$ rpki-client -vvf rpki.apnic.net/member_repository/A9140C62/6482C370D42B11ED847A1938C4F9AE02/51B6AD3E03B211F0BDAF273BC4F9AE02.roa File: 51B6AD3E03B211F0BDAF273BC4F9AE02.roa (raw, json) Hash identifier: WmaI+JpQZGr+NV6hRWYVZkaBwEeLTPaT1/dSkWkVAdQ= Subject key identifier: 11:37:D2:94:51:21:5A:BC:1B:A5:AD:55:76:D8:AA:47:3F:FD:65:34 Certificate issuer: /CN=A9140C62/serialNumber=48B1E8E3F2BC5429F8C679955D64D2249445E365 Certificate serial: 0184 Authority key identifier: 48:B1:E8:E3:F2:BC:54:29:F8:C6:79:95:5D:64:D2:24:94:45:E3:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SLHo4_K8VCn4xnmVXWTSJJRF42U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140C62/6482C370D42B11ED847A1938C4F9AE02/51B6AD3E03B211F0BDAF273BC4F9AE02.roa Signing time: Tue 18 Mar 2025 04:34:46 +0000 ROA not before: Tue 18 Mar 2025 04:34:46 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 153656 IP address blocks: 103.209.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140C62/6482C370D42B11ED847A1938C4F9AE02/SLHo4_K8VCn4xnmVXWTSJJRF42U.crl rsync://rpki.apnic.net/member_repository/A9140C62/6482C370D42B11ED847A1938C4F9AE02/SLHo4_K8VCn4xnmVXWTSJJRF42U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SLHo4_K8VCn4xnmVXWTSJJRF42U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:12:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 388 (0x184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140C62 Validity Not Before: Mar 18 04:34:46 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67d8f7e6-2dbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:57:ea:f5:b4:c4:c2:16:84:4a:3c:2f:10:d8: 98:19:7e:0e:71:6c:0c:93:3f:27:6d:d8:af:d4:09: c3:de:0f:fa:ee:db:97:c8:39:aa:93:f5:d1:97:31: b8:5a:32:6b:b2:f5:ea:04:44:77:35:d9:cc:02:8d: a8:ae:9e:27:4f:b5:71:5a:6d:a2:cd:d8:f3:78:e5: ab:6e:68:60:5b:3c:6d:b6:8a:3a:b0:9d:e9:ed:cf: bd:19:f4:0b:a7:67:63:dd:fa:6a:4e:cb:88:31:79: 7e:98:17:79:87:2f:0e:b6:3e:d9:44:18:89:26:33: 4b:5a:b9:07:67:eb:ad:2a:51:b6:80:c9:56:16:d3: 37:5d:ce:bb:7a:2b:90:5e:9a:38:72:96:5b:8b:9b: 64:c3:43:fe:45:0f:ea:83:32:7e:e2:3a:d3:57:8e: 41:ec:62:e8:e3:45:19:db:83:d3:75:93:d1:90:e7: 47:a8:66:70:d7:90:08:66:53:08:11:51:51:38:23: 0c:d7:b1:86:d6:e0:1f:45:f3:0e:24:c7:f1:17:e0: 04:79:bd:47:3f:17:62:e5:b9:ff:eb:60:4d:23:0b: 97:29:2d:a4:7e:3f:6b:e5:01:a0:38:6a:9f:2f:12: ad:28:dc:82:a9:74:de:1c:f3:16:31:db:3f:a5:a2: 4b:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:37:D2:94:51:21:5A:BC:1B:A5:AD:55:76:D8:AA:47:3F:FD:65:34 X509v3 Authority Key Identifier: keyid:48:B1:E8:E3:F2:BC:54:29:F8:C6:79:95:5D:64:D2:24:94:45:E3:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140C62/6482C370D42B11ED847A1938C4F9AE02/SLHo4_K8VCn4xnmVXWTSJJRF42U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SLHo4_K8VCn4xnmVXWTSJJRF42U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140C62/6482C370D42B11ED847A1938C4F9AE02/51B6AD3E03B211F0BDAF273BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.129.0/24 Signature Algorithm: sha256WithRSAEncryption 75:47:ce:66:dd:65:1b:da:f1:c8:9e:b0:ab:4f:9d:c3:92:a5: 16:2b:b5:f5:b1:70:cb:29:92:15:a9:a4:0f:8f:27:33:e9:f1: 42:d4:06:5b:c5:5f:9a:6f:fa:d7:29:42:21:b9:8d:bd:49:da: fa:d4:ba:fb:f2:54:37:cc:90:ab:8b:b7:f4:25:25:8a:bb:37: ff:9c:3e:ec:10:e6:0c:35:af:5e:5d:b6:14:3c:7c:39:d2:ff: e0:6d:36:cc:41:a2:eb:e0:30:b6:55:c6:fa:ea:a4:bf:42:64: c1:79:33:e5:dd:b2:a2:f5:5f:53:c8:8b:bc:44:d4:8a:cc:9d: 21:6f:93:4d:3b:da:98:f3:a0:d3:d0:40:f9:37:9d:76:e2:20: 2d:bd:78:a2:17:cb:3b:f3:bf:7c:0b:58:21:3e:ef:ca:52:18: 69:ce:eb:2b:01:a1:ec:cd:e8:b5:9b:d7:32:76:da:45:4e:64: 39:ea:6d:da:ee:b0:bc:57:88:d7:8a:fb:7c:74:09:1a:e2:dd: bd:2a:87:a4:c0:d1:cb:1f:fa:b2:e1:78:b0:6a:25:f3:ab:fa: 0a:f7:51:ee:96:59:7a:9d:a9:42:55:c5:9f:48:36:7c:dc:f5: 81:7b:77:4a:d0:1b:94:bc:ae:42:06:ee:75:44:85:d8:1f:55: 96:ee:93:dd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBDNjIxMTAvBgNVBAUTKDQ4QjFFOEUzRjJCQzU0MjlGOEM2Nzk5NTVENjREMjI0 OTQ0NUUzNjUwHhcNMjUwMzE4MDQzNDQ2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q4ZjdlNi0yZGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA21fq9bTEwhaESjwvENiYGX4OcWwMkz8nbdiv1AnD3g/67tuXyDmqk/XRlzG4 WjJrsvXqBER3NdnMAo2orp4nT7VxWm2izdjzeOWrbmhgWzxttoo6sJ3p7c+9GfQL p2dj3fpqTsuIMXl+mBd5hy8Otj7ZRBiJJjNLWrkHZ+utKlG2gMlWFtM3Xc67eiuQ Xpo4cpZbi5tkw0P+RQ/qgzJ+4jrTV45B7GLo40UZ24PTdZPRkOdHqGZw15AIZlMI EVFROCMM17GG1uAfRfMOJMfxF+AEeb1HPxdi5bn/62BNIwuXKS2kfj9r5QGgOGqf LxKtKNyCqXTeHPMWMds/paJLWwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBE30pRR IVq8G6WtVXbYqkc//WU0MB8GA1UdIwQYMBaAFEix6OPyvFQp+MZ5lV1k0iSUReNl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEM2Mi82NDgyQzM3MEQ0 MkIxMUVEODQ3QTE5MzhDNEY5QUUwMi9TTEhvNF9LOFZDbjR4bm1WWFdUU0pKUkY0 MlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NMSG80X0s4VkNuNHhubVZYV1RTSkpSRjQyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBDNjIvNjQ4MkMzNzBENDJCMTFFRDg0N0ExOTM4QzRGOUFFMDIvNTFCNkFEM0Uw M0IyMTFGMEJEQUYyNzNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn0YEwDQYJKoZIhvcNAQELBQADggEBAHVHzmbdZRva8cie sKtPncOSpRYrtfWxcMspkhWppA+PJzPp8ULUBlvFX5pv+tcpQiG5jb1J2vrUuvvy VDfMkKuLt/QlJYq7N/+cPuwQ5gw1r15dthQ8fDnS/+BtNsxBouvgMLZVxvrqpL9C ZMF5M+XdsqL1X1PIi7xE1IrMnSFvk0072pjzoNPQQPk3nXbiIC29eKIXyzvzv3wL WCE+78pSGGnO6ysBoezN6LWb1zJ22kVOZDnqbdrusLxXiNeK+3x0CRri3b0qh6TA 0csf+rLheLBqJfOr+gr3Ue6WWXqdqUJVxZ9INnzc9YF7d0rQG5S8rkIG7nVEhdgf VZbuk90= -----END CERTIFICATE-----Generated at Sun Apr 6 10:09:09 2025 by rpki-client