$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/D118AD20820911EDAC2FD360C4F9AE02.roa File: D118AD20820911EDAC2FD360C4F9AE02.roa (raw, json) Hash identifier: ICtN0AhdlHgfYIx82KgCcqvbtFC2Nt85yrH3EgkUFWk= Subject key identifier: 01:AA:1F:E9:0E:CF:35:4B:C3:4A:74:5B:14:89:88:A6:D4:FC:60:2F Certificate issuer: /CN=A9172D88/serialNumber=B2F05C2CEC3550D2D3C9EB513839F47A002A872E Certificate serial: 038C Authority key identifier: B2:F0:5C:2C:EC:35:50:D2:D3:C9:EB:51:38:39:F4:7A:00:2A:87:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svBcLOw1UNLTyetRODn0egAqhy4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/D118AD20820911EDAC2FD360C4F9AE02.roa Signing time: Fri 07 Mar 2025 00:46:48 +0000 ROA not before: Fri 07 Mar 2025 00:46:48 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 17501 IP address blocks: 103.162.2.0/23 maxlen: 23 103.162.2.0/24 maxlen: 24 103.162.3.0/24 maxlen: 24 2407:b40::/32 maxlen: 32 2407:b40::/48 maxlen: 48 2407:b40:1::/48 maxlen: 48 2407:b40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.crl rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svBcLOw1UNLTyetRODn0egAqhy4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 908 (0x38c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D88 Validity Not Before: Mar 7 00:46:48 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ca41f8-9e03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:49:6c:ac:9a:da:f3:7f:ed:45:87:08:bb:a0: 96:e2:ea:2b:57:ff:29:ef:68:2f:1a:4d:7a:fe:32: b0:af:a5:69:54:af:2c:be:55:7d:75:9e:b8:b6:bf: 11:14:a8:8e:63:90:84:c5:bd:60:f6:8b:7f:cd:14: 63:f0:e6:91:01:38:34:3e:84:ac:31:fd:8a:12:a0: ab:b3:26:a1:66:7d:55:24:47:36:d6:8e:9a:6f:5d: 39:8a:8c:66:9f:3e:11:fd:83:8c:7b:bd:b1:28:b6: 74:a7:e8:d0:cf:83:ac:13:30:a5:c7:0c:b7:14:cd: 69:d0:d7:13:2f:6e:df:52:b5:8d:fa:40:9b:fd:fb: fb:3c:7d:d6:8e:46:e2:59:2e:0f:5e:96:ee:c4:0b: 53:93:62:af:11:b2:c3:8a:df:60:bc:c7:b9:b7:6d: 78:07:15:c6:c2:11:7d:51:8d:ba:74:76:17:e7:f5: 6f:99:83:df:fb:86:28:94:7c:b8:7f:2e:9d:27:0b: 5c:37:df:bd:00:72:25:06:4a:ef:3f:2b:2c:b4:85: ee:76:e5:91:16:93:ab:f6:1f:24:8f:df:94:2d:fc: 3d:87:10:98:0d:8e:ec:34:5b:17:7f:f6:6b:9a:af: bb:31:12:ee:d5:44:a1:5a:64:52:42:03:29:86:6b: a2:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:AA:1F:E9:0E:CF:35:4B:C3:4A:74:5B:14:89:88:A6:D4:FC:60:2F X509v3 Authority Key Identifier: keyid:B2:F0:5C:2C:EC:35:50:D2:D3:C9:EB:51:38:39:F4:7A:00:2A:87:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svBcLOw1UNLTyetRODn0egAqhy4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/D118AD20820911EDAC2FD360C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.2.0/23 IPv6: 2407:b40::/32 Signature Algorithm: sha256WithRSAEncryption 4e:8b:51:c3:3e:47:73:93:c3:e1:88:f7:4f:69:d4:98:c6:07: 23:4d:6e:da:b0:ea:0c:a7:5b:7c:ca:7d:ba:29:1a:09:2b:f8: 06:32:a6:23:78:30:a6:cd:4d:7d:70:68:6c:cc:dd:9f:e5:21: 40:f4:01:b5:2a:a8:ba:f8:d8:c3:f4:b9:71:d8:bb:ed:05:1f: ef:c6:fb:e1:f6:64:7d:1d:bf:5c:fb:70:57:c5:a7:ac:9e:af: 2a:89:0a:e0:2f:e1:28:de:40:6f:2f:87:15:a9:da:ef:6a:89: d6:d9:4a:4b:af:ae:ea:c7:32:62:27:66:0d:32:51:bf:59:4c: 07:29:0f:0b:4b:1e:91:54:dd:a6:14:bf:0a:5c:50:90:da:3c: ef:f7:5e:01:bc:a6:88:0c:b6:7b:12:8b:b0:b5:e6:18:9c:c8: 6e:32:01:65:3d:1c:71:db:9b:fa:f0:71:5e:0a:19:d4:48:84: f7:ce:58:33:27:7a:83:1b:28:c0:01:7f:5e:ac:25:25:4f:03: 94:96:0c:65:6b:9c:a1:14:e7:fb:1f:96:1f:0f:d0:be:1b:4d: 84:85:e1:38:dd:2b:5f:1d:e8:52:a0:b1:90:6f:62:03:54:fb: e5:a9:eb:41:4b:09:cd:27:33:eb:19:0c:8f:6b:47:b2:f3:e0: a1:32:6d:0b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICA4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEODgxMTAvBgNVBAUTKEIyRjA1QzJDRUMzNTUwRDJEM0M5RUI1MTM4MzlGNDdB MDAyQTg3MkUwHhcNMjUwMzA3MDA0NjQ4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NhNDFmOC05ZTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyElsrJra83/tRYcIu6CW4uorV/8p72gvGk16/jKwr6VpVK8svlV9dZ64tr8R FKiOY5CExb1g9ot/zRRj8OaRATg0PoSsMf2KEqCrsyahZn1VJEc21o6ab105ioxm nz4R/YOMe72xKLZ0p+jQz4OsEzClxwy3FM1p0NcTL27fUrWN+kCb/fv7PH3Wjkbi WS4PXpbuxAtTk2KvEbLDit9gvMe5t214BxXGwhF9UY26dHYX5/VvmYPf+4YolHy4 fy6dJwtcN9+9AHIlBkrvPysstIXuduWRFpOr9h8kj9+ULfw9hxCYDY7sNFsXf/Zr mq+7MRLu1UShWmRSQgMphmuikwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAGqH+kO zzVLw0p0WxSJiKbU/GAvMB8GA1UdIwQYMBaAFLLwXCzsNVDS08nrUTg59HoAKocu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ4OC9GMUI3RUFCQTkz QUMxMUVDQjY3QTMxNTJDNEY5QUUwMi9zdkJjTE93MVVOTFR5ZXRST0RuMGVnQXFo eTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N2QmNMT3cxVU5MVHlldFJPRG4wZWdBcWh5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJEODgvRjFCN0VBQkE5M0FDMTFFQ0I2N0EzMTUyQzRGOUFFMDIvRDExOEFEMjA4 MjA5MTFFREFDMkZEMzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnogIwDQQCAAIwBwMFACQHC0AwDQYJKoZIhvcNAQELBQAD ggEBAE6LUcM+R3OTw+GI909p1JjGByNNbtqw6gynW3zKfbopGgkr+AYypiN4MKbN TX1waGzM3Z/lIUD0AbUqqLr42MP0uXHYu+0FH+/G++H2ZH0dv1z7cFfFp6yeryqJ CuAv4SjeQG8vhxWp2u9qidbZSkuvrurHMmInZg0yUb9ZTAcpDwtLHpFU3aYUvwpc UJDaPO/3XgG8pogMtnsSi7C15hicyG4yAWU9HHHbm/rwcV4KGdRIhPfOWDMneoMb KMABf16sJSVPA5SWDGVrnKEU5/sflh8P0L4bTYSF4TjdK18d6FKgsZBvYgNU++Wp 60FLCc0nM+sZDI9rR7Lz4KEybQs= -----END CERTIFICATE-----Generated at Sat Apr 5 07:12:32 2025 by rpki-client