$ rpki-client -vvf rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/BFF632BAC8DA11EE9D90830EC4F9AE02.roa File: BFF632BAC8DA11EE9D90830EC4F9AE02.roa (raw, json) Hash identifier: orqQypE5bc7gvUO4QzKhBPPdldDDB/JBoIJgb5EjBz0= Subject key identifier: 23:7E:2B:31:F3:EB:C8:94:5B:8B:25:EF:B4:A0:3D:51:82:7D:99:95 Certificate issuer: /CN=A9156334/serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Certificate serial: AE Authority key identifier: 8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/BFF632BAC8DA11EE9D90830EC4F9AE02.roa Signing time: Sat 21 Dec 2024 04:48:36 +0000 ROA not before: Sat 21 Dec 2024 04:48:36 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 135341 IP address blocks: 103.174.192.0/24 maxlen: 24 103.174.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 04:49:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156334 Validity Not Before: Dec 21 04:48:36 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=676648a4-1d39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3b:1e:c1:00:35:e8:ec:d8:7d:10:a4:a4:a2: b8:d1:7d:51:2f:1f:c8:80:64:0b:74:0d:7a:a5:07: 98:65:04:97:19:f4:27:32:51:e3:0a:1d:79:15:46: 96:3e:81:23:8f:92:c0:d9:a2:cb:49:5e:6b:10:9c: 9b:df:15:07:52:9b:7c:29:34:32:9e:a7:f2:22:b0: 12:22:9a:6d:b2:67:72:22:aa:e0:a9:80:b1:c8:cf: ba:3c:17:c7:d7:92:d4:eb:45:da:27:7d:07:39:ff: f0:89:6c:6c:db:1e:3f:0e:ac:a6:6e:58:67:31:46: 44:1f:5c:44:34:9d:f6:3f:97:e1:c3:19:ed:c0:7b: e7:9a:8f:e4:1c:87:b1:ae:50:7e:58:91:ec:b2:d7: 23:30:c2:ff:5c:db:d9:6e:18:97:ce:23:ef:6d:d5: df:28:a5:0e:38:c5:4c:3d:70:df:e2:64:e4:31:27: fd:94:b4:1e:53:9d:f9:69:ba:c5:94:a6:51:d2:07: 77:fb:30:98:3c:b2:f5:49:6c:74:37:f3:69:12:12: 66:fa:64:3e:b6:c6:e8:a3:29:02:27:1b:30:00:8f: 98:29:67:a9:2c:35:1b:b5:1a:4e:ed:8d:b8:d1:8b: 6a:7b:1d:52:a8:e1:b2:e8:4f:a6:3f:24:11:c7:77: 2e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:7E:2B:31:F3:EB:C8:94:5B:8B:25:EF:B4:A0:3D:51:82:7D:99:95 X509v3 Authority Key Identifier: keyid:8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/BFF632BAC8DA11EE9D90830EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.192.0/23 Signature Algorithm: sha256WithRSAEncryption 61:cb:8e:45:c2:5a:ba:4e:1c:bb:fb:69:61:68:e8:25:12:fd: 34:9f:c6:3e:20:6d:b9:ae:6a:94:df:cc:17:fc:8c:cb:81:15: bc:ad:a1:b2:1a:5a:83:bf:fa:bd:47:2b:65:ea:b4:67:f3:a2: 69:0a:29:71:ef:78:81:f2:8e:36:b7:3a:8f:65:06:b6:ca:ad: 82:3e:b3:71:9d:a7:64:44:87:a2:6c:51:8a:26:b8:04:b1:fe: 1f:e7:68:26:35:e1:88:34:95:18:82:a8:e0:c9:7e:11:29:b0: 51:da:30:ad:1b:46:d6:18:ad:c1:0d:49:54:e9:b0:4a:df:5f: c9:3b:e6:a9:a9:d6:b8:7e:5d:50:34:bd:71:a4:24:d6:ef:a8: b9:5a:5f:e5:93:4a:c9:79:76:10:c2:bd:be:7d:d0:7c:35:76: 08:3b:75:cc:fb:11:47:09:21:6c:5b:ca:c7:f2:46:85:f1:b1: 62:8a:91:91:83:a1:db:a9:ae:8a:4b:87:1c:e3:37:61:5d:9a: 3a:34:66:53:35:6a:fd:23:93:32:e6:d6:00:bb:cc:ce:6c:9e: f1:5d:5e:0b:78:01:7a:83:b7:f6:95:2e:50:e4:73:27:9b:4c: c5:38:68:28:d7:7f:54:fd:ee:dd:cb:f5:0c:89:ac:44:9f:bf: cf:33:0a:51 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYzMzQxMTAvBgNVBAUTKDhFOERENUIyQzEwMUI5ODNBNzk5QzkzOEFBMEU0MEE2 NTFGQ0JFMDcwHhcNMjQxMjIxMDQ0ODM2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY2NDhhNC0xZDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDsewQA16OzYfRCkpKK40X1RLx/IgGQLdA16pQeYZQSXGfQnMlHjCh15FUaW PoEjj5LA2aLLSV5rEJyb3xUHUpt8KTQynqfyIrASIpptsmdyIqrgqYCxyM+6PBfH 15LU60XaJ30HOf/wiWxs2x4/DqymblhnMUZEH1xENJ32P5fhwxntwHvnmo/kHIex rlB+WJHsstcjMML/XNvZbhiXziPvbdXfKKUOOMVMPXDf4mTkMSf9lLQeU535abrF lKZR0gd3+zCYPLL1SWx0N/NpEhJm+mQ+tsbooykCJxswAI+YKWepLDUbtRpO7Y24 0Ytqex1SqOGy6E+mPyQRx3cuIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCN+KzHz 68iUW4sl77SgPVGCfZmVMB8GA1UdIwQYMBaAFI6N1bLBAbmDp5nJOKoOQKZR/L4H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjMzNC9FN0NEREZDRUM4 RDgxMUVFOUY0QUI5NkRDNEY5QUUwMi9qbzNWc3NFQnVZT25tY2s0cWc1QXBsSDh2 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvM1Zzc0VCdVlPbm1jazRxZzVBcGxIOHZnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTYzMzQvRTdDRERGQ0VDOEQ4MTFFRTlGNEFCOTZEQzRGOUFFMDIvQkZGNjMyQkFD OERBMTFFRTlEOTA4MzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrsAwDQYJKoZIhvcNAQELBQADggEBAGHLjkXCWrpOHLv7 aWFo6CUS/TSfxj4gbbmuapTfzBf8jMuBFbytobIaWoO/+r1HK2XqtGfzomkKKXHv eIHyjja3Oo9lBrbKrYI+s3Gdp2REh6JsUYomuASx/h/naCY14Yg0lRiCqODJfhEp sFHaMK0bRtYYrcENSVTpsErfX8k75qmp1rh+XVA0vXGkJNbvqLlaX+WTSsl5dhDC vb590Hw1dgg7dcz7EUcJIWxbysfyRoXxsWKKkZGDodupropLhxzjN2Fdmjo0ZlM1 av0jkzLm1gC7zM5snvFdXgt4AXqDt/aVLlDkcyebTMU4aCjXf1T97t3L9QyJrESf v88zClE= -----END CERTIFICATE-----Generated at Fri Apr 4 23:45:23 2025 by rpki-client