$ rpki-client -vvf rpki.apnic.net/member_repository/A9194692/885A32FE429411EB90491A34C4F9AE02/B3878620B15E11EE9521E85BC4F9AE02.roa File: B3878620B15E11EE9521E85BC4F9AE02.roa (raw, json) Hash identifier: Ze9P8zUvpUUuNDb2f6jUuTz0IuEk5HXo9HL8O2n8v1w= Subject key identifier: A4:98:2F:7B:CD:D6:AF:5A:A2:B9:EA:7D:7B:BA:65:57:F7:84:25:37 Certificate issuer: /CN=A9194692/serialNumber=AFE5B3CD2DC567AB8A58EB3980D5E5E784290A40 Certificate serial: 06DF Authority key identifier: AF:E5:B3:CD:2D:C5:67:AB:8A:58:EB:39:80:D5:E5:E7:84:29:0A:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-WzzS3FZ6uKWOs5gNXl54QpCkA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194692/885A32FE429411EB90491A34C4F9AE02/B3878620B15E11EE9521E85BC4F9AE02.roa Signing time: Tue 04 Feb 2025 21:41:36 +0000 ROA not before: Tue 04 Feb 2025 21:41:36 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 141418 IP address blocks: 103.158.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194692/885A32FE429411EB90491A34C4F9AE02/r-WzzS3FZ6uKWOs5gNXl54QpCkA.crl rsync://rpki.apnic.net/member_repository/A9194692/885A32FE429411EB90491A34C4F9AE02/r-WzzS3FZ6uKWOs5gNXl54QpCkA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-WzzS3FZ6uKWOs5gNXl54QpCkA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 21:55:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1759 (0x6df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194692 Validity Not Before: Feb 4 21:41:36 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67a28990-422e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:de:7f:70:61:54:5c:b4:e1:fe:1a:d2:32:29: 8c:06:b9:86:64:c4:09:7e:71:b7:ba:91:ad:8f:00: 08:9f:23:47:48:a9:3f:11:0f:75:e0:6b:92:cf:20: b7:dc:fc:63:ac:ed:7c:16:96:4e:ab:43:02:f5:c6: 1c:98:cc:0e:9d:61:95:7e:6d:2a:dd:8b:ef:14:e0: b6:07:d2:d5:bb:08:75:e5:fa:fd:11:da:82:c5:b7: 22:e9:63:0c:d3:76:52:3c:63:2a:de:26:8b:70:ef: f8:d3:e0:24:be:37:bf:bc:1a:0b:c2:43:87:0c:c1: cd:13:ce:f6:da:af:a6:43:a9:0d:43:05:47:13:45: b4:e1:48:c7:ff:a3:fc:df:d6:f7:b3:40:1f:5e:05: 48:38:a0:15:ee:55:28:6d:4b:24:e3:30:1a:fb:4d: 71:13:a8:37:a3:bd:e9:78:d3:c5:00:12:eb:c5:12: 88:03:91:15:47:0c:b0:69:b3:32:3d:50:99:94:d0: ec:8e:3f:63:6d:ce:10:88:a7:31:09:59:a9:7b:24: ad:3d:e1:30:e2:60:2e:d2:bc:d3:47:b4:2c:5f:04: a9:6c:01:71:74:b0:85:3f:81:c8:49:e4:b3:7d:10: 5d:ad:88:47:a7:55:72:d4:49:8e:10:01:ad:53:f8: 91:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:98:2F:7B:CD:D6:AF:5A:A2:B9:EA:7D:7B:BA:65:57:F7:84:25:37 X509v3 Authority Key Identifier: keyid:AF:E5:B3:CD:2D:C5:67:AB:8A:58:EB:39:80:D5:E5:E7:84:29:0A:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194692/885A32FE429411EB90491A34C4F9AE02/r-WzzS3FZ6uKWOs5gNXl54QpCkA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-WzzS3FZ6uKWOs5gNXl54QpCkA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194692/885A32FE429411EB90491A34C4F9AE02/B3878620B15E11EE9521E85BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.210.0/24 Signature Algorithm: sha256WithRSAEncryption 51:58:0a:bc:0e:a3:3c:7e:63:7e:5b:67:85:70:e0:84:c4:9d: a7:0c:0c:8b:86:54:59:ad:8a:ee:6d:22:1d:0e:c0:b5:a0:50: d8:af:7a:af:b4:1d:f2:bd:44:34:72:8f:04:34:59:4f:f2:fb: fc:ea:83:93:2c:02:51:48:b0:b8:d5:d1:04:bd:61:4e:2a:a5: db:9c:b3:31:fe:65:c6:5f:c0:bb:4a:fb:c1:60:97:7a:12:25: fb:0f:15:33:9d:4d:80:d2:4a:b7:ba:e5:b8:df:16:ca:be:b3: 7c:00:50:a8:13:e6:1e:db:df:3d:af:1f:67:e7:e8:5e:9d:83: dd:32:29:61:52:0a:b0:98:3b:c7:05:0d:ed:0e:36:6d:8a:00: 00:3e:a8:26:09:d4:0f:87:1e:75:bc:2d:87:73:45:92:c7:b1: 33:be:86:80:0b:76:20:15:d7:47:ce:ab:24:73:3c:e9:fa:bb: 56:ea:52:fe:4b:fe:14:88:51:25:6e:dc:11:98:fe:e6:53:52: 60:8b:80:5c:d1:54:ed:76:2f:cf:59:77:e1:eb:99:26:c8:3e: 12:af:89:5c:33:f2:32:c4:13:01:3b:96:83:28:a3:5d:78:8d: f0:89:d3:ca:63:a3:9d:cc:c3:d6:cb:32:5f:4a:5a:91:f3:97: 75:33:1f:e8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ2OTIxMTAvBgNVBAUTKEFGRTVCM0NEMkRDNTY3QUI4QTU4RUIzOTgwRDVFNUU3 ODQyOTBBNDAwHhcNMjUwMjA0MjE0MTM2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyODk5MC00MjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArt5/cGFUXLTh/hrSMimMBrmGZMQJfnG3upGtjwAInyNHSKk/EQ914GuSzyC3 3PxjrO18FpZOq0MC9cYcmMwOnWGVfm0q3YvvFOC2B9LVuwh15fr9EdqCxbci6WMM 03ZSPGMq3iaLcO/40+Akvje/vBoLwkOHDMHNE8722q+mQ6kNQwVHE0W04UjH/6P8 39b3s0AfXgVIOKAV7lUobUsk4zAa+01xE6g3o73peNPFABLrxRKIA5EVRwywabMy PVCZlNDsjj9jbc4QiKcxCVmpeyStPeEw4mAu0rzTR7QsXwSpbAFxdLCFP4HISeSz fRBdrYhHp1Vy1EmOEAGtU/iRPwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKSYL3vN 1q9aornqfXu6ZVf3hCU3MB8GA1UdIwQYMBaAFK/ls80txWeriljrOYDV5eeEKQpA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDY5Mi84ODVBMzJGRTQy OTQxMUVCOTA0OTFBMzRDNEY5QUUwMi9yLVd6elMzRlo2dUtXT3M1Z05YbDU0UXBD a0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ItV3p6UzNGWjZ1S1dPczVnTlhsNTRRcENrQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTQ2OTIvODg1QTMyRkU0Mjk0MTFFQjkwNDkxQTM0QzRGOUFFMDIvQjM4Nzg2MjBC MTVFMTFFRTk1MjFFODVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnntIwDQYJKoZIhvcNAQELBQADggEBAFFYCrwOozx+Y35b Z4Vw4ITEnacMDIuGVFmtiu5tIh0OwLWgUNiveq+0HfK9RDRyjwQ0WU/y+/zqg5Ms AlFIsLjV0QS9YU4qpducszH+ZcZfwLtK+8Fgl3oSJfsPFTOdTYDSSre65bjfFsq+ s3wAUKgT5h7b3z2vH2fn6F6dg90yKWFSCrCYO8cFDe0ONm2KAAA+qCYJ1A+HHnW8 LYdzRZLHsTO+hoALdiAV10fOqyRzPOn6u1bqUv5L/hSIUSVu3BGY/uZTUmCLgFzR VO12L89Zd+HrmSbIPhKviVwz8jLEEwE7loMoo114jfCJ08pjo53Mw9bLMl9KWpHz l3UzH+g= -----END CERTIFICATE-----Generated at Sat Apr 12 09:20:42 2025 by rpki-client