$ rpki-client -vvf rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/0DFAD3529E1611E98059B049C4F9AE02.roa File: 0DFAD3529E1611E98059B049C4F9AE02.roa (raw, json) Hash identifier: xrn7kqtWfpKDJ8ptvmKz6itXOdAPKg554aAbP2n2DQI= Subject key identifier: DE:24:62:6E:D9:08:FC:B4:C6:76:53:13:27:10:4E:68:3A:74:DF:2F Certificate issuer: /CN=A919FEA1/serialNumber=EF6C194BB2894D33E6DE0642232D94CE4E9EF194 Certificate serial: 0DF9 Authority key identifier: EF:6C:19:4B:B2:89:4D:33:E6:DE:06:42:23:2D:94:CE:4E:9E:F1:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/0DFAD3529E1611E98059B049C4F9AE02.roa Signing time: Wed 04 Dec 2024 17:55:48 +0000 ROA not before: Wed 04 Dec 2024 17:55:48 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 59263 IP address blocks: 103.255.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.crl rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 17:39:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3577 (0xdf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FEA1, serialNumber=EF6C194BB2894D33E6DE0642232D94CE4E9EF194 Validity Not Before: Dec 4 17:55:48 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=675097a4-2b41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:03:71:40:ac:47:2b:df:68:e8:a6:ed:22:fa: cd:e8:1b:bd:65:64:73:d9:42:57:c4:6a:e0:ce:0a: c8:b4:2b:b4:9a:bd:ae:20:2e:10:c6:90:85:60:36: c7:19:35:c8:36:1b:5c:4c:6b:dc:d4:20:c7:23:8f: cd:dd:86:ad:4d:20:05:89:b2:9d:51:e9:51:e8:2e: ae:44:03:7c:18:77:ef:d0:87:b2:60:b4:5a:1a:34: fa:3d:2e:14:39:00:d8:35:0e:a2:5c:49:70:68:9d: 30:21:c3:05:71:54:47:09:33:8a:28:0e:0b:d8:ec: c4:63:43:e7:a8:40:1f:b7:d6:fb:d5:d6:63:ee:59: d2:71:af:0a:77:98:b0:35:04:e8:63:23:1b:3b:3b: ec:ac:f6:a7:b7:82:d6:2c:10:c5:cb:ba:db:62:d4: c7:aa:eb:4f:25:5e:44:95:03:89:be:81:3a:08:92: 04:29:e8:3e:a6:c9:2a:eb:6e:77:a1:d5:81:18:ec: d1:12:82:81:03:fb:f6:ce:94:05:c3:ea:70:fa:4d: b8:ac:7f:66:97:e5:15:60:f4:59:e9:d7:b1:34:15: f9:71:05:0a:75:cc:5b:14:08:5b:fa:38:e8:1b:37: cd:ad:11:f8:d6:4e:2c:90:89:ae:08:14:51:ff:b3: 37:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:24:62:6E:D9:08:FC:B4:C6:76:53:13:27:10:4E:68:3A:74:DF:2F X509v3 Authority Key Identifier: keyid:EF:6C:19:4B:B2:89:4D:33:E6:DE:06:42:23:2D:94:CE:4E:9E:F1:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72wZS7KJTTPm3gZCIy2Uzk6e8ZQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FEA1/BFCB85EC9E1411E9A2F6F946C4F9AE02/0DFAD3529E1611E98059B049C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.170.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:90:a4:4f:15:9f:6f:cd:ec:2e:9a:ed:51:c9:45:de:8f:da: cb:d7:3a:1a:d9:87:ff:ff:67:01:49:0b:d7:6b:45:d8:33:5b: 3c:9b:bf:80:3d:8f:c5:53:6c:b4:d2:1c:1b:e3:20:ea:75:fb: 6c:17:94:9e:68:e4:c0:81:94:f7:b5:9b:da:49:6d:c1:b2:d6: 5c:cd:ba:81:14:af:f4:e5:09:44:35:26:84:32:13:f4:9d:69: bf:81:c5:74:0f:1c:ed:45:c6:5a:d5:0d:bb:c9:77:37:b8:0a: 4e:f5:11:9d:20:e0:cc:a8:93:ff:5f:b8:3f:d7:36:2c:15:ed: 52:99:17:e9:29:29:35:85:b9:20:26:5d:3f:0a:15:4f:27:83: 4d:d4:2a:df:44:eb:1d:30:be:35:be:4d:28:12:ed:72:a0:53: 41:6f:df:19:82:a8:34:31:8f:5c:10:49:b4:bf:d3:f3:88:7f: 96:be:e7:2e:71:11:41:54:71:3c:dc:30:7f:e2:18:f7:2d:e2: 7e:ca:64:f2:f9:49:16:e0:72:38:8f:55:b5:fc:25:ec:e5:28: e5:81:18:88:16:56:7d:db:35:c7:5c:57:11:cb:3d:ae:20:39: c5:2f:fb:43:70:1c:22:78:05:fa:6e:53:63:11:f1:22:71:b3: 28:70:85:d6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZFQTExMTAvBgNVBAUTKEVGNkMxOTRCQjI4OTREMzNFNkRFMDY0MjIzMkQ5NENF NEU5RUYxOTQwHhcNMjQxMjA0MTc1NTQ4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUwOTdhNC0yYjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3QNxQKxHK99o6KbtIvrN6Bu9ZWRz2UJXxGrgzgrItCu0mr2uIC4QxpCFYDbH GTXINhtcTGvc1CDHI4/N3YatTSAFibKdUelR6C6uRAN8GHfv0IeyYLRaGjT6PS4U OQDYNQ6iXElwaJ0wIcMFcVRHCTOKKA4L2OzEY0PnqEAft9b71dZj7lnSca8Kd5iw NQToYyMbOzvsrPant4LWLBDFy7rbYtTHqutPJV5ElQOJvoE6CJIEKeg+pskq6253 odWBGOzREoKBA/v2zpQFw+pw+k24rH9ml+UVYPRZ6dexNBX5cQUKdcxbFAhb+jjo GzfNrRH41k4skImuCBRR/7M3vQIDAQABo4IClTCCApEwHQYDVR0OBBYEFN4kYm7Z CPy0xnZTEycQTmg6dN8vMB8GA1UdIwQYMBaAFO9sGUuyiU0z5t4GQiMtlM5OnvGU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkVBMS9CRkNCODVFQzlF MTQxMUU5QTJGNkY5NDZDNEY5QUUwMi83MndaUzdLSlRUUG0zZ1pDSXkyVXprNmU4 WlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyd1pTN0tKVFRQbTNnWkNJeTJVems2ZThaUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUZFQTEvQkZDQjg1RUM5RTE0MTFFOUEyRjZGOTQ2QzRGOUFFMDIvMERGQUQzNTI5 RTE2MTFFOTgwNTlCMDQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn/6owDQYJKoZIhvcNAQELBQADggEBAJyQpE8Vn2/N7C6a 7VHJRd6P2svXOhrZh///ZwFJC9drRdgzWzybv4A9j8VTbLTSHBvjIOp1+2wXlJ5o 5MCBlPe1m9pJbcGy1lzNuoEUr/TlCUQ1JoQyE/Sdab+BxXQPHO1FxlrVDbvJdze4 Ck71EZ0g4Myok/9fuD/XNiwV7VKZF+kpKTWFuSAmXT8KFU8ng03UKt9E6x0wvjW+ TSgS7XKgU0Fv3xmCqDQxj1wQSbS/0/OIf5a+5y5xEUFUcTzcMH/iGPct4n7KZPL5 SRbgcjiPVbX8JezlKOWBGIgWVn3bNcdcVxHLPa4gOcUv+0NwHCJ4BfpuU2MR8SJx syhwhdY= -----END CERTIFICATE-----Generated at Sun Apr 13 04:36:07 2025 by rpki-client