$ rpki-client -vvf rpki.apnic.net/member_repository/A9145884/61B0705ACDEB11EF8B5B301FC4F9AE02/FB1BCFB4CDEB11EF8115D720C4F9AE02.roa File: FB1BCFB4CDEB11EF8115D720C4F9AE02.roa (raw, json) Hash identifier: RT6SuMf0BP9mEoih1q3sWdCSwYY5wltwWfZ09bJ/sp8= Subject key identifier: 6F:01:F4:A2:D1:13:27:CE:79:F6:82:4D:1C:9A:81:BA:6B:53:76:9D Certificate issuer: /CN=A9145884/serialNumber=BE3BFB278DB9A03DEA3856D7FE229218374D8FC0 Certificate serial: 02 Authority key identifier: BE:3B:FB:27:8D:B9:A0:3D:EA:38:56:D7:FE:22:92:18:37:4D:8F:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vjv7J425oD3qOFbX_iKSGDdNj8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145884/61B0705ACDEB11EF8B5B301FC4F9AE02/FB1BCFB4CDEB11EF8115D720C4F9AE02.roa Signing time: Wed 08 Jan 2025 18:11:29 +0000 ROA not before: Wed 08 Jan 2025 18:11:29 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 30081 IP address blocks: 103.211.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145884/61B0705ACDEB11EF8B5B301FC4F9AE02/vjv7J425oD3qOFbX_iKSGDdNj8A.crl rsync://rpki.apnic.net/member_repository/A9145884/61B0705ACDEB11EF8B5B301FC4F9AE02/vjv7J425oD3qOFbX_iKSGDdNj8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vjv7J425oD3qOFbX_iKSGDdNj8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145884 Validity Not Before: Jan 8 18:11:29 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=677ebfd0-e940 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f6:69:a1:5e:68:1d:64:20:6b:6f:24:73:a9: 47:07:bb:82:b3:c6:db:af:c4:53:02:1c:af:58:a3: 9b:f4:cb:5a:07:0b:5c:fb:6e:c0:f0:31:f5:21:36: e0:d1:0f:1a:bc:13:51:ab:cb:97:b0:54:73:02:c7: db:d9:2b:ef:b3:1f:33:55:52:cd:ba:19:75:ab:f7: 4a:47:eb:ba:b9:2d:70:c9:f9:de:c8:3c:d2:fe:58: 95:29:15:cd:3d:a0:75:40:e5:88:5a:e5:90:a7:b9: 76:aa:6c:2a:3d:d5:19:25:a2:d0:ce:73:d2:44:48: 5c:12:88:64:88:3b:3f:89:c4:0f:17:d8:de:2b:3f: 17:09:4d:28:ff:00:c1:6e:e9:c7:9c:89:2c:16:ad: f9:d7:8f:e2:db:df:64:ea:6b:33:2e:d3:30:fe:2e: b4:8d:6d:98:9e:51:71:4e:d3:0d:fb:bb:d3:51:bb: d4:54:8e:2f:8b:01:15:10:6c:9d:0f:fe:93:80:1b: 0c:6c:2b:75:b9:a0:9c:cb:63:01:86:ab:e0:09:4a: c9:ea:d9:81:e8:4d:3e:55:c6:6a:22:4f:1d:81:dc: c0:b2:6e:de:ac:9b:14:63:0d:6c:9f:ba:ae:5d:9b: 33:b4:6d:1a:ed:26:2a:16:c9:07:26:70:59:3f:4d: cd:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:01:F4:A2:D1:13:27:CE:79:F6:82:4D:1C:9A:81:BA:6B:53:76:9D X509v3 Authority Key Identifier: keyid:BE:3B:FB:27:8D:B9:A0:3D:EA:38:56:D7:FE:22:92:18:37:4D:8F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145884/61B0705ACDEB11EF8B5B301FC4F9AE02/vjv7J425oD3qOFbX_iKSGDdNj8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vjv7J425oD3qOFbX_iKSGDdNj8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145884/61B0705ACDEB11EF8B5B301FC4F9AE02/FB1BCFB4CDEB11EF8115D720C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.211.254.0/24 Signature Algorithm: sha256WithRSAEncryption 22:3a:09:ad:a9:5a:00:23:0e:5c:44:71:e5:96:55:e2:c3:8b: 38:ff:59:a7:2b:b3:1c:d0:42:4b:01:06:65:95:e8:e5:f0:59: ad:ee:77:54:bf:c4:77:64:a8:c5:ff:cf:02:41:c6:51:a9:33: 3f:8d:1b:85:27:4e:8a:1f:4f:ef:4c:de:91:ee:77:81:62:28: 30:45:a1:76:c2:76:1f:f1:a0:b3:ee:2b:38:97:73:bb:98:bc: 79:f6:aa:62:94:28:58:33:95:aa:f4:68:b5:63:f9:1a:11:de: 5c:4c:82:a4:ab:87:72:05:ce:4a:39:5d:6c:2a:dc:20:dc:58: be:dd:f1:1c:89:47:6a:7f:52:a7:d7:12:a0:6d:6f:7f:6f:bc: 95:90:92:e6:5e:54:ee:f6:5c:07:d8:12:cc:59:41:7d:1f:1b: 3c:46:77:98:ad:8c:9d:48:42:35:e5:0e:32:bc:9a:24:db:5a: 06:82:ab:ef:e7:d5:0e:8a:70:69:b4:3d:00:84:96:49:3d:13: 43:da:a1:a5:4d:9f:81:19:a6:1c:d2:aa:a9:50:e4:48:a2:5d: ac:d0:7a:41:db:07:f9:08:93:9b:8f:1e:7f:bc:44:26:3f:49: 0b:bd:0e:98:b2:6e:82:ca:3c:ac:ee:fb:fb:7d:0b:b6:e4:78: e1:9f:5f:e9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NTg4NDExMC8GA1UEBRMoQkUzQkZCMjc4REI5QTAzREVBMzg1NkQ3RkUyMjkyMTgz NzREOEZDMDAeFw0yNTAxMDgxODExMjlaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3N2ViZmQwLWU5NDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+9mmhXmgdZCBrbyRzqUcHu4KzxtuvxFMCHK9Yo5v0y1oHC1z7bsDwMfUhNuDR Dxq8E1Gry5ewVHMCx9vZK++zHzNVUs26GXWr90pH67q5LXDJ+d7IPNL+WJUpFc09 oHVA5Yha5ZCnuXaqbCo91RklotDOc9JESFwSiGSIOz+JxA8X2N4rPxcJTSj/AMFu 6ceciSwWrfnXj+Lb32TqazMu0zD+LrSNbZieUXFO0w37u9NRu9RUji+LARUQbJ0P /pOAGwxsK3W5oJzLYwGGq+AJSsnq2YHoTT5VxmoiTx2B3MCybt6smxRjDWyfuq5d mzO0bRrtJioWyQcmcFk/Tc21AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUbwH0otET J8559oJNHJqBumtTdp0wHwYDVR0jBBgwFoAUvjv7J425oD3qOFbX/iKSGDdNj8Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1ODg0LzYxQjA3MDVBQ0RF QjExRUY4QjVCMzAxRkM0RjlBRTAyL3ZqdjdKNDI1b0QzcU9GYlhfaUtTR0RkTmo4 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdmp2N0o0MjVvRDNxT0ZiWF9pS1NHRGROajhBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NTg4NC82MUIwNzA1QUNERUIxMUVGOEI1QjMwMUZDNEY5QUUwMi9GQjFCQ0ZCNENE RUIxMUVGODExNUQ3MjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGfT/jANBgkqhkiG9w0BAQsFAAOCAQEAIjoJralaACMOXERx 5ZZV4sOLOP9ZpyuzHNBCSwEGZZXo5fBZre53VL/Ed2Soxf/PAkHGUakzP40bhSdO ih9P70zeke53gWIoMEWhdsJ2H/Ggs+4rOJdzu5i8efaqYpQoWDOVqvRotWP5GhHe XEyCpKuHcgXOSjldbCrcINxYvt3xHIlHan9Sp9cSoG1vf2+8lZCS5l5U7vZcB9gS zFlBfR8bPEZ3mK2MnUhCNeUOMryaJNtaBoKr7+fVDopwabQ9AISWST0TQ9qhpU2f gRmmHNKqqVDkSKJdrNB6QdsH+QiTm48ef7xEJj9JC70OmLJugso8rO77+30LtuR4 4Z9f6Q== -----END CERTIFICATE-----Generated at Sun Apr 6 05:44:28 2025 by rpki-client