$ rpki-client -vvf rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/7EFD7D08A10211EFBF75467FC4F9AE02.roa File: 7EFD7D08A10211EFBF75467FC4F9AE02.roa (raw, json) Hash identifier: mGmTdvdeQ6LXmazTZifM5k7qicxGPPhPxrXFLCv01wE= Subject key identifier: 1C:34:59:23:7B:8A:DC:69:CD:90:8F:52:B6:3A:EF:DA:F3:69:4C:98 Certificate issuer: /CN=A9176C8F/serialNumber=057395B4878FB1A67FCBAD582617B7BAAF2C31FF Certificate serial: 79 Authority key identifier: 05:73:95:B4:87:8F:B1:A6:7F:CB:AD:58:26:17:B7:BA:AF:2C:31:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXOVtIePsaZ_y61YJhe3uq8sMf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/7EFD7D08A10211EFBF75467FC4F9AE02.roa Signing time: Mon 17 Feb 2025 13:13:09 +0000 ROA not before: Mon 17 Feb 2025 13:13:09 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 152475 IP address blocks: 103.129.52.0/24 maxlen: 24 103.129.53.0/24 maxlen: 24 103.129.54.0/24 maxlen: 24 103.129.55.0/24 maxlen: 24 2401:bbe0::/32 maxlen: 32 2401:bbe0::/36 maxlen: 36 2401:bbe0::/40 maxlen: 40 2401:bbe0:100::/40 maxlen: 40 2401:bbe0:200::/40 maxlen: 40 2401:bbe0:300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/BXOVtIePsaZ_y61YJhe3uq8sMf8.crl rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/BXOVtIePsaZ_y61YJhe3uq8sMf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXOVtIePsaZ_y61YJhe3uq8sMf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 11:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176C8F Validity Not Before: Feb 17 13:13:09 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67b335e5-61a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4c:13:e2:bb:88:1e:d7:c3:87:58:e8:40:8e: 17:9c:7a:27:d4:50:ce:bb:04:8d:1c:f3:79:c1:54: cb:d9:bb:1a:91:26:a8:e6:00:2a:29:7a:89:6a:01: 92:62:6f:ee:34:29:31:d4:92:d2:9d:ca:4f:6c:27: ec:04:b9:41:8f:c0:63:9c:5f:b2:b3:ec:a8:ae:2f: d4:1d:0c:fd:47:07:42:28:af:72:9d:53:9e:bd:d5: 0b:ff:57:f9:62:46:f8:c0:92:17:1e:3a:37:86:e8: 51:9f:b5:8b:01:23:bd:f0:30:10:1d:39:de:bb:6e: 6c:91:f9:02:53:e1:04:6c:fd:1e:22:2c:1f:d5:1c: 5f:cf:18:9c:5e:14:2d:d2:31:a2:ea:90:4c:b5:2f: 2a:88:56:10:2c:85:6c:8d:98:92:21:da:4c:b1:b4: 7d:9a:b5:90:75:f4:03:4d:54:ff:7d:d3:de:5d:fd: 79:0a:70:ba:a9:10:01:7f:58:8a:df:fc:8b:69:cd: 85:fc:3d:b9:78:86:aa:da:53:7e:3d:76:9c:46:eb: 37:d6:5c:f6:11:c5:07:32:5d:4f:1e:d0:b5:aa:f5: f5:af:10:9c:63:8e:b5:e2:f7:c3:17:b7:58:8f:07: 68:12:89:13:39:b0:62:82:1f:27:f2:af:79:e3:45: e0:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:34:59:23:7B:8A:DC:69:CD:90:8F:52:B6:3A:EF:DA:F3:69:4C:98 X509v3 Authority Key Identifier: keyid:05:73:95:B4:87:8F:B1:A6:7F:CB:AD:58:26:17:B7:BA:AF:2C:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/BXOVtIePsaZ_y61YJhe3uq8sMf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BXOVtIePsaZ_y61YJhe3uq8sMf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176C8F/FA0E05A46B5A11EFBC99925CC4F9AE02/7EFD7D08A10211EFBF75467FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.52.0/22 IPv6: 2401:bbe0::/32 Signature Algorithm: sha256WithRSAEncryption 0d:f6:32:7c:45:ac:20:6f:41:2b:ea:71:ec:f0:33:f5:de:58: 9e:68:f0:aa:00:97:c5:08:43:9e:71:b5:4b:dc:54:d9:23:44: 4b:09:56:1e:13:2f:bb:62:8c:3e:6e:9c:f3:b5:2b:9d:01:dc: 17:02:cd:d5:d9:46:05:1c:0c:7c:8d:60:79:92:6b:0f:f4:3a: 57:47:c3:4f:57:20:ac:7d:0e:df:a2:d1:c3:64:4f:aa:9d:a1: 31:87:07:7a:a8:bf:02:6c:75:cd:5e:79:95:cd:33:1b:ff:7f: a7:1d:30:e1:d1:a5:9d:21:d7:8c:48:ff:86:0b:4d:20:6a:1d: ce:3b:d4:27:bf:21:fb:01:1b:5c:91:e8:3c:ab:07:62:fc:01: 40:16:64:36:55:b5:60:72:88:3c:fe:08:9a:0e:01:c7:9e:12: 86:bb:9c:1a:5a:2e:c0:71:4d:91:96:1d:9a:ad:e0:06:e3:9c: 8b:8d:d0:a4:7f:b9:f2:17:9d:78:91:d9:98:a7:86:a0:0c:c2: 11:9c:3a:02:49:4a:d4:22:55:af:76:2f:39:9a:fd:e1:02:41: b6:5a:71:f9:0b:c6:fd:4d:c6:8d:38:0b:65:85:be:93:51:85: e5:7a:5b:31:44:33:99:c4:62:6e:39:95:4d:8b:fb:e9:bc:89: d3:cd:65:2d -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NkM4RjExMC8GA1UEBRMoMDU3Mzk1QjQ4NzhGQjFBNjdGQ0JBRDU4MjYxN0I3QkFB RjJDMzFGRjAeFw0yNTAyMTcxMzEzMDlaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YjMzNWU1LTYxYTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPTBPiu4ge18OHWOhAjheceifUUM67BI0c83nBVMvZuxqRJqjmACopeolqAZJi b+40KTHUktKdyk9sJ+wEuUGPwGOcX7Kz7KiuL9QdDP1HB0Ior3KdU5691Qv/V/li RvjAkhceOjeG6FGftYsBI73wMBAdOd67bmyR+QJT4QRs/R4iLB/VHF/PGJxeFC3S MaLqkEy1LyqIVhAshWyNmJIh2kyxtH2atZB19ANNVP99095d/XkKcLqpEAF/WIrf /ItpzYX8Pbl4hqraU349dpxG6zfWXPYRxQcyXU8e0LWq9fWvEJxjjrXi98MXt1iP B2gSiRM5sGKCHyfyr3njReATAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUHDRZI3uK 3GnNkI9Stjrv2vNpTJgwHwYDVR0jBBgwFoAUBXOVtIePsaZ/y61YJhe3uq8sMf8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2QzhGL0ZBMEUwNUE0NkI1 QTExRUZCQzk5OTI1Q0M0RjlBRTAyL0JYT1Z0SWVQc2FaX3k2MVlKaGUzdXE4c01m OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQlhPVnRJZVBzYVpfeTYxWUpoZTN1cThzTWY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkM4Ri9GQTBFMDVBNDZCNUExMUVGQkM5OTkyNUNDNEY5QUUwMi83RUZEN0QwOEEx MDIxMUVGQkY3NTQ2N0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAmeBNDANBAIAAjAHAwUAJAG74DANBgkqhkiG9w0BAQsFAAOC AQEADfYyfEWsIG9BK+px7PAz9d5YnmjwqgCXxQhDnnG1S9xU2SNESwlWHhMvu2KM Pm6c87UrnQHcFwLN1dlGBRwMfI1geZJrD/Q6V0fDT1cgrH0O36LRw2RPqp2hMYcH eqi/Amx1zV55lc0zG/9/px0w4dGlnSHXjEj/hgtNIGodzjvUJ78h+wEbXJHoPKsH YvwBQBZkNlW1YHKIPP4Img4Bx54ShrucGlouwHFNkZYdmq3gBuOci43QpH+58hed eJHZmKeGoAzCEZw6AklK1CJVr3YvOZr94QJBtlpx+QvG/U3GjTgLZYW+k1GF5Xpb MUQzmcRibjmVTYv76byJ081lLQ== -----END CERTIFICATE-----Generated at Sat Apr 5 02:18:10 2025 by rpki-client