$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/4D06CD2C667411EF8E723587C4F9AE02.roa File: 4D06CD2C667411EF8E723587C4F9AE02.roa (raw, json) Hash identifier: 4PdtbIsL2ZotyQ7lOujn962oNOjC34OWUPtAk2nb5/I= Subject key identifier: A3:E5:91:B4:A4:E3:12:84:04:D6:B0:C6:8F:07:A6:76:35:47:D3:30 Certificate issuer: /CN=A9170DD8/serialNumber=E6B54D027CE3498BF35E4D065BC478A936C16169 Certificate serial: 47 Authority key identifier: E6:B5:4D:02:7C:E3:49:8B:F3:5E:4D:06:5B:C4:78:A9:36:C1:61:69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/4D06CD2C667411EF8E723587C4F9AE02.roa Signing time: Tue 31 Dec 2024 05:59:58 +0000 ROA not before: Tue 31 Dec 2024 05:59:58 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 4049 IP address blocks: 103.79.88.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:05:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DD8 Validity Not Before: Dec 31 05:59:58 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6773885e-b364 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c5:c8:75:5f:98:59:ef:af:32:b0:d2:ee:5f: ad:8b:48:59:f0:f1:44:4a:45:06:4e:76:14:11:ef: 75:53:83:16:e5:e9:88:7e:97:99:9b:a1:09:33:32: d6:d0:9a:1d:85:c7:bb:05:fc:37:f7:f3:45:a9:74: e8:4b:83:39:e9:fc:b7:a4:fa:c1:86:c0:1f:39:38: 92:96:df:1f:79:29:78:11:0a:67:55:8f:43:07:c6: 1e:52:70:e3:91:28:d5:ac:27:74:2a:ae:a5:09:3b: 60:69:ea:fd:dc:8e:d7:a5:9a:73:63:dc:2b:21:50: d1:ec:e5:74:6f:84:c0:10:85:91:ab:8f:d9:fa:07: ec:d2:c2:e4:fd:9d:f5:22:05:e6:83:f8:96:42:0b: 03:da:e9:c7:7d:ec:d2:d9:3e:1d:5a:9e:fc:3c:20: 84:4d:3c:88:a3:31:c9:7c:30:55:20:81:fa:5a:cb: 54:58:48:10:b4:0c:38:df:5a:05:d4:b1:da:d8:7b: 91:d8:d9:f4:f8:db:77:d1:3b:00:e8:2a:e9:dd:29: 43:49:eb:c4:93:cf:28:34:87:d1:14:3f:c2:43:8c: a7:3a:2d:14:a0:44:87:bd:0a:c3:f4:c1:c7:9d:52: a2:d5:f9:7b:22:a5:40:e5:92:8f:6b:8c:74:d6:36: 98:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:E5:91:B4:A4:E3:12:84:04:D6:B0:C6:8F:07:A6:76:35:47:D3:30 X509v3 Authority Key Identifier: keyid:E6:B5:4D:02:7C:E3:49:8B:F3:5E:4D:06:5B:C4:78:A9:36:C1:61:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/4D06CD2C667411EF8E723587C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.88.0/23 Signature Algorithm: sha256WithRSAEncryption c8:6e:d5:ac:53:a1:48:23:ea:0e:cf:89:14:04:2b:f3:f2:fd: 5f:91:07:1f:f4:fe:89:d9:0b:0f:b4:6a:7f:00:5a:39:39:45: 6c:f8:31:e9:4e:e0:3a:1c:9e:51:f9:dd:0c:25:1d:ae:ff:e7: 70:5b:2c:dd:53:ad:7f:fa:ef:29:c0:c0:33:be:8d:0c:70:45: 32:64:10:9d:ce:47:6f:c0:56:4b:a3:a4:65:03:2b:72:a5:e2: 63:f5:63:4a:e5:80:d1:25:43:68:41:af:30:c2:11:b4:45:cb: fa:d9:69:de:db:8f:3c:a1:97:eb:9d:8b:d8:34:3a:95:a4:48: fe:18:f2:2e:47:74:c2:75:b0:a5:e4:9e:16:11:a5:5c:47:7e: 5a:82:07:68:76:24:52:eb:be:d0:3b:44:51:4f:a5:0e:17:c0: 98:bd:f1:77:d5:57:ac:5e:f3:16:5a:cc:e0:0c:1d:7b:79:11: fb:2f:ef:1e:8b:36:67:19:5f:60:5b:0c:a8:c7:6f:d1:3c:4d: 42:85:d1:06:37:9a:7e:6d:aa:a5:2b:a3:90:dc:b2:ce:12:21: 01:d8:63:02:e9:a6:2d:24:18:f6:1b:ad:c5:5b:3e:ad:e4:6d: c0:1a:07:67:d5:59:41:f7:15:f0:15:fd:2c:78:71:97:8c:8d: d3:20:bf:92 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MEREODExMC8GA1UEBRMoRTZCNTREMDI3Q0UzNDk4QkYzNUU0RDA2NUJDNDc4QTkz NkMxNjE2OTAeFw0yNDEyMzEwNTU5NThaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NzM4ODVlLWIzNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFxch1X5hZ768ysNLuX62LSFnw8URKRQZOdhQR73VTgxbl6Yh+l5mboQkzMtbQ mh2Fx7sF/Df380WpdOhLgznp/Lek+sGGwB85OJKW3x95KXgRCmdVj0MHxh5ScOOR KNWsJ3QqrqUJO2Bp6v3cjtelmnNj3CshUNHs5XRvhMAQhZGrj9n6B+zSwuT9nfUi BeaD+JZCCwPa6cd97NLZPh1anvw8IIRNPIijMcl8MFUggfpay1RYSBC0DDjfWgXU sdrYe5HY2fT423fROwDoKundKUNJ68STzyg0h9EUP8JDjKc6LRSgRIe9CsP0wced UqLV+XsipUDlko9rjHTWNph3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUo+WRtKTj EoQE1rDGjwemdjVH0zAwHwYDVR0jBBgwFoAU5rVNAnzjSYvzXk0GW8R4qTbBYWkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwREQ4L0E2NkE3NUVFNjVC QjExRUZBRkEzMkY4MkM0RjlBRTAyLzVyVk5BbnpqU1l2elhrMEdXOFI0cVRiQllX ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNXJWTkFuempTWXZ6WGswR1c4UjRxVGJCWVdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEREOC9BNjZBNzVFRTY1QkIxMUVGQUZBMzJGODJDNEY5QUUwMi80RDA2Q0QyQzY2 NzQxMUVGOEU3MjM1ODdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWdPWDANBgkqhkiG9w0BAQsFAAOCAQEAyG7VrFOhSCPqDs+J FAQr8/L9X5EHH/T+idkLD7RqfwBaOTlFbPgx6U7gOhyeUfndDCUdrv/ncFss3VOt f/rvKcDAM76NDHBFMmQQnc5Hb8BWS6OkZQMrcqXiY/VjSuWA0SVDaEGvMMIRtEXL +tlp3tuPPKGX652L2DQ6laRI/hjyLkd0wnWwpeSeFhGlXEd+WoIHaHYkUuu+0DtE UU+lDhfAmL3xd9VXrF7zFlrM4Awde3kR+y/vHos2ZxlfYFsMqMdv0TxNQoXRBjea fm2qpSujkNyyzhIhAdhjAummLSQY9hutxVs+reRtwBoHZ9VZQfcV8BX9LHhxl4yN 0yC/kg== -----END CERTIFICATE-----Generated at Sat Apr 5 07:18:46 2025 by rpki-client