$ rpki-client -vvf rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/63E3EB3EEF6611EB9A7EFE0EC4F9AE02.roa File: 63E3EB3EEF6611EB9A7EFE0EC4F9AE02.roa (raw, json) Hash identifier: EqiHTn4Bvx29MtI27T1i2scxIu1sELWg2VCi9UdcIbA= Subject key identifier: E5:15:A0:AB:52:8A:73:6F:EB:73:84:5A:46:21:4E:3B:11:E8:1C:2A Certificate issuer: /CN=A918E0B2/serialNumber=0B3EBA88F1ADA1A1B50891B26531A3E709BF659A Certificate serial: 04FF Authority key identifier: 0B:3E:BA:88:F1:AD:A1:A1:B5:08:91:B2:65:31:A3:E7:09:BF:65:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/63E3EB3EEF6611EB9A7EFE0EC4F9AE02.roa Signing time: Sat 14 Dec 2024 23:22:27 +0000 ROA not before: Sat 14 Dec 2024 23:22:27 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 133154 IP address blocks: 103.252.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.crl rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:36:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1279 (0x4ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E0B2 Validity Not Before: Dec 14 23:22:27 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=675e1333-34fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:cd:65:b3:58:17:69:a8:fc:fb:8c:fe:82:d4: 6b:1b:dd:d0:07:2e:7f:6a:56:8e:fc:65:67:90:55: 63:2b:3b:b4:b7:02:1e:c1:e6:4c:81:ea:97:82:9f: 5a:59:85:47:5f:48:73:78:86:f7:02:4e:31:b6:e0: 18:8f:c3:ac:3f:47:8d:6b:0b:ce:75:be:59:88:bc: b4:1a:74:d6:1c:2b:c2:21:65:7a:90:66:dc:57:65: 67:64:14:b1:c9:54:f9:53:30:65:56:ab:60:e6:4d: bf:4e:f5:7c:4b:78:4d:08:50:d6:03:05:af:cd:22: 9b:98:50:03:a0:5d:34:50:5e:1b:2f:65:f1:31:2e: 22:bd:d8:8e:26:84:e4:04:98:cf:59:de:0a:9a:ef: c7:6f:d6:1c:2d:1d:0e:c2:a4:3d:85:67:35:b4:cc: b9:d6:69:9c:94:5d:fd:a6:25:cc:d6:24:79:9b:76: cb:da:5d:eb:6a:ff:a6:f1:41:11:c6:41:24:fa:df: 8e:0e:9d:5f:29:a7:da:23:61:71:03:93:c2:96:3a: f2:ad:95:1f:e0:5d:58:43:b7:14:8c:e8:9f:f7:3c: 3d:93:56:9e:24:8a:b2:43:19:fb:80:30:72:15:ab: 34:a3:43:df:4f:6c:8d:9d:ca:ec:39:43:b4:63:4c: f3:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:15:A0:AB:52:8A:73:6F:EB:73:84:5A:46:21:4E:3B:11:E8:1C:2A X509v3 Authority Key Identifier: keyid:0B:3E:BA:88:F1:AD:A1:A1:B5:08:91:B2:65:31:A3:E7:09:BF:65:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/63E3EB3EEF6611EB9A7EFE0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.252.247.0/24 Signature Algorithm: sha256WithRSAEncryption ae:c1:21:c3:4b:5d:d6:92:7d:e6:e6:63:d7:03:ac:35:09:d4: 4c:18:fb:f0:d8:11:66:a3:eb:2c:cf:2b:c7:10:8e:75:df:a2: ce:cd:de:5a:1e:82:11:76:77:2f:4b:52:b2:51:d9:98:c2:a5: 8e:5a:ae:1c:dd:7a:36:61:ad:16:1f:dc:1e:34:02:88:ff:75: 41:7b:97:b8:6f:e4:61:69:65:4a:79:11:cf:ca:cc:fa:8f:e2: a8:7b:21:e9:83:ec:09:6b:49:cd:a3:03:2f:80:43:4d:7d:78: 94:3f:8d:5f:09:2d:ed:d5:49:26:f0:cb:0a:4a:e2:cd:3a:c0: 6b:65:f9:da:de:87:4b:13:64:f0:dd:e9:6e:94:6e:96:56:07: 54:ac:a0:bc:8b:1d:ad:29:6d:cb:65:7c:6c:e9:be:00:69:d8: 27:1c:96:4e:71:31:63:a8:0f:b7:78:38:3c:76:7f:04:b3:6e: 5a:fe:6a:4c:10:5e:c2:5b:1c:f6:c6:ec:ed:72:c5:95:49:f5: 7c:59:2b:9b:76:24:df:1d:a7:e1:e8:41:68:3f:e3:04:51:0b: 25:c0:de:b7:f8:9a:15:81:88:44:26:03:e9:44:d2:e9:f1:37: 68:90:6f:53:43:c9:95:5d:15:20:8c:a5:5e:1a:53:1f:5b:96: a3:64:7f:52 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUwQjIxMTAvBgNVBAUTKDBCM0VCQTg4RjFBREExQTFCNTA4OTFCMjY1MzFBM0U3 MDlCRjY1OUEwHhcNMjQxMjE0MjMyMjI3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzVlMTMzMy0zNGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA381ls1gXaaj8+4z+gtRrG93QBy5/alaO/GVnkFVjKzu0twIeweZMgeqXgp9a WYVHX0hzeIb3Ak4xtuAYj8OsP0eNawvOdb5ZiLy0GnTWHCvCIWV6kGbcV2VnZBSx yVT5UzBlVqtg5k2/TvV8S3hNCFDWAwWvzSKbmFADoF00UF4bL2XxMS4ivdiOJoTk BJjPWd4Kmu/Hb9YcLR0OwqQ9hWc1tMy51mmclF39piXM1iR5m3bL2l3rav+m8UER xkEk+t+ODp1fKafaI2FxA5PCljryrZUf4F1YQ7cUjOif9zw9k1aeJIqyQxn7gDBy Fas0o0PfT2yNncrsOUO0Y0zz4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOUVoKtS inNv63OEWkYhTjsR6BwqMB8GA1UdIwQYMBaAFAs+uojxraGhtQiRsmUxo+cJv2Wa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTBCMi82NzA0MkMxOEVG NjQxMUVCODMzRkM4MERDNEY5QUUwMi9DejY2aVBHdG9hRzFDSkd5WlRHajV3bV9a Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N6NjZpUEd0b2FHMUNKR3laVEdqNXdtX1paby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEUwQjIvNjcwNDJDMThFRjY0MTFFQjgzM0ZDODBEQzRGOUFFMDIvNjNFM0VCM0VF RjY2MTFFQjlBN0VGRTBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn/PcwDQYJKoZIhvcNAQELBQADggEBAK7BIcNLXdaSfebm Y9cDrDUJ1EwY+/DYEWaj6yzPK8cQjnXfos7N3loeghF2dy9LUrJR2ZjCpY5arhzd ejZhrRYf3B40Aoj/dUF7l7hv5GFpZUp5Ec/KzPqP4qh7IemD7AlrSc2jAy+AQ019 eJQ/jV8JLe3VSSbwywpK4s06wGtl+dreh0sTZPDd6W6UbpZWB1SsoLyLHa0pbctl fGzpvgBp2Ccclk5xMWOoD7d4ODx2fwSzblr+akwQXsJbHPbG7O1yxZVJ9XxZK5t2 JN8dp+HoQWg/4wRRCyXA3rf4mhWBiEQmA+lE0unxN2iQb1NDyZVdFSCMpV4aUx9b lqNkf1I= -----END CERTIFICATE-----Generated at Sat Apr 5 08:16:16 2025 by rpki-client