$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/E225E68E397411EC8120D135C4F9AE02.roa File: E225E68E397411EC8120D135C4F9AE02.roa (raw, json) Hash identifier: GWZiL4+KkXKacwwHdWBVfV3QtoEcyH45HgJbisXMlBM= Subject key identifier: 93:45:A6:C5:A9:5E:D2:79:A1:82:21:A1:C6:11:3C:26:B9:C3:41:2E Certificate issuer: /CN=A9144F45/serialNumber=6010BCC65CB9CCF02CF7ED29EC75E4D622BDF3F0 Certificate serial: 0440 Authority key identifier: 60:10:BC:C6:5C:B9:CC:F0:2C:F7:ED:29:EC:75:E4:D6:22:BD:F3:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/E225E68E397411EC8120D135C4F9AE02.roa Signing time: Sat 07 Dec 2024 00:02:56 +0000 ROA not before: Sat 07 Dec 2024 00:02:56 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 148974 IP address blocks: 103.175.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.crl rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:11:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1088 (0x440) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F45 Validity Not Before: Dec 7 00:02:56 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=675390b0-6fff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fc:b3:2d:9e:a5:28:40:a7:47:49:09:df:6b: 89:63:f5:d9:b1:b4:96:bf:9b:3f:fe:98:c6:08:56: f8:8c:55:c4:77:52:36:ba:4a:e4:0c:78:ab:b4:eb: f4:7b:cb:20:c7:fe:e0:1d:8b:ae:c8:74:ee:27:e0: c8:92:d4:90:45:21:9c:38:ba:e0:75:ea:5a:a7:e9: e0:6b:b9:2b:6c:83:18:95:2b:84:42:57:38:99:f9: 24:e8:a4:88:c9:bc:bb:db:ed:52:b1:a6:cc:2e:ec: e5:18:30:47:fa:8b:a8:38:59:d6:d7:de:72:d0:63: 30:d6:cc:5e:b6:e7:ea:a7:83:d7:a9:ad:7d:1e:7c: 8a:72:c8:88:36:48:a1:4d:af:60:43:8b:92:fd:a5: de:af:9e:af:5a:89:26:25:2d:44:cc:d5:6d:2a:1a: 78:d7:27:13:8b:b4:f6:5d:f5:74:98:7e:9e:80:21: 33:26:54:73:c0:07:1a:eb:04:94:bf:e0:01:c4:43: 52:94:76:50:99:bb:4c:d5:98:aa:54:bf:36:f4:74: 35:c2:23:e5:e2:b2:a6:f9:b7:42:f7:57:a3:19:13: 70:8d:43:bb:6d:e4:0d:b3:c7:b9:7c:af:ff:73:57: 9f:5e:9f:ac:56:23:79:ba:b2:21:52:9e:1d:06:03: 63:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:45:A6:C5:A9:5E:D2:79:A1:82:21:A1:C6:11:3C:26:B9:C3:41:2E X509v3 Authority Key Identifier: keyid:60:10:BC:C6:5C:B9:CC:F0:2C:F7:ED:29:EC:75:E4:D6:22:BD:F3:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/YBC8xly5zPAs9-0p7HXk1iK98_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBC8xly5zPAs9-0p7HXk1iK98_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F45/D76FF044397011EC9B65BA16C4F9AE02/E225E68E397411EC8120D135C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.17.0/24 Signature Algorithm: sha256WithRSAEncryption 58:ec:5a:ff:eb:b7:27:fd:57:24:a4:18:64:9c:5b:f2:e1:e3: 9d:f9:40:f4:5a:8c:09:7d:2d:b5:76:74:8f:be:d6:c8:bd:b7: d1:bd:c6:09:86:3c:b8:86:22:cf:cf:2f:ad:b5:46:58:66:87: 0e:5e:26:2f:67:c1:63:03:88:fc:34:5d:7e:78:34:d0:16:ca: b3:7c:b6:7b:da:37:84:bd:f9:7b:54:8d:a1:7a:9f:d9:da:10: 5e:89:62:cb:1d:2a:c4:61:68:36:f7:b0:94:90:46:d4:05:5c: 92:7a:cb:d5:de:8b:f1:29:92:18:55:40:b5:e7:ba:44:36:e2: 28:a9:48:4f:29:56:26:a4:10:5d:2d:6b:66:e3:b5:18:42:af: c8:28:54:79:58:6e:08:c9:41:e8:44:41:c6:ef:96:e0:f5:c7: 4f:80:70:97:a1:c7:14:3f:2a:8c:c5:cc:d5:27:44:f6:ee:27: 71:bc:a2:47:8b:14:88:b6:9d:5b:5a:da:41:b1:d9:9b:b6:92: 65:fb:b7:23:2e:d0:42:6d:de:8e:8d:69:3b:ff:e9:04:83:45: fc:17:ae:ee:e4:46:ca:1d:97:b0:9d:46:bd:a5:13:65:85:98: 26:be:b9:7b:59:f1:0f:1a:62:1f:d6:29:2a:85:8b:99:80:ab: 59:48:79:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNDUxMTAvBgNVBAUTKDYwMTBCQ0M2NUNCOUNDRjAyQ0Y3RUQyOUVDNzVFNEQ2 MjJCREYzRjAwHhcNMjQxMjA3MDAwMjU2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUzOTBiMC02ZmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfyzLZ6lKECnR0kJ32uJY/XZsbSWv5s//pjGCFb4jFXEd1I2ukrkDHirtOv0 e8sgx/7gHYuuyHTuJ+DIktSQRSGcOLrgdepap+nga7krbIMYlSuEQlc4mfkk6KSI yby72+1SsabMLuzlGDBH+ouoOFnW195y0GMw1sxetufqp4PXqa19HnyKcsiINkih Ta9gQ4uS/aXer56vWokmJS1EzNVtKhp41ycTi7T2XfV0mH6egCEzJlRzwAca6wSU v+ABxENSlHZQmbtM1ZiqVL829HQ1wiPl4rKm+bdC91ejGRNwjUO7beQNs8e5fK// c1efXp+sViN5urIhUp4dBgNjHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJNFpsWp XtJ5oYIhocYRPCa5w0EuMB8GA1UdIwQYMBaAFGAQvMZcuczwLPftKex15NYivfPw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY0NS9ENzZGRjA0NDM5 NzAxMUVDOUI2NUJBMTZDNEY5QUUwMi9ZQkM4eGx5NXpQQXM5LTBwN0hYazFpSzk4 X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCQzh4bHk1elBBczktMHA3SFhrMWlLOThfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDRGNDUvRDc2RkYwNDQzOTcwMTFFQzlCNjVCQTE2QzRGOUFFMDIvRTIyNUU2OEUz OTc0MTFFQzgxMjBEMTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrxEwDQYJKoZIhvcNAQELBQADggEBAFjsWv/rtyf9VySk GGScW/Lh4535QPRajAl9LbV2dI++1si9t9G9xgmGPLiGIs/PL621Rlhmhw5eJi9n wWMDiPw0XX54NNAWyrN8tnvaN4S9+XtUjaF6n9naEF6JYssdKsRhaDb3sJSQRtQF XJJ6y9Xei/EpkhhVQLXnukQ24iipSE8pViakEF0ta2bjtRhCr8goVHlYbgjJQehE QcbvluD1x0+AcJehxxQ/KozFzNUnRPbuJ3G8okeLFIi2nVta2kGx2Zu2kmX7tyMu 0EJt3o6NaTv/6QSDRfwXru7kRsodl7CdRr2lE2WFmCa+uXtZ8Q8aYh/WKSqFi5mA q1lIeXM= -----END CERTIFICATE-----Generated at Sat Apr 5 06:08:59 2025 by rpki-client