$ rpki-client -vvf rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/DB020E9C010D11EAA82AD83CC4F9AE02.roa File: DB020E9C010D11EAA82AD83CC4F9AE02.roa (raw, json) Hash identifier: +/HgExCatPcRmJalycUeFMmwknrCCg9dQk/HjuFZjUc= Subject key identifier: C2:3A:4B:E0:1E:A7:CB:E2:65:2A:D2:BD:03:4B:6E:3B:94:B3:C4:3C Certificate issuer: /CN=A9153C27/serialNumber=5458C45629C104AAA7A58728686F8D1E2872A92A Certificate serial: 0C1E Authority key identifier: 54:58:C4:56:29:C1:04:AA:A7:A5:87:28:68:6F:8D:1E:28:72:A9:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/DB020E9C010D11EAA82AD83CC4F9AE02.roa Signing time: Tue 14 Jan 2025 18:36:44 +0000 ROA not before: Tue 14 Jan 2025 18:36:44 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 136039 IP address blocks: 43.229.124.0/22 maxlen: 24 103.80.108.0/22 maxlen: 24 2400:50c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.crl rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3102 (0xc1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153C27 Validity Not Before: Jan 14 18:36:44 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6786aebc-033f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:54:31:9f:00:30:48:97:fb:f4:e0:93:11:9c: e5:50:9f:e0:25:be:80:60:31:ac:79:d3:56:4f:d3: dc:35:1a:91:93:24:dc:4d:14:28:68:2b:ac:27:33: 0e:e1:a0:47:93:66:21:6e:0e:b2:04:ed:50:4f:2b: 60:76:98:9c:6a:18:39:23:cd:d9:13:f5:63:95:d7: 48:77:6c:d6:6a:13:c1:66:8a:0e:e2:c8:c0:3f:14: d2:cb:f8:f9:d3:64:0f:67:66:ed:68:3d:12:4d:01: c0:59:00:48:8c:28:c0:95:06:83:f2:75:93:18:27: 1e:32:bc:ba:bf:e9:61:2f:92:64:6f:90:f7:bc:60: 0b:14:31:52:b2:7e:03:d1:bc:3c:e4:39:2f:50:48: 76:18:90:1d:95:65:2b:5f:ca:8e:0f:7b:79:34:84: 16:58:ec:59:cb:e2:02:4b:2e:b7:75:08:6f:0d:87: 76:2f:b2:b0:b1:bc:af:f7:98:97:2a:4f:6e:09:73: df:58:df:64:d1:e6:ff:ed:9e:6c:11:fb:51:dd:86: da:59:e2:3a:36:65:87:87:03:cb:f3:9f:dd:d0:dd: c8:18:1c:83:14:d1:61:f4:20:a7:39:24:1a:58:35: 54:a1:c5:89:72:c4:29:7c:0d:b0:fb:48:02:8f:6e: 82:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:3A:4B:E0:1E:A7:CB:E2:65:2A:D2:BD:03:4B:6E:3B:94:B3:C4:3C X509v3 Authority Key Identifier: keyid:54:58:C4:56:29:C1:04:AA:A7:A5:87:28:68:6F:8D:1E:28:72:A9:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/DB020E9C010D11EAA82AD83CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.229.124.0/22 103.80.108.0/22 IPv6: 2400:50c0::/32 Signature Algorithm: sha256WithRSAEncryption 4c:67:d6:f4:65:b9:1b:f9:c8:d6:cb:24:5d:81:8c:cd:a8:c2: 33:de:51:b7:2b:bb:72:74:10:64:e5:b1:f2:0a:6c:ff:28:8e: 68:c8:a9:96:6d:74:33:42:53:00:70:fe:da:04:bf:8f:47:2f: 91:7f:81:97:37:32:fc:ae:4a:90:9b:a9:cf:89:0b:6e:48:42: bf:33:fb:1b:1d:01:60:37:00:28:47:08:6b:2e:d4:4a:c2:b6: 7e:c9:61:24:c5:5e:58:b1:28:c1:fc:8c:a4:10:c5:9a:84:b8: 0f:d2:6c:1d:b2:43:d1:87:4d:2e:11:89:5b:bc:76:89:39:df: 95:dd:18:5a:35:16:a2:ed:b0:cb:9c:ad:48:c8:c4:be:3c:f8: a9:0e:f2:05:ad:a5:af:44:d7:ce:d1:10:16:3c:99:2e:1f:59: 97:5b:72:b6:f3:83:3c:e6:f4:c9:46:48:19:cc:38:7f:3c:7e: 15:99:ae:a0:d8:dc:ce:db:e3:91:5b:e7:76:a6:da:6a:6e:fc: cb:d9:e5:37:20:85:6d:98:ac:1f:2b:3b:92:1d:fd:c2:b0:7c: eb:f5:6d:ea:1b:ce:bd:ec:10:67:1e:4c:b1:4d:6e:08:35:ab: d0:0b:d6:92:64:97:a4:f3:44:fd:f4:bc:2f:1d:9c:c9:da:e5: e0:f2:ff:00 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNDMjcxMTAvBgNVBAUTKDU0NThDNDU2MjlDMTA0QUFBN0E1ODcyODY4NkY4RDFF Mjg3MkE5MkEwHhcNMjUwMTE0MTgzNjQ0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg2YWViYy0wMzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl1QxnwAwSJf79OCTEZzlUJ/gJb6AYDGsedNWT9PcNRqRkyTcTRQoaCusJzMO 4aBHk2Yhbg6yBO1QTytgdpicahg5I83ZE/VjlddId2zWahPBZooO4sjAPxTSy/j5 02QPZ2btaD0STQHAWQBIjCjAlQaD8nWTGCceMry6v+lhL5Jkb5D3vGALFDFSsn4D 0bw85DkvUEh2GJAdlWUrX8qOD3t5NIQWWOxZy+ICSy63dQhvDYd2L7Kwsbyv95iX Kk9uCXPfWN9k0eb/7Z5sEftR3YbaWeI6NmWHhwPL85/d0N3IGByDFNFh9CCnOSQa WDVUocWJcsQpfA2w+0gCj26ClQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFMI6S+Ae p8viZSrSvQNLbjuUs8Q8MB8GA1UdIwQYMBaAFFRYxFYpwQSqp6WHKGhvjR4ocqkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0MyNy82NUJCNDg5QzAw NEExMUVBOTgwRjJBN0NDNEY5QUUwMi9WRmpFVmluQkJLcW5wWWNvYUctTkhpaHlx U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZGakVWaW5CQktxbnBZY29hRy1OSGloeXFTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTNDMjcvNjVCQjQ4OUMwMDRBMTFFQTk4MEYyQTdDQzRGOUFFMDIvREIwMjBFOUMw MTBEMTFFQUE4MkFEODNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIr5XwDBAJnUGwwDQQCAAIwBwMFACQAUMAwDQYJKoZIhvcN AQELBQADggEBAExn1vRluRv5yNbLJF2BjM2owjPeUbcru3J0EGTlsfIKbP8ojmjI qZZtdDNCUwBw/toEv49HL5F/gZc3MvyuSpCbqc+JC25IQr8z+xsdAWA3AChHCGsu 1ErCtn7JYSTFXlixKMH8jKQQxZqEuA/SbB2yQ9GHTS4RiVu8dok535XdGFo1FqLt sMucrUjIxL48+KkO8gWtpa9E187REBY8mS4fWZdbcrbzgzzm9MlGSBnMOH88fhWZ rqDY3M7b45Fb53am2mpu/MvZ5TcghW2YrB8rO5Id/cKwfOv1beobzr3sEGceTLFN bgg1q9AL1pJkl6TzRP30vC8dnMna5eDy/wA= -----END CERTIFICATE-----Generated at Sat Apr 5 06:14:02 2025 by rpki-client