$ rpki-client -vvf rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/2F9915D8718D11EE97E3E022C4F9AE02.roa File: 2F9915D8718D11EE97E3E022C4F9AE02.roa (raw, json) Hash identifier: coH1x8KY/cq3OGm3WBXbeivefI4OPLTpBCpIkFV1i7w= Subject key identifier: CF:EC:B9:CE:E9:54:46:4E:F7:AF:07:1E:70:00:44:FA:4A:EF:67:07 Certificate issuer: /CN=A9166123/serialNumber=7B40A8CF8F4F1A06C36E2034F18A38BF98CA5B18 Certificate serial: 014E Authority key identifier: 7B:40:A8:CF:8F:4F:1A:06:C3:6E:20:34:F1:8A:38:BF:98:CA:5B:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e0Coz49PGgbDbiA08Yo4v5jKWxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/2F9915D8718D11EE97E3E022C4F9AE02.roa Signing time: Mon 03 Feb 2025 03:26:34 +0000 ROA not before: Mon 03 Feb 2025 03:26:34 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 19905 IP address blocks: 103.234.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/e0Coz49PGgbDbiA08Yo4v5jKWxg.crl rsync://rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/e0Coz49PGgbDbiA08Yo4v5jKWxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e0Coz49PGgbDbiA08Yo4v5jKWxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 03:15:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166123 Validity Not Before: Feb 3 03:26:34 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a0376a-65e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:df:c0:63:3e:0a:c8:69:db:5b:b3:37:2c:2e: 7b:bb:2f:4f:a9:38:43:5b:9b:b2:4b:8f:27:fc:66: eb:59:66:2b:e2:e7:64:84:15:57:4b:cf:eb:c9:c4: 41:93:94:ff:a3:ab:84:89:d1:4b:67:b2:74:c6:e8: 5d:5b:2b:75:ca:dd:5f:f9:48:8a:3b:60:66:47:e2: 93:9a:7c:fd:d0:be:5b:93:f6:ff:0e:1a:60:b1:49: 82:bc:6b:c2:67:6f:8c:8a:b2:d8:cb:57:43:c0:9c: e4:87:a5:e7:fc:76:da:a7:63:dd:dd:cb:ff:85:c6: 6d:60:10:a1:61:d8:1d:33:f9:f4:d9:c3:37:70:e7: 19:65:33:29:de:42:28:b2:d4:38:df:c5:15:96:ee: 0f:82:a3:9a:74:51:28:3a:51:ff:a4:00:37:91:f3: 17:c8:0e:74:96:12:1f:c1:63:0f:e8:15:db:06:40: c9:61:4d:29:bd:f8:0a:cf:cd:b7:31:c1:98:9e:27: f6:42:16:df:29:25:ca:64:af:e6:79:52:1e:41:b8: 45:d0:7c:0a:26:6c:ba:26:e5:0b:e6:37:37:a8:6f: ce:eb:b3:11:37:2d:b7:54:d4:e2:55:48:34:70:3f: c9:66:5e:5d:af:35:5f:2a:e8:a4:1d:74:0f:45:60: a6:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:EC:B9:CE:E9:54:46:4E:F7:AF:07:1E:70:00:44:FA:4A:EF:67:07 X509v3 Authority Key Identifier: keyid:7B:40:A8:CF:8F:4F:1A:06:C3:6E:20:34:F1:8A:38:BF:98:CA:5B:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/e0Coz49PGgbDbiA08Yo4v5jKWxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e0Coz49PGgbDbiA08Yo4v5jKWxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/2F9915D8718D11EE97E3E022C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.234.170.0/24 Signature Algorithm: sha256WithRSAEncryption b9:da:92:ab:70:9a:7a:02:ab:8a:24:3c:8c:51:50:a1:33:a0: 61:d9:66:cf:d7:f0:2b:88:b5:64:fd:ae:5b:72:47:ac:fd:2f: 71:ac:ed:9b:af:a4:82:1d:16:16:7c:0b:61:29:b2:44:2d:ee: e0:92:25:44:cd:4f:f1:db:72:d8:8f:30:83:4c:ae:de:62:95: 63:e1:e1:f2:c1:f9:24:4b:8e:40:14:4e:33:34:ad:d2:22:d8: 68:56:e8:19:f2:27:38:35:df:05:3f:0e:41:01:23:e5:78:35: a5:c4:95:d8:2c:85:df:15:3e:2d:44:cd:b6:ab:e7:80:56:76: 29:ac:f4:15:0b:04:18:42:91:2d:d4:5e:d8:f7:19:8f:51:77: 60:e2:c5:14:2c:c4:e5:ed:da:4a:ef:23:91:5e:ec:1b:cf:cd: 7c:8d:fe:da:d1:a1:34:48:eb:58:07:a9:7f:40:c8:c6:00:05: 5e:7a:79:c9:c4:c3:88:fd:ef:4a:80:5c:a9:75:10:dd:ed:25: 0a:a4:de:73:d9:80:62:0b:23:ad:12:fb:c0:62:e0:bc:eb:de: ce:14:6e:cf:8e:09:14:1d:bc:ad:ac:fe:3b:a9:38:86:b6:14: 65:35:a1:9f:8c:37:12:bf:cb:76:05:48:f1:f2:55:7e:94:c2: d5:25:8b:7e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjYxMjMxMTAvBgNVBAUTKDdCNDBBOENGOEY0RjFBMDZDMzZFMjAzNEYxOEEzOEJG OThDQTVCMTgwHhcNMjUwMjAzMDMyNjM0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EwMzc2YS02NWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnN/AYz4KyGnbW7M3LC57uy9PqThDW5uyS48n/GbrWWYr4udkhBVXS8/rycRB k5T/o6uEidFLZ7J0xuhdWyt1yt1f+UiKO2BmR+KTmnz90L5bk/b/DhpgsUmCvGvC Z2+MirLYy1dDwJzkh6Xn/Hbap2Pd3cv/hcZtYBChYdgdM/n02cM3cOcZZTMp3kIo stQ438UVlu4PgqOadFEoOlH/pAA3kfMXyA50lhIfwWMP6BXbBkDJYU0pvfgKz823 McGYnif2QhbfKSXKZK/meVIeQbhF0HwKJmy6JuUL5jc3qG/O67MRNy23VNTiVUg0 cD/JZl5drzVfKuikHXQPRWCmHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM/suc7p VEZO968HHnAARPpK72cHMB8GA1UdIwQYMBaAFHtAqM+PTxoGw24gNPGKOL+YylsY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NjEyMy8xQjAwRUFFOEY0 OEMxMUVEQTg4OTU0NTNDNEY5QUUwMi9lMENvejQ5UEdnYkRiaUEwOFlvNHY1aktX eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2UwQ296NDlQR2diRGJpQTA4WW80djVqS1d4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjYxMjMvMUIwMEVBRThGNDhDMTFFREE4ODk1NDUzQzRGOUFFMDIvMkY5OTE1RDg3 MThEMTFFRTk3RTNFMDIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn6qowDQYJKoZIhvcNAQELBQADggEBALnakqtwmnoCq4ok PIxRUKEzoGHZZs/X8CuItWT9rltyR6z9L3Gs7ZuvpIIdFhZ8C2EpskQt7uCSJUTN T/HbctiPMINMrt5ilWPh4fLB+SRLjkAUTjM0rdIi2GhW6BnyJzg13wU/DkEBI+V4 NaXEldgshd8VPi1Ezbar54BWdims9BULBBhCkS3UXtj3GY9Rd2DixRQsxOXt2krv I5Fe7BvPzXyN/trRoTRI61gHqX9AyMYABV56ecnEw4j970qAXKl1EN3tJQqk3nPZ gGILI60S+8Bi4Lzr3s4Ubs+OCRQdvK2s/jupOIa2FGU1oZ+MNxK/y3YFSPHyVX6U wtUli34= -----END CERTIFICATE-----Generated at Sat Apr 5 04:02:53 2025 by rpki-client