$ rpki-client -vvf rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/D65DAE8A595C11EF8FABE750C4F9AE02.roa File: D65DAE8A595C11EF8FABE750C4F9AE02.roa (raw, json) Hash identifier: nYA6qJYLssodvPidYdiPlhElm9th4J64wlRbRyUbQK0= Subject key identifier: 16:9D:68:1C:92:56:A2:81:25:27:38:AE:B5:DB:20:B4:1E:D9:9D:6D Certificate issuer: /CN=A914976C/serialNumber=F7EA71B6E6CD04A55DAEB0D158E044DE9A12216A Certificate serial: 59 Authority key identifier: F7:EA:71:B6:E6:CD:04:A5:5D:AE:B0:D1:58:E0:44:DE:9A:12:21:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9-pxtubNBKVdrrDRWOBE3poSIWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/D65DAE8A595C11EF8FABE750C4F9AE02.roa Signing time: Wed 15 Jan 2025 05:40:09 +0000 ROA not before: Wed 15 Jan 2025 05:40:09 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 26658 IP address blocks: 103.10.172.0/22 maxlen: 24 203.176.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/9-pxtubNBKVdrrDRWOBE3poSIWo.crl rsync://rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/9-pxtubNBKVdrrDRWOBE3poSIWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9-pxtubNBKVdrrDRWOBE3poSIWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 05:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914976C Validity Not Before: Jan 15 05:40:09 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67874a39-993a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:15:3e:c8:b1:4c:13:ca:a6:8f:b2:57:26:35: 89:14:fb:6b:9f:6a:79:a5:8b:5b:79:ef:c2:99:0e: 5e:e9:84:18:16:f5:c6:09:a8:19:f1:1c:ce:25:e6: 1c:86:35:1e:ab:f8:d3:3b:4e:47:30:cb:71:da:62: 7e:dd:2e:60:9f:e8:ef:0c:45:24:60:7a:ec:26:8c: ad:9d:07:2d:68:8d:a2:ef:5c:67:8e:57:18:48:82: 9b:65:d6:28:6e:80:1c:c2:cb:bf:10:f0:89:18:d1: 20:c2:9f:5b:0f:4c:a3:b5:64:a8:28:58:a8:00:9a: 4d:fa:e5:08:59:fa:b6:06:67:11:e0:0b:b4:dd:04: 41:6f:cf:e5:d6:17:21:b1:12:b4:16:e2:7c:84:80: 5a:35:0e:18:44:27:08:5b:2b:17:d5:11:70:b5:a3: 9b:b2:18:24:1b:2e:47:04:01:5a:f5:9a:42:00:9d: 4b:eb:92:57:8d:96:7a:6b:32:b3:fa:96:1a:97:e1: f1:de:10:94:b8:06:bd:2d:ef:3d:09:11:a5:56:b4: 00:d0:b6:7a:87:4e:e6:a2:df:4d:32:86:27:8f:5c: 8d:4e:6d:39:14:66:1a:d8:83:17:7b:9c:64:e3:4b: 3e:6c:93:6b:00:82:d9:70:cd:e6:63:63:fb:73:04: 93:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:9D:68:1C:92:56:A2:81:25:27:38:AE:B5:DB:20:B4:1E:D9:9D:6D X509v3 Authority Key Identifier: keyid:F7:EA:71:B6:E6:CD:04:A5:5D:AE:B0:D1:58:E0:44:DE:9A:12:21:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/9-pxtubNBKVdrrDRWOBE3poSIWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9-pxtubNBKVdrrDRWOBE3poSIWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/D65DAE8A595C11EF8FABE750C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.10.172.0/22 203.176.124.0/22 Signature Algorithm: sha256WithRSAEncryption cb:12:63:a2:d6:0d:a1:7d:70:1a:44:cb:9c:64:3b:3c:6f:42: 38:01:e5:b4:07:e8:29:39:9c:e6:e0:ee:81:5b:3f:a5:9a:a6: 31:30:b9:f8:66:5a:9e:d6:d1:bd:3d:be:56:e3:b0:9a:22:59: 55:6e:76:db:29:8d:b3:05:93:74:75:dd:1d:e7:2d:50:a0:37: e1:66:e1:c8:d6:87:5f:be:cc:ee:58:4f:11:f1:4a:80:8a:ba: ee:4e:41:09:01:b8:56:47:0c:e3:6f:88:25:f3:d3:76:af:64: d5:be:24:6c:f8:8c:4d:1f:4d:3d:1b:49:d2:ce:75:4c:56:f3: 41:35:da:46:98:71:ce:92:92:47:4a:d7:bd:0d:9f:4d:76:84: fb:0b:b1:d3:65:b3:a2:0c:e2:74:5a:90:8d:6a:f4:9b:b0:51: 08:cb:7e:99:37:e4:db:52:eb:73:40:ea:9c:48:2a:05:09:c1: 1a:25:22:04:34:3f:8f:26:ae:b3:c3:e9:f6:e0:6c:ca:1a:82: e6:22:97:0f:29:24:d7:b5:e3:24:6b:b7:75:9b:2a:05:53:d7: f3:bb:cd:85:cd:43:54:49:a7:84:14:8a:f7:78:34:82:e8:f2: 51:3e:98:72:08:c4:93:a8:ce:6f:19:77:dc:46:4f:98:55:16: b5:3b:21:42 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 OTc2QzExMC8GA1UEBRMoRjdFQTcxQjZFNkNEMDRBNTVEQUVCMEQxNThFMDQ0REU5 QTEyMjE2QTAeFw0yNTAxMTUwNTQwMDlaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ODc0YTM5LTk5M2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiFT7IsUwTyqaPslcmNYkU+2ufanmli1t578KZDl7phBgW9cYJqBnxHM4l5hyG NR6r+NM7Tkcwy3HaYn7dLmCf6O8MRSRgeuwmjK2dBy1ojaLvXGeOVxhIgptl1ihu gBzCy78Q8IkY0SDCn1sPTKO1ZKgoWKgAmk365QhZ+rYGZxHgC7TdBEFvz+XWFyGx ErQW4nyEgFo1DhhEJwhbKxfVEXC1o5uyGCQbLkcEAVr1mkIAnUvrkleNlnprMrP6 lhqX4fHeEJS4Br0t7z0JEaVWtADQtnqHTuai300yhiePXI1ObTkUZhrYgxd7nGTj Sz5sk2sAgtlwzeZjY/tzBJOtAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUFp1oHJJW ooElJziutdsgtB7ZnW0wHwYDVR0jBBgwFoAU9+pxtubNBKVdrrDRWOBE3poSIWow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5NzZDLzgzNTBEMkJDNTk1 QzExRUY5MTU5NjM1MEM0RjlBRTAyLzktcHh0dWJOQktWZHJyRFJXT0JFM3BvU0lX by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOS1weHR1Yk5CS1ZkcnJEUldPQkUzcG9TSVdvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTc2Qy84MzUwRDJCQzU5NUMxMUVGOTE1OTYzNTBDNEY5QUUwMi9ENjVEQUU4QTU5 NUMxMUVGOEZBQkU3NTBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmcKrAMEAsuwfDANBgkqhkiG9w0BAQsFAAOCAQEAyxJjotYN oX1wGkTLnGQ7PG9COAHltAfoKTmc5uDugVs/pZqmMTC5+GZantbRvT2+VuOwmiJZ VW522ymNswWTdHXdHectUKA34WbhyNaHX77M7lhPEfFKgIq67k5BCQG4VkcM42+I JfPTdq9k1b4kbPiMTR9NPRtJ0s51TFbzQTXaRphxzpKSR0rXvQ2fTXaE+wux02Wz ogzidFqQjWr0m7BRCMt+mTfk21Lrc0DqnEgqBQnBGiUiBDQ/jyaus8Pp9uBsyhqC 5iKXDykk17XjJGu3dZsqBVPX87vNhc1DVEmnhBSK93g0gujyUT6YcgjEk6jObxl3 3EZPmFUWtTshQg== -----END CERTIFICATE-----Generated at Sun Apr 6 01:51:53 2025 by rpki-client