$ rpki-client -vvf rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/D5248EE456BE11EAA979861EC4F9AE02.roa File: D5248EE456BE11EAA979861EC4F9AE02.roa (raw, json) Hash identifier: 3WC7Ax7r9pRLRqTKxZ8M8Papxi0g4q9TQj02VGvjxfc= Subject key identifier: C9:CD:B3:AC:30:7E:8D:27:C1:F6:99:62:87:AF:89:7B:B0:7C:BF:64 Certificate issuer: /CN=A9177B64/serialNumber=06E8EB2E1CC1730F2B726F4F000844C3453FAA59 Certificate serial: 0A98 Authority key identifier: 06:E8:EB:2E:1C:C1:73:0F:2B:72:6F:4F:00:08:44:C3:45:3F:AA:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/D5248EE456BE11EAA979861EC4F9AE02.roa Signing time: Wed 02 Apr 2025 19:50:19 +0000 ROA not before: Wed 02 Apr 2025 19:50:19 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 45475 IP address blocks: 103.85.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.crl rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:43:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2712 (0xa98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177B64 Validity Not Before: Apr 2 19:50:19 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ed94fb-f2ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f5:3e:e9:32:8e:07:cb:4e:88:bc:a8:4e:38: 1d:3c:5b:40:a6:0a:7e:19:e0:7d:db:47:6e:01:64: db:b5:b8:c7:be:90:99:75:b5:ab:20:3c:5f:1d:fa: 9e:3e:af:6a:a4:29:ff:70:c0:cd:ef:33:d6:09:e5: c2:d7:de:a9:8a:53:55:a7:01:cb:58:d8:89:44:2b: 6f:76:16:87:73:b5:c7:53:77:c7:db:c1:8c:41:fb: e4:b0:4a:9b:b5:11:6d:df:0b:ae:27:3d:d9:52:f7: 03:df:60:24:a0:b9:a7:96:5f:ad:96:6e:87:69:6c: 23:8f:9d:32:a1:f0:95:8a:33:1a:f3:ba:8e:5a:6d: 70:33:9d:2d:6c:a7:af:fe:0e:d8:a2:aa:d8:a9:fe: 21:62:be:eb:8a:20:a3:a7:e2:08:91:52:26:11:80: 28:ce:d4:ae:e3:59:df:6d:5a:31:f2:c5:eb:65:22: 8a:1c:7c:f9:16:31:66:79:89:e3:fc:4e:29:44:95: aa:85:6d:14:b7:38:0d:7a:88:ff:b8:63:3d:54:28: 61:59:e9:b8:72:19:19:c7:ad:2e:69:72:bd:6c:b0: a7:96:41:a9:75:f9:ec:c0:6d:1f:22:ec:54:53:84: a4:cc:f3:27:68:64:58:5f:c7:7c:d6:3f:52:33:09: c3:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:CD:B3:AC:30:7E:8D:27:C1:F6:99:62:87:AF:89:7B:B0:7C:BF:64 X509v3 Authority Key Identifier: keyid:06:E8:EB:2E:1C:C1:73:0F:2B:72:6F:4F:00:08:44:C3:45:3F:AA:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/BujrLhzBcw8rcm9PAAhEw0U_qlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BujrLhzBcw8rcm9PAAhEw0U_qlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177B64/ABF9796856BD11EAA503D61CC4F9AE02/D5248EE456BE11EAA979861EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.28.0/24 Signature Algorithm: sha256WithRSAEncryption ba:3b:29:51:89:8f:9f:60:3b:b1:59:fd:2d:4e:39:21:ab:b8: e9:03:77:8b:18:8c:10:17:3f:ae:3f:7f:a2:e8:87:fa:5b:4b: 28:c4:7a:db:4e:a4:86:7c:5a:20:ff:c4:b4:a6:8b:5c:72:95: 99:ac:b4:02:f8:46:39:72:b0:6a:07:e2:31:6b:1e:29:c2:04: 9a:f3:48:a2:18:33:02:26:21:f9:f0:13:d1:d7:a0:09:6b:97: 25:35:0f:ee:0b:9e:76:00:a8:9c:48:27:47:5d:c9:d7:ec:9c: df:6e:eb:d3:a1:fa:5e:e2:7c:a4:e6:ed:56:17:17:9b:b7:c9: 60:13:42:89:53:7f:3a:f2:16:ff:80:c1:33:c4:a8:22:be:58: c7:b7:6f:22:2d:08:7c:6a:49:eb:77:dd:c6:f4:81:14:71:f9: fe:c5:91:4a:f1:69:f6:f5:ce:39:01:17:ee:2f:c4:86:3e:10: 9e:83:a8:fd:87:ad:01:c1:5d:88:3d:f8:1a:cd:79:7f:b0:eb: f6:d0:95:f3:3f:b9:37:9b:f3:a7:1f:f5:ee:39:e1:59:f8:1b: e5:6b:91:e2:37:c8:46:17:89:31:ae:85:7c:c7:3b:e8:0b:79: 59:7b:11:ca:88:7c:b0:88:73:cf:c7:4e:a6:20:b4:25:59:a4: eb:0e:1e:1c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzdCNjQxMTAvBgNVBAUTKDA2RThFQjJFMUNDMTczMEYyQjcyNkY0RjAwMDg0NEMz NDUzRkFBNTkwHhcNMjUwNDAyMTk1MDE5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkOTRmYi1mMmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fU+6TKOB8tOiLyoTjgdPFtApgp+GeB920duAWTbtbjHvpCZdbWrIDxfHfqe Pq9qpCn/cMDN7zPWCeXC196pilNVpwHLWNiJRCtvdhaHc7XHU3fH28GMQfvksEqb tRFt3wuuJz3ZUvcD32AkoLmnll+tlm6HaWwjj50yofCVijMa87qOWm1wM50tbKev /g7YoqrYqf4hYr7riiCjp+IIkVImEYAoztSu41nfbVox8sXrZSKKHHz5FjFmeYnj /E4pRJWqhW0UtzgNeoj/uGM9VChhWem4chkZx60uaXK9bLCnlkGpdfnswG0fIuxU U4SkzPMnaGRYX8d81j9SMwnDVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMnNs6ww fo0nwfaZYoeviXuwfL9kMB8GA1UdIwQYMBaAFAbo6y4cwXMPK3JvTwAIRMNFP6pZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3N0I2NC9BQkY5Nzk2ODU2 QkQxMUVBQTUwM0Q2MUNDNEY5QUUwMi9CdWpyTGh6QmN3OHJjbTlQQUFoRXcwVV9x bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0J1anJMaHpCY3c4cmNtOVBBQWhFdzBVX3Fsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzdCNjQvQUJGOTc5Njg1NkJEMTFFQUE1MDNENjFDQzRGOUFFMDIvRDUyNDhFRTQ1 NkJFMTFFQUE5Nzk4NjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnVRwwDQYJKoZIhvcNAQELBQADggEBALo7KVGJj59gO7FZ /S1OOSGruOkDd4sYjBAXP64/f6Loh/pbSyjEettOpIZ8WiD/xLSmi1xylZmstAL4 RjlysGoH4jFrHinCBJrzSKIYMwImIfnwE9HXoAlrlyU1D+4LnnYAqJxIJ0ddydfs nN9u69Oh+l7ifKTm7VYXF5u3yWATQolTfzryFv+AwTPEqCK+WMe3byItCHxqSet3 3cb0gRRx+f7FkUrxafb1zjkBF+4vxIY+EJ6DqP2HrQHBXYg9+BrNeX+w6/bQlfM/ uTeb86cf9e454Vn4G+VrkeI3yEYXiTGuhXzHO+gLeVl7EcqIfLCIc8/HTqYgtCVZ pOsOHhw= -----END CERTIFICATE-----Generated at Sat Apr 5 07:19:13 2025 by rpki-client