$ rpki-client -vvf rpki.apnic.net/member_repository/A9149FAB/9CD184B2373011EC93B59B1BC4F9AE02/22B4A5FE9F3111EE83D9FA58C4F9AE02.roa File: 22B4A5FE9F3111EE83D9FA58C4F9AE02.roa (raw, json) Hash identifier: xNVbMWOJTNr+TWQdJDNkDpjKnJa72sxLxfgu1hE4Y3w= Subject key identifier: 46:B2:FD:75:97:AD:C9:D3:C6:23:A6:E9:DD:32:0F:50:E4:02:61:88 Certificate issuer: /CN=A9149FAB/serialNumber=6028E7065206A9E45FFD4B24A57EE8C3340C5736 Certificate serial: 045F Authority key identifier: 60:28:E7:06:52:06:A9:E4:5F:FD:4B:24:A5:7E:E8:C3:34:0C:57:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCjnBlIGqeRf_UskpX7owzQMVzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149FAB/9CD184B2373011EC93B59B1BC4F9AE02/22B4A5FE9F3111EE83D9FA58C4F9AE02.roa Signing time: Mon 25 Nov 2024 00:03:21 +0000 ROA not before: Mon 25 Nov 2024 00:03:21 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 32402 IP address blocks: 103.175.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149FAB/9CD184B2373011EC93B59B1BC4F9AE02/YCjnBlIGqeRf_UskpX7owzQMVzY.crl rsync://rpki.apnic.net/member_repository/A9149FAB/9CD184B2373011EC93B59B1BC4F9AE02/YCjnBlIGqeRf_UskpX7owzQMVzY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCjnBlIGqeRf_UskpX7owzQMVzY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:09:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1119 (0x45f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149FAB Validity Not Before: Nov 25 00:03:21 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6743bec9-3697 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:08:07:5e:3e:54:cc:9e:37:8a:d4:84:d2:13: d1:6c:2d:11:58:ec:70:97:84:a3:5c:b5:1d:1f:4b: 74:08:28:43:63:77:ca:5b:e9:6a:b8:68:61:68:22: d9:3c:eb:67:ea:31:51:68:5d:93:99:1a:1c:1d:6a: 92:78:d0:73:33:47:a9:97:71:2f:5f:69:f6:08:17: de:24:e3:fc:f5:cd:61:d1:b5:5f:c3:64:2a:7f:2b: 37:a1:9d:42:f3:ee:07:88:bb:6e:09:c3:a3:3e:18: 8b:f3:46:65:f2:39:36:be:b3:00:15:9e:0e:00:15: c2:93:70:bd:d3:02:c4:7f:32:f1:f4:e1:3f:a4:69: d0:78:7a:7d:8c:5a:e0:da:c0:b6:b4:03:87:fa:8c: bd:34:22:f3:30:4f:e8:de:05:5d:66:bd:99:74:21: 8e:cd:64:fd:ff:5a:c6:dc:dc:df:d7:cf:22:6f:63: 59:15:24:1f:92:57:7b:3a:3a:1b:41:6b:3a:57:af: df:97:55:40:c3:86:8d:24:54:42:ad:c9:c8:5f:86: 5b:52:97:39:42:80:f3:3a:33:bc:27:7d:b3:7f:39: 4a:7d:22:52:b8:1d:b9:fa:87:db:23:0c:7a:8c:71: 1a:55:ec:fc:a8:52:97:41:81:67:41:77:57:55:5d: 64:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:B2:FD:75:97:AD:C9:D3:C6:23:A6:E9:DD:32:0F:50:E4:02:61:88 X509v3 Authority Key Identifier: keyid:60:28:E7:06:52:06:A9:E4:5F:FD:4B:24:A5:7E:E8:C3:34:0C:57:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149FAB/9CD184B2373011EC93B59B1BC4F9AE02/YCjnBlIGqeRf_UskpX7owzQMVzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCjnBlIGqeRf_UskpX7owzQMVzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149FAB/9CD184B2373011EC93B59B1BC4F9AE02/22B4A5FE9F3111EE83D9FA58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.78.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:17:d7:04:e6:ae:52:5e:6a:4d:84:a5:69:8a:12:d9:26:75: 3c:33:4c:9a:f2:f2:f9:e6:7a:a1:8e:ee:c2:3b:eb:5e:66:4a: 71:46:54:ab:cc:5c:60:c7:33:f9:7a:00:0a:ba:8f:2e:c2:ff: 32:ec:1e:8d:57:d4:eb:35:38:79:6c:38:55:11:14:b9:b7:9c: e2:9a:5c:a5:7e:68:cd:43:c4:06:b5:9e:c7:69:8b:e6:7b:4a: 3e:3f:fc:73:87:7e:8f:63:26:59:17:d3:e8:0e:61:be:89:2e: 34:06:fd:ad:46:51:b3:97:e4:d4:07:f2:b9:f1:75:52:99:7d: ce:00:80:c8:2c:24:83:39:40:ae:b6:c0:de:20:62:57:98:3a: 0c:5b:c7:e3:0f:0f:e3:6f:1f:e4:6b:72:bc:de:c3:4e:4b:6f: f1:32:24:a0:11:79:4a:e4:6a:49:60:f2:aa:51:cc:e2:7b:ec: 20:09:e7:44:80:b4:63:85:75:96:1c:f6:60:b8:38:b9:00:6f: 4f:88:85:49:b5:01:46:74:2b:d5:99:cc:7b:44:08:bd:86:76: 59:e1:a8:19:f2:78:35:df:56:a1:30:43:c1:3c:c2:96:cc:a4: 1c:8f:4d:83:03:9f:1a:47:f9:0b:9b:60:2a:34:4b:fc:f8:0c: 1f:c9:65:38 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBF8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGQUIxMTAvBgNVBAUTKDYwMjhFNzA2NTIwNkE5RTQ1RkZENEIyNEE1N0VFOEMz MzQwQzU3MzYwHhcNMjQxMTI1MDAwMzIxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQzYmVjOS0zNjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwgHXj5UzJ43itSE0hPRbC0RWOxwl4SjXLUdH0t0CChDY3fKW+lquGhhaCLZ POtn6jFRaF2TmRocHWqSeNBzM0epl3EvX2n2CBfeJOP89c1h0bVfw2Qqfys3oZ1C 8+4HiLtuCcOjPhiL80Zl8jk2vrMAFZ4OABXCk3C90wLEfzLx9OE/pGnQeHp9jFrg 2sC2tAOH+oy9NCLzME/o3gVdZr2ZdCGOzWT9/1rG3Nzf188ib2NZFSQfkld7Ojob QWs6V6/fl1VAw4aNJFRCrcnIX4ZbUpc5QoDzOjO8J32zfzlKfSJSuB25+ofbIwx6 jHEaVez8qFKXQYFnQXdXVV1kTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEay/XWX rcnTxiOm6d0yD1DkAmGIMB8GA1UdIwQYMBaAFGAo5wZSBqnkX/1LJKV+6MM0DFc2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUZBQi85Q0QxODRCMjM3 MzAxMUVDOTNCNTlCMUJDNEY5QUUwMi9ZQ2puQmxJR3FlUmZfVXNrcFg3b3d6UU1W elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lDam5CbElHcWVSZl9Vc2twWDdvd3pRTVZ6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGQUIvOUNEMTg0QjIzNzMwMTFFQzkzQjU5QjFCQzRGOUFFMDIvMjJCNEE1RkU5 RjMxMTFFRTgzRDlGQTU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnr04wDQYJKoZIhvcNAQELBQADggEBABsX1wTmrlJeak2E pWmKEtkmdTwzTJry8vnmeqGO7sI7615mSnFGVKvMXGDHM/l6AAq6jy7C/zLsHo1X 1Os1OHlsOFURFLm3nOKaXKV+aM1DxAa1nsdpi+Z7Sj4//HOHfo9jJlkX0+gOYb6J LjQG/a1GUbOX5NQH8rnxdVKZfc4AgMgsJIM5QK62wN4gYleYOgxbx+MPD+NvH+Rr crzew05Lb/EyJKAReUrkaklg8qpRzOJ77CAJ50SAtGOFdZYc9mC4OLkAb0+IhUm1 AUZ0K9WZzHtECL2GdlnhqBnyeDXfVqEwQ8E8wpbMpByPTYMDnxpH+QubYCo0S/z4 DB/JZTg= -----END CERTIFICATE-----Generated at Sun Apr 6 15:23:09 2025 by rpki-client