$ rpki-client -vvf rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/9F9CEB425CB911ECAEF7AE14C4F9AE02.roa File: 9F9CEB425CB911ECAEF7AE14C4F9AE02.roa (raw, json) Hash identifier: 6uFvpip5xKUGRghNdeTpeBy3R93KivQ5uvgIzsfjzEI= Subject key identifier: 70:61:7F:01:63:19:1C:97:C5:CD:46:88:49:A9:CC:38:13:4A:86:DD Certificate issuer: /CN=A914FE87/serialNumber=EBBB7562C6A49FB7EDE57412BC1FFAD48E1AFB49 Certificate serial: 03F2 Authority key identifier: EB:BB:75:62:C6:A4:9F:B7:ED:E5:74:12:BC:1F:FA:D4:8E:1A:FB:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67t1Ysakn7ft5XQSvB_61I4a-0k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/9F9CEB425CB911ECAEF7AE14C4F9AE02.roa Signing time: Mon 09 Dec 2024 00:03:34 +0000 ROA not before: Mon 09 Dec 2024 00:03:34 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 147033 IP address blocks: 103.173.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/67t1Ysakn7ft5XQSvB_61I4a-0k.crl rsync://rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/67t1Ysakn7ft5XQSvB_61I4a-0k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67t1Ysakn7ft5XQSvB_61I4a-0k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 00:19:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1010 (0x3f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FE87, serialNumber=EBBB7562C6A49FB7EDE57412BC1FFAD48E1AFB49 Validity Not Before: Dec 9 00:03:34 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=675633d6-8fc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b7:cc:8d:3f:7e:ee:a9:28:2e:df:b1:38:03: 5a:81:79:d5:1a:20:fc:95:57:b1:96:79:6d:f2:63: 73:a6:2c:60:36:0d:da:fe:04:7f:04:a3:82:65:0f: ef:53:9c:f5:0c:e0:9d:77:cc:ef:9b:4d:87:90:48: 08:d6:41:0f:51:f5:a6:81:76:84:68:be:bc:f1:02: d9:6e:04:79:0c:77:97:18:8e:65:32:68:13:70:75: d1:79:2c:2c:9a:fc:22:45:c6:71:4a:0a:79:a8:67: be:3e:37:df:9d:29:87:42:bf:66:f8:c7:30:6e:e4: 2c:da:c4:f8:3a:00:cc:a0:fe:0c:25:25:be:7f:f9: ad:80:d4:76:fc:67:49:30:bc:41:bd:40:c6:ca:43: c5:94:42:e6:c3:8a:d2:63:a7:6a:08:84:7d:74:ed: d2:6b:a4:a4:7c:8e:a2:79:16:e7:8c:67:48:81:9d: b6:0f:59:c7:4b:3b:61:7b:73:4a:f1:8f:5d:4b:2f: 4e:20:0e:a6:1c:31:92:da:02:8f:84:9c:09:8d:08: 16:d1:40:31:53:32:ec:42:c7:e4:fd:c7:98:ba:6a: 3b:48:77:68:e4:c3:fb:da:69:76:9c:cb:8b:ca:65: a1:96:7f:4c:e5:8f:eb:a6:76:ce:c2:ae:e8:68:f3: d9:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:61:7F:01:63:19:1C:97:C5:CD:46:88:49:A9:CC:38:13:4A:86:DD X509v3 Authority Key Identifier: keyid:EB:BB:75:62:C6:A4:9F:B7:ED:E5:74:12:BC:1F:FA:D4:8E:1A:FB:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/67t1Ysakn7ft5XQSvB_61I4a-0k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67t1Ysakn7ft5XQSvB_61I4a-0k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/9F9CEB425CB911ECAEF7AE14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.106.0/23 Signature Algorithm: sha256WithRSAEncryption 00:37:52:4a:40:b0:cf:fd:be:80:43:8d:b7:41:2f:60:b0:8f: 03:b4:53:f5:14:b2:4c:e4:f1:0b:c2:24:a7:94:0b:00:68:55: 77:81:ae:a8:5b:69:03:e9:8d:d7:3f:0e:57:46:08:a4:63:f1: fa:54:8f:87:7e:eb:0b:d9:04:5d:eb:55:ff:eb:72:2b:75:11: a8:5d:2b:ff:47:4d:4b:fe:62:ba:45:73:e8:78:13:25:7a:d4: 83:7a:b2:95:a4:5d:58:7c:ed:fc:99:ab:c8:2a:fa:e8:2e:a4: c6:61:cf:c6:60:08:9c:e9:24:b0:7b:05:c0:52:08:91:76:f1: 78:0f:67:4f:8e:c7:ed:e3:41:bc:07:b9:89:31:d1:46:d8:50: b8:f3:9f:e6:59:33:12:36:8c:2e:79:c3:92:80:b6:c6:73:f1: 5e:cf:83:4e:71:bf:db:aa:b0:5f:0a:9a:bd:7d:9f:d4:6e:8d: 16:53:fc:42:be:e9:29:e7:79:53:4a:89:4e:fd:71:b1:4a:26: 06:f1:43:3b:02:48:16:07:be:76:3f:c0:5e:6b:b6:70:a0:ef: 0f:7a:c7:0d:63:97:fc:47:2c:26:72:49:1f:b5:c1:2d:fc:0c: 88:1d:2b:48:52:f6:ad:ac:51:1e:3b:51:08:2a:c0:db:ce:b5: b6:0e:58:e1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZFODcxMTAvBgNVBAUTKEVCQkI3NTYyQzZBNDlGQjdFREU1NzQxMkJDMUZGQUQ0 OEUxQUZCNDkwHhcNMjQxMjA5MDAwMzM0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU2MzNkNi04ZmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtbfMjT9+7qkoLt+xOANagXnVGiD8lVexlnlt8mNzpixgNg3a/gR/BKOCZQ/v U5z1DOCdd8zvm02HkEgI1kEPUfWmgXaEaL688QLZbgR5DHeXGI5lMmgTcHXReSws mvwiRcZxSgp5qGe+PjffnSmHQr9m+McwbuQs2sT4OgDMoP4MJSW+f/mtgNR2/GdJ MLxBvUDGykPFlELmw4rSY6dqCIR9dO3Sa6SkfI6ieRbnjGdIgZ22D1nHSzthe3NK 8Y9dSy9OIA6mHDGS2gKPhJwJjQgW0UAxUzLsQsfk/ceYumo7SHdo5MP72ml2nMuL ymWhln9M5Y/rpnbOwq7oaPPZxwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHBhfwFj GRyXxc1GiEmpzDgTSobdMB8GA1UdIwQYMBaAFOu7dWLGpJ+37eV0Erwf+tSOGvtJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkU4Ny80RTE0MDFFNjVD QjYxMUVDQTc3MTE4MEVDNEY5QUUwMi82N3QxWXNha243ZnQ1WFFTdkJfNjFJNGEt MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY3dDFZc2FrbjdmdDVYUVN2Ql82MUk0YS0way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEZFODcvNEUxNDAxRTY1Q0I2MTFFQ0E3NzExODBFQzRGOUFFMDIvOUY5Q0VCNDI1 Q0I5MTFFQ0FFRjdBRTE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrWowDQYJKoZIhvcNAQELBQADggEBAAA3UkpAsM/9voBD jbdBL2CwjwO0U/UUskzk8QvCJKeUCwBoVXeBrqhbaQPpjdc/DldGCKRj8fpUj4d+ 6wvZBF3rVf/rcit1EahdK/9HTUv+YrpFc+h4EyV61IN6spWkXVh87fyZq8gq+ugu pMZhz8ZgCJzpJLB7BcBSCJF28XgPZ0+Ox+3jQbwHuYkx0UbYULjzn+ZZMxI2jC55 w5KAtsZz8V7Pg05xv9uqsF8Kmr19n9RujRZT/EK+6SnneVNKiU79cbFKJgbxQzsC SBYHvnY/wF5rtnCg7w96xw1jl/xHLCZySR+1wS38DIgdK0hS9q2sUR47UQgqwNvO tbYOWOE= -----END CERTIFICATE-----Generated at Sat Apr 19 05:34:54 2025 by rpki-client