$ rpki-client -vvf rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/7BFE665EE17F11EF9536DC48C4F9AE02.roa File: 7BFE665EE17F11EF9536DC48C4F9AE02.roa (raw, json) Hash identifier: k+tzt38gMzmau0c2rmQWNYzVDcpA9LwBPBlXy9g9UUQ= Subject key identifier: 39:77:ED:E7:F5:54:7D:CC:40:68:CB:04:35:CC:B0:0D:C2:C9:F4:CD Certificate issuer: /CN=A9176DFC/serialNumber=B0352ABB43F0A855649B9D761A655C3FC60F6E63 Certificate serial: 0128 Authority key identifier: B0:35:2A:BB:43:F0:A8:55:64:9B:9D:76:1A:65:5C:3F:C6:0F:6E:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sDUqu0PwqFVkm512GmVcP8YPbmM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/7BFE665EE17F11EF9536DC48C4F9AE02.roa Signing time: Sun 02 Feb 2025 16:05:13 +0000 ROA not before: Sun 02 Feb 2025 16:05:13 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 149765 IP address blocks: 103.238.216.0/24 maxlen: 24 103.238.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/sDUqu0PwqFVkm512GmVcP8YPbmM.crl rsync://rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/sDUqu0PwqFVkm512GmVcP8YPbmM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sDUqu0PwqFVkm512GmVcP8YPbmM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176DFC Validity Not Before: Feb 2 16:05:13 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=679f97b9-9f52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b4:e3:72:d6:e7:49:2d:cf:a0:19:92:8b:89: 97:20:d4:5a:f4:0d:de:84:6b:d0:99:04:34:d6:63: cd:25:e6:06:af:7f:0d:d3:d2:2d:a9:fc:c0:1d:43: b0:77:27:eb:da:dc:33:ff:76:0a:9f:2e:33:81:e6: 51:48:f0:6d:af:4e:51:4c:a4:00:fb:85:63:be:71: fb:bb:e6:41:31:3c:89:c9:71:92:04:e0:8b:4c:d1: 35:53:f4:88:1c:de:af:e8:88:7d:22:da:97:45:61: a1:8c:2c:ed:6d:ee:09:ea:a4:a2:f7:6f:33:4f:eb: f6:1f:5d:1f:26:e9:49:fa:4a:52:61:6d:d9:6d:41: 12:21:c7:ef:f0:2c:de:1d:9d:29:fe:c3:30:3a:7f: 51:7a:39:8b:5b:06:8d:30:c0:00:1f:c0:b3:98:de: 54:3a:8c:53:e5:da:f9:1b:e8:39:63:14:70:c8:bb: c6:33:8e:c2:06:ed:78:ec:ca:4b:76:81:c3:aa:27: 7a:6f:c9:78:2a:91:4f:60:53:07:ff:09:47:02:1d: 61:aa:71:f7:cd:d0:ea:3e:83:76:45:1d:4b:44:0a: 5c:9f:ea:16:15:a0:39:ff:ed:56:87:49:a8:ca:0d: ed:fa:2a:f3:90:b0:bb:ce:c9:65:bf:97:24:0c:d5: fb:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:77:ED:E7:F5:54:7D:CC:40:68:CB:04:35:CC:B0:0D:C2:C9:F4:CD X509v3 Authority Key Identifier: keyid:B0:35:2A:BB:43:F0:A8:55:64:9B:9D:76:1A:65:5C:3F:C6:0F:6E:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/sDUqu0PwqFVkm512GmVcP8YPbmM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sDUqu0PwqFVkm512GmVcP8YPbmM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176DFC/BE40C136248B11EEA34F6F34C4F9AE02/7BFE665EE17F11EF9536DC48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.238.216.0/23 Signature Algorithm: sha256WithRSAEncryption 34:73:ed:64:fc:b3:20:58:39:3a:e0:87:97:5a:cd:11:f6:dd: 14:2e:86:4b:4b:ba:62:83:69:60:f4:55:ff:9a:22:11:59:2c: 6e:66:08:2b:87:73:db:cc:3e:47:ee:74:6f:af:ae:fe:13:97: f2:48:7d:fb:77:74:e6:93:4e:fc:e9:93:0a:16:4b:74:48:73: 24:c2:8a:3f:4a:78:5d:56:52:86:0c:7c:85:5d:b1:ac:e2:82: df:ae:3f:a6:37:9e:a9:99:8e:10:b6:f7:32:af:06:10:e7:dc: e5:9b:12:55:52:66:5a:69:b5:5f:a5:b5:e4:81:59:c4:3f:cc: 28:0d:35:c7:20:1b:89:c4:0d:92:d1:83:56:a8:11:4e:5b:50: 18:3e:67:b0:50:0e:f9:7f:ea:76:9f:ec:78:24:f5:d9:d2:b9: 2d:2f:8e:cf:9b:53:30:3d:65:3d:b1:22:cd:f2:69:ef:cf:07: 6d:b9:99:19:aa:2f:e8:57:43:f3:1c:20:cd:8c:e4:8d:7c:16: 3a:64:98:7d:2c:7e:f2:75:32:4b:f3:de:c2:38:54:88:2e:6d: e8:55:ba:55:bc:59:2a:b9:6a:04:94:54:4b:c2:09:25:26:43: 72:f5:bb:96:c9:9d:2a:9c:69:26:83:8c:fb:4e:5d:0f:52:61: d6:96:ce:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZERkMxMTAvBgNVBAUTKEIwMzUyQUJCNDNGMEE4NTU2NDlCOUQ3NjFBNjU1QzNG QzYwRjZFNjMwHhcNMjUwMjAyMTYwNTEzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzlmOTdiOS05ZjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07TjctbnSS3PoBmSi4mXINRa9A3ehGvQmQQ01mPNJeYGr38N09ItqfzAHUOw dyfr2twz/3YKny4zgeZRSPBtr05RTKQA+4VjvnH7u+ZBMTyJyXGSBOCLTNE1U/SI HN6v6Ih9ItqXRWGhjCztbe4J6qSi928zT+v2H10fJulJ+kpSYW3ZbUESIcfv8Cze HZ0p/sMwOn9RejmLWwaNMMAAH8CzmN5UOoxT5dr5G+g5YxRwyLvGM47CBu147MpL doHDqid6b8l4KpFPYFMH/wlHAh1hqnH3zdDqPoN2RR1LRApcn+oWFaA5/+1Wh0mo yg3t+irzkLC7zsllv5ckDNX7JwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDl37ef1 VH3MQGjLBDXMsA3CyfTNMB8GA1UdIwQYMBaAFLA1KrtD8KhVZJuddhplXD/GD25j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkRGQy9CRTQwQzEzNjI0 OEIxMUVFQTM0RjZGMzRDNEY5QUUwMi9zRFVxdTBQd3FGVmttNTEyR21WY1A4WVBi bU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NEVXF1MFB3cUZWa201MTJHbVZjUDhZUGJtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzZERkMvQkU0MEMxMzYyNDhCMTFFRUEzNEY2RjM0QzRGOUFFMDIvN0JGRTY2NUVF MTdGMTFFRjk1MzZEQzQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn7tgwDQYJKoZIhvcNAQELBQADggEBADRz7WT8syBYOTrg h5dazRH23RQuhktLumKDaWD0Vf+aIhFZLG5mCCuHc9vMPkfudG+vrv4Tl/JIfft3 dOaTTvzpkwoWS3RIcyTCij9KeF1WUoYMfIVdsazigt+uP6Y3nqmZjhC29zKvBhDn 3OWbElVSZlpptV+lteSBWcQ/zCgNNccgG4nEDZLRg1aoEU5bUBg+Z7BQDvl/6naf 7Hgk9dnSuS0vjs+bUzA9ZT2xIs3yae/PB225mRmqL+hXQ/McIM2M5I18FjpkmH0s fvJ1Mkvz3sI4VIgubehVulW8WSq5agSUVEvCCSUmQ3L1u5bJnSqcaSaDjPtOXQ9S YdaWzoY= -----END CERTIFICATE-----Generated at Sat Apr 5 06:02:20 2025 by rpki-client