$ rpki-client -vvf rpki.apnic.net/member_repository/A9135EE5/87ED5A2E403E11EBAF4A465EC4F9AE02/2E24C52846AF11EBA761792FC4F9AE02.roa File: 2E24C52846AF11EBA761792FC4F9AE02.roa (raw, json) Hash identifier: WNnHAgzMT1EUo2/GBZG+QT0plULRlIltcJbRhxnGJ9c= Subject key identifier: 5C:73:08:47:19:81:E4:BD:92:66:26:36:EA:A0:ED:11:4E:16:51:D9 Certificate issuer: /CN=A9135EE5/serialNumber=ED6CEA6A6D2B042145FE12D32843EDFE67E8A27A Certificate serial: 06DE Authority key identifier: ED:6C:EA:6A:6D:2B:04:21:45:FE:12:D3:28:43:ED:FE:67:E8:A2:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Wzqam0rBCFF_hLTKEPt_mfoono.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135EE5/87ED5A2E403E11EBAF4A465EC4F9AE02/2E24C52846AF11EBA761792FC4F9AE02.roa Signing time: Tue 28 Jan 2025 21:51:00 +0000 ROA not before: Tue 28 Jan 2025 21:51:00 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 141460 IP address blocks: 103.159.254.0/24 maxlen: 24 103.159.255.0/24 maxlen: 24 2001:df5:8e80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135EE5/87ED5A2E403E11EBAF4A465EC4F9AE02/7Wzqam0rBCFF_hLTKEPt_mfoono.crl rsync://rpki.apnic.net/member_repository/A9135EE5/87ED5A2E403E11EBAF4A465EC4F9AE02/7Wzqam0rBCFF_hLTKEPt_mfoono.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Wzqam0rBCFF_hLTKEPt_mfoono.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:07:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1758 (0x6de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135EE5 Validity Not Before: Jan 28 21:51:00 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67995143-e7a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:66:74:14:e7:53:13:28:0c:e4:31:bf:4e:ff: 06:51:d5:2a:02:d2:e8:d6:1a:96:53:80:59:b8:4e: 08:61:3e:45:40:18:1a:5b:0f:eb:3d:85:68:96:65: cb:9d:97:c0:4d:ce:34:d6:83:41:7b:1a:68:5d:c7: 99:03:56:e0:c7:b7:16:fa:b2:aa:fc:08:4b:72:1b: 7e:be:a9:2b:b2:9a:81:1f:76:88:0f:b3:d3:0e:ac: 31:45:4d:a6:cd:82:40:46:37:8a:24:52:71:2a:d1: bc:e9:53:01:3f:23:8f:1f:f4:b1:d6:6a:8b:61:39: 51:2c:10:4a:62:1e:1e:cf:9f:8b:19:8e:69:e8:8d: f6:15:fa:18:2b:35:1c:01:de:d5:c3:a1:f0:cd:1e: 01:0b:1c:c7:fe:a1:7b:fe:56:d3:95:b8:db:65:47: c8:ed:c1:bf:ed:b7:a8:37:7d:71:91:2f:b5:d9:74: b9:2b:27:2c:35:16:a0:4f:7f:ec:36:17:72:c7:3f: 5f:58:7e:e4:d1:c3:f3:e2:79:21:bd:a4:c4:f2:44: d1:09:65:6d:fa:b1:f8:0d:c1:63:8f:82:64:30:4d: 1a:6e:08:1f:65:8b:43:f2:99:e4:e5:23:fd:65:dd: 20:b1:88:18:e8:36:5b:f6:a2:00:5c:42:1a:5f:cd: c7:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:73:08:47:19:81:E4:BD:92:66:26:36:EA:A0:ED:11:4E:16:51:D9 X509v3 Authority Key Identifier: keyid:ED:6C:EA:6A:6D:2B:04:21:45:FE:12:D3:28:43:ED:FE:67:E8:A2:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135EE5/87ED5A2E403E11EBAF4A465EC4F9AE02/7Wzqam0rBCFF_hLTKEPt_mfoono.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7Wzqam0rBCFF_hLTKEPt_mfoono.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135EE5/87ED5A2E403E11EBAF4A465EC4F9AE02/2E24C52846AF11EBA761792FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.254.0/23 IPv6: 2001:df5:8e80::/48 Signature Algorithm: sha256WithRSAEncryption 7f:22:3a:e5:5b:9c:8f:e8:ed:ba:4b:22:9f:39:06:c1:43:16: 83:34:32:2e:2e:d8:f8:cc:ac:a1:f8:3d:0c:b8:9b:02:69:5e: 07:98:37:86:19:70:7b:c9:60:66:d3:55:31:9b:65:28:05:a7: 78:57:57:36:9a:64:8d:8c:83:b5:23:00:75:60:70:29:5a:8a: c8:e5:28:8c:ac:81:62:fc:76:87:7d:4a:7d:8f:a0:56:61:1a: a8:27:66:d6:a0:8a:80:c6:de:a3:18:43:02:71:98:b6:40:45: c6:29:5e:d5:26:dc:61:80:43:ff:00:f1:4a:42:63:fa:9d:b3: f0:40:a5:4a:2a:9c:c0:74:cd:ef:97:0a:bb:1f:1a:58:12:80: ee:bd:2a:74:cb:94:45:c8:ef:e2:54:58:0e:f4:07:3c:96:38: d8:a1:13:3a:40:d1:b3:55:18:ae:e4:76:b3:36:27:45:ee:92: 92:53:ae:76:82:f3:8c:f1:4f:c0:81:08:19:f6:3a:85:d8:1d: 5f:e5:78:f6:cf:44:f2:c0:64:1e:33:ff:29:4e:da:88:21:f6: 12:df:c4:bd:4d:be:d0:f0:cd:b5:52:fc:65:db:21:8b:df:e9: f4:7c:b8:90:ae:f9:7a:8f:cf:aa:d1:fe:88:b8:6a:9f:53:7e: a8:b5:b7:f0 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzVFRTUxMTAvBgNVBAUTKEVENkNFQTZBNkQyQjA0MjE0NUZFMTJEMzI4NDNFREZF NjdFOEEyN0EwHhcNMjUwMTI4MjE1MTAwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk5NTE0My1lN2E1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2Z0FOdTEygM5DG/Tv8GUdUqAtLo1hqWU4BZuE4IYT5FQBgaWw/rPYVolmXL nZfATc401oNBexpoXceZA1bgx7cW+rKq/AhLcht+vqkrspqBH3aID7PTDqwxRU2m zYJARjeKJFJxKtG86VMBPyOPH/Sx1mqLYTlRLBBKYh4ez5+LGY5p6I32FfoYKzUc Ad7Vw6HwzR4BCxzH/qF7/lbTlbjbZUfI7cG/7beoN31xkS+12XS5KycsNRagT3/s Nhdyxz9fWH7k0cPz4nkhvaTE8kTRCWVt+rH4DcFjj4JkME0abggfZYtD8pnk5SP9 Zd0gsYgY6DZb9qIAXEIaX83HBwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFxzCEcZ geS9kmYmNuqg7RFOFlHZMB8GA1UdIwQYMBaAFO1s6mptKwQhRf4S0yhD7f5n6KJ6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNUVFNS84N0VENUEyRTQw M0UxMUVCQUY0QTQ2NUVDNEY5QUUwMi83V3pxYW0wckJDRkZfaExUS0VQdF9tZm9v bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdXenFhbTByQkNGRl9oTFRLRVB0X21mb29uby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzVFRTUvODdFRDVBMkU0MDNFMTFFQkFGNEE0NjVFQzRGOUFFMDIvMkUyNEM1Mjg0 NkFGMTFFQkE3NjE3OTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnn/4wDwQCAAIwCQMHACABDfWOgDANBgkqhkiG9w0BAQsF AAOCAQEAfyI65Vucj+jtuksinzkGwUMWgzQyLi7Y+Mysofg9DLibAmleB5g3hhlw e8lgZtNVMZtlKAWneFdXNppkjYyDtSMAdWBwKVqKyOUojKyBYvx2h31KfY+gVmEa qCdm1qCKgMbeoxhDAnGYtkBFxile1SbcYYBD/wDxSkJj+p2z8EClSiqcwHTN75cK ux8aWBKA7r0qdMuURcjv4lRYDvQHPJY42KETOkDRs1UYruR2szYnRe6SklOudoLz jPFPwIEIGfY6hdgdX+V49s9E8sBkHjP/KU7aiCH2Et/EvU2+0PDNtVL8Zdshi9/p 9Hy4kK75eo/PqtH+iLhqn1N+qLW38A== -----END CERTIFICATE-----Generated at Sun Apr 6 06:32:52 2025 by rpki-client