$ rpki-client -vvf rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/0DA7D6ACBEF111ED9634C070C4F9AE02.roa File: 0DA7D6ACBEF111ED9634C070C4F9AE02.roa (raw, json) Hash identifier: u/ET7C8XDOzIIbrRzEHNrt7NzDBjNyIiOiJQgKADUOo= Subject key identifier: 79:6A:36:49:00:E8:1B:8A:09:A3:E3:56:32:B4:2C:EB:09:57:38:04 Certificate issuer: /CN=A9175F18/serialNumber=3C8B2BDBCB155E2D2FECD45D062FB3699F034320 Certificate serial: 0758 Authority key identifier: 3C:8B:2B:DB:CB:15:5E:2D:2F:EC:D4:5D:06:2F:B3:69:9F:03:43:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/0DA7D6ACBEF111ED9634C070C4F9AE02.roa Signing time: Thu 28 Nov 2024 21:40:58 +0000 ROA not before: Thu 28 Nov 2024 21:40:58 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 133929 IP address blocks: 43.225.59.0/24 maxlen: 24 103.252.16.0/22 maxlen: 22 103.252.16.0/23 maxlen: 24 103.252.18.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.crl rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:34:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1880 (0x758) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175F18 Validity Not Before: Nov 28 21:40:58 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6748e36a-41ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:17:8e:a1:d0:68:a5:10:56:bc:6e:64:58:65: 13:37:06:02:47:da:f1:86:18:9b:d9:33:51:62:2f: 52:a5:6d:84:53:48:08:d8:65:a6:6a:ec:03:7f:c5: 44:3b:68:15:5a:c8:42:5d:25:4f:ff:17:27:82:2d: 4f:c5:8e:2b:0a:5c:36:74:28:da:91:e2:54:01:dc: 26:65:b4:32:61:d8:a1:fe:40:75:45:a6:de:d5:62: e7:e2:d8:c0:6a:13:60:e7:1e:f3:d0:a7:31:6f:7c: f9:64:e9:09:e7:d7:ce:49:2b:a7:76:e9:78:96:34: a4:7a:72:44:12:8b:69:cb:7d:c1:0b:29:53:09:0f: c0:e3:1f:cf:3a:82:38:7e:73:7f:79:9e:ba:a5:3e: ae:b6:4f:02:b6:01:ed:06:44:e7:f1:92:e2:b6:57: e2:ac:42:98:fc:30:31:f6:b2:91:05:64:c3:d3:bd: e3:92:02:5d:1b:32:cd:a8:b7:2d:19:28:f9:1b:0a: 85:fc:18:07:31:f4:31:ea:f8:37:0d:aa:df:36:96: a8:a3:03:dd:04:72:30:28:32:8d:fe:1d:1b:94:84: 6e:11:e1:c2:46:fb:37:ea:91:e1:bf:c9:ad:ac:8a: 50:ed:12:03:ac:ba:e6:d7:7a:5a:91:c4:2a:2a:15: e1:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:6A:36:49:00:E8:1B:8A:09:A3:E3:56:32:B4:2C:EB:09:57:38:04 X509v3 Authority Key Identifier: keyid:3C:8B:2B:DB:CB:15:5E:2D:2F:EC:D4:5D:06:2F:B3:69:9F:03:43:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/0DA7D6ACBEF111ED9634C070C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.59.0/24 103.252.16.0/22 Signature Algorithm: sha256WithRSAEncryption 9e:2a:3a:cb:83:1f:63:03:48:8c:a6:08:e4:d6:9f:97:e4:45: 94:1d:54:a9:e5:c8:e9:7a:63:c7:9f:11:15:91:9a:39:6f:77: 61:82:fb:f5:ed:28:3f:36:8c:54:df:df:67:08:bd:18:e6:74: 71:a6:8d:20:ac:fa:22:06:b6:7c:a1:44:66:98:62:2c:3a:45: fb:95:cf:80:ea:74:56:42:bc:18:bf:10:c0:d2:73:87:46:ec: 1b:9e:5d:c4:b8:5d:89:d8:fa:ad:4e:61:1a:c3:0f:90:f0:a4: b4:d9:d8:19:58:f0:40:36:c9:2f:02:b4:50:45:02:7b:ce:7a: df:75:c3:a3:93:09:55:7a:fa:c6:30:47:12:78:61:25:dc:3c: 86:c7:0f:6e:69:25:63:29:93:85:a7:59:2f:7e:54:35:4b:13: a6:05:4d:77:67:7f:95:8c:63:d5:dd:14:8f:5b:ea:d6:ba:4b: a3:16:3c:64:bb:26:c7:bb:42:36:6d:af:d0:f8:bc:d2:0e:96: 4c:8b:23:9b:e5:94:1c:6e:0e:6b:65:24:df:79:75:9c:b9:ab: 58:38:ad:1b:e6:31:98:08:ad:22:2a:c0:d6:1b:41:43:5c:06: 7c:31:95:6d:9b:55:b8:77:af:f4:a9:16:62:14:7b:ae:48:83: 84:7e:ae:de -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVGMTgxMTAvBgNVBAUTKDNDOEIyQkRCQ0IxNTVFMkQyRkVDRDQ1RDA2MkZCMzY5 OUYwMzQzMjAwHhcNMjQxMTI4MjE0MDU4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ4ZTM2YS00MWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArReOodBopRBWvG5kWGUTNwYCR9rxhhib2TNRYi9SpW2EU0gI2GWmauwDf8VE O2gVWshCXSVP/xcngi1PxY4rClw2dCjakeJUAdwmZbQyYdih/kB1Rabe1WLn4tjA ahNg5x7z0Kcxb3z5ZOkJ59fOSSundul4ljSkenJEEotpy33BCylTCQ/A4x/POoI4 fnN/eZ66pT6utk8CtgHtBkTn8ZLitlfirEKY/DAx9rKRBWTD073jkgJdGzLNqLct GSj5GwqF/BgHMfQx6vg3DarfNpaoowPdBHIwKDKN/h0blIRuEeHCRvs36pHhv8mt rIpQ7RIDrLrm13pakcQqKhXhMwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHlqNkkA 6BuKCaPjVjK0LOsJVzgEMB8GA1UdIwQYMBaAFDyLK9vLFV4tL+zUXQYvs2mfA0Mg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUYxOC9BMzg0MjkxQzBB QTAxMUVCODczMzM4ODJDNEY5QUUwMi9QSXNyMjhzVlhpMHY3TlJkQmktemFaOERR eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BJc3IyOHNWWGkwdjdOUmRCaS16YVo4RFF5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzVGMTgvQTM4NDI5MUMwQUEwMTFFQjg3MzMzODgyQzRGOUFFMDIvMERBN0Q2QUNC RUYxMTFFRDk2MzRDMDcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr4TsDBAJn/BAwDQYJKoZIhvcNAQELBQADggEBAJ4qOsuD H2MDSIymCOTWn5fkRZQdVKnlyOl6Y8efERWRmjlvd2GC+/XtKD82jFTf32cIvRjm dHGmjSCs+iIGtnyhRGaYYiw6RfuVz4DqdFZCvBi/EMDSc4dG7BueXcS4XYnY+q1O YRrDD5DwpLTZ2BlY8EA2yS8CtFBFAnvOet91w6OTCVV6+sYwRxJ4YSXcPIbHD25p JWMpk4WnWS9+VDVLE6YFTXdnf5WMY9XdFI9b6ta6S6MWPGS7Jse7QjZtr9D4vNIO lkyLI5vllBxuDmtlJN95dZy5q1g4rRvmMZgIrSIqwNYbQUNcBnwxlW2bVbh3r/Sp FmIUe65Ig4R+rt4= -----END CERTIFICATE-----Generated at Sat Apr 5 18:51:29 2025 by rpki-client