$ rpki-client -vvf rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/8B8DEE220F0911E9A8CC815EC4F9AE02.roa File: 8B8DEE220F0911E9A8CC815EC4F9AE02.roa (raw, json) Hash identifier: gteMkfVnVg4ffsJGo4gzYRn2LBvsScWGIppneQ2BQXI= Subject key identifier: 77:44:20:7A:EA:4D:16:05:E0:3F:98:3C:8B:31:27:A6:9A:81:96:BA Certificate issuer: /CN=A9175165/serialNumber=85EE8C6F958D6F3C1F15D2C1ABC4FE9BBE6CEED7 Certificate serial: 10E3 Authority key identifier: 85:EE:8C:6F:95:8D:6F:3C:1F:15:D2:C1:AB:C4:FE:9B:BE:6C:EE:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6Mb5WNbzwfFdLBq8T-m75s7tc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/8B8DEE220F0911E9A8CC815EC4F9AE02.roa Signing time: Fri 10 Jan 2025 17:35:31 +0000 ROA not before: Fri 10 Jan 2025 17:35:31 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 138528 IP address blocks: 103.132.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.crl rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6Mb5WNbzwfFdLBq8T-m75s7tc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 17:11:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4323 (0x10e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175165 Validity Not Before: Jan 10 17:35:31 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67815a63-625e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:f2:7f:2f:32:53:39:4c:f7:1f:dc:b3:20:f6: 34:cc:39:55:44:a1:5f:68:2f:44:5a:4b:29:d5:4f: 0e:4e:2b:28:40:03:f9:bf:db:a1:82:c6:eb:cf:af: 25:a5:24:dc:36:19:16:02:04:69:a9:ef:02:94:7d: 14:28:92:8a:bc:29:65:05:62:39:b8:35:35:f6:db: f3:5b:ae:32:ba:99:fc:3c:73:26:db:50:e9:02:9d: d3:66:9f:77:a4:c0:37:e6:b9:8a:56:1f:7d:1d:15: 36:30:cb:7c:08:63:7f:5e:e2:c0:20:3d:0a:51:0e: 63:f1:da:21:a0:98:74:6f:14:1e:c0:92:51:05:a7: fd:70:76:7f:03:98:4e:15:60:db:b8:cc:b8:52:25: f0:70:68:65:d0:58:be:da:82:8c:10:e2:ed:d5:64: bf:2a:3c:03:58:aa:b1:bd:99:ca:44:e0:ff:f1:a4: 55:b1:49:b5:47:c9:02:4e:2c:29:34:99:50:f1:4d: dc:a8:7e:39:7f:78:e0:45:f4:aa:fd:93:4f:12:bc: cf:6b:c7:5c:5f:90:4e:1b:c4:d6:94:8a:cc:95:05: 78:49:79:f4:de:db:0d:ed:0e:55:22:88:6f:77:56: 74:0a:09:2d:c4:99:dc:f7:5c:59:9a:42:ed:f2:0c: 96:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:44:20:7A:EA:4D:16:05:E0:3F:98:3C:8B:31:27:A6:9A:81:96:BA X509v3 Authority Key Identifier: keyid:85:EE:8C:6F:95:8D:6F:3C:1F:15:D2:C1:AB:C4:FE:9B:BE:6C:EE:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/he6Mb5WNbzwfFdLBq8T-m75s7tc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6Mb5WNbzwfFdLBq8T-m75s7tc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175165/90F0FFAE0F0811E98680E85CC4F9AE02/8B8DEE220F0911E9A8CC815EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.132.8.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:c9:31:32:57:9e:cc:ad:11:1d:59:e6:44:fc:75:a3:ed:c5: 67:7c:b3:90:a9:ef:87:0c:d2:f2:fc:dd:31:e9:43:a6:c2:8c: 3f:60:f0:9f:e7:ac:8e:eb:0a:b9:88:89:6c:e8:31:dc:19:77: 14:6e:71:37:2a:e2:ac:70:8b:a3:5c:e7:dd:b2:b6:32:f2:1b: 46:a9:67:8b:66:a7:e8:71:fe:a2:92:70:81:5a:fd:e6:a2:fd: 33:ad:e3:6c:8a:21:22:ac:b2:68:6b:da:e8:39:41:b7:4e:9c: 7e:03:1d:22:b2:0f:78:43:01:9c:58:61:f2:36:73:69:5f:77: bf:71:2a:b2:c4:6f:d1:9a:ea:87:0c:d3:22:d3:94:df:8b:e8: e4:9f:0a:04:bf:9a:69:8d:e5:40:d4:61:64:41:a7:f4:5b:f4: 2e:2a:c1:f6:11:64:c7:cc:dd:bc:8c:02:60:2f:06:cb:77:17: b8:52:4c:c7:dd:26:41:90:0c:63:8c:7b:db:33:2d:19:12:bc: 87:16:3b:eb:48:f6:1b:90:df:2d:f4:16:06:10:9e:e5:ec:14: 0e:78:28:8d:5b:cd:d4:ca:c5:61:20:5d:a6:11:7f:73:51:25: 68:1f:be:47:2a:1e:27:84:0b:81:6e:f8:bf:e8:28:61:c0:5b: 46:51:c1:e3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUxNjUxMTAvBgNVBAUTKDg1RUU4QzZGOTU4RDZGM0MxRjE1RDJDMUFCQzRGRTlC QkU2Q0VFRDcwHhcNMjUwMTEwMTczNTMxWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzgxNWE2My02MjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmvJ/LzJTOUz3H9yzIPY0zDlVRKFfaC9EWksp1U8OTisoQAP5v9uhgsbrz68l pSTcNhkWAgRpqe8ClH0UKJKKvCllBWI5uDU19tvzW64yupn8PHMm21DpAp3TZp93 pMA35rmKVh99HRU2MMt8CGN/XuLAID0KUQ5j8dohoJh0bxQewJJRBaf9cHZ/A5hO FWDbuMy4UiXwcGhl0Fi+2oKMEOLt1WS/KjwDWKqxvZnKROD/8aRVsUm1R8kCTiwp NJlQ8U3cqH45f3jgRfSq/ZNPErzPa8dcX5BOG8TWlIrMlQV4SXn03tsN7Q5VIohv d1Z0CgktxJnc91xZmkLt8gyWYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHdEIHrq TRYF4D+YPIsxJ6aagZa6MB8GA1UdIwQYMBaAFIXujG+VjW88HxXSwavE/pu+bO7X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTE2NS85MEYwRkZBRTBG MDgxMUU5ODY4MEU4NUNDNEY5QUUwMi9oZTZNYjVXTmJ6d2ZGZExCcThULW03NXM3 dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNk1iNVdOYnp3ZkZkTEJxOFQtbTc1czd0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzUxNjUvOTBGMEZGQUUwRjA4MTFFOTg2ODBFODVDQzRGOUFFMDIvOEI4REVFMjIw RjA5MTFFOUE4Q0M4MTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnhAgwDQYJKoZIhvcNAQELBQADggEBAGzJMTJXnsytER1Z 5kT8daPtxWd8s5Cp74cM0vL83THpQ6bCjD9g8J/nrI7rCrmIiWzoMdwZdxRucTcq 4qxwi6Nc592ytjLyG0apZ4tmp+hx/qKScIFa/eai/TOt42yKISKssmhr2ug5QbdO nH4DHSKyD3hDAZxYYfI2c2lfd79xKrLEb9Ga6ocM0yLTlN+L6OSfCgS/mmmN5UDU YWRBp/Rb9C4qwfYRZMfM3byMAmAvBst3F7hSTMfdJkGQDGOMe9szLRkSvIcWO+tI 9huQ3y30FgYQnuXsFA54KI1bzdTKxWEgXaYRf3NRJWgfvkcqHieEC4Fu+L/oKGHA W0ZRweM= -----END CERTIFICATE-----Generated at Tue Apr 8 12:42:56 2025 by rpki-client