$ rpki-client -vvf rpki.apnic.net/member_repository/A9135597/E9707D1E9A3A11ED81B1271DC4F9AE02/14BB63805EC111EEBE63A109C4F9AE02.roa File: 14BB63805EC111EEBE63A109C4F9AE02.roa (raw, json) Hash identifier: vfgDitt8z6YsOCohkFT3kCqMVHgclidLgQvrwy0bqVg= Subject key identifier: F5:CF:AC:B5:CA:C2:4A:6B:7F:65:8A:40:8C:72:99:2C:E0:75:51:94 Certificate issuer: /CN=A9135597/serialNumber=3FEC73EFDA8A9E5C93D0A60AB2159CE070830B71 Certificate serial: 01A9 Authority key identifier: 3F:EC:73:EF:DA:8A:9E:5C:93:D0:A6:0A:B2:15:9C:E0:70:83:0B:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-xz79qKnlyT0KYKshWc4HCDC3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135597/E9707D1E9A3A11ED81B1271DC4F9AE02/14BB63805EC111EEBE63A109C4F9AE02.roa Signing time: Thu 03 Apr 2025 02:59:00 +0000 ROA not before: Thu 03 Apr 2025 02:59:00 +0000 ROA not after: Fri 01 Aug 2025 00:00:00 +0000 asID: 150728 IP address blocks: 103.72.198.0/24 maxlen: 24 103.72.199.0/24 maxlen: 24 2001:df3:c740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135597/E9707D1E9A3A11ED81B1271DC4F9AE02/P-xz79qKnlyT0KYKshWc4HCDC3E.crl rsync://rpki.apnic.net/member_repository/A9135597/E9707D1E9A3A11ED81B1271DC4F9AE02/P-xz79qKnlyT0KYKshWc4HCDC3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-xz79qKnlyT0KYKshWc4HCDC3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 02:59:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 425 (0x1a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135597 Validity Not Before: Apr 3 02:59:00 2025 GMT Not After : Aug 1 00:00:00 2025 GMT Subject: CN=67edf974-abc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:a6:e1:c9:12:56:dd:f8:df:32:ef:15:8a:19: 91:48:fb:85:f1:f7:40:47:d1:31:31:04:9b:c9:bd: de:6b:b2:78:15:44:3f:fe:6e:8c:4f:2c:9b:c8:84: d9:76:06:58:e4:56:52:4a:b1:34:82:f9:8a:ab:db: 05:61:5c:30:98:38:d2:22:33:14:9d:27:e5:0c:c5: 3f:90:06:32:27:3a:e1:3a:d4:55:d2:f3:c9:35:e7: b8:23:27:64:a1:9d:82:40:23:fc:a0:9a:46:64:03: ee:e4:de:a9:26:52:b5:64:9a:68:14:34:b8:2b:75: c4:89:23:78:bb:91:be:05:f7:87:14:63:3c:5d:9f: 29:4c:4c:85:83:ba:6c:88:08:25:32:7c:08:87:f8: 15:43:19:94:05:48:2f:a2:84:c5:bb:9b:b3:bd:6b: dd:ca:a7:ff:7b:c0:1d:51:04:48:97:ad:d6:59:b1: 15:c4:b7:d6:fb:d0:2a:3a:e2:8e:1c:06:52:e0:b9: ce:d1:88:b5:2d:7f:5c:ba:76:56:54:c4:d6:94:00: 3e:17:64:1d:13:ba:cf:78:45:d6:90:31:da:3d:da: b7:ad:9b:12:eb:f0:1b:dc:18:6c:73:a1:9e:a4:0e: 6e:68:4a:19:12:4d:6b:df:c0:54:5c:eb:87:cf:4b: b6:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:CF:AC:B5:CA:C2:4A:6B:7F:65:8A:40:8C:72:99:2C:E0:75:51:94 X509v3 Authority Key Identifier: keyid:3F:EC:73:EF:DA:8A:9E:5C:93:D0:A6:0A:B2:15:9C:E0:70:83:0B:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135597/E9707D1E9A3A11ED81B1271DC4F9AE02/P-xz79qKnlyT0KYKshWc4HCDC3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-xz79qKnlyT0KYKshWc4HCDC3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135597/E9707D1E9A3A11ED81B1271DC4F9AE02/14BB63805EC111EEBE63A109C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.198.0/23 IPv6: 2001:df3:c740::/48 Signature Algorithm: sha256WithRSAEncryption 7e:dd:7d:9b:0b:f1:27:3d:bc:bd:dc:3b:1e:9d:03:45:a4:59: db:1e:29:33:8e:e6:e5:17:be:c1:af:f6:51:03:e0:62:35:63: 09:93:09:4b:be:f6:d0:db:c5:fa:2e:36:6f:ae:9d:2c:91:89: 9f:95:ef:fa:75:19:de:6a:d5:51:78:1f:45:e3:56:eb:91:e6: b2:5e:7c:c1:c4:fb:64:17:38:2e:72:9b:54:16:b9:c7:08:b0: 50:b8:0c:17:89:97:81:d7:50:94:14:88:e4:ff:a1:9f:cb:42: cd:97:88:f5:6b:7e:c0:2f:5a:ce:83:1d:a2:d1:24:9e:20:ad: e4:5f:96:cc:e7:b3:f9:95:f7:48:68:63:74:37:ab:8d:d3:c1: 8d:96:af:ec:13:8a:3a:c4:7d:f9:f7:f3:dd:2b:0a:6f:75:b2: b0:8a:0d:51:46:af:f2:b5:c7:55:3d:a4:07:d6:e4:96:6a:fb: 6e:6d:42:a1:62:6f:57:b9:28:0d:f9:2c:c4:28:00:05:45:f8: 34:07:66:58:f1:00:b2:73:e4:b1:d4:12:b1:05:cb:0c:ad:de: 61:b7:a8:ff:23:b7:a7:4e:40:a4:a0:6d:13:c6:0b:b0:40:ed: 27:49:35:02:2f:22:a2:6a:b8:3e:97:bc:c4:0e:60:4a:d3:d4: 04:39:e6:95 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU1OTcxMTAvBgNVBAUTKDNGRUM3M0VGREE4QTlFNUM5M0QwQTYwQUIyMTU5Q0Uw NzA4MzBCNzEwHhcNMjUwNDAzMDI1OTAwWhcNMjUwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkZjk3NC1hYmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnabhyRJW3fjfMu8VihmRSPuF8fdAR9ExMQSbyb3ea7J4FUQ//m6MTyybyITZ dgZY5FZSSrE0gvmKq9sFYVwwmDjSIjMUnSflDMU/kAYyJzrhOtRV0vPJNee4Iydk oZ2CQCP8oJpGZAPu5N6pJlK1ZJpoFDS4K3XEiSN4u5G+BfeHFGM8XZ8pTEyFg7ps iAglMnwIh/gVQxmUBUgvooTFu5uzvWvdyqf/e8AdUQRIl63WWbEVxLfW+9AqOuKO HAZS4LnO0Yi1LX9cunZWVMTWlAA+F2QdE7rPeEXWkDHaPdq3rZsS6/Ab3Bhsc6Ge pA5uaEoZEk1r38BUXOuHz0u2VwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPXPrLXK wkprf2WKQIxymSzgdVGUMB8GA1UdIwQYMBaAFD/sc+/aip5ck9CmCrIVnOBwgwtx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTU5Ny9FOTcwN0QxRTlB M0ExMUVEODFCMTI3MURDNEY5QUUwMi9QLXh6NzlxS25seVQwS1lLc2hXYzRIQ0RD M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AteHo3OXFLbmx5VDBLWUtzaFdjNEhDREMzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzU1OTcvRTk3MDdEMUU5QTNBMTFFRDgxQjEyNzFEQzRGOUFFMDIvMTRCQjYzODA1 RUMxMTFFRUJFNjNBMTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnSMYwDwQCAAIwCQMHACABDfPHQDANBgkqhkiG9w0BAQsF AAOCAQEAft19mwvxJz28vdw7Hp0DRaRZ2x4pM47m5Re+wa/2UQPgYjVjCZMJS772 0NvF+i42b66dLJGJn5Xv+nUZ3mrVUXgfReNW65Hmsl58wcT7ZBc4LnKbVBa5xwiw ULgMF4mXgddQlBSI5P+hn8tCzZeI9Wt+wC9azoMdotEkniCt5F+WzOez+ZX3SGhj dDerjdPBjZav7BOKOsR9+ffz3SsKb3WysIoNUUav8rXHVT2kB9bklmr7bm1CoWJv V7koDfksxCgABUX4NAdmWPEAsnPksdQSsQXLDK3eYbeo/yO3p05ApKBtE8YLsEDt J0k1Ai8iomq4Ppe8xA5gStPUBDnmlQ== -----END CERTIFICATE-----Generated at Sat Apr 5 02:18:15 2025 by rpki-client