$ rpki-client -vvf rpki.apnic.net/member_repository/A9194CBE/067F4720233011EBBA8C774BC4F9AE02/C329F1CE2AB611EDB5BBD62BC4F9AE02.roa File: C329F1CE2AB611EDB5BBD62BC4F9AE02.roa (raw, json) Hash identifier: KbjbjWfa/W/SeFQrbonVtHmtNH6PFYaGP9XG75HjJGE= Subject key identifier: EB:A1:EB:17:75:43:EF:54:15:74:0B:6C:2E:C5:61:12:76:E7:B3:D9 Certificate issuer: /CN=A9194CBE/serialNumber=3BB051A7DABA687FE3A561E38F47B950467C571E Certificate serial: 071A Authority key identifier: 3B:B0:51:A7:DA:BA:68:7F:E3:A5:61:E3:8F:47:B9:50:46:7C:57:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7BRp9q6aH_jpWHjj0e5UEZ8Vx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194CBE/067F4720233011EBBA8C774BC4F9AE02/C329F1CE2AB611EDB5BBD62BC4F9AE02.roa Signing time: Thu 26 Dec 2024 21:40:16 +0000 ROA not before: Thu 26 Dec 2024 21:40:16 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 141411 IP address blocks: 103.158.124.0/23 maxlen: 23 103.158.124.0/24 maxlen: 24 103.158.125.0/24 maxlen: 24 2001:df5:4f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194CBE/067F4720233011EBBA8C774BC4F9AE02/O7BRp9q6aH_jpWHjj0e5UEZ8Vx4.crl rsync://rpki.apnic.net/member_repository/A9194CBE/067F4720233011EBBA8C774BC4F9AE02/O7BRp9q6aH_jpWHjj0e5UEZ8Vx4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7BRp9q6aH_jpWHjj0e5UEZ8Vx4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:51:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1818 (0x71a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194CBE Validity Not Before: Dec 26 21:40:16 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676dcd3f-414d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:64:0b:70:ad:2b:9f:e9:c6:eb:34:51:eb:dc: e5:9c:6d:4c:ff:73:e3:ec:ad:fa:21:b7:0d:76:a0: 48:61:3b:5d:2c:99:7c:fb:9e:60:ff:f9:6e:f2:53: a5:42:4a:4b:10:49:5f:29:c6:84:4c:c1:a5:fc:df: 00:14:5c:23:a9:10:ab:0e:7f:b6:6f:6d:cd:18:1a: 98:5d:34:1d:4a:1e:4e:3b:11:d8:b3:8d:c8:c8:f3: 4e:3f:05:ae:cd:c6:4a:43:c3:b4:8b:45:ca:32:a0: d1:8e:58:81:42:ed:f8:c7:9d:dc:9b:93:5c:58:ec: fe:37:b4:0b:67:15:55:70:1d:41:91:01:c3:4d:dc: 18:86:8b:00:5e:83:af:16:52:ae:c5:cc:b5:18:59: da:9a:2e:68:1f:79:da:02:22:b9:1c:36:51:b8:94: 36:93:9d:d4:72:5d:77:ca:34:d4:54:69:a9:68:4f: 16:35:b9:72:da:df:d1:44:9f:09:83:35:a9:0d:7b: 55:78:5c:d9:5b:2c:5a:4d:99:d9:1e:a3:ac:12:0d: 23:61:40:32:1f:ff:64:9a:98:2f:88:4b:c5:c7:ef: 66:6b:02:f3:9b:7a:ae:4e:c1:4a:de:a7:94:96:99: fb:2b:0b:40:ca:c7:6f:0d:b3:96:4b:c8:1e:a8:e8: f6:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:A1:EB:17:75:43:EF:54:15:74:0B:6C:2E:C5:61:12:76:E7:B3:D9 X509v3 Authority Key Identifier: keyid:3B:B0:51:A7:DA:BA:68:7F:E3:A5:61:E3:8F:47:B9:50:46:7C:57:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194CBE/067F4720233011EBBA8C774BC4F9AE02/O7BRp9q6aH_jpWHjj0e5UEZ8Vx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O7BRp9q6aH_jpWHjj0e5UEZ8Vx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194CBE/067F4720233011EBBA8C774BC4F9AE02/C329F1CE2AB611EDB5BBD62BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.124.0/23 IPv6: 2001:df5:4f80::/48 Signature Algorithm: sha256WithRSAEncryption 9e:a1:71:6a:20:d7:8b:d9:99:d5:67:a0:85:e8:e6:83:13:66: 09:2b:10:80:67:04:68:03:f2:1f:7c:01:90:5c:9e:5f:8d:58: f3:10:55:85:66:b1:fc:a3:7a:4f:4a:20:eb:85:d8:98:20:19: 7e:f1:3f:4f:dc:55:92:3c:8d:28:fd:8d:ee:7f:c3:7f:80:10: da:6a:83:a5:a6:2d:fc:37:b4:bf:ab:30:33:e5:2f:bb:9e:7d: 64:86:30:fc:b4:60:1a:e9:0b:e8:e8:21:a1:9c:0d:06:2b:33: 5c:53:85:42:f5:1d:d0:f8:ff:49:76:db:24:0e:dc:9e:68:8f: ac:29:48:21:69:c3:e9:aa:c5:96:71:32:7d:81:94:fc:1e:47: c0:04:01:eb:0c:28:73:f8:35:cd:e6:a0:49:17:b4:5c:6b:6b: c3:ed:7f:1d:0c:7a:f1:cc:a0:bb:1f:a9:fc:04:72:3c:d5:51: 0f:59:ec:bd:0a:4c:97:c5:56:97:ee:5f:b0:a3:96:c8:7a:e9: eb:42:17:6d:b1:57:f6:a5:13:78:81:2a:58:6e:56:93:48:de: 2c:2d:8b:37:7c:4b:88:9c:dd:b4:13:58:31:0b:30:fb:a2:e6: 41:d4:6d:1a:48:0c:68:f0:79:a4:b9:5c:d8:66:47:f7:15:b9: d5:52:80:14 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDQkUxMTAvBgNVBAUTKDNCQjA1MUE3REFCQTY4N0ZFM0E1NjFFMzhGNDdCOTUw NDY3QzU3MUUwHhcNMjQxMjI2MjE0MDE2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzZkY2QzZi00MTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmQLcK0rn+nG6zRR69zlnG1M/3Pj7K36IbcNdqBIYTtdLJl8+55g//lu8lOl QkpLEElfKcaETMGl/N8AFFwjqRCrDn+2b23NGBqYXTQdSh5OOxHYs43IyPNOPwWu zcZKQ8O0i0XKMqDRjliBQu34x53cm5NcWOz+N7QLZxVVcB1BkQHDTdwYhosAXoOv FlKuxcy1GFnami5oH3naAiK5HDZRuJQ2k53Ucl13yjTUVGmpaE8WNbly2t/RRJ8J gzWpDXtVeFzZWyxaTZnZHqOsEg0jYUAyH/9kmpgviEvFx+9mawLzm3quTsFK3qeU lpn7KwtAysdvDbOWS8geqOj2xwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOuh6xd1 Q+9UFXQLbC7FYRJ257PZMB8GA1UdIwQYMBaAFDuwUafaumh/46Vh449HuVBGfFce MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NENCRS8wNjdGNDcyMDIz MzAxMUVCQkE4Qzc3NEJDNEY5QUUwMi9PN0JScDlxNmFIX2pwV0hqajBlNVVFWjhW eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL083QlJwOXE2YUhfanBXSGpqMGU1VUVaOFZ4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRDQkUvMDY3RjQ3MjAyMzMwMTFFQkJBOEM3NzRCQzRGOUFFMDIvQzMyOUYxQ0Uy QUI2MTFFREI1QkJENjJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnnnwwDwQCAAIwCQMHACABDfVPgDANBgkqhkiG9w0BAQsF AAOCAQEAnqFxaiDXi9mZ1WeghejmgxNmCSsQgGcEaAPyH3wBkFyeX41Y8xBVhWax /KN6T0og64XYmCAZfvE/T9xVkjyNKP2N7n/Df4AQ2mqDpaYt/De0v6swM+Uvu559 ZIYw/LRgGukL6OghoZwNBiszXFOFQvUd0Pj/SXbbJA7cnmiPrClIIWnD6arFlnEy fYGU/B5HwAQB6wwoc/g1zeagSRe0XGtrw+1/HQx68cygux+p/ARyPNVRD1nsvQpM l8VWl+5fsKOWyHrp60IXbbFX9qUTeIEqWG5Wk0jeLC2LN3xLiJzdtBNYMQsw+6Lm QdRtGkgMaPB5pLlc2GZH9xW51VKAFA== -----END CERTIFICATE-----Generated at Sat Apr 5 19:27:51 2025 by rpki-client