$ rpki-client -vvf rpki.apnic.net/member_repository/A912FEAB/FDD899EC2F8411ED98B91B0AC4F9AE02/9082B9C42F8711ED90F1090CC4F9AE02.roa File: 9082B9C42F8711ED90F1090CC4F9AE02.roa (raw, json) Hash identifier: ONxSWlWsPlzS3F23WNJvpVx69ftE7+2igW4xzmclKbg= Subject key identifier: 72:48:1D:05:A3:24:98:9A:7C:DF:79:4B:C2:83:11:FC:22:0D:87:48 Certificate issuer: /CN=A912FEAB/serialNumber=1566434D7C6CC6591C90DC274ABF73DE00EB0501 Certificate serial: 01CB Authority key identifier: 15:66:43:4D:7C:6C:C6:59:1C:90:DC:27:4A:BF:73:DE:00:EB:05:01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FWZDTXxsxlkckNwnSr9z3gDrBQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FEAB/FDD899EC2F8411ED98B91B0AC4F9AE02/9082B9C42F8711ED90F1090CC4F9AE02.roa Signing time: Sun 01 Dec 2024 02:04:43 +0000 ROA not before: Sun 01 Dec 2024 02:04:43 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 63526 IP address blocks: 103.231.238.0/23 maxlen: 23 103.231.238.0/24 maxlen: 24 103.231.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FEAB/FDD899EC2F8411ED98B91B0AC4F9AE02/FWZDTXxsxlkckNwnSr9z3gDrBQE.crl rsync://rpki.apnic.net/member_repository/A912FEAB/FDD899EC2F8411ED98B91B0AC4F9AE02/FWZDTXxsxlkckNwnSr9z3gDrBQE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FWZDTXxsxlkckNwnSr9z3gDrBQE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 459 (0x1cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FEAB Validity Not Before: Dec 1 02:04:43 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=674bc43b-75d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:83:be:31:d3:61:39:9b:9d:88:09:9f:62:55: 7a:46:05:d1:3d:62:42:81:79:80:6c:de:59:ae:95: b3:1d:5f:2a:27:93:35:d1:37:ff:64:7e:63:79:41: 1c:c0:0d:90:ad:e8:59:ec:dc:61:dc:19:86:7a:fe: 34:73:13:82:b1:81:94:21:c9:a5:f5:7e:b1:67:0d: 94:68:64:d0:11:a7:6e:ea:46:ca:9e:c2:50:1d:75: 28:5c:94:f8:f2:9d:e7:b0:ad:07:86:31:ac:9d:8d: 03:8f:9b:3b:b0:be:06:49:c4:a5:9c:95:36:40:07: 68:56:ad:63:f9:f6:2d:bf:a8:af:b7:e0:ef:8a:39: 85:45:34:d1:da:70:b9:28:d8:ab:40:03:f5:c3:15: f9:a6:2e:6b:0a:b2:59:55:5b:10:00:ff:fa:f6:00: 0c:b8:e6:0b:c4:14:92:0b:ef:e3:e3:4b:fa:e2:c1: 71:9f:5f:f1:71:b3:f6:95:54:fa:ea:1f:46:ad:16: 0e:c2:ff:86:93:40:32:ab:ee:48:8f:ae:31:82:8a: cf:95:49:74:85:65:cd:08:55:6a:36:ae:5e:14:f4: 1c:2f:f1:d7:41:58:b2:f0:2c:56:1c:23:f0:db:e2: 5a:b9:b5:bd:75:ec:6f:c6:61:48:5f:9a:b7:5d:f4: c5:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:48:1D:05:A3:24:98:9A:7C:DF:79:4B:C2:83:11:FC:22:0D:87:48 X509v3 Authority Key Identifier: keyid:15:66:43:4D:7C:6C:C6:59:1C:90:DC:27:4A:BF:73:DE:00:EB:05:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FEAB/FDD899EC2F8411ED98B91B0AC4F9AE02/FWZDTXxsxlkckNwnSr9z3gDrBQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FWZDTXxsxlkckNwnSr9z3gDrBQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FEAB/FDD899EC2F8411ED98B91B0AC4F9AE02/9082B9C42F8711ED90F1090CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.238.0/23 Signature Algorithm: sha256WithRSAEncryption 21:f7:6c:e6:59:b6:01:d4:3a:8c:6a:40:5f:e5:29:d7:37:e8: 7f:59:18:68:68:a9:7b:f1:fc:98:c6:36:bb:50:70:e8:8e:85: 5b:26:36:2e:88:ff:1d:7a:c9:53:ac:15:c0:1c:de:f5:f3:75: 3a:e3:39:e9:73:d4:ca:52:97:96:51:f5:f0:eb:4d:ab:84:62: 82:61:65:27:ee:86:3f:ec:b0:c5:a7:5f:a7:85:42:18:f9:86: 42:df:4f:f7:9e:a6:62:08:03:f6:5b:8b:a0:cd:46:06:68:9b: 86:38:05:2a:fd:9d:a3:4c:10:41:17:52:0c:9a:b2:96:1a:45: 58:72:27:0e:3e:49:37:ab:09:25:9f:be:66:a4:47:8a:fd:b9: f1:18:5a:5b:fd:02:9e:2e:07:fa:95:6b:c9:69:ef:3b:a1:c0: cd:7c:e5:1b:b5:c1:1d:88:af:95:ca:85:5f:a0:f3:3b:9c:69: 6b:66:e9:71:63:66:00:77:b9:bc:87:40:40:46:3a:21:e4:a8: 06:30:c3:bd:92:c4:98:2e:fc:5b:5b:e4:9b:58:b6:87:50:df: 2a:03:23:f2:40:e1:93:bc:b7:47:a6:6c:2f:0f:c9:b7:30:51: c1:59:51:ac:a7:8c:79:1c:96:1e:73:23:5b:ee:dd:40:fa:9b: 40:ba:41:1c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZFQUIxMTAvBgNVBAUTKDE1NjY0MzREN0M2Q0M2NTkxQzkwREMyNzRBQkY3M0RF MDBFQjA1MDEwHhcNMjQxMjAxMDIwNDQzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRiYzQzYi03NWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2oO+MdNhOZudiAmfYlV6RgXRPWJCgXmAbN5ZrpWzHV8qJ5M10Tf/ZH5jeUEc wA2QrehZ7Nxh3BmGev40cxOCsYGUIcml9X6xZw2UaGTQEadu6kbKnsJQHXUoXJT4 8p3nsK0HhjGsnY0Dj5s7sL4GScSlnJU2QAdoVq1j+fYtv6ivt+DvijmFRTTR2nC5 KNirQAP1wxX5pi5rCrJZVVsQAP/69gAMuOYLxBSSC+/j40v64sFxn1/xcbP2lVT6 6h9GrRYOwv+Gk0Ayq+5Ij64xgorPlUl0hWXNCFVqNq5eFPQcL/HXQViy8CxWHCPw 2+JaubW9dexvxmFIX5q3XfTFGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHJIHQWj JJiafN95S8KDEfwiDYdIMB8GA1UdIwQYMBaAFBVmQ018bMZZHJDcJ0q/c94A6wUB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkVBQi9GREQ4OTlFQzJG ODQxMUVEOThCOTFCMEFDNEY5QUUwMi9GV1pEVFh4c3hsa2NrTnduU3I5ejNnRHJC UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZXWkRUWHhzeGxrY2tOd25Tcjl6M2dEckJRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZFQUIvRkREODk5RUMyRjg0MTFFRDk4QjkxQjBBQzRGOUFFMDIvOTA4MkI5QzQy Rjg3MTFFRDkwRjEwOTBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn5+4wDQYJKoZIhvcNAQELBQADggEBACH3bOZZtgHUOoxq QF/lKdc36H9ZGGhoqXvx/JjGNrtQcOiOhVsmNi6I/x16yVOsFcAc3vXzdTrjOelz 1MpSl5ZR9fDrTauEYoJhZSfuhj/ssMWnX6eFQhj5hkLfT/eepmIIA/Zbi6DNRgZo m4Y4BSr9naNMEEEXUgyaspYaRVhyJw4+STerCSWfvmakR4r9ufEYWlv9Ap4uB/qV a8lp7zuhwM185Ru1wR2Ir5XKhV+g8zucaWtm6XFjZgB3ubyHQEBGOiHkqAYww72S xJgu/Ftb5JtYtodQ3yoDI/JA4ZO8t0embC8PybcwUcFZUaynjHkclh5zI1vu3UD6 m0C6QRw= -----END CERTIFICATE-----Generated at Sat Apr 5 03:54:10 2025 by rpki-client