2T5bfx5MDIoEwwmWUyWyv2qHLz8rMQ/qE6u7epLLy5vbLOjw8c9AZQ pOXebqXQdFPnSz5PNa4ak1ly/bZ9zKH9/R/dBtwQhyaCBA/ZaaQTTo/kecfkw7BM 9j44HESd7jom3jYQtBKUW0BqKU7b7vjLDUjT+fSpUkMRJ1AOXFOZyoySzUgbKgux G+oGXbTHY0wnrN0xKttJKHkwxJ18gTTuJbGJq6d5Lgur8MJZWNtTNng8KjsChEjt B/SG7vyXSE6/KPwBxpc8Y7NHYnZvNRiIMYy+zKQaYYgGOKgXFe33iyZRqTgHOjsA 3kODMrYVnkNzyeHDE6XpsbUe4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFP/a3BvM nJe0d2DbBaKrbThor8hjMB8GA1UdIwQYMBaAFOm2AMnm3YzuyXIZXWNJyJg490W+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzI1Ny85NEY0OTdFRTFF ODIxMUVFOTBCNjI2M0JDNEY5QUUwMi82YllBeWViZGpPN0pjaGxkWTBuSW1EajNS YjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZiWUF5ZWJkak83SmNobGRZMG5JbURqM1JiNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTcyNTcvOTRGNDk3RUUxRTgyMTFFRTkwQjYyNjNCQzRGOUFFMDIvNzEzOEZDNTIw QkJFMTFGMEI4NTk0RjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnevcwDQYJKoZIhvcNAQELBQADggEBAExfqc8CJ4icCwOJ 24BamuWrZh3c35hE0FYbElm+yVsCQ6LQGa7xbibW03TLNP2j7GJG5lpXQv8FDFwZ +fYuRrnLzHBYf6+l2Nf66WOowRu3bYdC44X6YCtd2YE2C64i1KFonZ2XE+f0UtI8 RhZSPvFFpbyfMldrPts8/NrbZH2pyQiKZxe5PzEgL8GrP8wDT1II8/45uZc6LquV vqRUK8vTtoCmXpSwZv5hSfhsm47ayBzrJhKridDZyAfk3n2LbWxOHFyfS38+RkA+ gRyYczjWckRt8oWq/93ijfNWvwKC3QdMycYxPI/tDcv0XqnsxU1C+AWbXbyowLHP I2nuhXI= -----END CERTIFICATE-----Generated at Sat Apr 5 23:07:44 2025 by rpki-client