$ rpki-client -vvf rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/A8E9DE704B8511E7BF406610C4F9AE02.roa File: A8E9DE704B8511E7BF406610C4F9AE02.roa (raw, json) Hash identifier: nu+MmRVMelFZBsdSEFhVpeJliAcHe14e7veTklAJkjc= Subject key identifier: 10:03:89:A1:23:C1:C1:45:08:D9:D8:A1:59:0E:0D:E4:B6:89:8D:CA Certificate issuer: /CN=A9126F2B/serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Certificate serial: 2199 Authority key identifier: E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/A8E9DE704B8511E7BF406610C4F9AE02.roa Signing time: Tue 18 Feb 2025 16:13:16 +0000 ROA not before: Tue 18 Feb 2025 16:13:16 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 17625 IP address blocks: 103.206.209.0/24 maxlen: 24 103.206.210.0/24 maxlen: 24 103.206.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:57:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8601 (0x2199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126F2B Validity Not Before: Feb 18 16:13:16 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67b4b19c-faf7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f6:10:70:54:f2:41:a4:3f:f1:3b:80:3b:49: 73:cf:ea:6a:ac:2b:5f:74:68:32:b6:91:f3:bb:5d: 3c:ed:f6:dc:a2:8e:80:57:ea:d1:a7:30:ab:0c:66: b1:20:36:1d:60:29:22:5d:89:e5:a9:fc:fa:f8:ec: 3d:38:70:db:62:11:91:49:67:8b:52:c8:7c:3d:e8: 27:8a:be:33:d7:96:5a:cc:81:47:4d:bf:0b:72:37: 11:4d:4a:19:5f:ea:0d:e9:61:bd:8d:8b:cf:4c:57: 56:7d:36:4b:ad:26:44:1f:ad:45:f1:cc:82:66:92: f0:6c:b4:3a:8a:18:40:28:67:42:78:ce:da:a4:64: 39:0e:ad:91:0f:b0:86:fe:ff:b7:a8:30:e4:3c:e6: 17:d5:2b:cc:16:05:e0:dd:26:6e:c9:34:81:e7:30: ae:84:2c:d0:24:a5:8e:d2:10:1c:2a:03:79:a9:55: 84:61:83:0c:ff:94:8d:70:9d:7a:f3:1a:18:55:a5: 03:5a:f6:d4:ca:d2:6a:86:97:85:eb:6b:f7:50:e6: 24:e9:e4:45:40:5c:6f:eb:36:26:d1:89:5b:ef:7f: 48:f4:d8:83:01:09:b7:30:6b:d4:d0:3b:17:52:02: 83:66:6f:90:d7:ee:5b:57:c4:ce:7b:bd:59:e4:f5: dc:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:03:89:A1:23:C1:C1:45:08:D9:D8:A1:59:0E:0D:E4:B6:89:8D:CA X509v3 Authority Key Identifier: keyid:E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/A8E9DE704B8511E7BF406610C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.206.209.0-103.206.211.255 Signature Algorithm: sha256WithRSAEncryption 92:7e:b6:83:8e:35:7b:b5:8d:03:92:63:05:28:1c:0d:f6:dd: e6:a3:2e:7b:78:03:39:54:b4:4d:09:cd:8e:07:ea:79:42:e6: bc:66:b9:ca:23:7a:17:56:a1:d9:3a:54:ce:7d:2e:66:56:1b: 04:e9:36:13:c7:5d:bf:dd:86:de:03:3c:d5:33:01:0a:8b:52: a0:56:5e:7d:2a:ae:a6:d9:a0:b0:43:2b:6f:2c:09:9a:f4:66: 88:27:47:1a:c3:e9:58:61:04:8b:a7:d7:7a:bb:c6:43:b0:d0: 8d:e8:bd:9b:21:f6:0d:2e:30:7e:16:2b:b4:1a:03:b9:79:59: e0:ee:06:82:6e:af:b8:4b:73:a8:13:5c:d2:32:ac:e0:92:38: ac:45:bb:d7:6a:d6:81:93:b3:9e:7b:3f:f6:a4:17:a1:55:be: 1c:1c:c7:18:f3:97:cb:08:a8:01:02:1b:3b:23:7a:00:54:c1: 4e:19:f9:a2:d5:36:ac:3c:18:24:f6:5f:21:76:f7:72:ac:a1: 2d:05:bd:5a:ee:7e:e0:17:4b:07:2f:c9:60:a9:b5:13:8c:20: 74:28:28:e2:49:1c:39:18:3b:56:2c:c7:62:42:19:1a:75:da: 6c:b7:73:17:eb:ab:fb:e3:a9:f5:bf:60:21:09:a7:84:a8:d1: cf:10:f5:61 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICIZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZGMkIxMTAvBgNVBAUTKEUxODJGOTkzNjk1MkM0MjY5RDY3MERBNTc1MkRFQ0M4 NjgyMzRGMUIwHhcNMjUwMjE4MTYxMzE2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I0YjE5Yy1mYWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfYQcFTyQaQ/8TuAO0lzz+pqrCtfdGgytpHzu1087fbcoo6AV+rRpzCrDGax IDYdYCkiXYnlqfz6+Ow9OHDbYhGRSWeLUsh8Pegnir4z15ZazIFHTb8LcjcRTUoZ X+oN6WG9jYvPTFdWfTZLrSZEH61F8cyCZpLwbLQ6ihhAKGdCeM7apGQ5Dq2RD7CG /v+3qDDkPOYX1SvMFgXg3SZuyTSB5zCuhCzQJKWO0hAcKgN5qVWEYYMM/5SNcJ16 8xoYVaUDWvbUytJqhpeF62v3UOYk6eRFQFxv6zYm0Ylb739I9NiDAQm3MGvU0DsX UgKDZm+Q1+5bV8TOe71Z5PXchwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFBADiaEj wcFFCNnYoVkODeS2iY3KMB8GA1UdIwQYMBaAFOGC+ZNpUsQmnWcNpXUt7MhoI08b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkYyQi85MEZBREVFQ0Q1 Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hDYWRadzJsZFMzc3lHZ2pU eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZTDVrMmxTeENhZFp3MmxkUzNzeUdnalR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjZGMkIvOTBGQURFRUNENUNEMTFFNUFBNDI2RTQwQzRGOUFFMDIvQThFOURFNzA0 Qjg1MTFFN0JGNDA2NjEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAGfO0QMEAmfO0DANBgkqhkiG9w0BAQsFAAOCAQEAkn62 g441e7WNA5JjBSgcDfbd5qMue3gDOVS0TQnNjgfqeULmvGa5yiN6F1ah2TpUzn0u ZlYbBOk2E8ddv92G3gM81TMBCotSoFZefSquptmgsEMrbywJmvRmiCdHGsPpWGEE i6fXervGQ7DQjei9myH2DS4wfhYrtBoDuXlZ4O4Ggm6vuEtzqBNc0jKs4JI4rEW7 12rWgZOznns/9qQXoVW+HBzHGPOXywioAQIbOyN6AFTBThn5otU2rDwYJPZfIXb3 cqyhLQW9Wu5+4BdLBy/JYKm1E4wgdCgo4kkcORg7VizHYkIZGnXabLdzF+ur++Op 9b9gIQmnhKjRzxD1YQ== -----END CERTIFICATE-----Generated at Sat Apr 5 02:13:22 2025 by rpki-client