$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9EFCB74403A611EFBE5DBE75C4F9AE02.roa File: 9EFCB74403A611EFBE5DBE75C4F9AE02.roa (raw, json) Hash identifier: QSWSYtx7Uw1+KD0yabspczcI6NcREd883wfWYmYeQ5A= Subject key identifier: C0:25:7C:E7:0C:1B:04:E2:3D:1A:30:8B:9E:4A:6D:04:9B:31:64:AD Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: A074 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9EFCB74403A611EFBE5DBE75C4F9AE02.roa Signing time: Fri 27 Dec 2024 07:43:05 +0000 ROA not before: Fri 27 Dec 2024 07:43:05 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 147224 IP address blocks: 103.108.45.0/24 maxlen: 24 103.137.45.0/24 maxlen: 24 103.171.77.0/24 maxlen: 24 103.174.247.0/24 maxlen: 24 2001:df0:f740::/48 maxlen: 48 2001:df2:16c0::/48 maxlen: 48 2001:df3:93c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 15:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41076 (0xa074) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Dec 27 07:43:05 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=676e5a89-12ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:7d:1a:9b:ca:6d:d5:15:1d:09:1e:0a:0c:be: 6d:81:bd:6e:41:bd:8a:40:f9:8b:99:2c:98:94:6d: e2:ad:e2:2c:dd:1e:b6:90:47:d5:a2:19:08:df:78: b4:dc:c8:cd:b9:51:43:14:9e:59:4f:b3:d0:1e:74: 7c:ed:ff:52:e0:a9:4c:14:89:55:c7:0b:87:d5:c9: 24:b0:5f:9f:9d:19:cc:c2:49:7d:2e:09:3c:de:02: 5f:08:08:68:f9:be:f2:f1:6c:7c:e9:2b:e5:c9:3d: 9d:08:11:1e:a1:ef:6e:51:94:d2:2c:3b:9e:6d:3a: 18:d7:17:bf:97:52:c2:66:58:35:00:e1:2b:ad:85: c0:bb:9e:f5:50:73:09:31:c5:12:59:07:f7:a6:c0: a3:aa:9e:c1:84:d2:80:3a:5f:58:73:48:ed:a0:a3: 3c:b5:cd:f9:e9:4f:65:33:70:d7:b7:7d:a6:f0:7d: 0f:fa:2a:9a:97:f8:70:b8:09:4b:ff:66:4d:76:8e: f3:be:d8:c9:46:2c:f9:21:fa:e4:c0:f4:3a:e9:29: b2:9b:ad:b8:2d:8f:2f:5a:80:80:62:90:1a:01:43: 30:ed:20:29:78:60:d7:2e:7e:55:eb:14:da:a5:ac: 47:57:23:3c:1e:fa:6c:67:9d:85:c4:c1:cb:a3:fe: 94:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:25:7C:E7:0C:1B:04:E2:3D:1A:30:8B:9E:4A:6D:04:9B:31:64:AD X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/9EFCB74403A611EFBE5DBE75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.108.45.0/24 103.137.45.0/24 103.171.77.0/24 103.174.247.0/24 IPv6: 2001:df0:f740::/48 2001:df2:16c0::/48 2001:df3:93c0::/48 Signature Algorithm: sha256WithRSAEncryption 9b:a3:11:28:e3:d2:b3:0e:f5:4a:ed:8a:30:ed:3b:a5:45:ad: a2:15:bf:8d:66:bc:ef:66:b1:54:a4:ae:ac:5d:15:ce:fa:33: cb:8c:d2:46:b9:a1:4b:9c:f9:cd:c1:94:53:a4:09:7e:b4:8d: f5:f4:37:e2:44:46:bd:b5:76:fd:b7:df:a3:e0:2a:00:56:5f: c7:e8:94:53:76:c1:35:11:30:1e:f7:20:d2:7b:9a:a4:b3:2c: 44:da:0b:4b:0c:25:f9:a2:8e:5b:62:31:bb:2d:6d:b9:e9:20: 64:a0:b8:84:35:7c:e3:44:46:1f:dd:10:3e:3e:ce:e5:c8:5a: c6:7b:b0:59:15:68:c1:3d:1e:a9:53:87:75:94:ec:9c:48:74: 55:01:27:58:f7:da:d6:de:ee:1c:a2:36:07:0c:18:2d:51:64: 23:8d:96:9f:c1:4a:1f:eb:3b:66:6e:3a:cf:ef:ec:a7:bc:95: a3:c9:99:13:3d:fe:0f:eb:32:1e:06:47:3f:54:79:a8:a2:d1: 24:d9:01:3a:03:0a:ce:f0:02:fa:66:9e:ee:81:35:9f:61:3e: 79:21:c1:dd:de:a4:d3:cd:de:b7:a9:04:28:03:75:0c:0d:ec: 78:66:cf:5b:c3:b6:88:f0:04:06:d9:fb:50:d2:17:3b:74:e1: d3:40:af:cc -----BEGIN CERTIFICATE----- MIIFpzCCBI+gAwIBAgIDAKB0MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI0MTIyNzA3NDMwNVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjc2ZTVhODktMTJhZDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANl9GpvKbdUVHQkeCgy+bYG9bkG9ikD5i5ksmJRt4q3iLN0etpBH1aIZCN94 tNzIzblRQxSeWU+z0B50fO3/UuCpTBSJVccLh9XJJLBfn50ZzMJJfS4JPN4CXwgI aPm+8vFsfOkr5ck9nQgRHqHvblGU0iw7nm06GNcXv5dSwmZYNQDhK62FwLue9VBz CTHFElkH96bAo6qewYTSgDpfWHNI7aCjPLXN+elPZTNw17d9pvB9D/oqmpf4cLgJ S/9mTXaO877YyUYs+SH65MD0OukpsputuC2PL1qAgGKQGgFDMO0gKXhg1y5+VesU 2qWsR1cjPB76bGedhcTBy6P+lC0CAwEAAaOCAsowggLGMB0GA1UdDgQWBBTAJXzn DBsE4j0aMIueSm0EmzFkrTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzlFRkNCNzQ0 MDNBNjExRUZCRTVEQkU3NUM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMFQGCCsGAQUFBwEHAQH/ BEUwQzAeBAIAATAYAwQAZ2wtAwQAZ4ktAwQAZ6tNAwQAZ673MCEEAgACMBsDBwAg AQ3w90ADBwAgAQ3yFsADBwAgAQ3zk8AwDQYJKoZIhvcNAQELBQADggEBAJujESjj 0rMO9UrtijDtO6VFraIVv41mvO9msVSkrqxdFc76M8uM0ka5oUuc+c3BlFOkCX60 jfX0N+JERr21dv2336PgKgBWX8folFN2wTURMB73INJ7mqSzLETaC0sMJfmijlti MbstbbnpIGSguIQ1fONERh/dED4+zuXIWsZ7sFkVaME9HqlTh3WU7JxIdFUBJ1j3 2tbe7hyiNgcMGC1RZCONlp/BSh/rO2ZuOs/v7Ke8laPJmRM9/g/rMh4GRz9Ueaii 0STZAToDCs7wAvpmnu6BNZ9hPnkhwd3epNPN3repBCgDdQwN7Hhmz1vDtojwBAbZ +1DSFzt04dNAr8w= -----END CERTIFICATE-----Generated at Fri Apr 4 10:54:41 2025 by rpki-client