$ rpki-client -vvf rpki.apnic.net/member_repository/A9142091/ABC4D444AB5911ED9B79B11EC4F9AE02/A8C0A13EAB5D11ED88A54424C4F9AE02.roa File: A8C0A13EAB5D11ED88A54424C4F9AE02.roa (raw, json) Hash identifier: n8o3xnaflWVbOqkp6JntoRCYSrJ8NdzSSuqGUsQkMzA= Subject key identifier: CB:9F:DD:A1:B1:0D:EE:1A:4A:FC:6D:93:67:1E:38:0F:86:2D:7C:75 Certificate issuer: /CN=A9142091/serialNumber=E08813BD188CDC2ABF5018DE6FE37F443747208E Certificate serial: 017D Authority key identifier: E0:88:13:BD:18:8C:DC:2A:BF:50:18:DE:6F:E3:7F:44:37:47:20:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4IgTvRiM3Cq_UBjeb-N_RDdHII4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142091/ABC4D444AB5911ED9B79B11EC4F9AE02/A8C0A13EAB5D11ED88A54424C4F9AE02.roa Signing time: Sat 15 Feb 2025 04:45:36 +0000 ROA not before: Sat 15 Feb 2025 04:45:36 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 132148 IP address blocks: 103.84.100.0/23 maxlen: 23 103.84.100.0/24 maxlen: 24 103.84.101.0/24 maxlen: 24 2001:df1:f0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142091/ABC4D444AB5911ED9B79B11EC4F9AE02/4IgTvRiM3Cq_UBjeb-N_RDdHII4.crl rsync://rpki.apnic.net/member_repository/A9142091/ABC4D444AB5911ED9B79B11EC4F9AE02/4IgTvRiM3Cq_UBjeb-N_RDdHII4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4IgTvRiM3Cq_UBjeb-N_RDdHII4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 02:25:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142091 Validity Not Before: Feb 15 04:45:36 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67b01bf0-7a93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4b:38:19:40:2f:76:de:c0:16:a4:c6:eb:a9: 76:3a:b0:c4:59:93:75:a5:17:ff:f0:74:7d:f7:74: de:0c:63:95:a8:58:2d:fb:50:b9:15:58:69:b7:8c: c1:46:ae:f2:0a:95:7a:fc:c4:9d:94:62:d5:9f:e9: ec:66:56:59:c7:a3:4e:f7:59:2c:bf:89:45:06:85: b3:14:bf:b3:86:7c:1b:23:24:00:db:8b:e9:67:4d: d2:6d:56:96:7b:5c:b2:5d:9b:3a:2a:dc:26:b4:3a: 68:97:5a:60:78:2e:c3:16:40:c3:63:5e:78:30:20: 42:36:93:3d:8e:b0:fd:b4:fd:56:7e:2d:1b:13:2e: 3e:31:0c:0f:57:08:f4:89:dc:2a:62:34:a7:39:4f: ea:10:1e:e8:c1:51:78:58:68:e3:e6:5f:4c:8d:d1: 55:dc:95:dd:fb:4a:1e:af:62:c7:54:78:20:f7:a8: 25:fa:38:d3:29:0d:9c:be:49:cf:8f:59:cc:f4:cf: cf:2b:05:c9:ac:89:a7:85:d9:cc:54:95:8a:e1:1c: c5:e9:d6:1a:5d:7c:a1:6a:8e:b8:bc:26:44:fb:56: 81:6b:61:54:78:e7:a7:2e:1a:35:a7:dd:e7:44:be: db:ca:cc:13:f1:cf:f1:da:05:9e:4c:80:39:52:6f: d6:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:9F:DD:A1:B1:0D:EE:1A:4A:FC:6D:93:67:1E:38:0F:86:2D:7C:75 X509v3 Authority Key Identifier: keyid:E0:88:13:BD:18:8C:DC:2A:BF:50:18:DE:6F:E3:7F:44:37:47:20:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142091/ABC4D444AB5911ED9B79B11EC4F9AE02/4IgTvRiM3Cq_UBjeb-N_RDdHII4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4IgTvRiM3Cq_UBjeb-N_RDdHII4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142091/ABC4D444AB5911ED9B79B11EC4F9AE02/A8C0A13EAB5D11ED88A54424C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.100.0/23 IPv6: 2001:df1:f0c0::/48 Signature Algorithm: sha256WithRSAEncryption 31:2a:34:2c:55:00:29:a6:a0:90:6a:08:27:31:77:93:c2:8f: a0:13:1f:34:b3:5d:e3:d1:b0:7c:1a:c0:1e:7c:e5:0c:c7:6a: 3a:e1:1f:b2:55:7a:7a:39:e1:84:50:31:6d:3e:8b:84:84:cb: 0f:53:89:2c:9f:6f:16:2a:bf:58:22:a7:f8:ea:0a:9e:b4:c8: 57:9c:df:57:de:70:c7:8a:0c:d0:43:0e:41:9c:32:e5:7f:7e: 4f:dc:af:6d:f7:4d:34:7a:c4:06:85:fe:90:56:5f:09:28:f7: d8:01:f4:f2:48:dd:a5:80:3d:ed:ba:f7:dc:db:8b:10:d5:86: d9:bd:83:f9:0b:f1:69:6d:b7:09:b2:ab:5d:8d:61:1a:79:5a: 19:45:9e:b8:00:80:ca:a2:1e:3a:9a:89:3e:06:b3:ad:f9:2a: b7:fd:53:1d:b0:df:5d:b7:12:ca:93:ce:6b:8c:a2:d8:57:68: 10:88:bf:12:92:18:5c:72:1c:0c:77:95:95:a2:9c:b4:c0:97: 08:d4:14:c3:1d:7f:79:b7:39:f9:1c:68:3d:48:e4:55:7a:25: 18:4d:56:4e:64:71:29:1f:63:08:51:12:99:47:40:45:04:5e: 34:02:fc:6d:b7:3c:82:d0:9f:a8:ea:a4:c9:a3:8d:af:14:9e: aa:e9:9f:02 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIwOTExMTAvBgNVBAUTKEUwODgxM0JEMTg4Q0RDMkFCRjUwMThERTZGRTM3RjQ0 Mzc0NzIwOEUwHhcNMjUwMjE1MDQ0NTM2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2IwMWJmMC03YTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUs4GUAvdt7AFqTG66l2OrDEWZN1pRf/8HR993TeDGOVqFgt+1C5FVhpt4zB Rq7yCpV6/MSdlGLVn+nsZlZZx6NO91ksv4lFBoWzFL+zhnwbIyQA24vpZ03SbVaW e1yyXZs6KtwmtDpol1pgeC7DFkDDY154MCBCNpM9jrD9tP1Wfi0bEy4+MQwPVwj0 idwqYjSnOU/qEB7owVF4WGjj5l9MjdFV3JXd+0oer2LHVHgg96gl+jjTKQ2cvknP j1nM9M/PKwXJrImnhdnMVJWK4RzF6dYaXXyhao64vCZE+1aBa2FUeOenLho1p93n RL7byswT8c/x2gWeTIA5Um/WBwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMuf3aGx De4aSvxtk2ceOA+GLXx1MB8GA1UdIwQYMBaAFOCIE70YjNwqv1AY3m/jf0Q3RyCO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjA5MS9BQkM0RDQ0NEFC NTkxMUVEOUI3OUIxMUVDNEY5QUUwMi80SWdUdlJpTTNDcV9VQmplYi1OX1JEZEhJ STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRJZ1R2UmlNM0NxX1VCamViLU5fUkRkSElJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIwOTEvQUJDNEQ0NDRBQjU5MTFFRDlCNzlCMTFFQzRGOUFFMDIvQThDMEExM0VB QjVEMTFFRDg4QTU0NDI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnVGQwDwQCAAIwCQMHACABDfHwwDANBgkqhkiG9w0BAQsF AAOCAQEAMSo0LFUAKaagkGoIJzF3k8KPoBMfNLNd49GwfBrAHnzlDMdqOuEfslV6 ejnhhFAxbT6LhITLD1OJLJ9vFiq/WCKn+OoKnrTIV5zfV95wx4oM0EMOQZwy5X9+ T9yvbfdNNHrEBoX+kFZfCSj32AH08kjdpYA97br33NuLENWG2b2D+QvxaW23CbKr XY1hGnlaGUWeuACAyqIeOpqJPgazrfkqt/1THbDfXbcSypPOa4yi2FdoEIi/EpIY XHIcDHeVlaKctMCXCNQUwx1/ebc5+RxoPUjkVXolGE1WTmRxKR9jCFESmUdARQRe NAL8bbc8gtCfqOqkyaONrxSequmfAg== -----END CERTIFICATE-----Generated at Wed Apr 9 02:11:03 2025 by rpki-client