$ rpki-client -vvf rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/9BAC68CC83C211EABCB66612C4F9AE02.roa File: 9BAC68CC83C211EABCB66612C4F9AE02.roa (raw, json) Hash identifier: W5ePsoGWgomEoWgiTPJkjSegEKVfUxA0uguQndmw+Ac= Subject key identifier: 2B:B4:26:5E:7B:DE:D5:84:C8:77:EA:0F:9C:B2:12:BC:C2:24:44:C2 Certificate issuer: /CN=A916A071/serialNumber=CCF2A525C0901444CA78F05B9392C00457956761 Certificate serial: 0977 Authority key identifier: CC:F2:A5:25:C0:90:14:44:CA:78:F0:5B:93:92:C0:04:57:95:67:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPKlJcCQFETKePBbk5LABFeVZ2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/9BAC68CC83C211EABCB66612C4F9AE02.roa Signing time: Wed 08 Jan 2025 20:07:48 +0000 ROA not before: Wed 08 Jan 2025 20:07:48 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 58744 IP address blocks: 103.31.96.0/24 maxlen: 24 103.31.97.0/24 maxlen: 24 103.31.98.0/24 maxlen: 24 2402:9880:100::/40 maxlen: 40 2402:9880:200::/40 maxlen: 40 2402:9880:300::/40 maxlen: 40 2402:9880:400::/40 maxlen: 40 2402:9880:500::/40 maxlen: 40 2402:9880:600::/40 maxlen: 40 2402:9880:700::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.crl rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPKlJcCQFETKePBbk5LABFeVZ2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 19:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2423 (0x977) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A071, serialNumber=CCF2A525C0901444CA78F05B9392C00457956761 Validity Not Before: Jan 8 20:07:48 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=677edb14-0193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:83:01:89:ec:4a:79:b9:30:8f:ff:ee:9e:21: 84:99:14:18:32:36:38:f0:d3:1a:f3:0b:e6:6c:61: 59:f4:ce:2a:8e:00:c5:34:e3:e3:90:dd:f1:4c:c5: 5c:5f:3c:3c:50:6a:44:6e:ca:03:ab:56:b4:c8:d8: 31:b1:3e:9a:d6:ff:e1:41:11:0a:2c:07:4d:be:6f: 73:04:9c:0b:7d:8a:91:68:66:57:94:c0:d6:06:6e: 1e:e6:61:3d:f4:8c:16:93:82:5d:89:cb:19:37:ef: 3f:bf:ef:58:44:4e:80:bd:96:c2:45:0a:93:0c:ed: 1f:06:95:69:95:8c:0c:a4:76:ee:15:32:ea:43:ba: 5f:91:e2:63:bf:63:1a:6d:91:b8:92:34:b0:6e:58: c9:71:61:ca:9d:02:6d:60:3e:0f:e3:d5:c6:4e:9b: dc:85:3b:95:e4:0b:0d:08:d3:df:1f:01:34:bb:20: 41:ed:63:71:6f:f5:d7:50:fe:a5:9c:d7:d9:e2:84: 02:13:c5:d9:06:93:e2:e0:b3:79:15:c5:a1:8c:8d: 6e:cc:fa:ef:46:8c:d7:58:4c:04:dc:3a:e6:4a:51: e9:3c:54:5d:38:3f:24:66:eb:73:92:0e:9f:1e:ef: 4f:12:64:98:65:39:e2:96:d2:09:8a:8f:57:9a:05: 82:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:B4:26:5E:7B:DE:D5:84:C8:77:EA:0F:9C:B2:12:BC:C2:24:44:C2 X509v3 Authority Key Identifier: keyid:CC:F2:A5:25:C0:90:14:44:CA:78:F0:5B:93:92:C0:04:57:95:67:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/zPKlJcCQFETKePBbk5LABFeVZ2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zPKlJcCQFETKePBbk5LABFeVZ2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A071/280B09A483BE11EA8E1DF384C4F9AE02/9BAC68CC83C211EABCB66612C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.31.96.0-103.31.98.255 IPv6: 2402:9880:100::-2402:9880:7ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 58:d7:80:ac:d2:e0:1d:04:72:0d:2d:cd:f2:50:cb:7b:bb:a6: b2:67:02:3a:f4:04:fc:a8:8e:3c:a3:58:a7:26:59:59:4a:e7: 11:15:fb:0f:99:4b:db:42:ea:7c:77:82:ed:33:c0:06:03:95: c6:a4:d7:15:06:16:3b:09:e3:81:22:4b:41:a6:15:04:07:47: de:c5:08:7e:96:f0:16:fb:91:38:92:28:c9:73:bc:fe:1a:a2: bf:c1:2f:29:cd:4c:13:f2:4c:6d:a7:5d:7b:90:22:c7:dc:57: fb:a9:b7:3b:7d:93:0c:a5:e3:b7:89:48:e2:2c:52:81:bb:0b: 0f:b5:09:36:3e:e5:31:e6:e3:47:07:1e:0e:8c:26:04:ea:83: 17:8b:95:e3:2e:4a:dc:25:c5:55:1a:58:12:78:c5:71:f6:9a: 7d:a6:32:98:3d:b1:ce:5d:4c:df:06:9d:79:38:22:03:19:e9: 1e:fd:83:79:d2:27:8b:f3:5b:8a:c1:2e:0d:78:a0:69:e3:5b: 01:82:c1:d0:1a:9b:a8:36:75:aa:e3:8f:8b:a9:51:21:67:2e: 41:cf:e3:15:19:e3:6f:85:84:8c:a3:78:ef:4b:c7:6c:43:b5: 05:53:cd:69:d3:d7:d3:9e:3e:c3:9a:07:66:87:4c:92:7b:4e: 03:0e:94:a4 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICCXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEwNzExMTAvBgNVBAUTKENDRjJBNTI1QzA5MDE0NDRDQTc4RjA1QjkzOTJDMDA0 NTc5NTY3NjEwHhcNMjUwMTA4MjAwNzQ4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdlZGIxNC0wMTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYMBiexKebkwj//uniGEmRQYMjY48NMa8wvmbGFZ9M4qjgDFNOPjkN3xTMVc Xzw8UGpEbsoDq1a0yNgxsT6a1v/hQREKLAdNvm9zBJwLfYqRaGZXlMDWBm4e5mE9 9IwWk4JdicsZN+8/v+9YRE6AvZbCRQqTDO0fBpVplYwMpHbuFTLqQ7pfkeJjv2Ma bZG4kjSwbljJcWHKnQJtYD4P49XGTpvchTuV5AsNCNPfHwE0uyBB7WNxb/XXUP6l nNfZ4oQCE8XZBpPi4LN5FcWhjI1uzPrvRozXWEwE3DrmSlHpPFRdOD8kZutzkg6f Hu9PEmSYZTniltIJio9XmgWCJQIDAQABo4ICtzCCArMwHQYDVR0OBBYEFCu0Jl57 3tWEyHfqD5yyErzCJETCMB8GA1UdIwQYMBaAFMzypSXAkBREynjwW5OSwARXlWdh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTA3MS8yODBCMDlBNDgz QkUxMUVBOEUxREYzODRDNEY5QUUwMi96UEtsSmNDUUZFVEtlUEJiazVMQUJGZVZa MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pQS2xKY0NRRkVUS2VQQmJrNUxBQkZlVloyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkEwNzEvMjgwQjA5QTQ4M0JFMTFFQThFMURGMzg0QzRGOUFFMDIvOUJBQzY4Q0M4 M0MyMTFFQUJDQjY2NjEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMBQEAgABMA4wDAMEBWcfYAMEAGcfYjAYBAIAAjASMBADBgAkApiAAQMGAyQC mIAAMA0GCSqGSIb3DQEBCwUAA4IBAQBY14Cs0uAdBHINLc3yUMt7u6ayZwI69AT8 qI48o1inJllZSucRFfsPmUvbQup8d4LtM8AGA5XGpNcVBhY7CeOBIktBphUEB0fe xQh+lvAW+5E4kijJc7z+GqK/wS8pzUwT8kxtp117kCLH3Ff7qbc7fZMMpeO3iUji LFKBuwsPtQk2PuUx5uNHBx4OjCYE6oMXi5XjLkrcJcVVGlgSeMVx9pp9pjKYPbHO XUzfBp15OCIDGeke/YN50ieL81uKwS4NeKBp41sBgsHQGpuoNnWq44+LqVEhZy5B z+MVGeNvhYSMo3jvS8dsQ7UFU81p09fTnj7Dmgdmh0ySe04DDpSk -----END CERTIFICATE-----Generated at Sun Apr 13 03:49:09 2025 by rpki-client