$ rpki-client -vvf rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/89340B10B5E011EE91DD4D53C4F9AE02.roa File: 89340B10B5E011EE91DD4D53C4F9AE02.roa (raw, json) Hash identifier: zFt+0w+kAFNr7NicRmzvofA0omlHEP7AqJhUpc/xR5o= Subject key identifier: D1:59:6C:5A:9B:EA:E5:92:07:8D:73:18:44:80:DE:86:19:7B:4A:78 Certificate issuer: /CN=A9175299/serialNumber=81A7151B177592F86823B69F437624E9C002DE41 Certificate serial: 0AE2 Authority key identifier: 81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/89340B10B5E011EE91DD4D53C4F9AE02.roa Signing time: Wed 29 Jan 2025 19:46:06 +0000 ROA not before: Wed 29 Jan 2025 19:46:06 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 138385 IP address blocks: 103.124.52.0/22 maxlen: 23 103.124.52.0/24 maxlen: 24 103.124.53.0/24 maxlen: 24 103.124.54.0/24 maxlen: 24 103.124.55.0/24 maxlen: 24 2403:da40::/32 maxlen: 32 2403:da40::/33 maxlen: 33 2403:da40:100::/40 maxlen: 40 2403:da40:102::/48 maxlen: 48 2403:da40:103::/48 maxlen: 48 2403:da40:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:29:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2786 (0xae2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175299 Validity Not Before: Jan 29 19:46:06 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=679a857d-5394 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:ab:74:35:e3:f6:7d:7b:fe:64:53:97:3b:b6: 13:70:4f:1f:ef:3c:9a:cf:5a:6b:23:81:b8:e1:8b: b7:fe:03:74:b5:39:cc:df:8c:ee:0f:d3:de:01:47: f1:71:c1:08:93:fe:20:a4:ce:94:28:0f:95:bb:3c: be:28:45:9b:20:53:8a:c1:67:bd:2f:9e:b8:a5:8b: a7:41:3a:6a:ab:de:02:dd:64:ed:9c:bf:48:f7:61: fe:ca:b3:70:fc:67:6d:e6:22:a7:26:ed:8d:fa:41: 2a:5e:ee:4f:ed:92:0c:c5:e0:b5:41:15:af:7f:d0: 02:f4:3d:d3:43:cd:54:1d:17:a6:58:05:c2:49:9f: f6:c9:21:df:b4:d9:1c:ff:3a:55:d1:d4:39:aa:82: bb:63:85:d3:58:63:eb:ff:03:f0:85:9c:7a:9d:66: 22:3f:b3:e6:71:8b:b8:0e:c6:8e:a6:9e:cf:26:4f: de:d5:90:b5:de:ed:b0:92:e9:cb:68:37:82:08:31: 0d:27:fd:83:a6:45:b6:39:50:22:08:6d:c0:cc:82: e1:66:d3:2c:d2:ad:dd:5f:a1:ba:6f:9c:e5:04:01: 7c:24:b9:e6:0e:eb:8f:76:11:ac:b9:7a:22:b6:eb: ca:fc:3c:f5:ed:de:c4:d9:24:ae:c5:90:eb:90:a1: 6a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:59:6C:5A:9B:EA:E5:92:07:8D:73:18:44:80:DE:86:19:7B:4A:78 X509v3 Authority Key Identifier: keyid:81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/89340B10B5E011EE91DD4D53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.52.0/22 IPv6: 2403:da40::/32 Signature Algorithm: sha256WithRSAEncryption 0f:ee:93:3c:1e:33:55:d4:28:73:5f:e4:bf:34:3e:f6:47:8a: b3:f9:8b:4b:6e:95:aa:da:76:2b:44:39:19:a3:82:0c:19:f9: ce:98:18:40:50:6e:49:16:b9:56:16:e3:c3:37:00:88:fb:a9: ba:9d:71:8f:1f:ad:ea:5b:5d:ec:78:86:8e:5f:12:31:56:c8: e7:2a:fb:72:47:8d:a2:b7:0d:9f:ce:46:3c:06:c7:a2:00:74: c7:0d:2b:6c:b7:83:3d:0c:77:34:12:6e:0d:bc:1e:64:3d:af: 38:fe:9c:3f:7a:86:91:81:fb:d6:11:5d:ed:f2:d2:08:f0:a8: 9e:b3:7f:6b:0d:f9:bd:25:5e:5a:8a:9a:b7:42:ed:a9:a5:75: 0e:2c:37:de:62:84:6a:39:91:fe:b5:ca:4c:00:0d:ba:6e:78: a8:fe:12:ed:8f:17:a5:f3:b1:35:f1:0c:8b:32:72:b9:b4:1c: 56:5d:be:85:21:5b:8d:4d:be:8d:63:42:08:5a:46:59:df:82: 6f:fd:cb:65:de:93:1e:94:a8:ad:70:c2:c4:c8:e3:0f:a4:14: cc:ca:36:5b:9c:4a:5e:ff:98:f1:ad:31:42:c9:d0:43:ed:a2: 17:eb:01:62:58:e8:f9:8b:76:a8:cb:e1:a7:f4:d3:39:b6:4b: b5:e0:75:eb -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCuIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUyOTkxMTAvBgNVBAUTKDgxQTcxNTFCMTc3NTkyRjg2ODIzQjY5RjQzNzYyNEU5 QzAwMkRFNDEwHhcNMjUwMTI5MTk0NjA2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzlhODU3ZC01Mzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA66t0NeP2fXv+ZFOXO7YTcE8f7zyaz1prI4G44Yu3/gN0tTnM34zuD9PeAUfx ccEIk/4gpM6UKA+Vuzy+KEWbIFOKwWe9L564pYunQTpqq94C3WTtnL9I92H+yrNw /Gdt5iKnJu2N+kEqXu5P7ZIMxeC1QRWvf9AC9D3TQ81UHRemWAXCSZ/2ySHftNkc /zpV0dQ5qoK7Y4XTWGPr/wPwhZx6nWYiP7PmcYu4DsaOpp7PJk/e1ZC13u2wkunL aDeCCDENJ/2DpkW2OVAiCG3AzILhZtMs0q3dX6G6b5zlBAF8JLnmDuuPdhGsuXoi tuvK/Dz17d7E2SSuxZDrkKFqyQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNFZbFqb 6uWSB41zGESA3oYZe0p4MB8GA1UdIwQYMBaAFIGnFRsXdZL4aCO2n0N2JOnAAt5B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTI5OS8yNjg5MEVEQTQy QzUxMUVBQjI2Q0ZEMUJDNEY5QUUwMi9nYWNWR3hkMWt2aG9JN2FmUTNZazZjQUMz a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhY1ZHeGQxa3Zob0k3YWZRM1lrNmNBQzNrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzUyOTkvMjY4OTBFREE0MkM1MTFFQUIyNkNGRDFCQzRGOUFFMDIvODkzNDBCMTBC NUUwMTFFRTkxREQ0RDUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfDQwDQQCAAIwBwMFACQD2kAwDQYJKoZIhvcNAQELBQAD ggEBAA/ukzweM1XUKHNf5L80PvZHirP5i0tularaditEORmjggwZ+c6YGEBQbkkW uVYW48M3AIj7qbqdcY8frepbXex4ho5fEjFWyOcq+3JHjaK3DZ/ORjwGx6IAdMcN K2y3gz0MdzQSbg28HmQ9rzj+nD96hpGB+9YRXe3y0gjwqJ6zf2sN+b0lXlqKmrdC 7amldQ4sN95ihGo5kf61ykwADbpueKj+Eu2PF6XzsTXxDIsycrm0HFZdvoUhW41N vo1jQghaRlnfgm/9y2Xekx6UqK1wwsTI4w+kFMzKNlucSl7/mPGtMULJ0EPtohfr AWJY6PmLdqjL4af00zm2S7Xgdes= -----END CERTIFICATE-----Generated at Sun Apr 6 13:39:08 2025 by rpki-client