$ rpki-client -vvf rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/8FFF9C5AAF1A11EFAF122A6AC4F9AE02.roa File: 8FFF9C5AAF1A11EFAF122A6AC4F9AE02.roa (raw, json) Hash identifier: oSZdhfGWwwKdH63s+SExbmyRtKVUZJS009bBjLK65o0= Subject key identifier: 8E:A2:66:62:AA:D3:38:5E:2D:A5:1E:E9:81:B9:E0:63:9E:69:37:27 Certificate issuer: /CN=A9176909/serialNumber=3B48AB861652FAEED7E1D12583F16BB7FBB28913 Certificate serial: 01A9 Authority key identifier: 3B:48:AB:86:16:52:FA:EE:D7:E1:D1:25:83:F1:6B:B7:FB:B2:89:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/8FFF9C5AAF1A11EFAF122A6AC4F9AE02.roa Signing time: Sun 01 Dec 2024 02:25:18 +0000 ROA not before: Sun 01 Dec 2024 02:25:18 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 150740 IP address blocks: 103.20.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.crl rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 01:52:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 425 (0x1a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176909 Validity Not Before: Dec 1 02:25:18 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674bc90e-f6ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a7:dc:1d:c4:2d:10:ac:38:3b:65:b5:64:d1: 6b:1e:f3:64:5b:90:08:28:3e:98:cf:7a:dd:61:61: d1:4e:85:c4:7d:f5:aa:76:80:f6:94:2c:8e:b1:6e: bf:fe:36:0c:28:6f:00:35:81:34:5d:5b:f2:b3:c5: 0f:eb:1e:d1:d6:1a:b3:6d:e2:e4:0a:06:5f:a1:1b: f2:51:72:e6:3c:28:1e:d3:89:19:73:58:d7:1c:49: a1:d6:7a:05:f0:1f:7b:3d:e2:8d:9d:09:34:46:2c: 89:c6:46:cb:5d:82:5f:d6:49:9b:75:25:16:eb:a7: d9:3e:d7:81:5a:06:31:e2:48:3c:90:dc:ba:b4:58: 4f:3c:81:d8:44:8e:ea:b6:7f:0e:36:4c:f2:02:79: 1d:ac:35:f3:0b:ff:df:16:d1:66:f7:25:ac:f7:af: d9:6a:4a:6f:35:ac:a0:90:a0:55:05:fd:09:19:16: 62:03:53:bb:5a:b6:57:4c:cd:f3:5b:3d:5e:87:fa: e5:8e:95:8a:05:59:00:38:dc:d7:aa:ef:10:27:48: 89:12:8b:12:c2:0c:21:14:76:c9:fd:62:6b:6c:56: 52:fb:4a:23:45:3c:6b:80:e6:00:7e:d6:24:c7:90: a9:77:43:b3:79:d7:6f:22:32:14:fc:9a:69:89:75: 53:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:A2:66:62:AA:D3:38:5E:2D:A5:1E:E9:81:B9:E0:63:9E:69:37:27 X509v3 Authority Key Identifier: keyid:3B:48:AB:86:16:52:FA:EE:D7:E1:D1:25:83:F1:6B:B7:FB:B2:89:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/O0irhhZS-u7X4dElg_Frt_uyiRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O0irhhZS-u7X4dElg_Frt_uyiRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176909/9ABACAC84DCB11ED82961B36C4F9AE02/8FFF9C5AAF1A11EFAF122A6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.242.0/24 Signature Algorithm: sha256WithRSAEncryption 07:14:64:d4:16:96:69:47:ce:72:48:ad:da:99:f6:38:94:8e: 09:cb:34:15:3a:82:5d:0e:cb:6e:f9:68:b8:9e:88:15:9a:83: 69:5d:04:11:81:64:4f:de:4c:67:98:78:35:a6:b0:02:b3:29: a3:99:49:3b:db:e9:07:00:2c:2a:63:8e:71:32:77:ee:d7:ab: 14:e5:92:30:2b:25:ed:fb:aa:bd:33:62:a1:d4:b0:d4:a4:98: 19:07:14:1d:fa:32:b5:a5:30:af:ab:99:25:7a:60:71:9a:de: c0:71:db:6f:be:0f:20:02:fd:eb:3c:b6:76:2a:20:15:4b:65: 54:14:7d:e8:26:56:ea:f5:f0:df:24:c7:a4:7d:c6:e3:11:f2: c4:7c:2c:99:64:79:f0:45:29:43:c0:b4:7c:e5:82:c8:2f:e4: fa:2f:54:77:eb:16:3e:fd:75:e6:aa:7d:a6:fa:ed:7d:86:8a: c1:15:c1:12:e0:1f:7f:8d:3d:95:ee:3d:ba:57:d5:d8:05:7b: ae:65:09:5e:e7:9d:1f:7d:62:23:58:13:6a:71:0c:42:e8:68: dc:37:03:0f:a7:70:c6:9d:75:1c:dc:83:ec:29:5c:a7:31:6a: 4a:61:e5:ef:72:d0:5f:72:80:b2:46:1d:d6:b0:dc:a4:2b:17: be:69:75:df -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY5MDkxMTAvBgNVBAUTKDNCNDhBQjg2MTY1MkZBRUVEN0UxRDEyNTgzRjE2QkI3 RkJCMjg5MTMwHhcNMjQxMjAxMDIyNTE4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRiYzkwZS1mNmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3afcHcQtEKw4O2W1ZNFrHvNkW5AIKD6Yz3rdYWHRToXEffWqdoD2lCyOsW6/ /jYMKG8ANYE0XVvys8UP6x7R1hqzbeLkCgZfoRvyUXLmPCge04kZc1jXHEmh1noF 8B97PeKNnQk0RiyJxkbLXYJf1kmbdSUW66fZPteBWgYx4kg8kNy6tFhPPIHYRI7q tn8ONkzyAnkdrDXzC//fFtFm9yWs96/ZakpvNaygkKBVBf0JGRZiA1O7WrZXTM3z Wz1eh/rljpWKBVkAONzXqu8QJ0iJEosSwgwhFHbJ/WJrbFZS+0ojRTxrgOYAftYk x5Cpd0OzeddvIjIU/JppiXVTgQIDAQABo4IClTCCApEwHQYDVR0OBBYEFI6iZmKq 0zheLaUe6YG54GOeaTcnMB8GA1UdIwQYMBaAFDtIq4YWUvru1+HRJYPxa7f7sokT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjkwOS85QUJBQ0FDODRE Q0IxMUVEODI5NjFCMzZDNEY5QUUwMi9PMGlyaGhaUy11N1g0ZEVsZ19GcnRfdXlp Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08waXJoaFpTLXU3WDRkRWxnX0ZydF91eWlSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzY5MDkvOUFCQUNBQzg0RENCMTFFRDgyOTYxQjM2QzRGOUFFMDIvOEZGRjlDNUFB RjFBMTFFRkFGMTIyQTZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnFPIwDQYJKoZIhvcNAQELBQADggEBAAcUZNQWlmlHznJI rdqZ9jiUjgnLNBU6gl0Oy275aLieiBWag2ldBBGBZE/eTGeYeDWmsAKzKaOZSTvb 6QcALCpjjnEyd+7XqxTlkjArJe37qr0zYqHUsNSkmBkHFB36MrWlMK+rmSV6YHGa 3sBx22++DyAC/es8tnYqIBVLZVQUfegmVur18N8kx6R9xuMR8sR8LJlkefBFKUPA tHzlgsgv5PovVHfrFj79deaqfab67X2GisEVwRLgH3+NPZXuPbpX1dgFe65lCV7n nR99YiNYE2pxDELoaNw3Aw+ncMaddRzcg+wpXKcxakph5e9y0F9ygLJGHdaw3KQr F75pdd8= -----END CERTIFICATE-----Generated at Fri Apr 11 16:26:55 2025 by rpki-client