$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CB5/39D767209B6A11ECA6823522C4F9AE02/DD2DD3489F9111ECB958FF25C4F9AE02.roa File: DD2DD3489F9111ECB958FF25C4F9AE02.roa (raw, json) Hash identifier: ge5i/gUk2rLl8NFshkx3QLIeml4hinyetB2nMALgvq0= Subject key identifier: FC:33:6D:7E:A6:59:BE:88:6D:67:90:F8:FB:FE:5A:8B:F9:BE:48:9B Certificate issuer: /CN=A9172CB5/serialNumber=69E1CECB881DA6C968BAAE073237C266095A45CD Certificate serial: 0380 Authority key identifier: 69:E1:CE:CB:88:1D:A6:C9:68:BA:AE:07:32:37:C2:66:09:5A:45:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aeHOy4gdpslouq4HMjfCZglaRc0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CB5/39D767209B6A11ECA6823522C4F9AE02/DD2DD3489F9111ECB958FF25C4F9AE02.roa Signing time: Thu 27 Mar 2025 01:07:14 +0000 ROA not before: Thu 27 Mar 2025 01:07:14 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 139603 IP address blocks: 103.182.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CB5/39D767209B6A11ECA6823522C4F9AE02/aeHOy4gdpslouq4HMjfCZglaRc0.crl rsync://rpki.apnic.net/member_repository/A9172CB5/39D767209B6A11ECA6823522C4F9AE02/aeHOy4gdpslouq4HMjfCZglaRc0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aeHOy4gdpslouq4HMjfCZglaRc0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:57:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 896 (0x380) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CB5 Validity Not Before: Mar 27 01:07:14 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e4a4c2-98e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:56:c0:f1:d5:23:23:cf:10:f5:e2:b0:22:34: 36:f6:55:2e:d3:11:60:d4:b1:1d:06:26:57:3e:df: e2:ec:58:10:04:9f:d0:93:c0:85:18:fe:9a:d8:3f: 01:b2:7c:1b:b8:56:ca:0a:ff:6c:a8:97:07:b4:60: 97:2b:2d:0d:d7:6c:8b:0e:be:4e:c8:7e:a4:11:d5: 8a:8c:89:72:de:60:09:fc:cb:2f:ff:58:44:6e:69: 28:46:3d:24:11:8b:8e:55:58:b3:1e:f5:11:67:9f: 7c:b7:71:9e:03:6a:8c:04:87:a3:f0:03:9b:8c:48: 59:47:a8:d1:ab:59:34:91:3e:6f:dc:58:6b:8c:0e: 41:36:c7:7f:dd:36:f2:39:5f:a7:f2:08:d5:3f:70: a9:d6:6c:48:b9:9e:6b:b3:9c:a7:2e:07:5f:f3:7a: 29:7c:03:81:24:26:81:a6:c9:e9:c2:47:af:7f:84: 6b:24:28:50:f9:e6:12:31:1d:19:6b:90:e8:28:9c: 2e:97:b6:25:54:61:30:37:3f:66:36:46:16:fe:b4: 8c:83:a4:02:79:68:72:72:69:0f:13:fe:3a:f4:bc: 49:fc:f1:f1:76:70:ce:0f:50:46:2c:29:f5:91:02: ef:2b:df:b3:e4:52:4b:08:22:79:ea:94:57:77:e3: a7:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:33:6D:7E:A6:59:BE:88:6D:67:90:F8:FB:FE:5A:8B:F9:BE:48:9B X509v3 Authority Key Identifier: keyid:69:E1:CE:CB:88:1D:A6:C9:68:BA:AE:07:32:37:C2:66:09:5A:45:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CB5/39D767209B6A11ECA6823522C4F9AE02/aeHOy4gdpslouq4HMjfCZglaRc0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aeHOy4gdpslouq4HMjfCZglaRc0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CB5/39D767209B6A11ECA6823522C4F9AE02/DD2DD3489F9111ECB958FF25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.182.73.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:9a:da:c9:61:0d:1a:b5:00:02:b2:f1:7a:6a:c6:46:39:70: 50:08:91:0d:f1:5e:df:3e:79:69:d6:68:a1:1d:df:c8:5c:bc: 18:ae:13:09:a3:83:21:97:7c:a2:4b:01:66:86:e6:97:15:dc: 2f:7f:19:ce:1d:a3:2c:98:3e:ec:50:b2:09:5f:d2:bf:df:21: 07:d5:5f:14:11:71:a9:27:ac:d7:5e:b4:2f:94:53:ec:0b:cb: 07:d2:58:ad:c0:87:1b:27:4b:d6:22:1e:76:4e:3e:a1:48:a8: 5e:9f:2e:ad:95:54:c3:dd:49:9f:6a:e1:eb:e4:b1:90:23:91: e0:05:29:7d:31:9e:22:83:3e:be:7f:ca:c8:0d:bb:9b:a7:3e: 6f:c6:89:5e:e0:74:74:db:2a:03:f3:1e:46:15:8d:69:71:98: 6c:0a:45:69:1b:14:3c:11:d4:b2:8f:69:37:5d:08:2d:a5:d4: 42:05:32:66:7e:64:94:72:d6:ad:7a:dd:b6:a7:a5:e3:4e:67: ea:63:18:49:3f:b4:4b:85:89:2f:39:8e:a7:f1:93:ad:9c:80: 57:04:2d:92:e0:7d:be:6d:d6:6e:ca:26:47:fb:05:74:41:9a: 16:c5:04:a2:b2:5a:9f:2c:ca:ae:5c:89:8d:d3:f9:fb:96:15: f7:ea:6a:29 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDQjUxMTAvBgNVBAUTKDY5RTFDRUNCODgxREE2Qzk2OEJBQUUwNzMyMzdDMjY2 MDk1QTQ1Q0QwHhcNMjUwMzI3MDEwNzE0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0YTRjMi05OGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplbA8dUjI88Q9eKwIjQ29lUu0xFg1LEdBiZXPt/i7FgQBJ/Qk8CFGP6a2D8B snwbuFbKCv9sqJcHtGCXKy0N12yLDr5OyH6kEdWKjIly3mAJ/Msv/1hEbmkoRj0k EYuOVVizHvURZ598t3GeA2qMBIej8AObjEhZR6jRq1k0kT5v3FhrjA5BNsd/3Tby OV+n8gjVP3Cp1mxIuZ5rs5ynLgdf83opfAOBJCaBpsnpwkevf4RrJChQ+eYSMR0Z a5DoKJwul7YlVGEwNz9mNkYW/rSMg6QCeWhycmkPE/469LxJ/PHxdnDOD1BGLCn1 kQLvK9+z5FJLCCJ56pRXd+On1QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPwzbX6m Wb6IbWeQ+Pv+Wov5vkibMB8GA1UdIwQYMBaAFGnhzsuIHabJaLquBzI3wmYJWkXN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNCNS8zOUQ3NjcyMDlC NkExMUVDQTY4MjM1MjJDNEY5QUUwMi9hZUhPeTRnZHBzbG91cTRITWpmQ1pnbGFS YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FlSE95NGdkcHNsb3VxNEhNamZDWmdsYVJjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJDQjUvMzlENzY3MjA5QjZBMTFFQ0E2ODIzNTIyQzRGOUFFMDIvREQyREQzNDg5 RjkxMTFFQ0I5NThGRjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABntkkwDQYJKoZIhvcNAQELBQADggEBAJqa2slhDRq1AAKy 8XpqxkY5cFAIkQ3xXt8+eWnWaKEd38hcvBiuEwmjgyGXfKJLAWaG5pcV3C9/Gc4d oyyYPuxQsglf0r/fIQfVXxQRcaknrNdetC+UU+wLywfSWK3AhxsnS9YiHnZOPqFI qF6fLq2VVMPdSZ9q4evksZAjkeAFKX0xniKDPr5/ysgNu5unPm/GiV7gdHTbKgPz HkYVjWlxmGwKRWkbFDwR1LKPaTddCC2l1EIFMmZ+ZJRy1q163banpeNOZ+pjGEk/ tEuFiS85jqfxk62cgFcELZLgfb5t1m7KJkf7BXRBmhbFBKKyWp8syq5ciY3T+fuW Fffqaik= -----END CERTIFICATE-----Generated at Sun Apr 6 21:07:20 2025 by rpki-client