$ rpki-client -vvf rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/D08FF4F0BB7111EFACA16B1DC4F9AE02.roa File: D08FF4F0BB7111EFACA16B1DC4F9AE02.roa (raw, json) Hash identifier: DeTJWRmDeKmiEdEbaqf7bVSh2DO8AXjNSQova+ZvrBU= Subject key identifier: 26:3B:B5:3A:37:FD:D6:B6:13:81:C2:DC:03:BF:76:B5:7B:CB:96:BA Certificate issuer: /CN=A917270F/serialNumber=7E44DCE972F13C80E534B2E685FE1D2A0D761512 Certificate serial: 0263 Authority key identifier: 7E:44:DC:E9:72:F1:3C:80:E5:34:B2:E6:85:FE:1D:2A:0D:76:15:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fkTc6XLxPIDlNLLmhf4dKg12FRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/D08FF4F0BB7111EFACA16B1DC4F9AE02.roa Signing time: Mon 16 Dec 2024 05:51:38 +0000 ROA not before: Mon 16 Dec 2024 05:51:38 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 139029 IP address blocks: 103.191.163.0/24 maxlen: 24 2400:96e0:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/fkTc6XLxPIDlNLLmhf4dKg12FRI.crl rsync://rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/fkTc6XLxPIDlNLLmhf4dKg12FRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fkTc6XLxPIDlNLLmhf4dKg12FRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 01:39:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 611 (0x263) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917270F, serialNumber=7E44DCE972F13C80E534B2E685FE1D2A0D761512 Validity Not Before: Dec 16 05:51:38 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=675fbfe9-b17b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c8:57:5d:5b:e3:c6:75:e5:b0:2f:c4:b5:63: cc:58:66:0d:be:36:69:09:c8:3c:49:01:f0:3e:15: 52:74:1e:b6:69:1f:e5:7c:50:61:20:4c:91:98:57: b4:a2:d5:d8:a0:ce:07:3f:f7:69:b7:e4:d4:b6:13: 13:fa:42:80:74:e3:94:5c:d8:d7:ca:e4:ad:d0:44: 55:d0:19:70:fd:33:86:a2:2e:a9:5c:01:9f:cc:41: ca:69:f2:5c:f0:39:59:3a:33:04:c2:87:3a:87:21: 1d:d4:06:d5:7f:f6:18:d6:1e:ba:75:2b:7d:cd:5b: 6e:48:fd:ab:26:20:70:ed:cd:0f:27:e6:ce:2a:90: 2c:b2:12:43:2d:30:16:6e:13:82:ed:8d:45:57:83: a0:de:b1:f7:3e:1c:a0:95:9e:78:d8:42:67:45:1f: 2a:16:61:39:e1:f7:f1:63:ea:15:40:2a:34:35:19: ec:9d:55:b6:ea:8c:e3:61:92:bc:54:95:68:be:22: d2:34:b7:15:d5:57:07:c7:6d:31:4e:ad:bc:0e:80: 11:6f:16:ec:06:57:bf:8b:d8:cc:70:c2:73:4c:32: 7b:61:a3:f1:a9:c9:1e:e9:67:e9:e2:18:cd:c7:a3: ca:48:4e:73:07:98:55:af:73:72:09:ba:97:fd:eb: 38:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:3B:B5:3A:37:FD:D6:B6:13:81:C2:DC:03:BF:76:B5:7B:CB:96:BA X509v3 Authority Key Identifier: keyid:7E:44:DC:E9:72:F1:3C:80:E5:34:B2:E6:85:FE:1D:2A:0D:76:15:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/fkTc6XLxPIDlNLLmhf4dKg12FRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fkTc6XLxPIDlNLLmhf4dKg12FRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917270F/DC5E74CA08E811EDB9E1B633C4F9AE02/D08FF4F0BB7111EFACA16B1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.191.163.0/24 IPv6: 2400:96e0:2000::/36 Signature Algorithm: sha256WithRSAEncryption bf:fe:8a:47:e9:8a:a6:47:1e:aa:db:05:71:a8:be:89:a1:fc: e1:54:0e:ec:e7:b4:e8:5f:8d:c2:aa:e4:18:98:81:7b:d5:80: 8a:82:98:d5:a7:f3:7c:da:ee:c3:18:77:65:ba:1f:97:66:2e: a3:fb:95:eb:6a:71:ee:79:fa:c1:b9:79:59:f4:94:eb:59:68: de:d0:96:22:13:c4:46:26:65:4f:49:01:e8:3c:c5:d0:ef:09: 87:c6:d0:6d:ee:42:1b:6e:84:12:9d:f5:a6:62:f4:b2:a6:db: 09:03:9a:3a:ab:21:5f:7a:f5:48:c3:63:e0:ed:1d:88:8b:35: 36:86:4a:2a:a9:43:9b:3c:e9:d9:ec:66:da:87:2c:2d:81:e4: 6c:1a:85:fb:d6:7c:41:da:96:02:7f:b8:90:b2:77:93:50:d7: 01:80:18:3d:ec:b0:03:5e:bb:49:e9:74:e4:58:de:e9:b9:8f: 4f:5e:53:d2:da:c1:1f:28:e6:bc:93:a2:c0:aa:5b:1d:e9:13: d0:61:88:c6:7f:41:1d:a5:74:6d:3b:38:0c:92:b1:17:56:b8: 5b:96:64:1a:21:35:b3:11:49:8c:b4:68:71:e7:4f:42:44:b6: 27:fa:9a:4b:d5:ee:d1:9b:3b:cd:ae:9e:13:71:f7:ab:75:3f: 20:d1:75:12 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICAmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI3MEYxMTAvBgNVBAUTKDdFNDREQ0U5NzJGMTNDODBFNTM0QjJFNjg1RkUxRDJB MEQ3NjE1MTIwHhcNMjQxMjE2MDU1MTM4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzVmYmZlOS1iMTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1shXXVvjxnXlsC/EtWPMWGYNvjZpCcg8SQHwPhVSdB62aR/lfFBhIEyRmFe0 otXYoM4HP/dpt+TUthMT+kKAdOOUXNjXyuSt0ERV0Blw/TOGoi6pXAGfzEHKafJc 8DlZOjMEwoc6hyEd1AbVf/YY1h66dSt9zVtuSP2rJiBw7c0PJ+bOKpAsshJDLTAW bhOC7Y1FV4Og3rH3PhyglZ542EJnRR8qFmE54ffxY+oVQCo0NRnsnVW26ozjYZK8 VJVoviLSNLcV1VcHx20xTq28DoARbxbsBle/i9jMcMJzTDJ7YaPxqcke6Wfp4hjN x6PKSE5zB5hVr3NyCbqX/es4uwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFCY7tTo3 /da2E4HC3AO/drV7y5a6MB8GA1UdIwQYMBaAFH5E3Oly8TyA5TSy5oX+HSoNdhUS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjcwRi9EQzVFNzRDQTA4 RTgxMUVEQjlFMUI2MzNDNEY5QUUwMi9ma1RjNlhMeFBJRGxOTExtaGY0ZEtnMTJG UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZrVGM2WEx4UElEbE5MTG1oZjRkS2cxMkZSSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzI3MEYvREM1RTc0Q0EwOEU4MTFFREI5RTFCNjMzQzRGOUFFMDIvRDA4RkY0RjBC QjcxMTFFRkFDQTE2QjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBABnv6MwDgQCAAIwCAMGBCQAluAgMA0GCSqGSIb3DQEBCwUA A4IBAQC//opH6YqmRx6q2wVxqL6JofzhVA7s57ToX43CquQYmIF71YCKgpjVp/N8 2u7DGHdluh+XZi6j+5XranHuefrBuXlZ9JTrWWje0JYiE8RGJmVPSQHoPMXQ7wmH xtBt7kIbboQSnfWmYvSyptsJA5o6qyFfevVIw2Pg7R2IizU2hkoqqUObPOnZ7Gba hywtgeRsGoX71nxB2pYCf7iQsneTUNcBgBg97LADXrtJ6XTkWN7puY9PXlPS2sEf KOa8k6LAqlsd6RPQYYjGf0EdpXRtOzgMkrEXVrhblmQaITWzEUmMtGhx509CRLYn +ppL1e7RmzvNrp4TcferdT8g0XUS -----END CERTIFICATE-----Generated at Sat Apr 12 23:48:00 2025 by rpki-client