$ rpki-client -vvf rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/B9D0CC00D67311EEAD5F8B0FC4F9AE02.roa File: B9D0CC00D67311EEAD5F8B0FC4F9AE02.roa (raw, json) Hash identifier: xnj1+DqNRGp1sU91Z+zGlbx4vpo9U2+YWkznSk4BLXI= Subject key identifier: B1:13:92:09:EE:83:76:1D:38:0C:F9:49:4D:CC:8B:E8:0B:93:D3:AF Certificate issuer: /CN=A9168D20/serialNumber=717A78D83EC38F17110273281398449ECDD10500 Certificate serial: 05F2 Authority key identifier: 71:7A:78:D8:3E:C3:8F:17:11:02:73:28:13:98:44:9E:CD:D1:05:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXp42D7DjxcRAnMoE5hEns3RBQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/B9D0CC00D67311EEAD5F8B0FC4F9AE02.roa Signing time: Wed 18 Dec 2024 22:42:26 +0000 ROA not before: Wed 18 Dec 2024 22:42:26 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 152596 IP address blocks: 103.125.220.0/23 maxlen: 23 103.125.220.0/24 maxlen: 24 103.125.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.crl rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXp42D7DjxcRAnMoE5hEns3RBQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:53:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1522 (0x5f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168D20 Validity Not Before: Dec 18 22:42:26 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67634fd2-ac3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:54:cc:e6:8a:f6:33:2e:fb:b7:a5:fb:d7:28: 54:a0:89:e5:b2:26:fe:a6:63:cb:28:98:f2:25:0f: 67:cd:92:7f:b3:2e:15:3f:f9:b5:9d:bc:ae:ad:24: 0e:bd:ad:ce:e1:78:2a:e2:cc:bd:a1:56:49:f5:21: 86:34:5f:d6:37:d8:46:bb:ca:32:c2:79:18:89:16: d3:f2:46:d1:a7:ac:5d:89:01:2c:b7:cd:e8:a5:13: 94:f1:9f:c3:30:97:7c:5a:7d:56:0b:ac:b5:fb:0e: cc:a4:62:4b:9b:9e:4d:01:e1:07:a3:4e:5e:3e:ce: 6a:39:8f:5c:42:47:ee:8e:3b:ee:c6:ef:e3:bc:ed: df:4e:dc:c4:b7:0b:08:cf:78:9a:12:77:dd:13:dc: 65:25:e2:1f:9f:35:92:6e:67:ec:b3:ff:c1:f2:09: 73:04:d6:bd:ba:1e:8b:8a:df:31:35:7a:4d:81:cb: e4:61:91:e7:9c:64:a2:bd:c2:52:36:04:47:33:5f: 9c:f4:cf:fe:df:fd:1f:bc:ab:2d:2f:a1:a4:bf:db: 93:8c:4a:02:ea:df:0b:53:36:ce:ce:6b:2d:36:4a: d0:8c:07:2c:a0:b4:37:c9:45:ab:6c:1a:c6:53:89: 5f:83:e7:47:84:68:a3:a6:2d:a0:a3:3d:3e:de:c4: b1:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:13:92:09:EE:83:76:1D:38:0C:F9:49:4D:CC:8B:E8:0B:93:D3:AF X509v3 Authority Key Identifier: keyid:71:7A:78:D8:3E:C3:8F:17:11:02:73:28:13:98:44:9E:CD:D1:05:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXp42D7DjxcRAnMoE5hEns3RBQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/B9D0CC00D67311EEAD5F8B0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.220.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:ed:d6:c7:2a:eb:4f:49:59:da:11:7d:cc:49:27:87:d8:48: c0:63:dd:02:64:ec:0f:59:ca:46:ac:ac:05:f4:ba:48:8e:76: d4:73:7a:7a:2c:bb:42:40:b3:7e:8f:2a:9c:bf:a3:9e:43:5a: fa:02:43:2b:7e:d7:f1:e6:02:e1:65:5c:f9:45:d3:c4:07:a9: ba:39:e0:15:45:83:5d:1d:27:cd:2b:0b:de:16:7c:88:df:c5: c8:1d:69:ef:30:9b:23:7d:9f:b8:0d:5d:f4:f9:49:51:ce:9e: ee:be:f0:c0:6b:32:9e:c9:61:93:ed:ae:1d:9d:84:aa:19:0a: 34:5f:52:09:51:7b:6d:ad:ac:7f:2f:38:c9:1f:f5:6d:4f:aa: 01:8b:e3:14:77:97:0c:d0:d2:4f:0c:19:ee:29:d8:0a:6b:20: d7:1f:09:b5:e9:da:97:68:43:1b:8a:fe:82:5a:01:1a:47:c0: c0:77:2f:90:9c:6e:e3:df:f1:1b:16:db:d7:70:68:6d:2d:8c: d0:a6:9f:89:66:b0:c4:9a:7b:bc:ac:22:6b:a8:26:eb:d1:a6: fd:68:91:07:23:2c:ba:92:7c:8c:3c:1e:60:c4:4d:7e:13:22: 1f:1c:db:0c:d5:45:ec:bd:02:27:0b:ee:22:22:91:0c:69:1f: 5b:92:f3:f3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhEMjAxMTAvBgNVBAUTKDcxN0E3OEQ4M0VDMzhGMTcxMTAyNzMyODEzOTg0NDlF Q0REMTA1MDAwHhcNMjQxMjE4MjI0MjI2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYzNGZkMi1hYzNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2VTM5or2My77t6X71yhUoInlsib+pmPLKJjyJQ9nzZJ/sy4VP/m1nbyurSQO va3O4Xgq4sy9oVZJ9SGGNF/WN9hGu8oywnkYiRbT8kbRp6xdiQEst83opROU8Z/D MJd8Wn1WC6y1+w7MpGJLm55NAeEHo05ePs5qOY9cQkfujjvuxu/jvO3fTtzEtwsI z3iaEnfdE9xlJeIfnzWSbmfss//B8glzBNa9uh6Lit8xNXpNgcvkYZHnnGSivcJS NgRHM1+c9M/+3/0fvKstL6Gkv9uTjEoC6t8LUzbOzmstNkrQjAcsoLQ3yUWrbBrG U4lfg+dHhGijpi2goz0+3sSxAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLETkgnu g3YdOAz5SU3Mi+gLk9OvMB8GA1UdIwQYMBaAFHF6eNg+w48XEQJzKBOYRJ7N0QUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEQyMC9DMEM2QUU1Qzkz NUIxMUVCOTEwODZENTVDNEY5QUUwMi9jWHA0MkQ3RGp4Y1JBbk1vRTVoRW5zM1JC UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NYcDQyRDdEanhjUkFuTW9FNWhFbnMzUkJRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjhEMjAvQzBDNkFFNUM5MzVCMTFFQjkxMDg2RDU1QzRGOUFFMDIvQjlEMENDMDBE NjczMTFFRUFENUY4QjBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnfdwwDQYJKoZIhvcNAQELBQADggEBAH7t1scq609JWdoR fcxJJ4fYSMBj3QJk7A9ZykasrAX0ukiOdtRzenosu0JAs36PKpy/o55DWvoCQyt+ 1/HmAuFlXPlF08QHqbo54BVFg10dJ80rC94WfIjfxcgdae8wmyN9n7gNXfT5SVHO nu6+8MBrMp7JYZPtrh2dhKoZCjRfUglRe22trH8vOMkf9W1PqgGL4xR3lwzQ0k8M Ge4p2AprINcfCbXp2pdoQxuK/oJaARpHwMB3L5CcbuPf8RsW29dwaG0tjNCmn4lm sMSae7ysImuoJuvRpv1okQcjLLqSfIw8HmDETX4TIh8c2wzVRey9AicL7iIikQxp H1uS8/M= -----END CERTIFICATE-----Generated at Sun Apr 6 16:17:49 2025 by rpki-client