$ rpki-client -vvf rpki.apnic.net/member_repository/A916763E/85795FECF90111EF9C24C812C4F9AE02/8DD9218AF90211EF99692E40C4F9AE02.roa File: 8DD9218AF90211EF99692E40C4F9AE02.roa (raw, json) Hash identifier: 3CWgpxVwX8rXbxNTGaUyko/Ji2jUUIx/aqwN4MmZ++Q= Subject key identifier: 6E:83:AF:A0:4C:25:EF:EC:C9:D1:69:30:84:78:76:B0:59:F6:A2:7B Certificate issuer: /CN=A916763E/serialNumber=690C16A97EE40B89A64CB31F62A99A5630082DC3 Certificate serial: 03 Authority key identifier: 69:0C:16:A9:7E:E4:0B:89:A6:4C:B3:1F:62:A9:9A:56:30:08:2D:C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQwWqX7kC4mmTLMfYqmaVjAILcM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916763E/85795FECF90111EF9C24C812C4F9AE02/8DD9218AF90211EF99692E40C4F9AE02.roa Signing time: Tue 04 Mar 2025 14:11:24 +0000 ROA not before: Tue 04 Mar 2025 14:11:24 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 147065 IP address blocks: 103.174.8.0/23 maxlen: 23 103.174.8.0/24 maxlen: 24 103.174.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916763E/85795FECF90111EF9C24C812C4F9AE02/aQwWqX7kC4mmTLMfYqmaVjAILcM.crl rsync://rpki.apnic.net/member_repository/A916763E/85795FECF90111EF9C24C812C4F9AE02/aQwWqX7kC4mmTLMfYqmaVjAILcM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQwWqX7kC4mmTLMfYqmaVjAILcM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 06:48:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916763E Validity Not Before: Mar 4 14:11:24 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67c70a0c-deeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1d:19:b7:dd:34:4c:b0:84:a8:b9:98:0b:6d: 8b:6e:9b:16:27:60:36:95:7d:31:0c:f5:62:27:c3: 0e:f7:f4:b5:fe:17:0f:69:02:e3:66:f2:e4:78:8e: eb:fd:bc:00:a7:f3:d8:4b:e9:af:e2:c9:3d:1d:c1: 5c:63:83:f9:7a:54:03:e6:bf:46:74:62:38:9e:44: 3c:d8:27:6c:70:21:f4:51:8d:9e:b4:ab:ce:dc:6c: d8:9e:cc:f3:a0:f0:5b:4a:33:f7:fa:53:cc:27:be: 57:59:84:df:c3:4d:67:59:7d:59:04:af:1c:20:26: 94:00:be:67:ed:37:80:a9:b9:d5:8b:9b:23:e4:ac: bb:b6:d8:f4:15:e8:cf:23:c4:c1:39:ce:ba:ca:85: 6e:c3:ba:0b:1f:2a:18:b5:39:f2:bb:0a:3c:99:38: 5b:8d:71:f2:94:01:41:92:70:de:6f:67:7e:68:9c: a7:5e:ea:fc:3d:a9:83:ac:7b:1b:4a:35:84:f6:50: 29:e1:46:c1:19:cc:41:62:c4:ba:7a:52:8d:27:30: 81:67:20:a8:99:19:44:c7:20:e7:52:fb:9f:83:c1: 0e:79:45:97:96:04:a8:c2:59:40:c8:46:dc:a2:a1: c0:36:cf:8a:73:18:ff:b0:00:09:64:1b:bc:52:04: f1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:83:AF:A0:4C:25:EF:EC:C9:D1:69:30:84:78:76:B0:59:F6:A2:7B X509v3 Authority Key Identifier: keyid:69:0C:16:A9:7E:E4:0B:89:A6:4C:B3:1F:62:A9:9A:56:30:08:2D:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916763E/85795FECF90111EF9C24C812C4F9AE02/aQwWqX7kC4mmTLMfYqmaVjAILcM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aQwWqX7kC4mmTLMfYqmaVjAILcM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916763E/85795FECF90111EF9C24C812C4F9AE02/8DD9218AF90211EF99692E40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.8.0/23 Signature Algorithm: sha256WithRSAEncryption 28:d6:6e:c9:68:e6:75:7b:1c:ff:67:2a:18:13:5a:37:71:82: f5:08:e5:03:8c:48:6d:d8:8c:0c:d6:21:58:9c:bb:c2:f4:fa: d7:b3:ee:1e:74:0c:31:85:bd:6b:35:be:7f:32:75:81:6d:14: 35:67:33:d0:2a:4f:b9:2f:45:e7:6f:10:95:68:6d:6c:88:43: df:7f:14:18:fe:b5:52:0f:83:ef:b5:69:12:26:b5:b6:b3:c8: ce:6b:c8:26:45:4d:e4:3d:8a:11:7c:fa:6f:f4:df:24:96:a8: df:cc:f2:4a:f4:3c:17:e6:d9:9a:68:68:9c:9b:b1:0d:9a:84: c2:54:58:68:5f:2e:d8:c3:3b:6b:3c:17:d7:6c:2e:aa:75:07: a1:ed:4c:c0:ea:5e:3a:ce:77:eb:aa:da:7e:0f:b9:2f:35:a3: 4b:2b:39:8b:bc:26:77:65:28:fd:32:66:83:ee:70:fa:de:ed: d5:2e:02:12:64:16:59:35:c7:b3:cb:7c:02:76:65:bf:a2:73: 61:d2:74:9b:96:b8:ef:49:15:0b:5f:8a:26:94:79:88:b2:b6: 71:b5:cc:42:ea:82:b7:5f:59:57:19:26:e9:d1:21:5e:fc:4d: cf:4b:ff:76:5b:4c:d1:99:80:3b:7d:5b:13:d4:37:6a:83:bb: 55:29:31:53 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NzYzRTExMC8GA1UEBRMoNjkwQzE2QTk3RUU0MEI4OUE2NENCMzFGNjJBOTlBNTYz MDA4MkRDMzAeFw0yNTAzMDQxNDExMjRaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YzcwYTBjLWRlZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjHRm33TRMsISouZgLbYtumxYnYDaVfTEM9WInww739LX+Fw9pAuNm8uR4juv9 vACn89hL6a/iyT0dwVxjg/l6VAPmv0Z0YjieRDzYJ2xwIfRRjZ60q87cbNiezPOg 8FtKM/f6U8wnvldZhN/DTWdZfVkErxwgJpQAvmftN4CpudWLmyPkrLu22PQV6M8j xME5zrrKhW7DugsfKhi1OfK7CjyZOFuNcfKUAUGScN5vZ35onKde6vw9qYOsextK NYT2UCnhRsEZzEFixLp6Uo0nMIFnIKiZGUTHIOdS+5+DwQ55RZeWBKjCWUDIRtyi ocA2z4pzGP+wAAlkG7xSBPEdAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUboOvoEwl 7+zJ0WkwhHh2sFn2onswHwYDVR0jBBgwFoAUaQwWqX7kC4mmTLMfYqmaVjAILcMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3NjNFLzg1Nzk1RkVDRjkw MTExRUY5QzI0QzgxMkM0RjlBRTAyL2FRd1dxWDdrQzRtbVRMTWZZcW1hVmpBSUxj TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYVF3V3FYN2tDNG1tVExNZllxbWFWakFJTGNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzYzRS84NTc5NUZFQ0Y5MDExMUVGOUMyNEM4MTJDNEY5QUUwMi84REQ5MjE4QUY5 MDIxMUVGOTk2OTJFNDBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeuCDANBgkqhkiG9w0BAQsFAAOCAQEAKNZuyWjmdXsc/2cq GBNaN3GC9QjlA4xIbdiMDNYhWJy7wvT617PuHnQMMYW9azW+fzJ1gW0UNWcz0CpP uS9F528QlWhtbIhD338UGP61Ug+D77VpEia1trPIzmvIJkVN5D2KEXz6b/TfJJao 38zySvQ8F+bZmmhonJuxDZqEwlRYaF8u2MM7azwX12wuqnUHoe1MwOpeOs5366ra fg+5LzWjSys5i7wmd2Uo/TJmg+5w+t7t1S4CEmQWWTXHs8t8AnZlv6JzYdJ0m5a4 70kVC1+KJpR5iLK2cbXMQuqCt19ZVxkm6dEhXvxNz0v/dltM0ZmAO31bE9Q3aoO7 VSkxUw== -----END CERTIFICATE-----Generated at Wed Apr 9 20:10:06 2025 by rpki-client