$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/E69DB7E67F7911EC86DE4B56C4F9AE02.roa File: E69DB7E67F7911EC86DE4B56C4F9AE02.roa (raw, json) Hash identifier: SCsr6a/OxC+h0TbqqqQWA1WP6sx9Kte4TE8O/kgTqE0= Subject key identifier: 42:D1:AB:7C:F1:02:88:7B:65:00:4C:48:A4:A4:1E:D6:3C:2B:64:9C Certificate issuer: /CN=A917BB1B/serialNumber=D63652450EA755913CF31AFCFA9A2921A48AE1A4 Certificate serial: 03BF Authority key identifier: D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/E69DB7E67F7911EC86DE4B56C4F9AE02.roa Signing time: Thu 27 Feb 2025 02:25:35 +0000 ROA not before: Thu 27 Feb 2025 02:25:35 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 149445 IP address blocks: 103.179.150.0/23 maxlen: 24 2001:df0:4f40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:43:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 959 (0x3bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB1B Validity Not Before: Feb 27 02:25:35 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67bfcd1e-a02b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:23:c8:78:ed:95:af:51:cb:d8:57:4c:3b:99: da:69:03:68:d9:59:32:d9:da:68:cc:f9:1d:98:89: 32:35:0b:0e:dc:a8:c1:48:7b:d8:fe:66:1d:3b:4d: cf:2d:ba:52:8f:d2:99:7f:e9:09:86:5b:bd:03:1e: e3:10:e7:bf:e0:fe:c0:9a:e9:8e:05:51:3e:12:0f: c0:a6:69:4b:2c:74:f1:9f:3b:02:44:bb:62:6b:b4: 0a:c0:a7:e0:28:96:29:46:29:79:85:49:63:e8:d3: cf:11:13:55:1b:e8:90:98:c8:c5:f5:72:9b:f1:05: a7:27:6e:93:08:36:0c:1e:83:21:e0:ff:dc:5e:8a: 4c:5b:95:55:e0:75:7a:3e:51:30:f0:07:51:25:ad: 05:f7:2e:6d:bf:4e:d2:e1:52:9a:ff:7b:98:eb:bc: 81:5a:bf:c0:dc:84:cf:7d:42:10:b5:19:9c:53:d1: e0:69:8e:d8:a0:5e:e2:b0:bb:16:ab:da:c5:eb:f3: ac:af:74:b3:b5:71:fe:12:8e:af:10:50:5e:0e:85: 6f:bb:08:79:b5:8f:2f:66:9e:64:d7:9d:6f:03:4b: 99:75:b5:41:a6:85:58:12:89:ab:fa:ac:12:d9:7e: 9f:37:8c:f7:6a:3d:b7:ab:9d:21:df:b7:54:eb:44: 28:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:D1:AB:7C:F1:02:88:7B:65:00:4C:48:A4:A4:1E:D6:3C:2B:64:9C X509v3 Authority Key Identifier: keyid:D6:36:52:45:0E:A7:55:91:3C:F3:1A:FC:FA:9A:29:21:A4:8A:E1:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/1jZSRQ6nVZE88xr8-popIaSK4aQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1jZSRQ6nVZE88xr8-popIaSK4aQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB1B/D9B9C88C7F3611ECA90BCA3AC4F9AE02/E69DB7E67F7911EC86DE4B56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.150.0/23 IPv6: 2001:df0:4f40::/48 Signature Algorithm: sha256WithRSAEncryption 7d:b2:41:3b:51:3b:a9:2f:7a:3b:27:4f:a5:e1:ba:ea:f9:9f: 77:ee:67:19:23:8d:7d:07:0a:90:d9:8d:4e:a4:ea:ff:10:e9: 45:a2:81:76:e1:87:d8:6e:15:75:83:08:f7:58:d9:d9:66:2b: 48:ba:87:32:32:ef:59:fb:db:b4:12:ed:63:59:1b:95:5f:de: 40:56:74:12:eb:97:b4:88:da:26:ca:6f:cd:a5:08:5d:ce:e4: 90:1b:e1:96:ed:d2:e5:31:11:56:ee:9d:b7:32:cc:0f:e4:5a: 81:5b:95:1a:19:66:07:40:03:75:ab:e1:a7:81:6c:8d:59:97: c8:15:e7:63:6d:94:27:84:4d:61:73:f7:b1:07:49:ac:f3:a9: d0:40:94:4d:d8:84:47:de:41:fa:02:b2:5f:ef:1f:cb:a0:48: a8:90:d7:a6:d6:ed:98:86:72:a6:30:5e:a5:3d:43:86:57:cf: 82:0c:3d:3d:32:28:85:df:51:3e:54:36:5a:0c:1a:be:00:64: 20:78:cf:d2:b5:b0:ab:72:2c:8c:68:fb:43:56:21:39:e2:f4: e8:30:89:22:27:ed:b7:fe:b5:96:f2:77:c8:e0:42:6e:7f:c7: 86:3f:f1:a8:a2:19:af:27:7a:e7:7d:b0:a6:b6:7c:b2:08:e0: bc:69:1a:c5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCMUIxMTAvBgNVBAUTKEQ2MzY1MjQ1MEVBNzU1OTEzQ0YzMUFGQ0ZBOUEyOTIx QTQ4QUUxQTQwHhcNMjUwMjI3MDIyNTM1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JmY2QxZS1hMDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSPIeO2Vr1HL2FdMO5naaQNo2Vky2dpozPkdmIkyNQsO3KjBSHvY/mYdO03P LbpSj9KZf+kJhlu9Ax7jEOe/4P7AmumOBVE+Eg/ApmlLLHTxnzsCRLtia7QKwKfg KJYpRil5hUlj6NPPERNVG+iQmMjF9XKb8QWnJ26TCDYMHoMh4P/cXopMW5VV4HV6 PlEw8AdRJa0F9y5tv07S4VKa/3uY67yBWr/A3ITPfUIQtRmcU9HgaY7YoF7isLsW q9rF6/Osr3SztXH+Eo6vEFBeDoVvuwh5tY8vZp5k151vA0uZdbVBpoVYEomr+qwS 2X6fN4z3aj23q50h37dU60QowQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFELRq3zx Aoh7ZQBMSKSkHtY8K2ScMB8GA1UdIwQYMBaAFNY2UkUOp1WRPPMa/PqaKSGkiuGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkIxQi9EOUI5Qzg4QzdG MzYxMUVDQTkwQkNBM0FDNEY5QUUwMi8xalpTUlE2blZaRTg4eHI4LXBvcElhU0s0 YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFqWlNSUTZuVlpFODh4cjgtcG9wSWFTSzRhUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0JCMUIvRDlCOUM4OEM3RjM2MTFFQ0E5MEJDQTNBQzRGOUFFMDIvRTY5REI3RTY3 Rjc5MTFFQzg2REU0QjU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFns5YwDwQCAAIwCQMHACABDfBPQDANBgkqhkiG9w0BAQsF AAOCAQEAfbJBO1E7qS96OydPpeG66vmfd+5nGSONfQcKkNmNTqTq/xDpRaKBduGH 2G4VdYMI91jZ2WYrSLqHMjLvWfvbtBLtY1kblV/eQFZ0EuuXtIjaJspvzaUIXc7k kBvhlu3S5TERVu6dtzLMD+RagVuVGhlmB0ADdavhp4FsjVmXyBXnY22UJ4RNYXP3 sQdJrPOp0ECUTdiER95B+gKyX+8fy6BIqJDXptbtmIZypjBepT1DhlfPggw9PTIo hd9RPlQ2WgwavgBkIHjP0rWwq3IsjGj7Q1YhOeL06DCJIiftt/61lvJ3yOBCbn/H hj/xqKIZryd6532wprZ8sgjgvGkaxQ== -----END CERTIFICATE-----Generated at Sat Apr 5 10:20:17 2025 by rpki-client