$ rpki-client -vvf rpki.apnic.net/member_repository/A912FBCF/4AB576BEAA5A11E7AE436F32C4F9AE02/BB9C86EA0B0F11E89DF24170C4F9AE02.roa File: BB9C86EA0B0F11E89DF24170C4F9AE02.roa (raw, json) Hash identifier: tLIsLDvbVjMe1ALZXZoP7laPhfEa7wWbXxVFhcp282s= Subject key identifier: 2A:5E:22:DC:6A:A1:51:F1:EB:D6:BA:78:F0:EA:48:17:89:83:61:DA Certificate issuer: /CN=A912FBCF/serialNumber=18700CB3D6507A3304BAEB270DEED1301CE3D902 Certificate serial: 17FD Authority key identifier: 18:70:0C:B3:D6:50:7A:33:04:BA:EB:27:0D:EE:D1:30:1C:E3:D9:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHAMs9ZQejMEuusnDe7RMBzj2QI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FBCF/4AB576BEAA5A11E7AE436F32C4F9AE02/BB9C86EA0B0F11E89DF24170C4F9AE02.roa Signing time: Wed 04 Dec 2024 16:53:58 +0000 ROA not before: Wed 04 Dec 2024 16:53:58 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 38719 IP address blocks: 103.101.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FBCF/4AB576BEAA5A11E7AE436F32C4F9AE02/GHAMs9ZQejMEuusnDe7RMBzj2QI.crl rsync://rpki.apnic.net/member_repository/A912FBCF/4AB576BEAA5A11E7AE436F32C4F9AE02/GHAMs9ZQejMEuusnDe7RMBzj2QI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHAMs9ZQejMEuusnDe7RMBzj2QI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:36:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6141 (0x17fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FBCF Validity Not Before: Dec 4 16:53:58 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67508925-ab9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:33:26:04:fa:e4:b3:33:b0:96:63:53:d4:c6: 5c:58:c6:01:dd:e6:e0:4b:54:83:f5:6d:20:5c:a3: c6:05:3b:f8:79:31:db:cc:0a:44:ce:df:ca:c5:d5: d3:08:22:c7:d9:a5:4b:0a:fd:cb:07:d2:a1:8a:3f: 13:99:43:ed:b1:cd:6b:37:d8:57:b5:71:7b:8e:63: fd:42:b4:5f:0d:59:d0:a4:47:5a:12:74:b1:58:68: 4e:9b:19:a8:18:09:1e:2e:b5:51:41:6d:a7:13:e7: 6c:5e:58:79:49:a2:73:13:85:f7:3d:26:8c:33:83: 41:64:4a:dd:19:fd:07:06:71:67:7d:db:54:08:26: b3:eb:21:3e:13:c2:1f:7f:a3:9e:6a:e3:fd:52:a6: 2d:26:a6:dd:ba:ad:9a:fd:87:ac:87:60:5a:22:23: 70:72:d0:8e:d5:58:98:38:f9:40:91:c0:9d:3d:01: 90:f7:f3:8c:9a:eb:89:82:9f:e3:4c:a5:b9:2d:6c: 53:a4:fc:3e:8c:85:f6:b9:b6:87:84:94:cd:c2:30: 3e:de:8c:d7:0a:a4:ed:c3:dc:a5:71:e9:78:08:39: ff:e7:49:d9:40:c9:da:da:ca:5d:87:e1:96:40:56: f9:10:ee:fa:49:74:ea:98:68:29:67:a2:92:e9:bd: c3:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:5E:22:DC:6A:A1:51:F1:EB:D6:BA:78:F0:EA:48:17:89:83:61:DA X509v3 Authority Key Identifier: keyid:18:70:0C:B3:D6:50:7A:33:04:BA:EB:27:0D:EE:D1:30:1C:E3:D9:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FBCF/4AB576BEAA5A11E7AE436F32C4F9AE02/GHAMs9ZQejMEuusnDe7RMBzj2QI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GHAMs9ZQejMEuusnDe7RMBzj2QI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FBCF/4AB576BEAA5A11E7AE436F32C4F9AE02/BB9C86EA0B0F11E89DF24170C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.248.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:c9:2b:7b:26:7a:ea:07:e9:c4:56:10:d8:ac:a9:39:06:13: 29:a9:b8:78:c2:61:49:6e:36:85:ff:f2:cb:30:63:a4:55:a6: 71:8c:c9:72:90:b5:f6:1a:dd:62:31:b5:5d:ed:27:0d:be:52: ea:f3:f4:b5:bd:e3:84:0b:44:4e:52:49:53:47:7b:04:74:be: af:fb:36:f1:88:a6:8d:5f:95:dd:37:25:83:81:d5:1a:14:b4: f9:11:3d:74:54:91:f2:3b:e2:3b:6b:7e:22:11:b2:3c:2f:4b: f9:4c:71:bd:a5:35:bf:07:78:43:46:ee:61:31:f4:d1:40:d1: 85:1b:8c:20:23:9b:24:4b:7b:7c:9f:dc:3e:93:86:2f:29:e9: 2e:9e:e0:e6:f6:fa:0d:7d:58:cf:a4:fa:99:fe:2b:88:3c:ce: 18:c4:f7:6d:9b:55:e9:0e:c1:ff:0b:2d:fd:96:68:70:e0:60: b6:25:1d:43:39:67:51:61:e9:5f:38:34:56:36:10:7f:98:71: df:4d:08:98:45:52:b8:05:1a:af:ee:9b:e7:74:e4:79:41:7e: 66:ea:78:1e:50:c3:b0:10:50:3d:c9:f2:73:0d:7f:85:bc:24: 9d:98:53:c7:16:8c:c0:72:4e:17:62:0e:a6:a6:44:d3:4d:3a: 1f:83:71:d0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICF/0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZCQ0YxMTAvBgNVBAUTKDE4NzAwQ0IzRDY1MDdBMzMwNEJBRUIyNzBERUVEMTMw MUNFM0Q5MDIwHhcNMjQxMjA0MTY1MzU4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUwODkyNS1hYjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjMmBPrkszOwlmNT1MZcWMYB3ebgS1SD9W0gXKPGBTv4eTHbzApEzt/KxdXT CCLH2aVLCv3LB9Khij8TmUPtsc1rN9hXtXF7jmP9QrRfDVnQpEdaEnSxWGhOmxmo GAkeLrVRQW2nE+dsXlh5SaJzE4X3PSaMM4NBZErdGf0HBnFnfdtUCCaz6yE+E8If f6OeauP9UqYtJqbduq2a/Yesh2BaIiNwctCO1ViYOPlAkcCdPQGQ9/OMmuuJgp/j TKW5LWxTpPw+jIX2ubaHhJTNwjA+3ozXCqTtw9ylcel4CDn/50nZQMna2spdh+GW QFb5EO76SXTqmGgpZ6KS6b3DJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCpeItxq oVHx69a6ePDqSBeJg2HaMB8GA1UdIwQYMBaAFBhwDLPWUHozBLrrJw3u0TAc49kC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkJDRi80QUI1NzZCRUFB NUExMUU3QUU0MzZGMzJDNEY5QUUwMi9HSEFNczlaUWVqTUV1dXNuRGU3Uk1Cemoy UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dIQU1zOVpRZWpNRXV1c25EZTdSTUJ6ajJRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZCQ0YvNEFCNTc2QkVBQTVBMTFFN0FFNDM2RjMyQzRGOUFFMDIvQkI5Qzg2RUEw QjBGMTFFODlERjI0MTcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnZfgwDQYJKoZIhvcNAQELBQADggEBADrJK3smeuoH6cRW ENisqTkGEympuHjCYUluNoX/8sswY6RVpnGMyXKQtfYa3WIxtV3tJw2+Uurz9LW9 44QLRE5SSVNHewR0vq/7NvGIpo1fld03JYOB1RoUtPkRPXRUkfI74jtrfiIRsjwv S/lMcb2lNb8HeENG7mEx9NFA0YUbjCAjmyRLe3yf3D6Thi8p6S6e4Ob2+g19WM+k +pn+K4g8zhjE922bVekOwf8LLf2WaHDgYLYlHUM5Z1Fh6V84NFY2EH+Ycd9NCJhF UrgFGq/um+d05HlBfmbqeB5Qw7AQUD3J8nMNf4W8JJ2YU8cWjMByThdiDqamRNNN Oh+DcdA= -----END CERTIFICATE-----Generated at Sun Apr 6 01:40:13 2025 by rpki-client