$ rpki-client -vvf rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/D9A7B280C4FA11EEA3AF2932C4F9AE02.roa File: D9A7B280C4FA11EEA3AF2932C4F9AE02.roa (raw, json) Hash identifier: D+FMpyZsISfccSz7KiOlQqTZgWE7m1EZKNLzF9fgEyY= Subject key identifier: BC:51:94:50:01:F2:09:5C:42:7D:AD:A3:1D:F9:0E:48:D6:AD:E5:46 Certificate issuer: /CN=A919C19A/serialNumber=D89CFF6D7D9551AE704D93E97553616C8DB13F5E Certificate serial: 0413 Authority key identifier: D8:9C:FF:6D:7D:95:51:AE:70:4D:93:E9:75:53:61:6C:8D:B1:3F:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Jz_bX2VUa5wTZPpdVNhbI2xP14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/D9A7B280C4FA11EEA3AF2932C4F9AE02.roa Signing time: Thu 05 Dec 2024 00:03:43 +0000 ROA not before: Thu 05 Dec 2024 00:03:43 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 132366 IP address blocks: 103.159.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/2Jz_bX2VUa5wTZPpdVNhbI2xP14.crl rsync://rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/2Jz_bX2VUa5wTZPpdVNhbI2xP14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Jz_bX2VUa5wTZPpdVNhbI2xP14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:21:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1043 (0x413) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C19A Validity Not Before: Dec 5 00:03:43 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6750edde-d093 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f2:3f:ee:af:cf:88:62:48:da:45:b7:eb:5a: 4f:7b:5b:3e:c1:48:a6:55:a0:2f:da:4e:e6:24:25: 37:df:fe:c5:f6:b7:4b:94:ae:4e:dd:fa:c2:a0:e2: ad:01:f0:81:08:16:e6:4e:30:90:73:10:bd:1b:87: 53:23:e3:37:97:35:b5:98:b9:3f:d6:5d:12:e7:a0: 5d:f8:8b:aa:f8:6a:35:2a:19:da:85:e1:ca:e7:90: 87:3a:79:27:f4:ba:bd:d6:ff:98:69:ff:4b:c6:e0: ed:1c:32:fd:ba:c9:c8:3f:e4:60:0f:c8:e0:45:37: 8d:a7:89:30:f2:0c:d8:69:73:4d:f2:05:4c:77:cd: 07:fc:71:ca:6c:b1:c8:7d:60:34:3f:20:41:1f:b8: 32:b9:cd:61:4c:59:19:ee:c1:84:4d:96:ba:93:7a: e4:f8:da:ca:a6:3d:e9:d8:ca:11:b5:86:9c:51:41: d1:e6:df:13:82:c4:18:bc:37:9b:e3:4c:b2:51:b3: 36:f2:87:83:9a:fd:7f:1f:07:2b:ab:06:27:2f:ea: 42:0b:64:b9:53:04:4b:62:bf:71:3d:0f:73:a0:12: d8:8d:82:73:a6:73:5c:d3:dc:60:b6:ef:70:2c:7b: b5:5e:20:4d:cf:c6:30:9d:10:4c:1d:55:4a:6f:59: 8c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:51:94:50:01:F2:09:5C:42:7D:AD:A3:1D:F9:0E:48:D6:AD:E5:46 X509v3 Authority Key Identifier: keyid:D8:9C:FF:6D:7D:95:51:AE:70:4D:93:E9:75:53:61:6C:8D:B1:3F:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/2Jz_bX2VUa5wTZPpdVNhbI2xP14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2Jz_bX2VUa5wTZPpdVNhbI2xP14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C19A/24AB2C3E4F8D11EC8157125FC4F9AE02/D9A7B280C4FA11EEA3AF2932C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.127.0/24 Signature Algorithm: sha256WithRSAEncryption a8:d3:f7:5f:12:2a:cd:25:28:00:e3:20:50:f2:0b:62:1d:f4: be:02:95:66:60:4a:56:cf:ef:56:c6:75:78:9f:0d:ff:fb:5d: 02:09:85:97:23:dd:aa:95:75:d2:69:f2:cf:a3:a2:97:6b:d8: bd:19:8e:ca:23:39:c1:aa:e6:23:bc:78:e8:bf:ff:47:cb:d9: bc:64:15:ac:b5:72:7e:19:dc:bf:69:5a:8b:d0:2e:a2:7a:ab: 47:ff:a2:ae:d0:b7:76:ec:c7:50:c5:72:ed:05:a1:58:c4:ad: 1f:81:ea:16:0e:65:24:65:4e:ed:42:18:d6:8e:dc:41:1b:73: 1a:a7:e9:d2:3c:db:79:78:98:e5:43:bb:b5:a5:a7:12:e6:fd: 82:d6:da:17:5b:24:f0:4c:b4:5f:db:f0:a4:e6:91:36:4a:ea: e0:04:ce:30:e9:68:c3:f7:7f:94:c9:89:4d:9a:d8:50:03:53: 92:0b:38:ad:52:c4:ec:4b:d8:ed:b9:4f:bd:38:cf:fe:c6:a2: 5b:4a:36:86:7c:11:1d:59:a9:af:26:c8:78:df:92:38:44:04: cf:76:a2:31:61:63:ea:80:a9:28:04:10:78:64:c3:c5:9e:51: 41:40:0b:39:76:59:9d:f9:ae:3e:04:60:a9:04:08:9a:f8:bc: 6e:59:fd:ab -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUMxOUExMTAvBgNVBAUTKEQ4OUNGRjZEN0Q5NTUxQUU3MDREOTNFOTc1NTM2MTZD OERCMTNGNUUwHhcNMjQxMjA1MDAwMzQzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUwZWRkZS1kMDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvI/7q/PiGJI2kW361pPe1s+wUimVaAv2k7mJCU33/7F9rdLlK5O3frCoOKt AfCBCBbmTjCQcxC9G4dTI+M3lzW1mLk/1l0S56Bd+Iuq+Go1KhnaheHK55CHOnkn 9Lq91v+Yaf9LxuDtHDL9usnIP+RgD8jgRTeNp4kw8gzYaXNN8gVMd80H/HHKbLHI fWA0PyBBH7gyuc1hTFkZ7sGETZa6k3rk+NrKpj3p2MoRtYacUUHR5t8TgsQYvDeb 40yyUbM28oeDmv1/HwcrqwYnL+pCC2S5UwRLYr9xPQ9zoBLYjYJzpnNc09xgtu9w LHu1XiBNz8YwnRBMHVVKb1mMeQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLxRlFAB 8glcQn2tox35DkjWreVGMB8GA1UdIwQYMBaAFNic/219lVGucE2T6XVTYWyNsT9e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzE5QS8yNEFCMkMzRTRG OEQxMUVDODE1NzEyNUZDNEY5QUUwMi8ySnpfYlgyVlVhNXdUWlBwZFZOaGJJMnhQ MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJKel9iWDJWVWE1d1RaUHBkVk5oYkkyeFAxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUMxOUEvMjRBQjJDM0U0RjhEMTFFQzgxNTcxMjVGQzRGOUFFMDIvRDlBN0IyODBD NEZBMTFFRUEzQUYyOTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnn38wDQYJKoZIhvcNAQELBQADggEBAKjT918SKs0lKADj IFDyC2Id9L4ClWZgSlbP71bGdXifDf/7XQIJhZcj3aqVddJp8s+jopdr2L0Zjsoj OcGq5iO8eOi//0fL2bxkFay1cn4Z3L9pWovQLqJ6q0f/oq7Qt3bsx1DFcu0FoVjE rR+B6hYOZSRlTu1CGNaO3EEbcxqn6dI823l4mOVDu7WlpxLm/YLW2hdbJPBMtF/b 8KTmkTZK6uAEzjDpaMP3f5TJiU2a2FADU5ILOK1SxOxL2O25T704z/7GoltKNoZ8 ER1Zqa8myHjfkjhEBM92ojFhY+qAqSgEEHhkw8WeUUFACzl2WZ35rj4EYKkECJr4 vG5Z/as= -----END CERTIFICATE-----Generated at Sun Apr 6 09:05:01 2025 by rpki-client