$ rpki-client -vvf rpki.apnic.net/member_repository/A9196E05/42955510CE5311EA8E8C924CC4F9AE02/B3C00B80CD6111ED9BB1B571C4F9AE02.roa File: B3C00B80CD6111ED9BB1B571C4F9AE02.roa (raw, json) Hash identifier: 1uFjTFe9Amsbq8/7U9vAw2GFeZcNsCf1O+GdbeaI35g= Subject key identifier: D3:09:DD:A6:8B:47:BF:A9:C7:0A:6D:B6:2C:D5:20:49:CB:36:E7:8B Certificate issuer: /CN=A9196E05/serialNumber=7FFBDC3F779A8F9965305E7DEE51E6A6C535FFB8 Certificate serial: 07F3 Authority key identifier: 7F:FB:DC:3F:77:9A:8F:99:65:30:5E:7D:EE:51:E6:A6:C5:35:FF:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_vcP3eaj5llMF597lHmpsU1_7g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196E05/42955510CE5311EA8E8C924CC4F9AE02/B3C00B80CD6111ED9BB1B571C4F9AE02.roa Signing time: Tue 12 Nov 2024 20:39:29 +0000 ROA not before: Tue 12 Nov 2024 20:39:29 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 132295 IP address blocks: 103.129.32.0/22 maxlen: 22 103.129.32.0/23 maxlen: 23 103.129.32.0/24 maxlen: 24 103.129.33.0/24 maxlen: 24 103.129.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196E05/42955510CE5311EA8E8C924CC4F9AE02/f_vcP3eaj5llMF597lHmpsU1_7g.crl rsync://rpki.apnic.net/member_repository/A9196E05/42955510CE5311EA8E8C924CC4F9AE02/f_vcP3eaj5llMF597lHmpsU1_7g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_vcP3eaj5llMF597lHmpsU1_7g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 20:34:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2035 (0x7f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196E05, serialNumber=7FFBDC3F779A8F9965305E7DEE51E6A6C535FFB8 Validity Not Before: Nov 12 20:39:29 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6733bd00-17d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:e4:1b:0b:1a:71:f7:6c:f3:15:5a:1c:2a:c5: 22:9b:03:f4:7b:a7:a0:56:e5:4d:b7:29:ec:a7:35: b3:16:39:f3:4c:88:9d:79:08:b8:1b:79:1b:06:bf: a4:42:75:f9:93:cb:26:ea:84:d4:ad:a4:2e:bb:c5: 1a:d5:71:9c:ed:ba:f2:1a:45:36:06:d4:22:26:60: f6:09:2f:7d:1c:60:ee:a8:a3:e1:f0:d9:20:02:74: 6a:a5:be:1d:ef:65:e1:d3:94:61:04:79:13:75:1c: b8:b5:64:6c:88:01:64:68:7e:ff:57:93:3c:93:2c: 22:e0:85:07:60:72:b8:d8:3e:cd:ec:b1:3b:56:ff: 07:d1:9b:5f:c1:fc:f0:aa:d0:61:27:38:2e:d2:cb: 9d:7e:cb:8a:3c:a3:b0:90:54:d5:3f:7e:af:1a:ed: 92:87:9b:dc:99:44:8b:e7:2f:22:4d:be:ad:d9:03: 71:95:b8:9a:30:e3:cc:09:59:37:49:4a:04:b0:42: ae:e4:e4:ec:e4:1b:ab:91:39:47:67:b6:17:78:29: 0d:0d:ef:2b:47:c2:b0:7b:58:fe:0c:e9:42:b4:5f: 79:19:c0:7e:29:65:b6:55:5a:c0:9b:d8:cb:13:47: 64:95:42:ff:69:28:85:18:31:6c:c2:d6:e7:12:6d: a3:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:09:DD:A6:8B:47:BF:A9:C7:0A:6D:B6:2C:D5:20:49:CB:36:E7:8B X509v3 Authority Key Identifier: keyid:7F:FB:DC:3F:77:9A:8F:99:65:30:5E:7D:EE:51:E6:A6:C5:35:FF:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196E05/42955510CE5311EA8E8C924CC4F9AE02/f_vcP3eaj5llMF597lHmpsU1_7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f_vcP3eaj5llMF597lHmpsU1_7g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196E05/42955510CE5311EA8E8C924CC4F9AE02/B3C00B80CD6111ED9BB1B571C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.32.0/22 Signature Algorithm: sha256WithRSAEncryption 0c:80:47:3d:fb:67:8e:86:f2:b8:5c:12:19:36:bf:56:98:af: 5a:bf:51:5a:76:a2:29:69:c5:1e:3c:46:6e:40:e1:98:08:f1: ea:f0:10:b3:6b:09:11:88:32:3e:46:84:10:57:e1:a4:79:e6: b2:f5:4e:38:f1:27:21:a5:14:52:8d:d2:1a:f0:0b:93:2d:26: 83:0e:19:82:1a:f5:a6:8f:e8:2a:a7:4b:37:e5:e4:18:fe:e7: 78:64:7c:93:f1:49:c5:2b:ca:ea:f1:be:e7:c6:41:9b:01:08: 56:88:23:54:e0:ca:63:ef:b1:4f:94:00:03:93:b4:25:0d:5f: 23:ea:41:ed:f4:f3:06:91:da:0a:a5:49:d6:f9:2d:1e:ea:55: 5a:ac:a3:8b:91:43:fd:1a:76:ef:19:30:8d:fa:b8:e1:e3:72: 35:b6:02:38:cf:09:f1:3b:62:8a:75:a0:ed:d1:e8:13:89:e4: 00:f6:0e:aa:9f:fe:9d:1c:80:b9:0c:ff:a4:61:dd:45:3b:94: 6a:59:fb:5b:04:44:bb:d3:94:c3:dd:1a:14:3c:8f:ee:03:6b: a9:bf:ea:50:f6:72:08:e3:cf:58:fc:ab:e4:c2:6e:41:ca:ed: 28:68:c5:07:d9:87:1d:93:06:59:61:d3:e0:a0:6b:77:1e:10: c8:70:0f:a3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZFMDUxMTAvBgNVBAUTKDdGRkJEQzNGNzc5QThGOTk2NTMwNUU3REVFNTFFNkE2 QzUzNUZGQjgwHhcNMjQxMTEyMjAzOTI5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMzYmQwMC0xN2Q5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6uQbCxpx92zzFVocKsUimwP0e6egVuVNtynspzWzFjnzTIideQi4G3kbBr+k QnX5k8sm6oTUraQuu8Ua1XGc7bryGkU2BtQiJmD2CS99HGDuqKPh8NkgAnRqpb4d 72Xh05RhBHkTdRy4tWRsiAFkaH7/V5M8kywi4IUHYHK42D7N7LE7Vv8H0Ztfwfzw qtBhJzgu0sudfsuKPKOwkFTVP36vGu2Sh5vcmUSL5y8iTb6t2QNxlbiaMOPMCVk3 SUoEsEKu5OTs5BurkTlHZ7YXeCkNDe8rR8Kwe1j+DOlCtF95GcB+KWW2VVrAm9jL E0dklUL/aSiFGDFswtbnEm2jBwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNMJ3aaL R7+pxwpttizVIEnLNueLMB8GA1UdIwQYMBaAFH/73D93mo+ZZTBefe5R5qbFNf+4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkUwNS80Mjk1NTUxMENF NTMxMUVBOEU4QzkyNENDNEY5QUUwMi9mX3ZjUDNlYWo1bGxNRjU5N2xIbXBzVTFf N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZfdmNQM2VhajVsbE1GNTk3bEhtcHNVMV83Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTZFMDUvNDI5NTU1MTBDRTUzMTFFQThFOEM5MjRDQzRGOUFFMDIvQjNDMDBCODBD RDYxMTFFRDlCQjFCNTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJngSAwDQYJKoZIhvcNAQELBQADggEBAAyARz37Z46G8rhc Ehk2v1aYr1q/UVp2oilpxR48Rm5A4ZgI8erwELNrCRGIMj5GhBBX4aR55rL1Tjjx JyGlFFKN0hrwC5MtJoMOGYIa9aaP6CqnSzfl5Bj+53hkfJPxScUryurxvufGQZsB CFaII1TgymPvsU+UAAOTtCUNXyPqQe308waR2gqlSdb5LR7qVVqso4uRQ/0adu8Z MI36uOHjcjW2AjjPCfE7Yop1oO3R6BOJ5AD2Dqqf/p0cgLkM/6Rh3UU7lGpZ+1sE RLvTlMPdGhQ8j+4Da6m/6lD2cgjjz1j8q+TCbkHK7ShoxQfZhx2TBllh0+Cga3ce EMhwD6M= -----END CERTIFICATE-----Generated at Sun Apr 13 06:02:29 2025 by rpki-client