$ rpki-client -vvf rpki.apnic.net/member_repository/A9169CD3/812286D2471111E5A4496335C4F9AE02/6FEB20F0EF3011EFB4C15420C4F9AE02.roa File: 6FEB20F0EF3011EFB4C15420C4F9AE02.roa (raw, json) Hash identifier: rk5n7G9m4WZW7jLcqxF5X+WaA+gvkbnGPhX3dWrSEeA= Subject key identifier: 62:A4:AE:D4:AC:7B:B5:E1:94:55:0E:8D:E9:C9:35:42:97:9A:3B:25 Certificate issuer: /CN=A9169CD3/serialNumber=AC4191AC3A1A9396E78D612F374DBACC8F2D91B5 Certificate serial: 2468 Authority key identifier: AC:41:91:AC:3A:1A:93:96:E7:8D:61:2F:37:4D:BA:CC:8F:2D:91:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rEGRrDoak5bnjWEvN026zI8tkbU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169CD3/812286D2471111E5A4496335C4F9AE02/6FEB20F0EF3011EFB4C15420C4F9AE02.roa Signing time: Thu 20 Feb 2025 02:14:39 +0000 ROA not before: Thu 20 Feb 2025 02:14:39 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 132730 IP address blocks: 103.24.32.0/22 maxlen: 22 103.24.32.0/22 maxlen: 24 103.24.32.0/24 maxlen: 24 103.24.33.0/24 maxlen: 24 103.24.34.0/24 maxlen: 24 103.24.35.0/24 maxlen: 24 103.224.28.0/22 maxlen: 24 163.53.28.0/22 maxlen: 22 163.53.28.0/22 maxlen: 24 163.53.28.0/24 maxlen: 24 163.53.29.0/24 maxlen: 24 163.53.30.0/24 maxlen: 24 163.53.31.0/24 maxlen: 24 2406:b100::/32 maxlen: 32 2406:b100::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169CD3/812286D2471111E5A4496335C4F9AE02/rEGRrDoak5bnjWEvN026zI8tkbU.crl rsync://rpki.apnic.net/member_repository/A9169CD3/812286D2471111E5A4496335C4F9AE02/rEGRrDoak5bnjWEvN026zI8tkbU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rEGRrDoak5bnjWEvN026zI8tkbU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9320 (0x2468) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169CD3 Validity Not Before: Feb 20 02:14:39 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67b6900f-8e8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:61:f6:ee:ff:94:5e:42:95:05:68:c3:d5:d5: 2a:a8:56:cd:fb:94:4d:c1:f9:65:52:82:f2:28:11: eb:fc:4b:30:63:8c:5b:ce:4a:da:60:2a:f7:a3:43: a8:e2:ba:46:ba:70:82:55:84:10:3c:23:cd:a4:7d: 38:0a:1d:58:c0:13:14:3f:e5:5a:86:33:e5:63:d0: 51:5b:aa:4b:9b:28:3b:74:49:1c:95:8f:df:09:50: 4f:ba:3f:21:13:ac:2b:a3:ef:97:a0:bb:4d:74:82: 98:ec:18:f0:91:87:97:94:dc:07:76:3c:12:32:00: c7:43:1a:e7:2b:be:44:35:71:3b:0e:3c:47:00:34: d1:4e:7e:e3:d6:c0:f0:05:25:dd:ff:83:89:1e:ef: c7:61:c0:40:81:45:31:1a:1a:c6:3c:b9:56:c2:29: fd:9d:e1:21:a6:0e:da:6a:ff:d2:71:79:5b:59:26: b4:12:5a:33:13:e9:e7:0b:a3:b8:f1:b8:a1:eb:bd: db:6f:62:4c:ff:a6:11:5b:76:63:5a:df:d0:7a:d1: 45:55:85:11:55:0e:90:1d:99:d5:ef:be:35:bc:5e: 00:33:4c:d8:fc:66:4b:a7:5b:20:86:1b:72:69:f6: 9b:c1:4d:74:33:90:2c:6d:96:e8:54:ce:ee:dd:6b: 09:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:A4:AE:D4:AC:7B:B5:E1:94:55:0E:8D:E9:C9:35:42:97:9A:3B:25 X509v3 Authority Key Identifier: keyid:AC:41:91:AC:3A:1A:93:96:E7:8D:61:2F:37:4D:BA:CC:8F:2D:91:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169CD3/812286D2471111E5A4496335C4F9AE02/rEGRrDoak5bnjWEvN026zI8tkbU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rEGRrDoak5bnjWEvN026zI8tkbU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169CD3/812286D2471111E5A4496335C4F9AE02/6FEB20F0EF3011EFB4C15420C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.32.0/22 103.224.28.0/22 163.53.28.0/22 IPv6: 2406:b100::/32 Signature Algorithm: sha256WithRSAEncryption 21:52:a3:8a:99:72:39:1d:80:8b:f6:5a:08:64:18:bf:d7:ef: e6:77:44:c1:01:3c:d4:0c:22:ae:86:56:d9:20:b6:89:13:ca: ed:57:12:1a:99:31:5f:6d:83:c4:79:02:24:79:18:d9:ca:09: d3:c4:0f:b3:e3:5b:21:54:0f:1d:83:98:d2:e2:8d:05:85:5c: 18:b6:56:61:1e:eb:12:88:4d:ac:a3:f5:90:7a:3b:ba:85:b9: af:cc:32:76:33:9b:ed:bf:f8:58:6e:32:27:4c:6c:c7:dc:b4: 67:80:af:ec:db:79:4a:d5:00:e6:87:4d:2c:e3:82:c2:fd:27: a7:64:8e:34:fa:3c:53:8f:d5:6b:8f:69:38:a5:f9:cf:2a:70: b9:4c:27:56:4e:d0:5f:97:e3:4a:e4:6a:cf:b1:31:4f:d0:42: 6a:33:d2:b6:eb:4a:fa:5a:f4:59:d7:97:c1:71:bc:5a:74:93: 9b:6e:a4:f3:48:c2:b4:50:6c:9c:35:2b:77:24:be:05:7b:b1: 49:58:1b:ee:03:30:95:05:c9:83:d4:c2:db:93:4a:4e:1a:25: 50:6d:41:0b:22:4e:07:d3:ae:d8:92:6d:ac:b5:89:db:2c:bd: 72:6d:9f:f5:44:05:7d:71:ae:64:03:d5:b7:fd:d5:b0:76:ca: 51:2b:4e:af -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICJGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlDRDMxMTAvBgNVBAUTKEFDNDE5MUFDM0ExQTkzOTZFNzhENjEyRjM3NERCQUND OEYyRDkxQjUwHhcNMjUwMjIwMDIxNDM5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I2OTAwZi04ZThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoWH27v+UXkKVBWjD1dUqqFbN+5RNwfllUoLyKBHr/EswY4xbzkraYCr3o0Oo 4rpGunCCVYQQPCPNpH04Ch1YwBMUP+VahjPlY9BRW6pLmyg7dEkclY/fCVBPuj8h E6wro++XoLtNdIKY7BjwkYeXlNwHdjwSMgDHQxrnK75ENXE7DjxHADTRTn7j1sDw BSXd/4OJHu/HYcBAgUUxGhrGPLlWwin9neEhpg7aav/ScXlbWSa0ElozE+nnC6O4 8bih673bb2JM/6YRW3ZjWt/QetFFVYURVQ6QHZnV7741vF4AM0zY/GZLp1sghhty afabwU10M5AsbZboVM7u3WsJrwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFGKkrtSs e7XhlFUOjenJNUKXmjslMB8GA1UdIwQYMBaAFKxBkaw6GpOW541hLzdNusyPLZG1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUNEMy84MTIyODZEMjQ3 MTExMUU1QTQ0OTYzMzVDNEY5QUUwMi9yRUdSckRvYWs1Ym5qV0V2TjAyNnpJOHRr YlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JFR1JyRG9hazVibmpXRXZOMDI2ekk4dGtiVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjlDRDMvODEyMjg2RDI0NzExMTFFNUE0NDk2MzM1QzRGOUFFMDIvNkZFQjIwRjBF RjMwMTFFRkI0QzE1NDIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJnGCADBAJn4BwDBAKjNRwwDQQCAAIwBwMFACQGsQAwDQYJ KoZIhvcNAQELBQADggEBACFSo4qZcjkdgIv2WghkGL/X7+Z3RMEBPNQMIq6GVtkg tokTyu1XEhqZMV9tg8R5AiR5GNnKCdPED7PjWyFUDx2DmNLijQWFXBi2VmEe6xKI Tayj9ZB6O7qFua/MMnYzm+2/+FhuMidMbMfctGeAr+zbeUrVAOaHTSzjgsL9J6dk jjT6PFOP1WuPaTil+c8qcLlMJ1ZO0F+X40rkas+xMU/QQmoz0rbrSvpa9FnXl8Fx vFp0k5tupPNIwrRQbJw1K3ckvgV7sUlYG+4DMJUFyYPUwtuTSk4aJVBtQQsiTgfT rtiSbay1idssvXJtn/VEBX1xrmQD1bf91bB2ylErTq8= -----END CERTIFICATE-----Generated at Sun Apr 6 06:39:50 2025 by rpki-client