$ rpki-client -vvf rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/2D7BD4EA03DD11ECA448405BC4F9AE02.roa File: 2D7BD4EA03DD11ECA448405BC4F9AE02.roa (raw, json) Hash identifier: KKWKrtsh/34nl8r+0Ut1+Gkgstz0StRYtgWm9ide930= Subject key identifier: 5D:2C:C2:FE:A7:B2:D7:9B:60:7A:5B:E1:14:E1:C9:BC:D0:FD:EC:11 Certificate issuer: /CN=A919C8F9/serialNumber=294ACD08DA19138C37EFAFB274A1E775771E453E Certificate serial: 04ED Authority key identifier: 29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/2D7BD4EA03DD11ECA448405BC4F9AE02.roa Signing time: Fri 24 Jan 2025 23:32:40 +0000 ROA not before: Fri 24 Jan 2025 23:32:40 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 137443 IP address blocks: 103.161.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:43:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1261 (0x4ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C8F9 Validity Not Before: Jan 24 23:32:40 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67942317-6de4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:20:ef:14:fa:41:dc:18:8b:8c:99:1f:d7:e1: b0:f0:8f:51:af:ec:ed:a0:97:ce:83:0a:9e:58:87: 7e:d6:86:94:bb:4b:d0:51:38:d4:6e:45:0b:d7:35: d0:c8:7e:f6:fa:ca:a7:c7:6c:21:7b:ca:e4:a2:0d: 6e:53:84:75:9b:59:a8:80:61:7a:a9:b8:50:09:cb: a4:04:6a:dc:bf:1f:59:62:4b:1b:17:ff:48:36:6d: 3c:88:d6:bd:3e:08:e2:fe:a2:08:19:ce:a5:53:cc: 08:d9:13:58:ec:58:6a:47:93:0e:4c:8e:14:8e:e5: ae:77:99:ec:2b:75:45:d2:0c:73:db:a1:f2:76:10: 93:90:71:75:55:39:33:c1:28:dd:1c:7d:4d:bb:51: c9:1d:7d:5b:33:d3:70:83:9d:a5:39:2e:15:db:76: 1e:e0:4e:6c:fc:d8:41:f3:2b:1a:ab:f0:3c:39:e8: 36:39:79:54:73:e1:26:25:98:8e:28:b5:14:35:91: 20:4e:78:a0:85:d6:04:35:81:f6:99:b3:f3:41:7e: af:e9:38:72:d9:72:a0:93:53:4a:20:9c:7e:2f:78: f7:be:cd:cd:99:6e:e7:d3:b5:5b:1d:06:49:1c:4e: ad:66:a8:93:0b:f5:5d:6d:a4:a0:df:50:37:d4:a0: 4f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:2C:C2:FE:A7:B2:D7:9B:60:7A:5B:E1:14:E1:C9:BC:D0:FD:EC:11 X509v3 Authority Key Identifier: keyid:29:4A:CD:08:DA:19:13:8C:37:EF:AF:B2:74:A1:E7:75:77:1E:45:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/KUrNCNoZE4w376-ydKHndXceRT4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KUrNCNoZE4w376-ydKHndXceRT4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C8F9/DC6B3614FE6D11EBB83F2B22C4F9AE02/2D7BD4EA03DD11ECA448405BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.138.0/23 Signature Algorithm: sha256WithRSAEncryption 14:d1:2a:1c:cb:04:0d:fa:9b:16:3b:f2:b6:dc:0f:21:9e:1e: bf:87:58:06:91:0f:19:5b:41:f6:f2:d7:3b:09:14:ed:63:17: 34:d7:e2:04:85:72:4e:a5:ef:43:5f:04:c9:57:07:52:d3:4b: e5:ff:da:80:5d:20:d7:50:d5:08:a5:a4:c2:b5:69:27:b4:57: f7:0e:8e:f9:fb:06:98:bc:84:cc:0e:36:ca:8b:cb:ef:54:12: 82:61:64:af:2e:81:a4:5e:5e:3e:8b:cd:1e:e4:a3:f7:5a:d0: ea:e0:7f:97:70:9f:84:a6:09:57:1c:a8:8c:68:6b:0f:ca:12: ed:67:5e:5a:40:1f:0f:53:bd:a4:cc:fc:52:51:91:43:4c:39: b7:b1:13:9e:66:02:39:2f:c2:7e:4c:aa:b7:e8:8d:2c:98:bd: 4c:2d:5c:b7:c5:82:05:0e:2e:11:4f:18:52:83:eb:f7:b6:4c: eb:bb:c4:a9:6b:99:c3:54:42:44:db:b3:e8:ef:d2:82:9c:b4: da:bb:e2:d7:80:1f:58:59:df:ad:ae:dc:60:1d:f5:ad:f9:43: de:f4:e4:20:7a:7c:f6:a5:93:01:08:14:33:84:2b:55:11:d8: be:ed:43:de:9d:78:09:15:3b:74:18:6c:6e:2e:d2:f0:58:a7: be:0d:57:ca -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM4RjkxMTAvBgNVBAUTKDI5NEFDRDA4REExOTEzOEMzN0VGQUZCMjc0QTFFNzc1 NzcxRTQ1M0UwHhcNMjUwMTI0MjMzMjQwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk0MjMxNy02ZGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryDvFPpB3BiLjJkf1+Gw8I9Rr+ztoJfOgwqeWId+1oaUu0vQUTjUbkUL1zXQ yH72+sqnx2whe8rkog1uU4R1m1mogGF6qbhQCcukBGrcvx9ZYksbF/9INm08iNa9 Pgji/qIIGc6lU8wI2RNY7FhqR5MOTI4UjuWud5nsK3VF0gxz26HydhCTkHF1VTkz wSjdHH1Nu1HJHX1bM9Nwg52lOS4V23Ye4E5s/NhB8ysaq/A8Oeg2OXlUc+EmJZiO KLUUNZEgTnighdYENYH2mbPzQX6v6Thy2XKgk1NKIJx+L3j3vs3NmW7n07VbHQZJ HE6tZqiTC/VdbaSg31A31KBPkQIDAQABo4IClTCCApEwHQYDVR0OBBYEFF0swv6n stebYHpb4RThybzQ/ewRMB8GA1UdIwQYMBaAFClKzQjaGROMN++vsnSh53V3HkU+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzhGOS9EQzZCMzYxNEZF NkQxMUVCQjgzRjJCMjJDNEY5QUUwMi9LVXJOQ05vWkU0dzM3Ni15ZEtIbmRYY2VS VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tVck5DTm9aRTR3Mzc2LXlkS0huZFhjZVJUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUM4RjkvREM2QjM2MTRGRTZEMTFFQkI4M0YyQjIyQzRGOUFFMDIvMkQ3QkQ0RUEw M0REMTFFQ0E0NDg0MDVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnoYowDQYJKoZIhvcNAQELBQADggEBABTRKhzLBA36mxY7 8rbcDyGeHr+HWAaRDxlbQfby1zsJFO1jFzTX4gSFck6l70NfBMlXB1LTS+X/2oBd INdQ1QilpMK1aSe0V/cOjvn7Bpi8hMwONsqLy+9UEoJhZK8ugaReXj6LzR7ko/da 0Orgf5dwn4SmCVccqIxoaw/KEu1nXlpAHw9TvaTM/FJRkUNMObexE55mAjkvwn5M qrfojSyYvUwtXLfFggUOLhFPGFKD6/e2TOu7xKlrmcNUQkTbs+jv0oKctNq74teA H1hZ362u3GAd9a35Q9705CB6fPalkwEIFDOEK1UR2L7tQ96deAkVO3QYbG4u0vBY p74NV8o= -----END CERTIFICATE-----Generated at Sat Apr 5 07:10:02 2025 by rpki-client