$ rpki-client -vvf rpki.apnic.net/member_repository/A918D6BF/E361BA20A5A111E7B3A3127DC4F9AE02/9680FCD2A87011EFB3944C13C4F9AE02.roa File: 9680FCD2A87011EFB3944C13C4F9AE02.roa (raw, json) Hash identifier: YlKt2kWUben+k2Bjb1MLu5JXetR40hUY8rn1r7Iw5U0= Subject key identifier: E9:9C:AE:FE:CC:8C:6A:77:30:32:03:53:2B:C7:AC:6E:BC:E4:CF:81 Certificate issuer: /CN=A918D6BF/serialNumber=4E01F4FCA76DBF9295DEC61C1B32A4EE68ADFD23 Certificate serial: 18AC Authority key identifier: 4E:01:F4:FC:A7:6D:BF:92:95:DE:C6:1C:1B:32:A4:EE:68:AD:FD:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TgH0_Kdtv5KV3sYcGzKk7mit_SM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D6BF/E361BA20A5A111E7B3A3127DC4F9AE02/9680FCD2A87011EFB3944C13C4F9AE02.roa Signing time: Mon 24 Mar 2025 16:54:45 +0000 ROA not before: Mon 24 Mar 2025 16:54:45 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152472 IP address blocks: 103.243.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D6BF/E361BA20A5A111E7B3A3127DC4F9AE02/TgH0_Kdtv5KV3sYcGzKk7mit_SM.crl rsync://rpki.apnic.net/member_repository/A918D6BF/E361BA20A5A111E7B3A3127DC4F9AE02/TgH0_Kdtv5KV3sYcGzKk7mit_SM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TgH0_Kdtv5KV3sYcGzKk7mit_SM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:35:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6316 (0x18ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D6BF Validity Not Before: Mar 24 16:54:45 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67e18e55-98b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:bb:8f:0d:ca:a5:2d:63:46:bb:78:53:15:21: b3:d8:eb:1a:97:30:86:7b:44:6b:b4:75:e8:07:72: 7e:f5:50:62:75:80:cf:b5:95:c2:0b:43:66:ce:24: e5:69:42:36:94:53:53:4b:a7:4d:eb:77:ae:9d:3b: ff:61:cb:5f:11:8d:9a:7d:35:15:59:98:18:1e:29: 87:20:6a:45:d6:ad:96:43:0d:a6:75:25:71:be:6a: bd:9a:ac:6a:2f:37:eb:07:5b:a4:ea:ae:57:3a:79: e4:d6:ed:aa:92:0b:45:03:31:46:af:95:76:9c:f4: f7:40:d7:57:05:b0:c5:ec:a1:66:14:8b:d8:b4:2c: 16:e0:f2:27:c6:04:fd:f3:e7:42:54:90:3f:00:43: e2:71:9c:10:b2:eb:27:37:2c:ed:e1:a9:2c:31:d7: 3b:47:91:ad:ec:10:0b:e7:e4:10:10:04:87:62:57: 21:1f:01:0c:ce:76:30:ec:6a:4d:07:ac:d0:35:8e: 78:77:01:af:66:7c:eb:b2:c7:0a:97:a1:31:ed:70: 10:ef:37:db:03:ca:99:59:62:d8:4b:24:a3:cf:26: 34:66:b1:8e:7f:5e:2e:4b:6f:e8:09:68:ab:72:3b: 2f:f7:a5:dc:61:da:64:a2:0d:f3:96:35:25:09:6e: 42:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:9C:AE:FE:CC:8C:6A:77:30:32:03:53:2B:C7:AC:6E:BC:E4:CF:81 X509v3 Authority Key Identifier: keyid:4E:01:F4:FC:A7:6D:BF:92:95:DE:C6:1C:1B:32:A4:EE:68:AD:FD:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D6BF/E361BA20A5A111E7B3A3127DC4F9AE02/TgH0_Kdtv5KV3sYcGzKk7mit_SM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TgH0_Kdtv5KV3sYcGzKk7mit_SM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D6BF/E361BA20A5A111E7B3A3127DC4F9AE02/9680FCD2A87011EFB3944C13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.239.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:86:27:91:5d:26:eb:ca:84:b7:e2:b6:07:70:84:20:24:68: cc:e7:65:3b:ef:f4:ff:7a:e6:f3:38:03:b2:a3:78:74:de:57: 7d:7c:ad:c6:57:fd:9e:a5:de:65:94:f0:92:b7:29:6a:0d:43: 15:49:bb:2f:d3:64:5d:e5:d0:8d:60:91:de:73:06:8c:03:f3: eb:fe:6d:42:e6:07:7c:b0:f1:88:56:ce:3f:81:dd:e6:e2:90: 1a:a0:9b:1e:9d:bf:e0:11:95:b8:bc:e6:34:73:12:db:ff:23: 3f:43:70:7c:17:71:f2:cb:d4:8b:17:cf:49:51:4c:19:45:d9: e2:9d:a8:4d:6c:4c:ff:39:1c:17:68:36:58:af:e5:3d:76:41: a6:0b:59:b2:a6:3f:e1:2d:df:91:7f:10:8c:5e:58:5b:35:76: 9b:9f:52:1d:c2:14:e7:61:1e:75:8d:29:7d:54:6e:af:9e:12: 38:30:e7:76:19:06:04:75:8d:a2:3a:ed:b6:d9:c2:b9:6a:70: 57:42:fb:47:c8:4d:98:60:aa:4a:4b:3c:35:13:32:83:71:24: 41:bf:28:21:3e:be:bc:6d:4f:4f:c0:a4:aa:c5:6c:56:5b:de: 70:1c:75:eb:9c:24:9e:e1:39:6f:1f:22:d2:74:6c:e2:ed:c3: b0:d6:04:0b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ2QkYxMTAvBgNVBAUTKDRFMDFGNEZDQTc2REJGOTI5NURFQzYxQzFCMzJBNEVF NjhBREZEMjMwHhcNMjUwMzI0MTY1NDQ1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2UxOGU1NS05OGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ruPDcqlLWNGu3hTFSGz2OsalzCGe0RrtHXoB3J+9VBidYDPtZXCC0NmziTl aUI2lFNTS6dN63eunTv/YctfEY2afTUVWZgYHimHIGpF1q2WQw2mdSVxvmq9mqxq LzfrB1uk6q5XOnnk1u2qkgtFAzFGr5V2nPT3QNdXBbDF7KFmFIvYtCwW4PInxgT9 8+dCVJA/AEPicZwQsusnNyzt4aksMdc7R5Gt7BAL5+QQEASHYlchHwEMznYw7GpN B6zQNY54dwGvZnzrsscKl6Ex7XAQ7zfbA8qZWWLYSySjzyY0ZrGOf14uS2/oCWir cjsv96XcYdpkog3zljUlCW5CgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOmcrv7M jGp3MDIDUyvHrG685M+BMB8GA1UdIwQYMBaAFE4B9Pynbb+Sld7GHBsypO5orf0j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDZCRi9FMzYxQkEyMEE1 QTExMUU3QjNBMzEyN0RDNEY5QUUwMi9UZ0gwX0tkdHY1S1Yzc1ljR3pLazdtaXRf U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RnSDBfS2R0djVLVjNzWWNHektrN21pdF9TTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQ2QkYvRTM2MUJBMjBBNUExMTFFN0IzQTMxMjdEQzRGOUFFMDIvOTY4MEZDRDJB ODcwMTFFRkIzOTQ0QzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn8+8wDQYJKoZIhvcNAQELBQADggEBAF2GJ5FdJuvKhLfi tgdwhCAkaMznZTvv9P965vM4A7KjeHTeV318rcZX/Z6l3mWU8JK3KWoNQxVJuy/T ZF3l0I1gkd5zBowD8+v+bULmB3yw8YhWzj+B3ebikBqgmx6dv+ARlbi85jRzEtv/ Iz9DcHwXcfLL1IsXz0lRTBlF2eKdqE1sTP85HBdoNliv5T12QaYLWbKmP+Et35F/ EIxeWFs1dpufUh3CFOdhHnWNKX1Ubq+eEjgw53YZBgR1jaI67bbZwrlqcFdC+0fI TZhgqkpLPDUTMoNxJEG/KCE+vrxtT0/ApKrFbFZb3nAcdeucJJ7hOW8fItJ0bOLt w7DWBAs= -----END CERTIFICATE-----Generated at Sat Apr 5 06:16:42 2025 by rpki-client