$ rpki-client -vvf rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/743770A0C06011EE882BC34AC4F9AE02.roa File: 743770A0C06011EE882BC34AC4F9AE02.roa (raw, json) Hash identifier: k3UD6r21BHgLGyrPcMdI5dYPjWw/zRkTV4wjHfogWXY= Subject key identifier: 86:50:96:EC:A6:77:91:96:F1:2C:A6:80:CD:41:B6:66:1B:56:E8:98 Certificate issuer: /CN=A91301D5/serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Certificate serial: 14C6 Authority key identifier: 44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/743770A0C06011EE882BC34AC4F9AE02.roa Signing time: Wed 08 Jan 2025 17:05:15 +0000 ROA not before: Wed 08 Jan 2025 17:05:15 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 9541 IP address blocks: 103.209.125.0/24 maxlen: 24 103.209.126.0/24 maxlen: 24 103.209.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:58:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5318 (0x14c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91301D5 Validity Not Before: Jan 8 17:05:15 2025 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=677eb04a-84e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:18:ec:e3:1d:9c:bf:ea:44:93:8b:db:2c:15: 24:0b:ec:cc:f4:1f:f8:16:e6:ca:5d:ce:fc:57:e5: 0c:5d:a0:51:98:13:99:d5:b4:b7:97:cc:87:ae:b6: bc:82:89:3e:90:c9:cb:11:3b:c3:4b:41:d1:f7:e8: d3:92:fd:47:0d:e5:e7:ef:57:a7:88:35:2b:2e:46: ac:14:ec:f4:84:98:43:90:a5:3a:d2:b8:63:db:d2: 6b:86:78:5b:88:97:65:70:ed:44:e1:f2:d4:b4:28: 08:0c:e8:51:49:9d:5d:e9:a5:78:ec:5f:74:c2:24: 8b:88:3b:29:22:a1:01:e5:20:62:1b:9f:94:93:64: ef:61:8e:2a:56:89:18:1c:42:7c:6a:84:1f:1b:76: b7:7e:34:df:ed:be:a0:35:e9:30:dd:fa:1a:85:89: 1e:be:bb:95:f5:44:6a:ac:07:df:cb:d5:8d:a1:a8: 39:9d:75:9d:fe:9d:c0:6a:34:9a:3a:8b:b5:f1:58: b6:32:72:17:0c:63:f7:48:3e:4e:aa:6b:fc:52:da: 88:ea:77:f5:4d:1c:85:20:45:34:43:28:14:2f:24: 02:12:d6:2e:f6:d4:ac:ad:1d:de:46:a2:1d:fb:4e: 80:9b:2d:75:ef:81:2b:b3:f7:75:7a:bf:86:78:62: f4:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:50:96:EC:A6:77:91:96:F1:2C:A6:80:CD:41:B6:66:1B:56:E8:98 X509v3 Authority Key Identifier: keyid:44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/743770A0C06011EE882BC34AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.125.0-103.209.127.255 Signature Algorithm: sha256WithRSAEncryption 7b:0c:95:2d:16:41:20:4c:92:cc:39:d4:6b:d8:c3:0f:75:eb: 6d:fc:d3:73:e9:e0:76:b4:5c:8c:76:3b:0e:0a:5f:56:f7:77: 10:15:bb:9b:16:66:b3:ae:4f:95:88:53:99:d3:2b:a3:9a:6e: bf:c8:3b:19:15:11:b7:f8:56:6a:b9:7f:c3:b1:90:6a:7e:09: 1a:de:d9:55:39:be:86:4b:cc:f6:fd:33:e9:35:62:bb:01:f8: b3:48:80:5e:5a:33:65:5f:8e:a4:6a:7a:db:80:9c:c9:6b:49: 83:ef:8b:ad:11:03:91:64:b8:42:b9:4a:ea:f5:ee:e5:80:dd: 49:4f:74:62:5e:bd:ae:c3:be:58:20:57:4c:96:1e:3d:33:ad: 19:72:24:73:ad:ea:2c:a2:c0:ee:1e:37:0c:91:ce:06:ef:98: 6a:88:60:53:08:fc:08:64:7f:9a:2d:02:39:2b:91:f3:bd:7e: 22:87:89:40:f7:68:1c:f3:1c:1e:1e:89:78:3d:1e:8a:f2:a3: cb:73:90:ab:09:04:c2:70:a0:87:8e:9c:fb:71:e7:0d:12:fa: 85:39:5d:96:77:a6:45:55:e2:1d:27:6a:7d:d3:05:69:13:40: 9b:90:2f:47:14:47:c6:51:18:4f:f2:48:1a:48:38:eb:2a:2a: 76:5e:28:9b -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICFMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxRDUxMTAvBgNVBAUTKDQ0OEJEOTcxQTMwNkFCMDM2Mzk5RTcxNkRDMjIxQ0Ez MzhGNThCNTkwHhcNMjUwMTA4MTcwNTE1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NzdlYjA0YS04NGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBjs4x2cv+pEk4vbLBUkC+zM9B/4FubKXc78V+UMXaBRmBOZ1bS3l8yHrra8 gok+kMnLETvDS0HR9+jTkv1HDeXn71eniDUrLkasFOz0hJhDkKU60rhj29Jrhnhb iJdlcO1E4fLUtCgIDOhRSZ1d6aV47F90wiSLiDspIqEB5SBiG5+Uk2TvYY4qVokY HEJ8aoQfG3a3fjTf7b6gNekw3foahYkevruV9URqrAffy9WNoag5nXWd/p3AajSa Oou18Vi2MnIXDGP3SD5Oqmv8UtqI6nf1TRyFIEU0QygULyQCEtYu9tSsrR3eRqId +06Amy1174Ers/d1er+GeGL0fwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFIZQluym d5GW8SymgM1BtmYbVuiYMB8GA1UdIwQYMBaAFESL2XGjBqsDY5nnFtwiHKM49YtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDFENS9ENEJFMDBENDYz RTUxMUU4QjVDRkU0MUFDNEY5QUUwMi9SSXZaY2FNR3F3TmptZWNXM0NJY296ajFp MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JJdlpjYU1HcXdOam1lY1czQ0ljb3pqMWkxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzAxRDUvRDRCRTAwRDQ2M0U1MTFFOEI1Q0ZFNDFBQzRGOUFFMDIvNzQzNzcwQTBD MDYwMTFFRTg4MkJDMzRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAGfRfQMEB2fRADANBgkqhkiG9w0BAQsFAAOCAQEAewyV LRZBIEySzDnUa9jDD3XrbfzTc+ngdrRcjHY7DgpfVvd3EBW7mxZms65PlYhTmdMr o5puv8g7GRURt/hWarl/w7GQan4JGt7ZVTm+hkvM9v0z6TViuwH4s0iAXlozZV+O pGp624CcyWtJg++LrREDkWS4QrlK6vXu5YDdSU90Yl69rsO+WCBXTJYePTOtGXIk c63qLKLA7h43DJHOBu+YaohgUwj8CGR/mi0COSuR871+IoeJQPdoHPMcHh6JeD0e ivKjy3OQqwkEwnCgh46c+3HnDRL6hTldlnemRVXiHSdqfdMFaRNAm5AvRxRHxlEY T/JIGkg46yoqdl4omw== -----END CERTIFICATE-----Generated at Sun Apr 6 15:17:25 2025 by rpki-client