$ rpki-client -vvf rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/DAB3F33EDE0B11EF8FDDD043C4F9AE02.roa File: DAB3F33EDE0B11EF8FDDD043C4F9AE02.roa (raw, json) Hash identifier: Rb4ZTb+DIpBolhpNi77VSAYUPtHpBMXs9JxNCJqiIFg= Subject key identifier: 82:9A:F1:B5:7D:4A:63:4A:CF:F4:7B:13:25:4E:A6:D3:03:83:0C:53 Certificate issuer: /CN=A9188CC3/serialNumber=C916AE5A9520B5F6767E79C915AFA1BF6E491899 Certificate serial: 08 Authority key identifier: C9:16:AE:5A:95:20:B5:F6:76:7E:79:C9:15:AF:A1:BF:6E:49:18:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRauWpUgtfZ2fnnJFa-hv25JGJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/DAB3F33EDE0B11EF8FDDD043C4F9AE02.roa Signing time: Wed 29 Jan 2025 06:39:57 +0000 ROA not before: Wed 29 Jan 2025 06:39:57 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 58737 IP address blocks: 103.30.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/yRauWpUgtfZ2fnnJFa-hv25JGJk.crl rsync://rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/yRauWpUgtfZ2fnnJFa-hv25JGJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRauWpUgtfZ2fnnJFa-hv25JGJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:01:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188CC3 Validity Not Before: Jan 29 06:39:57 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6799cd3c-17ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:93:c0:a0:51:f9:7d:03:1f:f3:1c:91:a9:fc: 1f:d2:94:c8:5b:c5:7f:f9:b5:4f:2d:eb:6b:1f:7b: 38:8c:d5:1b:33:30:d2:19:a1:02:e5:6e:35:1f:1d: 7b:a2:3b:d4:62:07:83:bd:4c:eb:64:2e:52:75:5c: e4:e1:28:57:06:00:95:6e:75:39:13:91:19:ff:a6: f8:d1:1a:d8:97:8d:5e:8d:25:c9:35:2c:c1:e2:b8: c8:91:40:b9:1f:c9:53:6d:36:ed:2f:28:e9:88:a8: a5:38:89:9b:22:ff:47:20:cb:a2:21:d1:13:11:6b: 0f:dc:6f:14:f9:a2:e3:3b:6b:7e:53:0b:99:1e:c4: 32:cd:af:ef:f8:2d:a3:60:47:04:04:6f:db:28:81: b4:ea:0a:cd:1c:c5:dc:9c:13:af:fe:0d:2e:46:a7: 8e:22:13:18:3c:39:59:e2:99:1d:8c:5c:3f:7c:c7: 80:94:0c:d2:01:39:f4:1d:71:ab:6d:5f:a6:81:da: c2:3e:fb:1a:ce:a9:0b:12:be:86:67:27:e9:d0:eb: e5:2d:cd:1d:78:2d:95:d6:71:04:d9:8d:0b:84:fb: 83:3e:b1:c3:dd:0d:17:81:cd:77:61:e3:ca:c1:0d: 92:65:5b:a1:69:85:29:c7:d4:71:7f:6e:ec:6c:c5: 78:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:9A:F1:B5:7D:4A:63:4A:CF:F4:7B:13:25:4E:A6:D3:03:83:0C:53 X509v3 Authority Key Identifier: keyid:C9:16:AE:5A:95:20:B5:F6:76:7E:79:C9:15:AF:A1:BF:6E:49:18:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/yRauWpUgtfZ2fnnJFa-hv25JGJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRauWpUgtfZ2fnnJFa-hv25JGJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188CC3/EDDA36E2D72311EFA2269419C4F9AE02/DAB3F33EDE0B11EF8FDDD043C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.30.169.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:71:c5:bd:bc:7a:6e:1c:69:7c:f0:89:90:03:a0:33:2c:0c: d9:b5:fa:a3:76:9d:04:06:3b:e4:fe:7b:2b:e4:7a:a3:f4:3b: ba:88:74:35:f6:af:f4:07:dd:83:11:40:58:df:db:e9:85:da: 7e:4d:d9:95:36:70:c7:91:c5:99:bf:fe:5e:3a:62:aa:8f:c7: 8b:87:32:3d:10:95:7d:db:e4:ae:e8:97:5d:94:a9:ee:60:e2: 63:f5:92:20:38:c6:14:f3:04:28:00:4b:61:09:b0:99:11:c2: d1:1e:8a:96:cb:40:d2:46:c4:0d:54:02:81:d3:ff:00:99:44: f9:8a:dd:7a:34:54:ea:af:6f:44:fe:32:92:70:37:0e:73:23: b3:16:b9:d9:89:60:48:a3:24:c8:89:ba:5a:96:1f:d0:9e:5a: 5d:24:5d:58:8d:dc:7c:8f:53:69:0d:23:60:c4:95:8f:63:39: c4:d2:62:35:5b:c8:d9:3e:4c:24:31:fa:56:0a:0d:be:62:0f: 4f:9e:12:7f:ba:f3:37:a5:f4:b0:02:39:3b:88:f4:a9:92:1a: 2d:25:e4:4e:b5:f4:5c:13:cb:d8:5c:29:7b:7b:a9:bd:71:83: 47:a4:9d:b5:52:62:00:d2:5c:89:8b:81:c0:20:01:7e:87:07: 39:6d:76:58 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OENDMzExMC8GA1UEBRMoQzkxNkFFNUE5NTIwQjVGNjc2N0U3OUM5MTVBRkExQkY2 RTQ5MTg5OTAeFw0yNTAxMjkwNjM5NTdaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3OTljZDNjLTE3ZmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDok8CgUfl9Ax/zHJGp/B/SlMhbxX/5tU8t62sfeziM1RszMNIZoQLlbjUfHXui O9RiB4O9TOtkLlJ1XOThKFcGAJVudTkTkRn/pvjRGtiXjV6NJck1LMHiuMiRQLkf yVNtNu0vKOmIqKU4iZsi/0cgy6Ih0RMRaw/cbxT5ouM7a35TC5kexDLNr+/4LaNg RwQEb9sogbTqCs0cxdycE6/+DS5Gp44iExg8OVnimR2MXD98x4CUDNIBOfQdcatt X6aB2sI++xrOqQsSvoZnJ+nQ6+UtzR14LZXWcQTZjQuE+4M+scPdDReBzXdh48rB DZJlW6FphSnH1HF/buxsxXgTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUgprxtX1K Y0rP9HsTJU6m0wODDFMwHwYDVR0jBBgwFoAUyRauWpUgtfZ2fnnJFa+hv25JGJkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4Q0MzL0VEREEzNkUyRDcy MzExRUZBMjI2OTQxOUM0RjlBRTAyL3lSYXVXcFVndGZaMmZubkpGYS1odjI1SkdK ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveVJhdVdwVWd0ZloyZm5uSkZhLWh2MjVKR0prLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OENDMy9FRERBMzZFMkQ3MjMxMUVGQTIyNjk0MTlDNEY5QUUwMi9EQUIzRjMzRURF MEIxMUVGOEZEREQwNDNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGceqTANBgkqhkiG9w0BAQsFAAOCAQEALHHFvbx6bhxpfPCJ kAOgMywM2bX6o3adBAY75P57K+R6o/Q7uoh0Nfav9AfdgxFAWN/b6YXafk3ZlTZw x5HFmb/+Xjpiqo/Hi4cyPRCVfdvkruiXXZSp7mDiY/WSIDjGFPMEKABLYQmwmRHC 0R6KlstA0kbEDVQCgdP/AJlE+YrdejRU6q9vRP4yknA3DnMjsxa52YlgSKMkyIm6 WpYf0J5aXSRdWI3cfI9TaQ0jYMSVj2M5xNJiNVvI2T5MJDH6VgoNvmIPT54Sf7rz N6X0sAI5O4j0qZIaLSXkTrX0XBPL2Fwpe3upvXGDR6SdtVJiANJciYuBwCABfocH OW12WA== -----END CERTIFICATE-----Generated at Sat Apr 5 01:05:52 2025 by rpki-client