$ rpki-client -vvf rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/DFC662EC415B11EE9E83852AC4F9AE02.roa File: DFC662EC415B11EE9E83852AC4F9AE02.roa (raw, json) Hash identifier: JQglPoDIL3Eq1y2JiUK8F3q2nUek/I2P1c153lPMYTA= Subject key identifier: 5B:A0:33:F2:E9:CE:7E:80:B6:E7:68:9E:90:B8:07:71:F6:35:ED:A0 Certificate issuer: /CN=A9146CB4/serialNumber=FB16B19DFBF7CA6AC40A6B6A353F78578917E0FD Certificate serial: 015D Authority key identifier: FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/DFC662EC415B11EE9E83852AC4F9AE02.roa Signing time: Sat 29 Mar 2025 03:58:57 +0000 ROA not before: Sat 29 Mar 2025 03:58:57 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 56301 IP address blocks: 103.85.184.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.crl rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 03:19:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 349 (0x15d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146CB4 Validity Not Before: Mar 29 03:58:57 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67e77001-19c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:dc:bc:4b:86:f3:d0:39:3b:e3:18:9d:8a:b9: 3e:37:46:9c:79:3a:cf:cc:d1:56:cb:dc:fe:76:e3: 24:14:a0:18:55:a4:2f:d8:ff:b0:c0:f0:12:c9:8f: 7f:8b:3c:3b:80:aa:68:36:86:f1:20:1b:14:71:07: ea:46:af:ed:4a:e7:fa:4b:5d:ca:70:f5:07:07:4d: f8:5b:6f:e3:c4:8a:22:d7:94:96:a5:11:fa:dc:75: a4:6a:f2:2a:30:f3:19:ce:d7:2c:ec:c8:10:b6:6f: 8f:18:53:5b:da:05:e3:a7:2a:cc:4c:3f:4e:3d:dc: e0:d8:39:a5:ea:a7:ff:aa:78:b4:17:60:68:93:96: 2b:0a:d7:13:d0:f6:f7:77:b2:15:82:6e:31:ca:b6: 67:4a:30:71:6a:71:99:43:e5:5e:1c:59:80:57:db: 65:d0:0a:da:20:b4:02:73:7b:e0:bf:92:54:3f:83: df:66:9e:ce:8b:a5:94:bb:02:f8:a8:1b:45:9c:b1: d5:e5:c2:69:77:61:2b:e8:fd:dc:43:d9:a5:03:a9: c5:21:52:01:8b:c5:cc:e3:2d:78:23:7f:c4:17:10: 73:db:d9:b5:ec:35:a9:0f:bf:71:c7:ae:cb:e7:eb: 2f:ca:b6:5a:04:58:2d:46:08:2a:7a:7c:16:0b:4f: c6:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:A0:33:F2:E9:CE:7E:80:B6:E7:68:9E:90:B8:07:71:F6:35:ED:A0 X509v3 Authority Key Identifier: keyid:FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/DFC662EC415B11EE9E83852AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.184.0/23 Signature Algorithm: sha256WithRSAEncryption aa:9b:4f:11:a2:e4:b8:d3:6a:48:06:57:29:67:4a:36:72:15: 47:db:a1:3c:4c:8e:de:9b:90:42:a2:30:97:97:bc:09:7c:bf: e2:69:c7:43:50:58:3e:ea:01:ee:f7:fa:da:ff:c9:93:5c:9b: 80:bb:cb:d3:55:7d:45:8b:01:65:72:b1:57:b9:4d:ac:16:d6: 02:86:58:f4:41:6a:3b:2b:18:c9:65:9a:ca:1c:2a:e4:77:c3: 9a:31:7a:08:30:0e:dc:7c:75:40:86:b5:b8:8a:b6:12:a0:14: 4f:f3:66:df:b8:76:08:bd:12:2e:de:bc:fe:d4:84:9c:36:db: cd:5c:bc:72:f3:1b:59:a0:22:c5:44:21:37:16:5f:b4:59:fd: ad:a7:c1:52:c0:ec:99:43:ae:d0:a1:96:61:20:9a:59:dd:0e: d0:39:e7:ba:ce:bc:81:d7:b8:70:36:51:a1:53:d7:c3:8f:c9: a4:d3:ea:96:ef:80:a2:da:c4:69:79:44:3b:b2:10:07:7f:1e: de:9d:f9:73:ef:c2:b4:d6:bb:c9:48:8f:de:fa:b4:e9:53:d1: d5:9b:05:c0:34:50:f3:2a:43:41:d6:fc:d4:c1:55:28:52:85: 29:06:14:7d:ee:27:28:92:17:d8:7d:5e:53:33:b1:58:cd:66: 05:a9:05:20 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZDQjQxMTAvBgNVBAUTKEZCMTZCMTlERkJGN0NBNkFDNDBBNkI2QTM1M0Y3ODU3 ODkxN0UwRkQwHhcNMjUwMzI5MDM1ODU3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2U3NzAwMS0xOWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApNy8S4bz0Dk74xidirk+N0aceTrPzNFWy9z+duMkFKAYVaQv2P+wwPASyY9/ izw7gKpoNobxIBsUcQfqRq/tSuf6S13KcPUHB034W2/jxIoi15SWpRH63HWkavIq MPMZztcs7MgQtm+PGFNb2gXjpyrMTD9OPdzg2Dml6qf/qni0F2Bok5YrCtcT0Pb3 d7IVgm4xyrZnSjBxanGZQ+VeHFmAV9tl0AraILQCc3vgv5JUP4PfZp7Oi6WUuwL4 qBtFnLHV5cJpd2Er6P3cQ9mlA6nFIVIBi8XM4y14I3/EFxBz29m17DWpD79xx67L 5+svyrZaBFgtRggqenwWC0/GywIDAQABo4IClTCCApEwHQYDVR0OBBYEFFugM/Lp zn6AtudonpC4B3H2Ne2gMB8GA1UdIwQYMBaAFPsWsZ3798pqxAprajU/eFeJF+D9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkNCNC8yQTg0RDFEOEZE QzgxMUVEOTcyRURCMUVDNEY5QUUwMi8teGF4bmZ2M3ltckVDbXRxTlQ5NFY0a1g0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14YXhuZnYzeW1yRUNtdHFOVDk0VjRrWDRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZDQjQvMkE4NEQxRDhGREM4MTFFRDk3MkVEQjFFQzRGOUFFMDIvREZDNjYyRUM0 MTVCMTFFRTlFODM4NTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnVbgwDQYJKoZIhvcNAQELBQADggEBAKqbTxGi5LjTakgG VylnSjZyFUfboTxMjt6bkEKiMJeXvAl8v+Jpx0NQWD7qAe73+tr/yZNcm4C7y9NV fUWLAWVysVe5TawW1gKGWPRBajsrGMllmsocKuR3w5oxeggwDtx8dUCGtbiKthKg FE/zZt+4dgi9Ei7evP7UhJw2281cvHLzG1mgIsVEITcWX7RZ/a2nwVLA7JlDrtCh lmEgmlndDtA557rOvIHXuHA2UaFT18OPyaTT6pbvgKLaxGl5RDuyEAd/Ht6d+XPv wrTWu8lIj976tOlT0dWbBcA0UPMqQ0HW/NTBVShShSkGFH3uJyiSF9h9XlMzsVjN ZgWpBSA= -----END CERTIFICATE-----Generated at Sat Apr 5 01:47:49 2025 by rpki-client