$ rpki-client -vvf rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/B8587822CBF611EFAE14812EC4F9AE02.roa File: B8587822CBF611EFAE14812EC4F9AE02.roa (raw, json) Hash identifier: BAKZvJEz8yyj6HH1ezZDzfaPEc4hpm29xOe5qwW+d7U= Subject key identifier: 33:CF:22:2E:D2:14:81:26:FB:55:74:2A:88:2C:96:D3:1B:DF:68:19 Certificate issuer: /CN=A9175F43/serialNumber=64CF532C8E20B196D25BC7CC7E59324F93813275 Certificate serial: 02 Authority key identifier: 64:CF:53:2C:8E:20:B1:96:D2:5B:C7:CC:7E:59:32:4F:93:81:32:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM9TLI4gsZbSW8fMflkyT5OBMnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/B8587822CBF611EFAE14812EC4F9AE02.roa Signing time: Mon 06 Jan 2025 06:23:19 +0000 ROA not before: Mon 06 Jan 2025 06:23:19 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 395793 IP address blocks: 103.56.128.0/24 maxlen: 24 103.56.129.0/24 maxlen: 24 103.56.130.0/24 maxlen: 24 103.56.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.crl rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM9TLI4gsZbSW8fMflkyT5OBMnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:55:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175F43 Validity Not Before: Jan 6 06:23:19 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=677b76d6-9431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8d:4d:f2:e4:ed:7b:c1:1e:6f:16:fc:af:a0: f8:25:13:93:75:ff:2c:da:a2:8a:88:ba:dc:4e:33: 37:06:bf:f3:53:dc:50:9a:6f:bc:12:b3:83:3c:a9: b6:85:a8:b9:3f:ea:c6:04:32:90:0d:27:e9:2a:b6: 4b:43:49:06:2d:b4:b2:f7:b6:49:e8:01:6f:21:06: fc:64:cf:d8:7c:45:d5:31:c1:c7:1f:19:60:99:e6: fc:26:13:f1:10:2c:54:75:b2:99:60:6f:bf:20:b6: ef:67:02:a4:69:52:eb:89:de:d1:a7:f5:88:d9:15: 64:e5:00:8a:e7:29:45:dd:2a:60:55:c5:ef:83:b4: 47:92:0a:e0:cb:30:d2:16:e2:c6:34:2d:a2:ec:77: d1:69:78:62:22:67:07:4f:c9:be:b0:03:56:0b:0f: 23:88:39:0c:48:d9:32:a2:17:8c:e3:61:10:1b:37: 2e:4e:1f:78:17:e1:23:2d:c1:e2:f3:1f:e3:7c:e9: f8:6f:44:44:f2:8f:89:7d:06:fd:b2:9b:a3:86:6c: a7:a5:e6:65:fe:56:7a:98:b1:62:b4:7e:66:ac:57: 37:6b:57:9e:55:ba:1a:99:79:26:ed:6c:76:2e:5b: 3b:86:d8:c4:5d:3e:74:97:e2:45:af:91:63:9d:0d: 34:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:CF:22:2E:D2:14:81:26:FB:55:74:2A:88:2C:96:D3:1B:DF:68:19 X509v3 Authority Key Identifier: keyid:64:CF:53:2C:8E:20:B1:96:D2:5B:C7:CC:7E:59:32:4F:93:81:32:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM9TLI4gsZbSW8fMflkyT5OBMnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/B8587822CBF611EFAE14812EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.56.128.0/22 Signature Algorithm: sha256WithRSAEncryption 9f:51:32:fa:c7:b8:81:1c:46:2a:4d:f9:f0:dd:6e:a6:07:59: 97:1c:47:85:4d:a4:4a:db:7b:cd:72:d1:6f:e2:f8:bf:c9:50: 30:05:11:77:ca:7b:02:dc:38:05:65:a1:e1:23:67:8d:ee:03: 2f:23:c0:d7:35:48:5e:04:e6:a1:e2:68:82:a2:4b:a5:43:a7: d3:cd:19:c7:3c:b3:0b:ee:98:9a:20:17:63:2d:26:d4:7b:14: 98:a0:6b:d5:17:87:22:b7:fc:3c:7a:f0:3c:62:ba:c0:54:e0: d2:22:f5:b7:5a:ea:aa:00:0b:33:d8:c2:3a:5a:a1:15:90:94: 8e:95:21:b4:15:c1:b7:1b:24:dd:0f:d7:d4:ab:f4:74:47:2f: e5:e0:b4:2b:5b:3f:76:a2:33:4f:74:6a:cb:82:4a:ea:9e:fd: dc:f6:4b:9a:12:11:86:e8:77:de:c5:be:5f:2e:f4:13:ed:93: f7:ba:30:5f:61:04:79:5b:51:6c:19:98:f8:fe:7c:fa:bc:b7: 8a:c5:67:22:72:d1:8c:6b:6a:af:9a:84:4a:d4:bf:44:ff:ee: 2c:b5:0c:75:98:c4:50:49:4d:85:90:5a:5c:38:62:e7:14:7f: b6:9d:3d:56:6f:85:d1:50:3a:58:bd:70:ee:da:62:20:09:f0: fe:38:af:f8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NUY0MzExMC8GA1UEBRMoNjRDRjUzMkM4RTIwQjE5NkQyNUJDN0NDN0U1OTMyNEY5 MzgxMzI3NTAeFw0yNTAxMDYwNjIzMTlaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3N2I3NmQ2LTk0MzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUjU3y5O17wR5vFvyvoPglE5N1/yzaooqIutxOMzcGv/NT3FCab7wSs4M8qbaF qLk/6sYEMpANJ+kqtktDSQYttLL3tknoAW8hBvxkz9h8RdUxwccfGWCZ5vwmE/EQ LFR1splgb78gtu9nAqRpUuuJ3tGn9YjZFWTlAIrnKUXdKmBVxe+DtEeSCuDLMNIW 4sY0LaLsd9FpeGIiZwdPyb6wA1YLDyOIOQxI2TKiF4zjYRAbNy5OH3gX4SMtweLz H+N86fhvRETyj4l9Bv2ym6OGbKel5mX+VnqYsWK0fmasVzdrV55VuhqZeSbtbHYu WzuG2MRdPnSX4kWvkWOdDTRRAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUM88iLtIU gSb7VXQqiCyW0xvfaBkwHwYDVR0jBBgwFoAUZM9TLI4gsZbSW8fMflkyT5OBMnUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1RjQzLzU5OUZFQjQ0Q0JG NjExRUY5RjU3RTkyREM0RjlBRTAyL1pNOVRMSTRnc1piU1c4Zk1mbGt5VDVPQk1u VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWk05VExJNGdzWmJTVzhmTWZsa3lUNU9CTW5VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NUY0My81OTlGRUI0NENCRjYxMUVGOUY1N0U5MkRDNEY5QUUwMi9CODU4NzgyMkNC RjYxMUVGQUUxNDgxMkVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmc4gDANBgkqhkiG9w0BAQsFAAOCAQEAn1Ey+se4gRxGKk35 8N1upgdZlxxHhU2kStt7zXLRb+L4v8lQMAURd8p7Atw4BWWh4SNnje4DLyPA1zVI XgTmoeJogqJLpUOn080ZxzyzC+6YmiAXYy0m1HsUmKBr1ReHIrf8PHrwPGK6wFTg 0iL1t1rqqgALM9jCOlqhFZCUjpUhtBXBtxsk3Q/X1Kv0dEcv5eC0K1s/dqIzT3Rq y4JK6p793PZLmhIRhuh33sW+Xy70E+2T97owX2EEeVtRbBmY+P58+ry3isVnInLR jGtqr5qEStS/RP/uLLUMdZjEUElNhZBaXDhi5xR/tp09Vm+F0VA6WL1w7tpiIAnw /jiv+A== -----END CERTIFICATE-----Generated at Sun Apr 6 05:43:35 2025 by rpki-client