$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/4697751815B111EA8277BA34C4F9AE02.roa File: 4697751815B111EA8277BA34C4F9AE02.roa (raw, json) Hash identifier: dxDp9E0tHPQ++XAIde+nxMm3Ga/WWcWY96m0Hl+beDw= Subject key identifier: FD:70:C8:49:B7:D4:5B:39:66:25:6F:E9:AE:2F:A0:BF:7C:1F:4D:BE Certificate issuer: /CN=A9125C31/serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Certificate serial: 0BA8 Authority key identifier: 71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/4697751815B111EA8277BA34C4F9AE02.roa Signing time: Tue 31 Dec 2024 18:47:45 +0000 ROA not before: Tue 31 Dec 2024 18:47:45 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 139835 IP address blocks: 103.145.246.0/23 maxlen: 23 103.145.246.0/24 maxlen: 24 103.145.247.0/24 maxlen: 24 2001:df2:3780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:55:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2984 (0xba8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C31 Validity Not Before: Dec 31 18:47:45 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67743c51-8e99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:83:79:41:91:b4:56:02:0f:2b:d8:25:5c:2c: 2d:6a:08:5f:51:20:88:72:ba:85:a4:c7:7c:1f:a2: 6d:9e:d8:17:a0:5e:7f:01:e0:0b:6b:cf:71:67:2d: 21:9c:8f:f3:65:73:be:c3:cd:bc:df:1c:91:e4:63: 71:6f:a7:b7:23:45:61:3c:ab:bb:f3:8c:96:e4:ec: 52:42:a6:5e:29:4b:9e:46:ef:de:76:d2:7c:f9:ee: 30:48:51:b9:49:f8:3b:a9:34:f6:bd:0e:2e:df:84: f5:58:72:1a:1a:68:8f:f1:ea:04:7d:95:d4:19:06: 9e:19:7c:83:c0:9c:8e:8b:0e:a1:50:7a:a6:fb:2f: 3b:cd:f5:33:1b:9e:15:d7:fe:09:9e:34:41:d3:b6: f9:9d:2b:82:27:8f:ed:07:d7:64:78:24:2a:b8:cc: a9:e2:9d:4c:c2:1b:01:7a:b1:30:ca:84:8a:28:27: 0b:ba:10:2a:d6:f8:46:4c:50:cd:ac:d7:a9:b7:ca: 01:ba:f2:3e:5b:39:5b:eb:7f:18:7f:63:0f:89:dc: 89:88:36:11:c5:40:b3:78:a8:bf:8b:96:74:2a:78: f5:a5:00:a2:86:53:13:07:6e:55:81:e4:35:f6:2a: 7e:f3:56:a1:96:92:d3:1f:76:75:7c:75:80:1a:6c: 36:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:70:C8:49:B7:D4:5B:39:66:25:6F:E9:AE:2F:A0:BF:7C:1F:4D:BE X509v3 Authority Key Identifier: keyid:71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/4697751815B111EA8277BA34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.246.0/23 IPv6: 2001:df2:3780::/48 Signature Algorithm: sha256WithRSAEncryption 7d:45:65:cb:fa:b1:58:63:3e:ac:eb:b2:2d:48:f4:c2:ff:37: 58:13:c4:84:28:99:6e:83:ea:5b:12:d5:dd:17:bd:d0:71:fb: dd:3c:1a:d6:f8:e7:d0:4e:78:ed:39:73:b5:34:75:49:92:ff: 76:ca:32:c3:ce:cc:92:69:d4:00:88:b4:ce:64:40:31:62:34: bb:00:12:6c:b5:74:e0:15:41:d8:d2:7d:ef:f3:40:8d:13:84: 09:09:6e:24:93:41:b4:e6:fa:73:91:a4:ac:36:8a:9d:80:73: 18:f8:ec:ed:75:34:cb:d3:bf:fb:97:ea:a1:86:c5:82:46:f2: e5:72:f7:9a:cc:52:9b:8a:d5:0e:03:89:a4:a9:5a:75:45:6c: 37:41:6a:11:3b:b9:24:4c:21:97:ba:af:1f:1e:5f:91:d1:e3: f6:fd:ae:52:36:72:f0:e7:e8:d6:4f:ba:cd:2d:84:26:e1:b3: d4:76:72:75:2e:1e:e1:6a:ab:1f:6a:ae:ca:d5:a6:08:2e:87: 45:c0:26:86:fb:39:42:04:da:b2:5f:78:a5:87:79:66:2c:fe: a2:3c:fe:1d:c2:a8:35:c1:b8:bb:cc:6e:3c:99:2b:23:83:aa: 36:ae:c9:f5:bb:42:95:12:70:47:c4:e9:67:23:94:ac:cd:fd: 39:61:78:d0 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICC6gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMzExMTAvBgNVBAUTKDcxMDUzNzI0NDZBMjA2NDU0NkQ5NjI5RjQyMUMzNzZG RENFRjIxRDYwHhcNMjQxMjMxMTg0NzQ1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc0M2M1MS04ZTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4N5QZG0VgIPK9glXCwtaghfUSCIcrqFpMd8H6JtntgXoF5/AeALa89xZy0h nI/zZXO+w8283xyR5GNxb6e3I0VhPKu784yW5OxSQqZeKUueRu/edtJ8+e4wSFG5 Sfg7qTT2vQ4u34T1WHIaGmiP8eoEfZXUGQaeGXyDwJyOiw6hUHqm+y87zfUzG54V 1/4JnjRB07b5nSuCJ4/tB9dkeCQquMyp4p1MwhsBerEwyoSKKCcLuhAq1vhGTFDN rNept8oBuvI+Wzlb638Yf2MPidyJiDYRxUCzeKi/i5Z0Knj1pQCihlMTB25VgeQ1 9ip+81ahlpLTH3Z1fHWAGmw2VQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFP1wyEm3 1Fs5ZiVv6a4voL98H02+MB8GA1UdIwQYMBaAFHEFNyRGogZFRtlin0IcN2/c7yHW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzMS8zOEJGNDA5QTE1 OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJrVkcyV0tmUWh3M2I5enZJ ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NRVTNKRWFpQmtWRzJXS2ZRaHczYjl6dklkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjVDMzEvMzhCRjQwOUExNTkwMTFFQTlDNDEzNjUyQzRGOUFFMDIvNDY5Nzc1MTgx NUIxMTFFQTgyNzdCQTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnkfYwDwQCAAIwCQMHACABDfI3gDANBgkqhkiG9w0BAQsF AAOCAQEAfUVly/qxWGM+rOuyLUj0wv83WBPEhCiZboPqWxLV3Re90HH73Twa1vjn 0E547TlztTR1SZL/dsoyw87MkmnUAIi0zmRAMWI0uwASbLV04BVB2NJ97/NAjROE CQluJJNBtOb6c5GkrDaKnYBzGPjs7XU0y9O/+5fqoYbFgkby5XL3msxSm4rVDgOJ pKladUVsN0FqETu5JEwhl7qvHx5fkdHj9v2uUjZy8Ofo1k+6zS2EJuGz1HZydS4e 4WqrH2quytWmCC6HRcAmhvs5QgTasl94pYd5Ziz+ojz+HcKoNcG4u8xuPJkrI4Oq Nq7J9btClRJwR8TpZyOUrM39OWF40A== -----END CERTIFICATE-----Generated at Sat Apr 5 07:22:36 2025 by rpki-client