$ rpki-client -vvf rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/27992F96832811EFA1BAAC4FC4F9AE02.roa File: 27992F96832811EFA1BAAC4FC4F9AE02.roa (raw, json) Hash identifier: 9hr8e6Q+evY4tAAVgrktH6R5E0K57yFV9RXeFdQNtLw= Subject key identifier: 37:FC:36:05:7F:9B:65:34:03:D8:57:57:5B:A7:E4:82:C6:35:E8:7D Certificate issuer: /CN=A9170E11/serialNumber=3D6447D7297483294ECECB853A5E500935D1B8D7 Certificate serial: 042F Authority key identifier: 3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/27992F96832811EFA1BAAC4FC4F9AE02.roa Signing time: Wed 15 Jan 2025 00:03:27 +0000 ROA not before: Wed 15 Jan 2025 00:03:27 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 214640 IP address blocks: 103.177.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:28:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1071 (0x42f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170E11 Validity Not Before: Jan 15 00:03:27 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6786fb4f-11f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:60:eb:18:ae:18:b1:27:fd:84:be:21:15:54: 67:e2:13:d0:cb:55:51:80:7d:0e:1d:67:8d:71:05: c6:d6:ee:dd:27:ea:ad:d3:26:31:2e:ce:18:46:68: ee:c4:5b:6d:8e:70:bf:96:d3:32:4e:40:d0:1d:9b: 42:63:44:c3:4f:44:5a:df:22:9e:98:34:3c:68:3d: b3:c8:b5:50:33:3a:af:09:1f:75:35:7e:fa:af:ac: 33:52:2a:65:75:92:83:f9:7b:ae:bb:e6:d4:0d:23: 4b:de:20:b8:d0:39:90:5e:f0:cb:a4:84:1d:58:84: 3a:19:a5:6a:91:62:d7:bb:39:8d:34:0e:d7:9c:75: 95:be:b9:4b:26:95:2d:cb:f9:ec:9e:5d:2c:11:da: 38:8e:e8:5e:8f:ef:a9:67:b5:36:86:b4:43:3d:19: c1:5f:06:ea:da:a9:59:bd:d6:14:f9:37:c9:b3:f1: b0:c3:68:c7:62:2e:a5:e9:83:17:f3:a4:9e:74:8e: e7:da:a8:2a:5a:cb:7f:11:ed:18:8a:d0:db:15:26: a6:97:71:94:23:e0:9b:dd:b8:9c:4b:ee:a7:ce:f0: b1:b9:d5:96:1f:94:c9:94:43:e1:85:a2:6e:3a:56: 3f:73:31:f3:ab:20:c6:0c:53:b7:17:c2:72:97:3d: f4:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:FC:36:05:7F:9B:65:34:03:D8:57:57:5B:A7:E4:82:C6:35:E8:7D X509v3 Authority Key Identifier: keyid:3D:64:47:D7:29:74:83:29:4E:CE:CB:85:3A:5E:50:09:35:D1:B8:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/PWRH1yl0gylOzsuFOl5QCTXRuNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PWRH1yl0gylOzsuFOl5QCTXRuNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170E11/D060C9B25BD611ECAD833651C4F9AE02/27992F96832811EFA1BAAC4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.177.248.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:fb:45:12:b3:fa:cb:ff:13:8f:33:65:b4:bb:87:5a:db:6d: bd:40:d9:2c:a7:da:69:6b:31:59:db:61:e5:a5:2a:ef:bc:77: 21:9e:f4:7d:96:b9:c1:73:36:d3:3d:a1:d1:3a:41:3b:75:b8: d6:1c:8e:1d:03:21:55:9c:bb:ba:55:0e:ad:77:86:85:29:04: 99:3a:d0:63:b1:a4:b8:d3:8b:9b:f0:cd:72:6a:17:2b:47:fe: 1a:a4:cb:a9:48:56:b8:f8:7e:22:23:42:65:a4:78:16:c9:2f: 50:3b:76:a8:7b:0d:db:a5:f2:da:21:05:95:31:8a:38:6b:08: da:2c:89:64:43:27:4b:ed:21:44:d1:9a:42:a3:3c:91:bf:38: d7:97:01:0b:e5:e9:44:5d:ae:6f:f9:4e:0a:30:f0:32:f9:e8: 20:6d:2d:2d:a0:54:fd:90:58:a7:0c:39:de:cd:37:bd:ed:01: 12:45:cb:31:8d:80:2d:56:4e:ef:db:5c:d1:a1:75:89:ac:e0: 21:14:1c:5f:ba:d5:ea:89:99:37:84:56:37:20:09:ac:0a:47: 18:9c:60:e8:12:9c:07:9e:5a:45:2c:16:a0:42:e6:cb:62:32: b9:c7:3e:f2:9b:68:1e:c8:7b:57:14:0e:75:de:4f:be:05:b6: 8c:77:7b:35 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFMTExMTAvBgNVBAUTKDNENjQ0N0Q3Mjk3NDgzMjk0RUNFQ0I4NTNBNUU1MDA5 MzVEMUI4RDcwHhcNMjUwMTE1MDAwMzI3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg2ZmI0Zi0xMWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWDrGK4YsSf9hL4hFVRn4hPQy1VRgH0OHWeNcQXG1u7dJ+qt0yYxLs4YRmju xFttjnC/ltMyTkDQHZtCY0TDT0Ra3yKemDQ8aD2zyLVQMzqvCR91NX76r6wzUipl dZKD+Xuuu+bUDSNL3iC40DmQXvDLpIQdWIQ6GaVqkWLXuzmNNA7XnHWVvrlLJpUt y/nsnl0sEdo4juhej++pZ7U2hrRDPRnBXwbq2qlZvdYU+TfJs/Gww2jHYi6l6YMX 86SedI7n2qgqWst/Ee0YitDbFSaml3GUI+Cb3bicS+6nzvCxudWWH5TJlEPhhaJu OlY/czHzqyDGDFO3F8Jylz30fQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDf8NgV/ m2U0A9hXV1un5ILGNeh9MB8GA1UdIwQYMBaAFD1kR9cpdIMpTs7LhTpeUAk10bjX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEUxMS9EMDYwQzlCMjVC RDYxMUVDQUQ4MzM2NTFDNEY5QUUwMi9QV1JIMXlsMGd5bE96c3VGT2w1UUNUWFJ1 TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BXUkgxeWwwZ3lsT3pzdUZPbDVRQ1RYUnVOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBFMTEvRDA2MEM5QjI1QkQ2MTFFQ0FEODMzNjUxQzRGOUFFMDIvMjc5OTJGOTY4 MzI4MTFFRkExQkFBQzRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnsfgwDQYJKoZIhvcNAQELBQADggEBAEv7RRKz+sv/E48z ZbS7h1rbbb1A2Syn2mlrMVnbYeWlKu+8dyGe9H2WucFzNtM9odE6QTt1uNYcjh0D IVWcu7pVDq13hoUpBJk60GOxpLjTi5vwzXJqFytH/hqky6lIVrj4fiIjQmWkeBbJ L1A7dqh7Ddul8tohBZUxijhrCNosiWRDJ0vtIUTRmkKjPJG/ONeXAQvl6URdrm/5 Tgow8DL56CBtLS2gVP2QWKcMOd7NN73tARJFyzGNgC1WTu/bXNGhdYms4CEUHF+6 1eqJmTeEVjcgCawKRxicYOgSnAeeWkUsFqBC5stiMrnHPvKbaB7Ie1cUDnXeT74F tox3ezU= -----END CERTIFICATE-----Generated at Sat Apr 5 07:18:34 2025 by rpki-client