$ rpki-client -vvf rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/E986DDEC979911ECB3B7CE39C4F9AE02.roa File: E986DDEC979911ECB3B7CE39C4F9AE02.roa (raw, json) Hash identifier: yvgJMR+/eFQNfa9YPke7BcqszX7za/b5BsbuAWKuz/Q= Subject key identifier: 8D:D1:7F:A5:9B:6C:CE:67:81:F0:02:A2:7B:1F:C7:40:2C:76:41:9F Certificate issuer: /CN=A9152DE4/serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Certificate serial: 03D5 Authority key identifier: 21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/E986DDEC979911ECB3B7CE39C4F9AE02.roa Signing time: Sat 01 Mar 2025 02:34:34 +0000 ROA not before: Sat 01 Mar 2025 02:34:34 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 149449 IP address blocks: 103.179.198.0/24 maxlen: 24 103.179.199.0/24 maxlen: 24 2400:4e20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 00:11:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 981 (0x3d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152DE4, serialNumber=217C3D8BED0B40C0FB088B59EE6E65AE6C661F0D Validity Not Before: Mar 1 02:34:34 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c2723a-68c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b4:39:86:8b:d7:97:ba:da:36:4d:f7:0a:da: 7f:0a:52:a1:4d:fe:c8:53:5c:7c:11:2e:b9:f6:0e: a2:e5:22:c5:f4:14:71:3f:15:fe:85:a8:e3:53:d2: f4:34:1e:3c:ed:2e:82:0a:4f:24:b5:12:7c:af:65: 1a:ca:21:70:8f:1e:a6:47:72:40:80:34:83:f7:2c: 64:0a:70:fa:2e:a2:31:93:dd:f7:7e:e4:4c:c6:e7: c1:d2:0f:3e:65:c5:20:65:3b:0d:ad:20:af:2b:bd: a8:8f:6e:e7:07:c8:8a:17:ba:64:e9:55:72:f9:aa: e5:48:41:cb:7b:6b:19:e9:1f:ed:50:23:28:12:e9: 90:00:10:1f:44:e8:ba:ba:9e:73:28:0d:8c:a9:18: 13:27:e4:ec:a3:46:96:7f:db:ee:57:f6:b3:8b:76: 3d:9f:1b:e0:68:5c:0e:d9:7e:5f:d5:cd:e3:83:9f: 8d:8f:79:af:53:5c:e1:87:75:fd:dc:18:ed:21:e7: bd:3a:72:68:e1:f1:2d:ed:ff:88:23:75:f8:a0:7c: c6:8e:9d:15:6f:7a:84:e1:02:71:7e:7c:45:f6:27: 7b:8d:59:4d:e6:c8:d1:46:5b:e3:26:5e:2d:b6:bd: 6b:d8:0a:58:0c:6d:b2:a0:a5:1c:3d:0a:c4:b2:e6: a5:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:D1:7F:A5:9B:6C:CE:67:81:F0:02:A2:7B:1F:C7:40:2C:76:41:9F X509v3 Authority Key Identifier: keyid:21:7C:3D:8B:ED:0B:40:C0:FB:08:8B:59:EE:6E:65:AE:6C:66:1F:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/IXw9i-0LQMD7CItZ7m5lrmxmHw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IXw9i-0LQMD7CItZ7m5lrmxmHw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152DE4/4CCCC332792A11ECB0C59162C4F9AE02/E986DDEC979911ECB3B7CE39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.198.0/23 IPv6: 2400:4e20::/32 Signature Algorithm: sha256WithRSAEncryption c1:7d:8b:06:bc:bd:fe:0d:a1:3f:65:fe:03:3a:c6:4a:0e:e4: 84:b6:b4:56:83:a2:58:90:d3:78:29:6d:01:92:c7:29:7e:c5: c5:45:d7:f8:4f:79:26:2c:b6:8f:e9:62:e0:b9:a3:94:06:ee: ef:1a:29:b7:aa:49:27:72:7b:79:65:34:50:7e:ee:69:c6:db: d4:10:b1:8f:32:52:01:11:53:cc:ad:62:fc:46:b5:eb:6c:aa: 1c:74:f2:13:db:8d:3b:4a:b1:dd:60:85:1f:5d:f6:d1:4e:1e: 27:fe:39:3c:db:9a:75:d2:7f:7b:b8:4a:61:04:b4:df:fa:77: 01:eb:53:b6:cd:2d:d5:61:7d:5c:6c:7d:dd:db:1e:92:40:ad: 47:d3:c3:16:3a:27:18:01:18:23:14:7d:ca:34:c9:0a:c9:b6: c1:82:87:4a:ea:c6:f5:02:2a:42:11:66:94:dd:be:6c:53:3f: ca:2d:2f:9c:c2:ca:c9:61:f5:c2:5c:8d:45:40:8c:08:5d:6a: f9:88:75:47:2f:4c:83:4e:95:c3:7b:e3:ac:99:69:92:c6:f4: 24:9e:89:30:09:05:1a:dd:5e:00:88:b8:69:d9:08:1d:b2:33: fd:cf:4a:62:b8:5d:22:64:c0:19:4f:9c:70:d7:b5:2e:ba:19: a2:31:4b:b9 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICA9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJERTQxMTAvBgNVBAUTKDIxN0MzRDhCRUQwQjQwQzBGQjA4OEI1OUVFNkU2NUFF NkM2NjFGMEQwHhcNMjUwMzAxMDIzNDM0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MyNzIzYS02OGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7Q5hovXl7raNk33Ctp/ClKhTf7IU1x8ES659g6i5SLF9BRxPxX+hajjU9L0 NB487S6CCk8ktRJ8r2UayiFwjx6mR3JAgDSD9yxkCnD6LqIxk933fuRMxufB0g8+ ZcUgZTsNrSCvK72oj27nB8iKF7pk6VVy+arlSEHLe2sZ6R/tUCMoEumQABAfROi6 up5zKA2MqRgTJ+Tso0aWf9vuV/azi3Y9nxvgaFwO2X5f1c3jg5+Nj3mvU1zhh3X9 3BjtIee9OnJo4fEt7f+II3X4oHzGjp0Vb3qE4QJxfnxF9id7jVlN5sjRRlvjJl4t tr1r2ApYDG2yoKUcPQrEsualmQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFI3Rf6Wb bM5ngfAConsfx0AsdkGfMB8GA1UdIwQYMBaAFCF8PYvtC0DA+wiLWe5uZa5sZh8N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkRFNC80Q0NDQzMzMjc5 MkExMUVDQjBDNTkxNjJDNEY5QUUwMi9JWHc5aS0wTFFNRDdDSXRaN201bHJteG1I dzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lYdzlpLTBMUU1EN0NJdFo3bTVscm14bUh3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTJERTQvNENDQ0MzMzI3OTJBMTFFQ0IwQzU5MTYyQzRGOUFFMDIvRTk4NkRERUM5 Nzk5MTFFQ0IzQjdDRTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFns8YwDQQCAAIwBwMFACQATiAwDQYJKoZIhvcNAQELBQAD ggEBAMF9iwa8vf4NoT9l/gM6xkoO5IS2tFaDoliQ03gpbQGSxyl+xcVF1/hPeSYs to/pYuC5o5QG7u8aKbeqSSdye3llNFB+7mnG29QQsY8yUgERU8ytYvxGtetsqhx0 8hPbjTtKsd1ghR9d9tFOHif+OTzbmnXSf3u4SmEEtN/6dwHrU7bNLdVhfVxsfd3b HpJArUfTwxY6JxgBGCMUfco0yQrJtsGCh0rqxvUCKkIRZpTdvmxTP8otL5zCyslh 9cJcjUVAjAhdavmIdUcvTINOlcN746yZaZLG9CSeiTAJBRrdXgCIuGnZCB2yM/3P SmK4XSJkwBlPnHDXtS66GaIxS7k= -----END CERTIFICATE-----Generated at Fri Apr 18 20:36:53 2025 by rpki-client