$ rpki-client -vvf rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/42EC5F02D2B711EDAF6DC017C4F9AE02.roa File: 42EC5F02D2B711EDAF6DC017C4F9AE02.roa (raw, json) Hash identifier: KfEf5+IVw2cc5iVIvA+8UOcszxul9bOLbJUOX0WGbIk= Subject key identifier: C7:32:A0:28:34:65:79:D6:D3:80:49:04:A8:5C:9F:FA:F5:E8:14:2C Certificate issuer: /CN=A9160D0A/serialNumber=AC6385ED563E1FD6A66B3E4B510DCC6930CD4B0C Certificate serial: 016D Authority key identifier: AC:63:85:ED:56:3E:1F:D6:A6:6B:3E:4B:51:0D:CC:69:30:CD:4B:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/42EC5F02D2B711EDAF6DC017C4F9AE02.roa Signing time: Tue 31 Dec 2024 02:56:40 +0000 ROA not before: Tue 31 Dec 2024 02:56:40 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 131283 IP address blocks: 103.120.104.0/22 maxlen: 22 103.120.104.0/24 maxlen: 24 103.120.105.0/24 maxlen: 24 103.120.106.0/24 maxlen: 24 103.120.107.0/24 maxlen: 24 175.100.160.0/24 maxlen: 24 175.100.161.0/24 maxlen: 24 175.100.162.0/24 maxlen: 24 175.100.163.0/24 maxlen: 24 2405:a100:10::/44 maxlen: 44 2405:a100:20::/44 maxlen: 44 2405:a100:30::/44 maxlen: 44 2405:a100:40::/44 maxlen: 44 2405:a100:50::/44 maxlen: 44 2405:a100:60::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.crl rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 365 (0x16d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160D0A Validity Not Before: Dec 31 02:56:40 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67735d67-1cab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:54:03:df:f5:51:d3:16:0a:4d:4e:07:0a:ba: 84:88:a7:31:d9:e8:b8:bd:7e:73:a0:b7:77:1a:89: 2c:1d:c7:ca:32:03:2f:b5:ee:db:22:75:0e:61:52: d6:36:32:57:0c:4a:55:35:69:e3:bd:5c:1d:c3:e2: d6:52:d5:eb:ef:18:0f:90:a4:c5:ad:0f:14:fe:7b: c6:ec:be:1a:88:b8:80:7d:6a:1f:44:05:38:13:65: 0b:03:d7:76:b8:7a:6b:63:da:a8:b3:53:e0:10:da: 25:0a:9c:97:9f:9b:55:0a:f5:5d:a3:a1:d6:c2:8e: 68:47:28:a6:ea:17:a3:10:5b:9c:20:b8:ac:c0:86: ba:26:70:7b:fb:ab:99:b6:40:bb:46:fe:93:06:62: 94:3f:09:03:60:f4:16:5e:fb:38:3f:7b:a1:fb:1d: 1b:db:e0:f2:45:76:99:cc:e4:ea:99:6a:e0:be:2d: cb:82:2a:20:c7:f8:43:e8:ac:da:49:95:76:f3:80: 35:44:86:3c:bf:d2:10:9b:51:ca:b8:9f:00:3b:4a: b3:51:5d:3b:c1:5a:c4:fb:d8:13:7a:7e:35:36:3b: 71:3c:05:7f:1f:af:eb:c7:26:98:02:d0:37:b4:6a: 00:4d:d4:23:e6:a0:c2:2f:8c:c1:e3:c4:58:53:fd: 6d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:32:A0:28:34:65:79:D6:D3:80:49:04:A8:5C:9F:FA:F5:E8:14:2C X509v3 Authority Key Identifier: keyid:AC:63:85:ED:56:3E:1F:D6:A6:6B:3E:4B:51:0D:CC:69:30:CD:4B:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/rGOF7VY-H9amaz5LUQ3MaTDNSww.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGOF7VY-H9amaz5LUQ3MaTDNSww.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160D0A/564A135ED22211ED9A206C46C4F9AE02/42EC5F02D2B711EDAF6DC017C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.104.0/22 175.100.160.0/22 IPv6: 2405:a100:10::-2405:a100:6f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 46:be:a6:b6:c3:7f:33:22:01:d6:45:4c:e1:83:a1:a6:56:f7: 94:bf:16:42:2b:f4:21:60:b5:01:c2:3a:27:4a:91:c2:35:57: 1c:8e:cc:40:fb:07:3d:3c:0e:94:2e:1d:6a:d7:cf:6c:cb:a5: b4:6b:72:bc:14:63:89:d9:52:a0:d7:42:b2:cb:46:28:fc:3c: 8e:60:27:77:38:0f:b3:53:24:12:ef:00:71:b5:dd:5c:0a:91: 19:45:08:86:a0:2b:47:83:de:30:1a:aa:ac:06:78:c0:2b:77: 33:8a:c1:23:80:19:80:45:73:23:f2:5f:58:65:e9:f5:1f:a4: 09:89:2e:a4:d5:1a:4c:5e:ce:ae:56:3a:2a:0a:f3:8e:cd:93: 6c:17:38:94:ef:a7:c2:95:d7:67:e2:9d:91:5a:28:c2:d3:0d: 89:ad:8d:c8:e3:ae:89:0a:40:bc:03:39:8e:d3:8f:06:08:33: ac:d4:c2:7b:02:53:2e:23:61:cc:db:19:8f:a1:a4:c3:f3:c1: 58:e1:79:29:f5:af:a5:3a:72:39:a7:9b:79:1a:88:24:33:5a: 2d:42:f1:b8:0c:af:5c:23:f9:b1:c3:ab:7b:16:f7:20:c0:97: 51:c3:81:4f:b2:a5:7b:16:92:51:ea:7e:f0:73:1b:b0:ce:60: 35:f6:c5:1f -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICAW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBEMEExMTAvBgNVBAUTKEFDNjM4NUVENTYzRTFGRDZBNjZCM0U0QjUxMERDQzY5 MzBDRDRCMEMwHhcNMjQxMjMxMDI1NjQwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzczNWQ2Ny0xY2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtVQD3/VR0xYKTU4HCrqEiKcx2ei4vX5zoLd3GoksHcfKMgMvte7bInUOYVLW NjJXDEpVNWnjvVwdw+LWUtXr7xgPkKTFrQ8U/nvG7L4aiLiAfWofRAU4E2ULA9d2 uHprY9qos1PgENolCpyXn5tVCvVdo6HWwo5oRyim6hejEFucILiswIa6JnB7+6uZ tkC7Rv6TBmKUPwkDYPQWXvs4P3uh+x0b2+DyRXaZzOTqmWrgvi3Lgiogx/hD6Kza SZV284A1RIY8v9IQm1HKuJ8AO0qzUV07wVrE+9gTen41NjtxPAV/H6/rxyaYAtA3 tGoATdQj5qDCL4zB48RYU/1t9wIDAQABo4ICtzCCArMwHQYDVR0OBBYEFMcyoCg0 ZXnW04BJBKhcn/r16BQsMB8GA1UdIwQYMBaAFKxjhe1WPh/Wpms+S1ENzGkwzUsM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEQwQS81NjRBMTM1RUQy MjIxMUVEOUEyMDZDNDZDNEY5QUUwMi9yR09GN1ZZLUg5YW1hejVMVVEzTWFURE5T d3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JHT0Y3VlktSDlhbWF6NUxVUTNNYVRETlN3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjBEMEEvNTY0QTEzNUVEMjIyMTFFRDlBMjA2QzQ2QzRGOUFFMDIvNDJFQzVGMDJE MkI3MTFFREFGNkRDMDE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMBIEAgABMAwDBAJneGgDBAKvZKAwGgQCAAIwFDASAwcEJAWhAAAQAwcEJAWh AABgMA0GCSqGSIb3DQEBCwUAA4IBAQBGvqa2w38zIgHWRUzhg6GmVveUvxZCK/Qh YLUBwjonSpHCNVccjsxA+wc9PA6ULh1q189sy6W0a3K8FGOJ2VKg10Kyy0Yo/DyO YCd3OA+zUyQS7wBxtd1cCpEZRQiGoCtHg94wGqqsBnjAK3czisEjgBmARXMj8l9Y Zen1H6QJiS6k1RpMXs6uVjoqCvOOzZNsFziU76fClddn4p2RWijC0w2JrY3I466J CkC8AzmO048GCDOs1MJ7AlMuI2HM2xmPoaTD88FY4Xkp9a+lOnI5p5t5GogkM1ot QvG4DK9cI/mxw6t7FvcgwJdRw4FPsqV7FpJR6n7wcxuwzmA19sUf -----END CERTIFICATE-----Generated at Sat Apr 5 05:55:21 2025 by rpki-client