$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/A9C5C1CAC4B811EE8A03D547C4F9AE02.roa File: A9C5C1CAC4B811EE8A03D547C4F9AE02.roa (raw, json) Hash identifier: 3GOqN8PMZ/cxFE5yg/l01rtznIl/3wsy8K8LEuE8lEg= Subject key identifier: 83:1F:71:7D:51:3D:D3:18:A9:7C:9C:9A:E3:A9:0F:9E:78:77:0C:EB Certificate issuer: /CN=A917BB51/serialNumber=3EA4347D2D9FD6EB6A01B44E5571F88B08ACC25B Certificate serial: B6 Authority key identifier: 3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/A9C5C1CAC4B811EE8A03D547C4F9AE02.roa Signing time: Mon 30 Dec 2024 13:08:53 +0000 ROA not before: Mon 30 Dec 2024 13:08:53 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 134375 IP address blocks: 43.230.64.0/22 maxlen: 24 45.122.120.0/22 maxlen: 24 103.62.236.0/22 maxlen: 24 103.77.0.0/22 maxlen: 22 103.77.0.0/23 maxlen: 23 103.77.0.0/24 maxlen: 24 103.77.1.0/24 maxlen: 24 103.77.2.0/23 maxlen: 23 103.77.2.0/24 maxlen: 24 103.77.3.0/24 maxlen: 24 103.251.140.0/22 maxlen: 24 116.206.156.0/22 maxlen: 24 203.189.252.0/22 maxlen: 24 2402:8a80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:51:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB51 Validity Not Before: Dec 30 13:08:53 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67729b64-e25c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:30:ea:1e:7d:08:5a:28:34:71:50:24:f9:4e: 45:5d:45:7c:d0:00:94:f4:6b:d3:3d:dd:0e:15:bc: 2f:57:68:4f:cc:2f:22:cc:cc:0e:0b:1d:40:a1:1b: 9a:04:9b:8b:9d:f4:eb:2a:5f:9f:07:24:0e:8a:a3: d0:d2:a5:8b:1e:fe:0a:11:ac:9a:24:e8:85:1f:24: c4:1e:b1:d5:d4:b6:15:ec:e9:27:38:5d:e0:df:79: 7b:70:4c:bb:a1:e8:55:40:36:24:da:67:e0:49:cd: 91:d4:6b:c6:38:d8:33:56:69:6f:3c:93:ee:6f:b6: 50:18:6e:de:06:5c:89:65:3f:3f:5c:19:82:d1:35: 87:f2:a2:d7:c6:db:e9:8f:c1:d6:f3:9e:d6:a6:d3: ab:56:54:9d:4f:55:d0:15:10:bc:61:79:f8:b0:99: 9b:09:5f:e6:a8:b9:53:1a:79:0e:18:82:d2:c3:0c: 4c:98:79:db:76:bc:19:60:3c:43:11:5e:6f:3b:99: c7:0e:d2:2e:cd:03:8b:a0:d1:f7:0a:63:f1:e7:b0: bf:7e:0d:87:66:6d:ab:27:da:9c:7f:f9:02:76:ac: 99:7d:d9:85:60:7a:93:cd:25:3a:04:d7:59:f9:3d: 50:71:fb:8e:b1:c4:dd:d6:04:71:6e:ed:e0:5f:3d: ee:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:1F:71:7D:51:3D:D3:18:A9:7C:9C:9A:E3:A9:0F:9E:78:77:0C:EB X509v3 Authority Key Identifier: keyid:3E:A4:34:7D:2D:9F:D6:EB:6A:01:B4:4E:55:71:F8:8B:08:AC:C2:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/PqQ0fS2f1utqAbROVXH4iwiswls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PqQ0fS2f1utqAbROVXH4iwiswls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB51/25ACF5C0C4B811EEBD71C446C4F9AE02/A9C5C1CAC4B811EE8A03D547C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.64.0/22 45.122.120.0/22 103.62.236.0/22 103.77.0.0/22 103.251.140.0/22 116.206.156.0/22 203.189.252.0/22 IPv6: 2402:8a80::/32 Signature Algorithm: sha256WithRSAEncryption 6e:d6:e7:3a:4f:d7:c2:89:1b:55:86:96:73:e3:f8:c6:90:8d: c4:87:5a:dd:32:06:41:3f:d7:36:e9:fc:61:28:ef:ed:9e:65: 53:d3:68:41:e6:a7:23:98:05:42:30:6a:e4:b7:c4:28:46:d3: da:f0:d8:fa:05:26:b5:4b:c2:92:21:7b:59:a3:3f:7d:05:3a: 95:1d:b9:40:c6:97:2d:d7:e5:73:73:30:f6:6d:55:b9:8c:98: b6:ae:33:54:c5:80:d7:e1:aa:0f:a8:c2:c1:f1:c9:17:f9:b0: 16:b7:ad:4e:ee:97:1a:b2:b2:44:10:13:28:c9:a6:e7:9f:d5: d0:c1:89:c0:89:e0:4b:0e:fa:ad:2f:8d:34:1a:4c:a8:a8:f0: 0e:a5:27:7e:ce:6c:44:9b:25:5f:de:b8:37:5a:de:23:1b:c3: 62:fe:3f:28:35:71:72:17:2a:5a:5f:0b:28:a1:12:75:48:a5: 35:e2:7b:3e:ac:6a:c0:95:e3:b6:11:18:ec:6d:81:69:5f:1b: 7f:61:02:f9:85:10:65:a3:e0:aa:9f:5b:8e:6c:40:40:6a:6e: 9b:74:ca:16:3b:da:c6:e9:e1:b4:2c:3e:9f:7a:5d:10:95:c9: 01:67:4d:6c:99:83:bd:52:dc:0e:68:ec:7d:e9:88:73:d2:3c: 5e:3c:8a:e6 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCNTExMTAvBgNVBAUTKDNFQTQzNDdEMkQ5RkQ2RUI2QTAxQjQ0RTU1NzFGODhC MDhBQ0MyNUIwHhcNMjQxMjMwMTMwODUzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzcyOWI2NC1lMjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8jDqHn0IWig0cVAk+U5FXUV80ACU9GvTPd0OFbwvV2hPzC8izMwOCx1AoRua BJuLnfTrKl+fByQOiqPQ0qWLHv4KEayaJOiFHyTEHrHV1LYV7OknOF3g33l7cEy7 oehVQDYk2mfgSc2R1GvGONgzVmlvPJPub7ZQGG7eBlyJZT8/XBmC0TWH8qLXxtvp j8HW857WptOrVlSdT1XQFRC8YXn4sJmbCV/mqLlTGnkOGILSwwxMmHnbdrwZYDxD EV5vO5nHDtIuzQOLoNH3CmPx57C/fg2HZm2rJ9qcf/kCdqyZfdmFYHqTzSU6BNdZ +T1QcfuOscTd1gRxbu3gXz3uawIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFIMfcX1R PdMYqXycmuOpD554dwzrMB8GA1UdIwQYMBaAFD6kNH0tn9bragG0TlVx+IsIrMJb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI1MS8yNUFDRjVDMEM0 QjgxMUVFQkQ3MUM0NDZDNEY5QUUwMi9QcVEwZlMyZjF1dHFBYlJPVlhINGl3aXN3 bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BxUTBmUzJmMXV0cUFiUk9WWEg0aXdpc3dscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0JCNTEvMjVBQ0Y1QzBDNEI4MTFFRUJENzFDNDQ2QzRGOUFFMDIvQTlDNUMxQ0FD NEI4MTFFRThBMDNENTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMDAEAgABMCoDBAIr5kADBAItengDBAJnPuwDBAJnTQADBAJn+4wDBAJ0zpwD BALLvfwwDQQCAAIwBwMFACQCioAwDQYJKoZIhvcNAQELBQADggEBAG7W5zpP18KJ G1WGlnPj+MaQjcSHWt0yBkE/1zbp/GEo7+2eZVPTaEHmpyOYBUIwauS3xChG09rw 2PoFJrVLwpIhe1mjP30FOpUduUDGly3X5XNzMPZtVbmMmLauM1TFgNfhqg+owsHx yRf5sBa3rU7ulxqyskQQEyjJpuef1dDBicCJ4EsO+q0vjTQaTKio8A6lJ37ObESb JV/euDda3iMbw2L+Pyg1cXIXKlpfCyihEnVIpTXiez6sasCV47YRGOxtgWlfG39h AvmFEGWj4KqfW45sQEBqbpt0yhY72sbp4bQsPp96XRCVyQFnTWyZg71S3A5o7H3p iHPSPF48iuY= -----END CERTIFICATE-----Generated at Sat Apr 5 07:19:15 2025 by rpki-client