$ rpki-client -vvf rpki.apnic.net/member_repository/A9137843/36CAD808EA0F11EB88A54E2FC4F9AE02/F2DDD4EEFB3211EB967B1759C4F9AE02.roa File: F2DDD4EEFB3211EB967B1759C4F9AE02.roa (raw, json) Hash identifier: oSqY7LR2RimEPpc7yB9nwDJKZPsrgKKxfgWlADMHfYE= Subject key identifier: 87:08:58:0E:33:42:44:FE:A7:B3:39:06:0A:D3:7D:23:2F:81:59:FF Certificate issuer: /CN=A9137843/serialNumber=5A223B9C524FAAED872721A42B3C302D971E3804 Certificate serial: 0522 Authority key identifier: 5A:22:3B:9C:52:4F:AA:ED:87:27:21:A4:2B:3C:30:2D:97:1E:38:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WiI7nFJPqu2HJyGkKzwwLZceOAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137843/36CAD808EA0F11EB88A54E2FC4F9AE02/F2DDD4EEFB3211EB967B1759C4F9AE02.roa Signing time: Fri 31 Jan 2025 23:12:42 +0000 ROA not before: Fri 31 Jan 2025 23:12:42 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 137455 IP address blocks: 103.161.24.0/24 maxlen: 32 2001:df5:b480::/56 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137843/36CAD808EA0F11EB88A54E2FC4F9AE02/WiI7nFJPqu2HJyGkKzwwLZceOAQ.crl rsync://rpki.apnic.net/member_repository/A9137843/36CAD808EA0F11EB88A54E2FC4F9AE02/WiI7nFJPqu2HJyGkKzwwLZceOAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WiI7nFJPqu2HJyGkKzwwLZceOAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:34:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1314 (0x522) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137843 Validity Not Before: Jan 31 23:12:42 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=679d58e9-612e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c7:de:e5:45:ed:d0:5c:58:c2:b1:d7:58:a1: 1e:b5:94:aa:93:0b:cd:b2:d4:32:63:39:38:fe:3b: a5:0d:42:a9:78:28:26:8e:05:db:7c:60:6e:6a:96: 48:8b:a8:4a:80:f9:16:03:4a:38:47:4b:bf:71:bd: 1d:3c:e9:1d:56:cd:69:e5:ab:1b:a0:d2:6f:af:7c: 8f:10:8d:c2:5f:4a:8a:56:08:a4:b4:c6:81:2b:de: ec:bc:8e:0a:fb:40:05:01:d3:b8:62:c8:ac:d2:d0: d6:8f:e7:6e:23:32:0c:f7:55:0a:55:59:67:e6:c2: 41:e8:40:1c:21:0b:e9:53:69:8e:4f:95:6b:6e:53: 75:9a:68:21:05:d8:47:da:93:11:27:7a:0d:2a:67: b2:d4:2e:d5:ae:32:64:c5:11:5d:84:98:a3:bc:9c: 10:09:80:58:a5:69:1b:ca:13:50:33:32:c0:f0:80: 6e:f5:fd:eb:38:c1:a8:a3:1c:55:61:57:41:4a:52: 11:bb:37:d3:8c:ac:59:7e:c9:77:c1:bf:a5:0a:b5: 7b:cf:fa:5a:4b:ec:27:a5:15:38:4a:44:6a:45:d5: 79:d5:00:28:0e:37:68:ad:a5:25:80:a4:4b:b9:74: f9:14:73:01:33:e9:b6:55:0b:19:e3:f1:09:fa:c3: e9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:08:58:0E:33:42:44:FE:A7:B3:39:06:0A:D3:7D:23:2F:81:59:FF X509v3 Authority Key Identifier: keyid:5A:22:3B:9C:52:4F:AA:ED:87:27:21:A4:2B:3C:30:2D:97:1E:38:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137843/36CAD808EA0F11EB88A54E2FC4F9AE02/WiI7nFJPqu2HJyGkKzwwLZceOAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WiI7nFJPqu2HJyGkKzwwLZceOAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137843/36CAD808EA0F11EB88A54E2FC4F9AE02/F2DDD4EEFB3211EB967B1759C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.24.0/24 IPv6: 2001:df5:b480::/56 Signature Algorithm: sha256WithRSAEncryption 1f:31:25:12:b0:d3:1b:e7:d7:3f:21:58:df:d1:80:95:81:b3: 10:7a:68:37:81:a4:66:d6:ec:7a:66:6d:88:04:8b:8b:02:de: d5:52:8a:04:be:a3:67:96:9b:82:2a:70:e1:25:e4:ba:11:26: e7:63:dd:30:f3:5c:ac:83:e7:76:34:15:0b:89:f4:8a:a7:5e: 33:6f:5b:7b:a0:a5:08:7c:dd:a3:4b:e2:15:06:50:21:28:da: fa:0f:a8:50:2c:ac:e1:5a:34:92:d9:0c:62:20:a4:05:ac:e1: c9:38:04:c5:c0:ce:1a:20:b4:7d:4b:de:24:67:f5:22:1c:f4: 14:a7:49:0d:da:d2:d0:cd:78:3e:f0:60:73:24:f1:2e:fa:eb: 7b:d4:5d:67:85:ff:09:d6:80:fd:5f:e7:3f:c4:91:60:a7:d8: a2:c2:20:11:eb:05:e8:7b:71:5d:c6:bb:32:1f:ea:16:3b:e5: d8:fe:9d:20:58:19:1f:19:fa:85:3e:95:cc:e7:77:cf:e5:21: 60:f3:76:e1:60:99:e6:d5:a2:fd:3b:f5:86:e3:c0:46:9c:e6: 4b:46:e8:cb:0e:d9:44:7a:21:84:ab:95:9a:11:17:d7:ac:8a: e3:77:d1:c2:70:bc:d4:60:f2:4d:e6:7a:9f:ea:02:d0:be:7e: ea:dd:8b:26 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc4NDMxMTAvBgNVBAUTKDVBMjIzQjlDNTI0RkFBRUQ4NzI3MjFBNDJCM0MzMDJE OTcxRTM4MDQwHhcNMjUwMTMxMjMxMjQyWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzlkNThlOS02MTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAocfe5UXt0FxYwrHXWKEetZSqkwvNstQyYzk4/julDUKpeCgmjgXbfGBuapZI i6hKgPkWA0o4R0u/cb0dPOkdVs1p5asboNJvr3yPEI3CX0qKVgiktMaBK97svI4K +0AFAdO4Ysis0tDWj+duIzIM91UKVVln5sJB6EAcIQvpU2mOT5VrblN1mmghBdhH 2pMRJ3oNKmey1C7VrjJkxRFdhJijvJwQCYBYpWkbyhNQMzLA8IBu9f3rOMGooxxV YVdBSlIRuzfTjKxZfsl3wb+lCrV7z/paS+wnpRU4SkRqRdV51QAoDjdoraUlgKRL uXT5FHMBM+m2VQsZ4/EJ+sPprQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFIcIWA4z QkT+p7M5BgrTfSMvgVn/MB8GA1UdIwQYMBaAFFoiO5xST6rthychpCs8MC2XHjgE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzg0My8zNkNBRDgwOEVB MEYxMUVCODhBNTRFMkZDNEY5QUUwMi9XaUk3bkZKUHF1MkhKeUdrS3p3d0xaY2VP QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dpSTduRkpQcXUySEp5R2tLend3TFpjZU9BUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzc4NDMvMzZDQUQ4MDhFQTBGMTFFQjg4QTU0RTJGQzRGOUFFMDIvRjJEREQ0RUVG QjMyMTFFQjk2N0IxNzU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMAwEAgABMAYDBABnoRgwEAQCAAIwCgMIACABDfW0gAAwDQYJKoZIhvcNAQEL BQADggEBAB8xJRKw0xvn1z8hWN/RgJWBsxB6aDeBpGbW7HpmbYgEi4sC3tVSigS+ o2eWm4IqcOEl5LoRJudj3TDzXKyD53Y0FQuJ9IqnXjNvW3ugpQh83aNL4hUGUCEo 2voPqFAsrOFaNJLZDGIgpAWs4ck4BMXAzhogtH1L3iRn9SIc9BSnSQ3a0tDNeD7w YHMk8S7663vUXWeF/wnWgP1f5z/EkWCn2KLCIBHrBeh7cV3GuzIf6hY75dj+nSBY GR8Z+oU+lcznd8/lIWDzduFgmebVov079YbjwEac5ktG6MsO2UR6IYSrlZoRF9es iuN30cJwvNRg8k3mep/qAtC+furdiyY= -----END CERTIFICATE-----Generated at Sun Apr 6 03:55:15 2025 by rpki-client