$ rpki-client -vvf rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/B2233F6C7FAB11ED834D8D52C4F9AE02.roa File: B2233F6C7FAB11ED834D8D52C4F9AE02.roa (raw, json) Hash identifier: MPBXfbZCyqMb6fDvtDouYAKXgZIENFo3o8Zo6D/vFQc= Subject key identifier: A7:A0:E7:84:02:5F:B5:71:CC:57:50:8F:40:35:AF:15:49:55:95:69 Certificate issuer: /CN=A9130BF5/serialNumber=2AEAEBA0F018DBEFD1874D226A14FB0B94A9587E Certificate serial: 0192 Authority key identifier: 2A:EA:EB:A0:F0:18:DB:EF:D1:87:4D:22:6A:14:FB:0B:94:A9:58:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KurroPAY2-_Rh00iahT7C5SpWH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/B2233F6C7FAB11ED834D8D52C4F9AE02.roa Signing time: Tue 21 Jan 2025 02:05:57 +0000 ROA not before: Tue 21 Jan 2025 02:05:57 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 150685 IP address blocks: 103.55.240.0/24 maxlen: 24 103.55.241.0/24 maxlen: 24 2001:df1:b3c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/KurroPAY2-_Rh00iahT7C5SpWH4.crl rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/KurroPAY2-_Rh00iahT7C5SpWH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KurroPAY2-_Rh00iahT7C5SpWH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 02:09:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 402 (0x192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130BF5, serialNumber=2AEAEBA0F018DBEFD1874D226A14FB0B94A9587E Validity Not Before: Jan 21 02:05:57 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=678f0105-f050 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:4d:4c:f6:5e:63:75:bf:4a:da:87:c1:3d:98: 16:54:61:55:3b:06:bf:60:b3:3d:a9:0b:3a:0c:78: 50:ac:55:ae:25:01:73:dc:72:e0:10:2f:df:05:e6: 16:ec:71:83:63:69:78:1d:e9:05:c3:a7:87:ee:ce: 49:41:da:91:8a:53:48:2c:7f:d2:0e:9c:d7:4f:c7: 76:c0:a9:8b:2a:c5:76:f0:42:af:12:a6:c3:1b:e9: b6:65:70:33:40:ea:64:76:65:e7:d2:7a:c9:fc:38: 18:ef:ca:d9:14:44:4c:b4:67:9f:80:88:31:78:72: 0e:70:99:e0:7d:ec:82:39:a3:b8:fb:2b:ff:44:a1: 94:16:73:8f:b4:67:60:43:8c:a0:04:dd:b6:41:ae: 18:d3:64:6b:b3:06:9c:a1:e5:27:c7:1a:21:89:d9: a2:54:3d:c6:22:6d:48:96:72:55:02:6b:6a:ce:7a: 61:fe:c2:7c:c6:b9:33:c3:22:71:4e:e7:12:da:7d: 2c:dd:13:8b:fa:4d:f6:27:de:6d:ed:8a:15:24:87: 5e:aa:2b:bf:10:b2:08:fb:ff:5b:65:87:f5:cb:11: fb:8c:c2:05:34:b1:87:4e:6c:3b:9b:0b:ae:f4:62: 5a:7f:1f:87:10:12:45:79:a9:25:e5:0a:d8:3f:df: ea:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:A0:E7:84:02:5F:B5:71:CC:57:50:8F:40:35:AF:15:49:55:95:69 X509v3 Authority Key Identifier: keyid:2A:EA:EB:A0:F0:18:DB:EF:D1:87:4D:22:6A:14:FB:0B:94:A9:58:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/KurroPAY2-_Rh00iahT7C5SpWH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KurroPAY2-_Rh00iahT7C5SpWH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/B2233F6C7FAB11ED834D8D52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.55.240.0/23 IPv6: 2001:df1:b3c0::/48 Signature Algorithm: sha256WithRSAEncryption 85:39:5b:fb:de:40:39:75:dc:25:c4:75:f8:22:8e:2d:2a:58: eb:78:11:de:49:64:22:f1:ec:51:4c:93:8c:b8:f5:bd:f3:1a: d5:e7:3f:67:6a:75:a3:7d:3f:8a:75:37:51:ad:a2:1e:0e:e1: 68:97:0f:c1:9d:2d:8b:75:af:66:81:0d:33:21:71:7f:c2:63: 78:38:55:75:07:c1:de:08:90:d0:95:ed:5c:22:98:5a:fe:12: 73:ed:a1:f7:55:68:4e:64:79:b7:49:14:24:ca:4e:8d:8f:be: 45:e5:6f:86:5e:b5:cd:5e:c4:63:5d:24:c9:97:1f:b8:e5:f6: b1:bf:7f:f0:c5:97:0c:d4:6d:79:07:9a:33:42:36:98:6d:05: ad:b3:ce:0f:70:5c:f0:10:c7:95:ce:c9:61:3c:5d:bd:2a:45: 6b:cd:f6:38:9c:c0:32:59:a1:74:89:ae:1a:c3:9b:61:d1:ae: 55:90:3f:a5:2e:84:7c:f7:b8:cf:03:12:49:9a:e7:a6:c4:62: e6:60:63:b4:e7:f4:16:a0:c6:10:e2:03:6c:80:f6:eb:7e:25: 69:7c:75:ee:fa:88:ae:42:2a:e5:fd:27:a6:0b:bb:0a:47:e8: a3:ce:d3:b6:37:8e:70:16:f5:76:a3:d1:1b:30:0c:2d:73:e6: 13:93:e6:74 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBCRjUxMTAvBgNVBAUTKDJBRUFFQkEwRjAxOERCRUZEMTg3NEQyMjZBMTRGQjBC OTRBOTU4N0UwHhcNMjUwMTIxMDIwNTU3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzhmMDEwNS1mMDUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoE1M9l5jdb9K2ofBPZgWVGFVOwa/YLM9qQs6DHhQrFWuJQFz3HLgEC/fBeYW 7HGDY2l4HekFw6eH7s5JQdqRilNILH/SDpzXT8d2wKmLKsV28EKvEqbDG+m2ZXAz QOpkdmXn0nrJ/DgY78rZFERMtGefgIgxeHIOcJngfeyCOaO4+yv/RKGUFnOPtGdg Q4ygBN22Qa4Y02RrswacoeUnxxohidmiVD3GIm1IlnJVAmtqznph/sJ8xrkzwyJx TucS2n0s3ROL+k32J95t7YoVJIdeqiu/ELII+/9bZYf1yxH7jMIFNLGHTmw7mwuu 9GJafx+HEBJFeakl5QrYP9/q4wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKeg54QC X7VxzFdQj0A1rxVJVZVpMB8GA1UdIwQYMBaAFCrq66DwGNvv0YdNImoU+wuUqVh+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEJGNS82RkM2NDEzNDdG QTkxMUVEOUEzQTQyNTJDNEY5QUUwMi9LdXJyb1BBWTItX1JoMDBpYWhUN0M1U3BX SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t1cnJvUEFZMi1fUmgwMGlhaFQ3QzVTcFdINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzBCRjUvNkZDNjQxMzQ3RkE5MTFFRDlBM0E0MjUyQzRGOUFFMDIvQjIyMzNGNkM3 RkFCMTFFRDgzNEQ4RDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnN/AwDwQCAAIwCQMHACABDfGzwDANBgkqhkiG9w0BAQsF AAOCAQEAhTlb+95AOXXcJcR1+CKOLSpY63gR3klkIvHsUUyTjLj1vfMa1ec/Z2p1 o30/inU3Ua2iHg7haJcPwZ0ti3WvZoENMyFxf8JjeDhVdQfB3giQ0JXtXCKYWv4S c+2h91VoTmR5t0kUJMpOjY++ReVvhl61zV7EY10kyZcfuOX2sb9/8MWXDNRteQea M0I2mG0FrbPOD3Bc8BDHlc7JYTxdvSpFa832OJzAMlmhdImuGsObYdGuVZA/pS6E fPe4zwMSSZrnpsRi5mBjtOf0FqDGEOIDbID2634laXx17vqIrkIq5f0npgu7Ckfo o87TtjeOcBb1dqPRGzAMLXPmE5PmdA== -----END CERTIFICATE-----Generated at Sun Apr 13 05:57:49 2025 by rpki-client