$ rpki-client -vvf rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/DB27568209DA11EEBA18A082C4F9AE02.roa File: DB27568209DA11EEBA18A082C4F9AE02.roa (raw, json) Hash identifier: e38NftZeclZtbzcVCk509TYbTR+zv3+tyooBUtjix+c= Subject key identifier: 97:F2:68:83:B4:2B:17:E1:C7:99:00:B0:BB:22:7B:8F:8E:3D:A4:3C Certificate issuer: /CN=A912720E/serialNumber=A28DA0BE901D983A433D833589D167BF486F64FC Certificate serial: 0114 Authority key identifier: A2:8D:A0:BE:90:1D:98:3A:43:3D:83:35:89:D1:67:BF:48:6F:64:FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oo2gvpAdmDpDPYM1idFnv0hvZPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/DB27568209DA11EEBA18A082C4F9AE02.roa Signing time: Wed 27 Nov 2024 03:17:19 +0000 ROA not before: Wed 27 Nov 2024 03:17:19 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 150389 IP address blocks: 103.29.8.0/23 maxlen: 23 103.29.8.0/24 maxlen: 24 103.29.9.0/24 maxlen: 24 2001:df1:74c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.crl rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oo2gvpAdmDpDPYM1idFnv0hvZPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 03:24:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 276 (0x114) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912720E Validity Not Before: Nov 27 03:17:19 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67468f3f-486f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:75:05:c1:82:fb:12:20:19:47:b2:5c:73:ba: 6e:aa:dc:94:7c:51:99:21:de:2b:50:48:a9:9e:8f: a0:41:55:35:ee:c8:0e:77:cc:6c:3c:c6:cd:d5:f7: 0a:35:d4:6f:d9:f8:e2:4d:45:70:51:b2:28:c9:19: d2:06:5d:bf:6d:89:64:f1:2d:f7:30:0e:a9:00:63: c2:6c:10:95:3d:96:c5:c6:d3:fd:1d:26:79:bb:2d: ef:4d:0a:d0:0b:c7:70:08:65:a8:f8:98:36:58:7a: e1:0d:e6:34:86:44:7e:01:66:ff:9f:f9:e7:86:5e: fa:f4:71:33:fc:21:de:d0:5d:9a:45:1a:4f:b0:33: 30:4b:f2:7b:ea:3d:3d:87:fe:93:30:92:6a:31:f0: 96:c6:89:02:97:b3:e4:c4:fe:e2:98:31:46:99:39: e6:36:87:92:4a:56:8f:78:32:10:f6:8d:5b:ff:d8: 0e:fe:93:4f:8a:10:01:95:0b:f8:29:04:12:c6:f2: 65:66:4a:7a:07:a4:ce:c7:5b:75:58:c1:47:58:f4: 01:3a:18:55:a6:65:20:2a:78:32:e4:1d:b9:7a:5a: e8:80:c6:47:f7:ba:7e:cc:48:89:60:d6:9c:1c:25: 43:1d:5d:73:10:ef:2a:ff:d3:8e:44:c6:05:4c:e6: 45:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:F2:68:83:B4:2B:17:E1:C7:99:00:B0:BB:22:7B:8F:8E:3D:A4:3C X509v3 Authority Key Identifier: keyid:A2:8D:A0:BE:90:1D:98:3A:43:3D:83:35:89:D1:67:BF:48:6F:64:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oo2gvpAdmDpDPYM1idFnv0hvZPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/DB27568209DA11EEBA18A082C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.8.0/23 IPv6: 2001:df1:74c0::/48 Signature Algorithm: sha256WithRSAEncryption 4b:d7:13:ca:dd:41:10:1e:2a:2e:a0:d7:0b:fc:33:ff:4d:56: f2:dc:5c:63:cd:1e:f3:12:03:2b:a4:62:4a:34:0e:ad:10:35: 6b:52:96:90:bb:39:68:c7:65:2c:99:fa:62:25:1f:ae:f6:19: 66:1d:f2:b9:b4:d9:29:eb:c7:42:2e:b8:0e:11:03:93:da:b7: 77:ad:7f:00:ae:f4:be:0e:05:3f:25:a7:ac:6a:23:0e:36:d5: 8b:22:52:b8:f2:90:fe:76:5c:9c:26:f9:a4:39:80:86:56:99: 60:37:4f:d9:ce:fe:d7:5c:05:b0:5c:cf:f7:45:0d:3f:57:f0: 5e:cf:c4:df:0c:aa:5c:d8:03:b6:27:89:bc:77:10:83:b0:8d: 4f:8d:0c:fe:42:0b:86:43:64:de:79:77:e5:19:37:fa:97:e8: 5a:bc:ae:6f:d2:c4:87:3d:2e:7a:02:55:02:dc:0a:f0:39:be: a1:30:04:27:c9:05:d7:67:aa:a9:20:82:b4:d7:9e:bc:e4:73: 39:36:03:0e:73:be:8d:c2:57:b9:df:20:51:b4:0e:64:f5:4e: 94:b8:dd:4b:fb:f0:89:c3:24:49:58:0d:fe:fc:ac:17:55:19: eb:bc:2a:a3:7d:78:34:f2:d0:80:da:73:a3:74:35:fd:d8:28: 6f:40:f8:83 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICARQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyMEUxMTAvBgNVBAUTKEEyOERBMEJFOTAxRDk4M0E0MzNEODMzNTg5RDE2N0JG NDg2RjY0RkMwHhcNMjQxMTI3MDMxNzE5WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ2OGYzZi00ODZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0HUFwYL7EiAZR7Jcc7puqtyUfFGZId4rUEipno+gQVU17sgOd8xsPMbN1fcK NdRv2fjiTUVwUbIoyRnSBl2/bYlk8S33MA6pAGPCbBCVPZbFxtP9HSZ5uy3vTQrQ C8dwCGWo+Jg2WHrhDeY0hkR+AWb/n/nnhl769HEz/CHe0F2aRRpPsDMwS/J76j09 h/6TMJJqMfCWxokCl7PkxP7imDFGmTnmNoeSSlaPeDIQ9o1b/9gO/pNPihABlQv4 KQQSxvJlZkp6B6TOx1t1WMFHWPQBOhhVpmUgKngy5B25elrogMZH97p+zEiJYNac HCVDHV1zEO8q/9OORMYFTOZFrQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJfyaIO0 Kxfhx5kAsLsie4+OPaQ8MB8GA1UdIwQYMBaAFKKNoL6QHZg6Qz2DNYnRZ79Ib2T8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzIwRS81RTUxRDQ1QzA5 RDUxMUVFQTM4QTc0ODBDNEY5QUUwMi9vbzJndnBBZG1EcERQWU0xaWRGbnYwaHZa UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29vMmd2cEFkbURwRFBZTTFpZEZudjBodlpQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjcyMEUvNUU1MUQ0NUMwOUQ1MTFFRUEzOEE3NDgwQzRGOUFFMDIvREIyNzU2ODIw OURBMTFFRUJBMThBMDgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnHQgwDwQCAAIwCQMHACABDfF0wDANBgkqhkiG9w0BAQsF AAOCAQEAS9cTyt1BEB4qLqDXC/wz/01W8txcY80e8xIDK6RiSjQOrRA1a1KWkLs5 aMdlLJn6YiUfrvYZZh3yubTZKevHQi64DhEDk9q3d61/AK70vg4FPyWnrGojDjbV iyJSuPKQ/nZcnCb5pDmAhlaZYDdP2c7+11wFsFzP90UNP1fwXs/E3wyqXNgDtieJ vHcQg7CNT40M/kILhkNk3nl35Rk3+pfoWryub9LEhz0uegJVAtwK8Dm+oTAEJ8kF 12eqqSCCtNeevORzOTYDDnO+jcJXud8gUbQOZPVOlLjdS/vwicMkSVgN/vysF1UZ 67wqo314NPLQgNpzo3Q1/dgob0D4gw== -----END CERTIFICATE-----Generated at Sat Apr 5 00:53:35 2025 by rpki-client