$ rpki-client -vvf rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/5E704778D3BB11EF80C3AF80C4F9AE02.roa File: 5E704778D3BB11EF80C3AF80C4F9AE02.roa (raw, json) Hash identifier: 6R+DK419OzXAOf6Yc2d9Jp6bFe9vmgNgpzMg+OP71f4= Subject key identifier: 2C:16:12:08:70:EE:9B:6D:95:01:57:87:65:F3:36:F0:15:89:29:2E Certificate issuer: /CN=A9127EEB/serialNumber=DEF3317CBD14D7DBAA27BFFE3FE5A7B8A6EDCFB9 Certificate serial: 16 Authority key identifier: DE:F3:31:7C:BD:14:D7:DB:AA:27:BF:FE:3F:E5:A7:B8:A6:ED:CF:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3vMxfL0U19uqJ7_-P-WnuKbtz7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/5E704778D3BB11EF80C3AF80C4F9AE02.roa Signing time: Tue 11 Feb 2025 07:20:22 +0000 ROA not before: Tue 11 Feb 2025 07:20:22 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 5065 IP address blocks: 103.49.42.0/24 maxlen: 24 103.49.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/3vMxfL0U19uqJ7_-P-WnuKbtz7k.crl rsync://rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/3vMxfL0U19uqJ7_-P-WnuKbtz7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3vMxfL0U19uqJ7_-P-WnuKbtz7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127EEB Validity Not Before: Feb 11 07:20:22 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67aafa36-7594 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:24:1e:7b:d3:8d:28:80:32:1a:c6:da:7a:61: 2b:2b:06:5c:3a:03:a3:f2:1d:32:00:a8:4c:17:6b: 51:fc:bb:3b:43:c8:13:92:5e:fc:c2:fa:cb:0c:75: dd:66:99:62:fb:a0:73:35:d9:62:6e:23:1c:18:93: f8:e3:86:73:80:ea:06:52:70:1c:4e:ef:c8:37:d3: 79:cb:ca:dd:f2:de:6f:3c:34:b6:05:88:63:0e:65: 22:e6:91:1d:4d:b5:f3:10:ba:88:be:e2:23:59:0f: 67:61:d4:6b:c0:33:c0:d4:6a:6c:e8:37:6d:bb:f9: 9d:c0:78:d9:19:ef:a2:98:76:af:3b:1d:5c:84:3a: 73:40:af:62:75:14:59:81:62:eb:58:92:ce:11:60: 74:6d:d8:f1:9f:9e:93:ee:d3:e8:be:26:81:bb:e9: d8:ff:8d:bb:48:c7:d1:88:e1:f1:5b:4a:f5:a0:65: c5:fe:16:c5:ba:d5:fc:05:2e:b8:8e:77:4b:85:ac: e5:d9:67:7e:e3:5f:91:54:5b:9e:ba:a3:8a:07:84: 18:c1:1c:6a:3f:cb:19:8a:f6:4d:f1:7d:92:de:ab: 12:89:28:cc:7f:43:c8:c0:4d:7f:30:ef:3b:07:a8: 27:e4:61:ed:5d:0d:7d:5c:d9:3b:91:b9:47:ae:b8: a2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:16:12:08:70:EE:9B:6D:95:01:57:87:65:F3:36:F0:15:89:29:2E X509v3 Authority Key Identifier: keyid:DE:F3:31:7C:BD:14:D7:DB:AA:27:BF:FE:3F:E5:A7:B8:A6:ED:CF:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/3vMxfL0U19uqJ7_-P-WnuKbtz7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3vMxfL0U19uqJ7_-P-WnuKbtz7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127EEB/F57C94B0D3BA11EF947B0580C4F9AE02/5E704778D3BB11EF80C3AF80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.49.42.0/23 Signature Algorithm: sha256WithRSAEncryption ca:f7:cb:69:91:b6:5e:1d:24:b9:c9:3c:6a:3f:af:00:45:06: 47:d7:39:4e:fa:5f:17:61:04:a9:78:af:f2:e3:8b:d5:d8:ab: d5:61:9b:29:e5:80:5c:f6:ee:cd:84:45:4a:8c:dd:12:4d:f6: a7:50:c3:1b:36:87:83:42:b7:d7:35:39:5d:6f:86:e1:99:da: fc:7d:17:10:1c:76:17:53:fd:61:93:f1:ec:47:1c:14:89:33: 1f:df:68:c1:e4:9c:5f:31:15:0d:31:39:df:b7:99:3a:41:d4: c8:9b:e2:b2:1f:b6:d6:7a:73:b3:bc:d7:87:95:6a:72:79:04: f4:35:52:49:0a:08:6a:c8:dc:3c:80:f7:71:f5:ad:72:24:af: 77:3e:02:e9:a9:4e:12:b8:c8:22:2b:46:df:8e:91:00:86:c2: da:1a:b8:88:7d:b9:28:be:73:7c:cf:bc:c2:fd:59:ec:96:05: 90:c0:dc:2d:d0:31:31:56:82:b3:66:bb:51:d2:c4:1e:7c:81: ef:90:4a:8b:1a:f3:9d:df:21:ac:3a:72:13:3a:69:e1:59:d7: d7:89:a7:99:f6:5d:cf:61:5a:d5:9a:d6:f2:c4:01:f6:50:01: 71:10:52:6a:da:fa:9e:d1:60:83:a6:7f:18:21:71:1c:db:e8: 4d:00:95:a0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy N0VFQjExMC8GA1UEBRMoREVGMzMxN0NCRDE0RDdEQkFBMjdCRkZFM0ZFNUE3QjhB NkVEQ0ZCOTAeFw0yNTAyMTEwNzIwMjJaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YWFmYTM2LTc1OTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpJB57040ogDIaxtp6YSsrBlw6A6PyHTIAqEwXa1H8uztDyBOSXvzC+ssMdd1m mWL7oHM12WJuIxwYk/jjhnOA6gZScBxO78g303nLyt3y3m88NLYFiGMOZSLmkR1N tfMQuoi+4iNZD2dh1GvAM8DUamzoN227+Z3AeNkZ76KYdq87HVyEOnNAr2J1FFmB YutYks4RYHRt2PGfnpPu0+i+JoG76dj/jbtIx9GI4fFbSvWgZcX+FsW61fwFLriO d0uFrOXZZ37jX5FUW566o4oHhBjBHGo/yxmK9k3xfZLeqxKJKMx/Q8jATX8w7zsH qCfkYe1dDX1c2TuRuUeuuKIjAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQULBYSCHDu m22VAVeHZfM28BWJKS4wHwYDVR0jBBgwFoAU3vMxfL0U19uqJ7/+P+WnuKbtz7kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3RUVCL0Y1N0M5NEIwRDNC QTExRUY5NDdCMDU4MEM0RjlBRTAyLzN2TXhmTDBVMTl1cUo3Xy1QLVdudUtidHo3 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3ZNeGZMMFUxOXVxSjdfLVAtV251S2J0ejdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy N0VFQi9GNTdDOTRCMEQzQkExMUVGOTQ3QjA1ODBDNEY5QUUwMi81RTcwNDc3OEQz QkIxMUVGODBDM0FGODBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWcxKjANBgkqhkiG9w0BAQsFAAOCAQEAyvfLaZG2Xh0kuck8 aj+vAEUGR9c5TvpfF2EEqXiv8uOL1dir1WGbKeWAXPbuzYRFSozdEk32p1DDGzaH g0K31zU5XW+G4Zna/H0XEBx2F1P9YZPx7EccFIkzH99oweScXzEVDTE537eZOkHU yJvish+21npzs7zXh5VqcnkE9DVSSQoIasjcPID3cfWtciSvdz4C6alOErjIIitG 346RAIbC2hq4iH25KL5zfM+8wv1Z7JYFkMDcLdAxMVaCs2a7UdLEHnyB75BKixrz nd8hrDpyEzpp4VnX14mnmfZdz2Fa1ZrW8sQB9lABcRBSatr6ntFgg6Z/GCFxHNvo TQCVoA== -----END CERTIFICATE-----Generated at Sat Apr 5 03:52:16 2025 by rpki-client