$ rpki-client -vvf rpki.apnic.net/member_repository/A9169ADA/FF3201CEA6B211E98D2B1860C4F9AE02/C16E8E16256511EA98F3D465C4F9AE02.roa File: C16E8E16256511EA98F3D465C4F9AE02.roa (raw, json) Hash identifier: K0BpqfADIAgpRrVb5VAxiR5k6a1N4eJk58+OYvAmefI= Subject key identifier: 02:32:64:F0:AC:85:B8:7A:9B:91:87:CF:04:A9:1B:39:4B:FB:59:54 Certificate issuer: /CN=A9169ADA/serialNumber=C41715FEF200133D9123250FBB6531E88A4A99DA Certificate serial: 0DF1 Authority key identifier: C4:17:15:FE:F2:00:13:3D:91:23:25:0F:BB:65:31:E8:8A:4A:99:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xBcV_vIAEz2RIyUPu2Ux6IpKmdo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169ADA/FF3201CEA6B211E98D2B1860C4F9AE02/C16E8E16256511EA98F3D465C4F9AE02.roa Signing time: Wed 04 Dec 2024 17:55:59 +0000 ROA not before: Wed 04 Dec 2024 17:55:59 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 23881 IP address blocks: 45.121.200.0/24 maxlen: 24 45.121.201.0/24 maxlen: 24 45.121.203.0/24 maxlen: 24 103.15.192.0/24 maxlen: 24 103.15.194.0/24 maxlen: 24 103.15.195.0/24 maxlen: 24 203.90.224.0/24 maxlen: 24 203.90.225.0/24 maxlen: 24 203.90.226.0/24 maxlen: 24 203.90.227.0/24 maxlen: 24 203.90.228.0/24 maxlen: 24 203.90.229.0/24 maxlen: 24 203.90.230.0/24 maxlen: 24 203.90.252.0/24 maxlen: 24 203.90.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169ADA/FF3201CEA6B211E98D2B1860C4F9AE02/xBcV_vIAEz2RIyUPu2Ux6IpKmdo.crl rsync://rpki.apnic.net/member_repository/A9169ADA/FF3201CEA6B211E98D2B1860C4F9AE02/xBcV_vIAEz2RIyUPu2Ux6IpKmdo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xBcV_vIAEz2RIyUPu2Ux6IpKmdo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:56:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3569 (0xdf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169ADA Validity Not Before: Dec 4 17:55:59 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=675097ae-3da0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:46:b0:22:c1:18:0c:1f:9d:8c:cf:a6:b8:bd: e1:08:09:ad:23:31:79:0d:e7:4d:de:98:09:68:83: 39:33:a2:aa:fa:72:8b:a9:f4:f9:6f:51:8a:83:48: e7:c3:68:eb:c5:83:7b:f0:85:67:22:83:e7:12:65: eb:d9:01:69:8d:51:44:98:7b:01:46:35:78:39:86: 6c:1f:27:2d:45:9c:7e:56:5d:6b:e4:8a:07:0a:a6: 75:e3:e6:83:2e:4d:e1:4d:d4:ea:4b:61:2a:28:8b: da:c2:5b:a3:04:fd:a3:a1:94:4f:bd:3f:bd:fc:b9: 4c:47:0a:7e:a2:8e:65:6c:d0:eb:78:1a:fc:ec:ee: 2a:b9:e9:ef:ab:98:8e:af:91:3b:80:91:fa:5f:20: 12:e2:08:c0:43:dd:b5:71:12:aa:b1:bb:c4:c7:25: 5c:35:f6:93:b2:de:17:49:02:a5:2e:27:bd:f5:e3: d3:89:91:da:a5:8e:ce:8a:c1:3d:a0:99:6a:b7:f9: 71:8b:8c:12:da:95:e2:99:fb:25:79:a4:74:fc:3c: 38:a3:bf:49:90:24:cf:bd:33:2b:6a:7d:b6:e2:9e: aa:83:87:aa:3e:0e:7a:e6:87:ce:3d:6e:32:67:aa: c9:08:89:d0:7e:cf:57:ec:4b:a6:95:d8:53:a9:5b: b3:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:32:64:F0:AC:85:B8:7A:9B:91:87:CF:04:A9:1B:39:4B:FB:59:54 X509v3 Authority Key Identifier: keyid:C4:17:15:FE:F2:00:13:3D:91:23:25:0F:BB:65:31:E8:8A:4A:99:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169ADA/FF3201CEA6B211E98D2B1860C4F9AE02/xBcV_vIAEz2RIyUPu2Ux6IpKmdo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xBcV_vIAEz2RIyUPu2Ux6IpKmdo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169ADA/FF3201CEA6B211E98D2B1860C4F9AE02/C16E8E16256511EA98F3D465C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.121.200.0/23 45.121.203.0/24 103.15.192.0/24 103.15.194.0/23 203.90.224.0-203.90.230.255 203.90.252.0/24 203.90.254.0/24 Signature Algorithm: sha256WithRSAEncryption 05:6a:62:e8:f2:65:1b:bc:b0:20:fc:b9:eb:da:2e:41:6e:79: 11:b9:40:e6:ed:28:4b:d7:74:55:fb:b8:98:43:24:12:9e:4e: 38:d1:0e:b0:b5:39:52:32:27:5e:c4:53:ca:e2:d9:4b:c8:ba: 1b:61:e0:74:08:4b:5a:85:ea:a4:6c:9a:76:2a:21:29:2a:3b: a7:64:b3:bb:d5:e0:0d:9d:1e:14:55:8e:9c:2e:4a:35:db:7c: 72:0d:54:4a:e9:3e:5b:07:34:48:96:da:db:c8:99:37:09:50: 2c:c9:c4:b3:69:28:54:a1:e9:5a:06:78:af:04:a1:7c:3f:d2: 1b:b0:77:ef:ad:73:0d:e3:00:c5:6d:75:da:2a:5f:47:67:66: a9:2c:d0:26:b6:39:7d:8a:d3:26:d9:83:5e:2a:ed:81:7f:74: 21:cb:5d:bd:a0:9c:49:96:24:f2:88:c3:bb:92:47:72:30:0d: b6:0d:7d:9e:c1:88:55:58:b5:5c:40:64:61:8d:ee:13:d9:0e: 60:3e:de:84:e1:8c:d4:0c:06:74:84:18:eb:d6:1c:68:ed:44: f2:29:2d:7b:a8:14:4e:82:c6:4d:3e:b9:2e:7a:24:bd:b6:d4: 0c:59:ff:d8:ef:4f:fd:f0:26:09:b8:93:fb:a3:79:bc:2a:ba: 8d:fd:ae:c8 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgICDfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlBREExMTAvBgNVBAUTKEM0MTcxNUZFRjIwMDEzM0Q5MTIzMjUwRkJCNjUzMUU4 OEE0QTk5REEwHhcNMjQxMjA0MTc1NTU5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUwOTdhZS0zZGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvkawIsEYDB+djM+muL3hCAmtIzF5DedN3pgJaIM5M6Kq+nKLqfT5b1GKg0jn w2jrxYN78IVnIoPnEmXr2QFpjVFEmHsBRjV4OYZsHyctRZx+Vl1r5IoHCqZ14+aD Lk3hTdTqS2EqKIvawlujBP2joZRPvT+9/LlMRwp+oo5lbNDreBr87O4quenvq5iO r5E7gJH6XyAS4gjAQ921cRKqsbvExyVcNfaTst4XSQKlLie99ePTiZHapY7OisE9 oJlqt/lxi4wS2pXimfsleaR0/Dw4o79JkCTPvTMran224p6qg4eqPg565ofOPW4y Z6rJCInQfs9X7EumldhTqVuzpwIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFAIyZPCs hbh6m5GHzwSpGzlL+1lUMB8GA1UdIwQYMBaAFMQXFf7yABM9kSMlD7tlMeiKSpna MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUFEQS9GRjMyMDFDRUE2 QjIxMUU5OEQyQjE4NjBDNEY5QUUwMi94QmNWX3ZJQUV6MlJJeVVQdTJVeDZJcEtt ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hCY1ZfdklBRXoyUkl5VVB1MlV4NklwS21kby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjlBREEvRkYzMjAxQ0VBNkIyMTFFOThEMkIxODYwQzRGOUFFMDIvQzE2RThFMTYy NTY1MTFFQTk4RjNENDY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E PDA6MDgEAgABMDIDBAEtecgDBAAtecsDBABnD8ADBAFnD8IwDAMEBcta4AMEAMta 5gMEAMta/AMEAMta/jANBgkqhkiG9w0BAQsFAAOCAQEABWpi6PJlG7ywIPy569ou QW55EblA5u0oS9d0Vfu4mEMkEp5OONEOsLU5UjInXsRTyuLZS8i6G2HgdAhLWoXq pGyadiohKSo7p2Szu9XgDZ0eFFWOnC5KNdt8cg1USuk+Wwc0SJba28iZNwlQLMnE s2koVKHpWgZ4rwShfD/SG7B3761zDeMAxW112ipfR2dmqSzQJrY5fYrTJtmDXirt gX90IctdvaCcSZYk8ojDu5JHcjANtg19nsGIVVi1XEBkYY3uE9kOYD7ehOGM1AwG dIQY69YcaO1E8ikte6gUToLGTT65LnokvbbUDFn/2O9P/fAmCbiT+6N5vCq6jf2u yA== -----END CERTIFICATE-----Generated at Sat Apr 5 02:20:16 2025 by rpki-client