$ rpki-client -vvf rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/33E73FAAE50B11EF838B6642C4F9AE02.roa File: 33E73FAAE50B11EF838B6642C4F9AE02.roa (raw, json) Hash identifier: hGExMUb+w4JyWjME6Pb9a+xtMzWk7NBawSO3YXbXwM4= Subject key identifier: CC:CF:61:30:AA:9D:0E:0A:7B:DD:EC:92:A4:95:82:22:1A:FC:74:25 Certificate issuer: /CN=A9157D13/serialNumber=6E27CFD189EE464431D4B9013BCC0758A80264E6 Certificate serial: 187C Authority key identifier: 6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/33E73FAAE50B11EF838B6642C4F9AE02.roa Signing time: Fri 07 Feb 2025 04:22:55 +0000 ROA not before: Fri 07 Feb 2025 04:22:55 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 63989 IP address blocks: 103.82.248.0/24 maxlen: 24 103.82.249.0/24 maxlen: 24 103.82.250.0/24 maxlen: 24 103.82.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:33:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6268 (0x187c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157D13 Validity Not Before: Feb 7 04:22:55 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a58a9f-8df5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:73:e4:d4:d2:3e:c6:3b:9b:79:24:ce:54:d9: 59:bb:ab:89:0b:38:34:10:79:25:1f:77:d2:3c:85: 02:cd:2d:38:55:8f:e0:2d:3b:f9:fc:7f:bf:92:59: 03:f7:52:98:cb:95:55:66:cc:41:a4:8a:a5:3a:ef: 13:51:b2:9b:db:b3:b6:51:fd:99:00:e1:c0:e8:77: 5d:22:92:d8:fa:80:ad:b5:06:61:0b:89:a7:b4:6a: 56:64:71:21:96:74:8c:4e:20:86:12:23:8b:3e:78: ff:8f:da:21:dd:b3:8b:41:89:53:62:b9:e8:8d:4f: 56:63:c9:d5:e5:f3:83:f7:52:17:a9:58:df:13:a9: c2:62:bf:64:14:a9:4f:a5:6d:02:51:4d:29:89:2a: ea:1b:76:ca:03:90:73:50:1a:d9:ae:21:aa:06:2f: 51:49:00:87:80:34:bf:cf:ec:04:91:47:6d:d7:eb: 3f:64:78:9a:7f:a8:b2:7b:81:f7:ed:20:41:3e:81: ef:05:33:20:b8:7b:02:9f:db:db:66:76:d6:d6:c9: 2d:6c:b8:d9:c0:c8:34:92:7a:98:a8:cc:fa:ea:db: a7:e0:f9:a5:33:21:a6:ae:87:ed:40:6e:fd:16:e9: d8:5e:07:3f:d0:81:11:b3:3d:02:4c:b1:cd:b5:ad: e7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:CF:61:30:AA:9D:0E:0A:7B:DD:EC:92:A4:95:82:22:1A:FC:74:25 X509v3 Authority Key Identifier: keyid:6E:27:CF:D1:89:EE:46:44:31:D4:B9:01:3B:CC:07:58:A8:02:64:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/bifP0YnuRkQx1LkBO8wHWKgCZOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bifP0YnuRkQx1LkBO8wHWKgCZOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157D13/AA25DF1C98FD11E7A8145560C4F9AE02/33E73FAAE50B11EF838B6642C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.248.0/22 Signature Algorithm: sha256WithRSAEncryption 80:8b:fb:3b:2d:8c:72:67:f4:3b:d6:e0:3b:1d:da:52:c7:06: e6:88:f7:d1:dc:4f:d9:b8:78:04:9f:17:63:d5:5c:07:72:71: 25:98:d8:d5:47:d3:16:a7:16:78:13:eb:f7:90:e5:a6:c6:8b: 78:99:31:81:03:07:2b:63:51:7a:1e:62:77:38:8c:a6:26:b0: a3:b1:31:c4:88:86:69:08:80:40:19:e6:9e:ac:f0:6a:ba:62: eb:e6:46:f6:99:f3:68:3f:1b:77:1b:c2:13:4f:92:66:e2:81: 93:94:3e:c9:c0:9a:d8:e5:99:49:6c:5f:45:5d:9b:35:f9:64: a4:be:74:41:b7:1f:18:60:74:a1:92:b1:af:5f:ab:39:2a:39: 52:50:8e:ca:bd:99:41:ac:18:5a:f0:43:07:79:fe:44:a3:b9: f8:88:23:84:f8:a0:4e:72:de:fd:c3:91:40:e2:10:f2:f2:20: 3b:43:b2:4c:2b:a2:02:51:67:c7:f6:57:84:df:2c:af:75:88: db:42:ba:b3:a4:fe:d1:11:a8:b3:79:46:b0:4c:13:1d:1f:f2: c6:0d:0f:96:83:1a:9a:6d:cf:e7:32:f6:3f:fd:02:39:f1:59: f4:6d:74:8f:77:4c:17:b8:6f:95:e4:24:7d:f9:4f:58:e7:9b: 11:18:23:2e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEMTMxMTAvBgNVBAUTKDZFMjdDRkQxODlFRTQ2NDQzMUQ0QjkwMTNCQ0MwNzU4 QTgwMjY0RTYwHhcNMjUwMjA3MDQyMjU1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E1OGE5Zi04ZGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2nPk1NI+xjubeSTOVNlZu6uJCzg0EHklH3fSPIUCzS04VY/gLTv5/H+/klkD 91KYy5VVZsxBpIqlOu8TUbKb27O2Uf2ZAOHA6HddIpLY+oCttQZhC4mntGpWZHEh lnSMTiCGEiOLPnj/j9oh3bOLQYlTYrnojU9WY8nV5fOD91IXqVjfE6nCYr9kFKlP pW0CUU0piSrqG3bKA5BzUBrZriGqBi9RSQCHgDS/z+wEkUdt1+s/ZHiaf6iye4H3 7SBBPoHvBTMguHsCn9vbZnbW1sktbLjZwMg0knqYqMz66tun4PmlMyGmroftQG79 FunYXgc/0IERsz0CTLHNta3nvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMzPYTCq nQ4Ke93skqSVgiIa/HQlMB8GA1UdIwQYMBaAFG4nz9GJ7kZEMdS5ATvMB1ioAmTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0QxMy9BQTI1REYxQzk4 RkQxMUU3QTgxNDU1NjBDNEY5QUUwMi9iaWZQMFludVJrUXgxTGtCTzh3SFdLZ0Na T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JpZlAwWW51UmtReDFMa0JPOHdIV0tnQ1pPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdEMTMvQUEyNURGMUM5OEZEMTFFN0E4MTQ1NTYwQzRGOUFFMDIvMzNFNzNGQUFF NTBCMTFFRjgzOEI2NjQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnUvgwDQYJKoZIhvcNAQELBQADggEBAICL+zstjHJn9DvW 4Dsd2lLHBuaI99HcT9m4eASfF2PVXAdycSWY2NVH0xanFngT6/eQ5abGi3iZMYED BytjUXoeYnc4jKYmsKOxMcSIhmkIgEAZ5p6s8Gq6YuvmRvaZ82g/G3cbwhNPkmbi gZOUPsnAmtjlmUlsX0VdmzX5ZKS+dEG3HxhgdKGSsa9fqzkqOVJQjsq9mUGsGFrw Qwd5/kSjufiII4T4oE5y3v3DkUDiEPLyIDtDskwrogJRZ8f2V4TfLK91iNtCurOk /tERqLN5RrBMEx0f8sYND5aDGpptz+cy9j/9AjnxWfRtdI93TBe4b5XkJH35T1jn mxEYIy4= -----END CERTIFICATE-----Generated at Sat Apr 5 11:38:44 2025 by rpki-client