$ rpki-client -vvf rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/65BB3518D3BD11EFA52FF783C4F9AE02.roa File: 65BB3518D3BD11EFA52FF783C4F9AE02.roa (raw, json) Hash identifier: i/EZaFvZG8APBZoGgzEqNCc2JUzVAPKb3k4/6st6F+k= Subject key identifier: 61:71:49:7E:6F:70:D4:2E:0C:51:C9:C1:98:77:EB:F5:FD:03:87:2A Certificate issuer: /CN=A9172A52/serialNumber=674AC57C099876A06657180B34E24E6EEE884411 Certificate serial: 61 Authority key identifier: 67:4A:C5:7C:09:98:76:A0:66:57:18:0B:34:E2:4E:6E:EE:88:44:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0rFfAmYdqBmVxgLNOJObu6IRBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/65BB3518D3BD11EFA52FF783C4F9AE02.roa Signing time: Thu 16 Jan 2025 03:53:08 +0000 ROA not before: Thu 16 Jan 2025 03:53:08 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.78.222.0/24 maxlen: 24 103.78.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/Z0rFfAmYdqBmVxgLNOJObu6IRBE.crl rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/Z0rFfAmYdqBmVxgLNOJObu6IRBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0rFfAmYdqBmVxgLNOJObu6IRBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 06:24:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172A52 Validity Not Before: Jan 16 03:53:08 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=678882a4-e071 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1b:9b:c5:03:ad:ac:e1:c0:21:71:bd:f7:61: e0:a1:c3:6d:56:76:55:3a:82:54:4a:93:45:a4:22: 50:c3:b2:3f:ec:6f:3f:f7:0b:b3:57:83:12:10:ac: f0:4e:bf:2d:0e:02:78:f8:47:2d:1b:9f:f9:ad:94: 85:41:ac:76:ba:2f:98:ff:b2:e5:8b:70:94:64:9f: cf:ba:c1:37:42:1f:65:ba:94:9e:a1:db:fa:bf:be: 97:7a:1f:28:dd:97:cd:7c:13:a2:9b:65:2d:3b:34: ec:6e:81:c1:e3:b0:12:8d:fc:f6:1e:df:76:5b:e4: a1:8b:90:69:36:29:ba:69:60:a1:eb:8c:e5:b1:00: 54:42:83:27:84:e9:a1:df:f1:3e:0e:4b:17:d6:5f: 9b:d4:fa:5c:8f:a8:4d:01:f6:eb:fd:57:0f:2f:1c: 94:8c:c1:25:a8:06:6f:54:96:c3:5b:25:b0:da:d4: bd:98:50:4a:5c:e4:9c:69:ff:0b:55:70:83:1a:2c: 7b:95:ee:fa:2e:7c:d5:3a:45:51:40:76:6e:28:ed: 4d:db:a2:64:36:b5:e9:4c:91:af:75:65:1a:18:04: 08:01:84:4f:83:ab:9f:39:cd:68:fa:2d:72:78:b1: 47:9f:29:c4:80:80:a9:3e:96:3a:fa:a0:8c:34:bc: 55:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:71:49:7E:6F:70:D4:2E:0C:51:C9:C1:98:77:EB:F5:FD:03:87:2A X509v3 Authority Key Identifier: keyid:67:4A:C5:7C:09:98:76:A0:66:57:18:0B:34:E2:4E:6E:EE:88:44:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/Z0rFfAmYdqBmVxgLNOJObu6IRBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0rFfAmYdqBmVxgLNOJObu6IRBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/65BB3518D3BD11EFA52FF783C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.78.222.0/23 Signature Algorithm: sha256WithRSAEncryption 28:c8:14:af:da:9a:66:27:59:e1:91:97:a7:ed:d7:50:7f:15: 60:c8:eb:74:6e:61:db:16:71:c4:ed:d1:7c:c9:8c:85:c7:db: ee:b2:fe:3a:59:5c:07:e6:55:89:d9:f3:fe:b1:e5:7a:e9:3b: 62:b4:12:92:3c:1d:57:0a:82:98:d8:13:a3:eb:3a:17:cb:2c: fd:d6:7d:c5:78:65:5b:5b:f6:57:e9:cc:54:c7:1a:2d:2d:6c: 8c:07:02:44:d9:34:f1:da:d2:6b:bd:78:2f:97:eb:06:f3:31: 89:1a:73:6e:21:c2:83:94:00:a8:f8:63:94:d4:c0:ca:3b:64: c7:00:59:f8:7f:e8:39:9c:a4:e9:f0:26:2f:39:07:de:ef:78: b5:fc:f7:d9:ca:20:f5:4e:b6:de:d2:ad:7c:c6:83:03:dc:e3: e5:1b:ac:69:1d:c4:37:36:59:36:26:62:fb:fa:18:2d:9d:19: bf:10:4a:f1:b1:5c:89:26:54:e0:fe:4e:33:7c:10:df:4a:c9: 64:f9:bf:89:81:7c:0f:01:38:4e:7e:78:a5:4b:ae:fc:a0:af: e0:18:5a:55:bd:6d:bd:4c:eb:80:cf:f0:97:cd:0d:82:39:68: 99:14:e1:40:22:a9:bc:c2:41:c5:5f:1f:a7:98:b0:08:8e:ca: 93:15:0f:69 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MkE1MjExMC8GA1UEBRMoNjc0QUM1N0MwOTk4NzZBMDY2NTcxODBCMzRFMjRFNkVF RTg4NDQxMTAeFw0yNTAxMTYwMzUzMDhaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ODg4MmE0LWUwNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9G5vFA62s4cAhcb33YeChw21WdlU6glRKk0WkIlDDsj/sbz/3C7NXgxIQrPBO vy0OAnj4Ry0bn/mtlIVBrHa6L5j/suWLcJRkn8+6wTdCH2W6lJ6h2/q/vpd6Hyjd l818E6KbZS07NOxugcHjsBKN/PYe33Zb5KGLkGk2KbppYKHrjOWxAFRCgyeE6aHf 8T4OSxfWX5vU+lyPqE0B9uv9Vw8vHJSMwSWoBm9UlsNbJbDa1L2YUEpc5Jxp/wtV cIMaLHuV7voufNU6RVFAdm4o7U3bomQ2telMka91ZRoYBAgBhE+Dq585zWj6LXJ4 sUefKcSAgKk+ljr6oIw0vFXlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUYXFJfm9w 1C4MUcnBmHfr9f0DhyowHwYDVR0jBBgwFoAUZ0rFfAmYdqBmVxgLNOJObu6IRBEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyQTUyLzNFNzZEN0VFOTgx OTExRUZCMEQwREQzNEM0RjlBRTAyL1owckZmQW1ZZHFCbVZ4Z0xOT0pPYnU2SVJC RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWjByRmZBbVlkcUJtVnhnTE5PSk9idTZJUkJFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkE1Mi8zRTc2RDdFRTk4MTkxMUVGQjBEMEREMzRDNEY5QUUwMi82NUJCMzUxOEQz QkQxMUVGQTUyRkY3ODNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWdO3jANBgkqhkiG9w0BAQsFAAOCAQEAKMgUr9qaZidZ4ZGX p+3XUH8VYMjrdG5h2xZxxO3RfMmMhcfb7rL+OllcB+ZVidnz/rHleuk7YrQSkjwd VwqCmNgTo+s6F8ss/dZ9xXhlW1v2V+nMVMcaLS1sjAcCRNk08drSa714L5frBvMx iRpzbiHCg5QAqPhjlNTAyjtkxwBZ+H/oOZyk6fAmLzkH3u94tfz32cog9U623tKt fMaDA9zj5RusaR3ENzZZNiZi+/oYLZ0ZvxBK8bFciSZU4P5OM3wQ30rJZPm/iYF8 DwE4Tn54pUuu/KCv4BhaVb1tvUzrgM/wl80NgjlomRThQCKpvMJBxV8fp5iwCI7K kxUPaQ== -----END CERTIFICATE-----Generated at Sat Apr 12 02:22:17 2025 by rpki-client