$ rpki-client -vvf rpki.apnic.net/member_repository/A9123918/8EE71486B6C411EFB10EDE58C4F9AE02/345F7BDCF80C11EF831DA737C4F9AE02.roa File: 345F7BDCF80C11EF831DA737C4F9AE02.roa (raw, json) Hash identifier: dqTwEXk6/WsKatxBnEyYDrfeHsARE7OU6TqF9rX2NCc= Subject key identifier: 8A:40:4D:03:04:51:04:27:FF:4C:CA:7D:94:0F:E2:5C:6E:53:54:5D Certificate issuer: /CN=A9123918/serialNumber=79C7FC5D1A5EEF0B298E0072326AB73686BDFE78 Certificate serial: 2F Authority key identifier: 79:C7:FC:5D:1A:5E:EF:0B:29:8E:00:72:32:6A:B7:36:86:BD:FE:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ecf8XRpe7wspjgByMmq3Noa9_ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123918/8EE71486B6C411EFB10EDE58C4F9AE02/345F7BDCF80C11EF831DA737C4F9AE02.roa Signing time: Mon 03 Mar 2025 08:47:58 +0000 ROA not before: Mon 03 Mar 2025 08:47:58 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 55720 IP address blocks: 103.20.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123918/8EE71486B6C411EFB10EDE58C4F9AE02/ecf8XRpe7wspjgByMmq3Noa9_ng.crl rsync://rpki.apnic.net/member_repository/A9123918/8EE71486B6C411EFB10EDE58C4F9AE02/ecf8XRpe7wspjgByMmq3Noa9_ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ecf8XRpe7wspjgByMmq3Noa9_ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:47:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123918 Validity Not Before: Mar 3 08:47:58 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67c56cbd-45a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:fe:e9:94:54:2c:75:14:73:01:f3:f5:8e:6d: f9:58:8f:45:75:30:a2:61:76:10:43:8f:73:94:9e: d8:d4:59:d3:65:57:3f:2b:c2:61:5b:83:00:cb:c6: a8:39:59:6e:de:bc:11:c9:20:38:da:31:b8:0c:af: 1e:8e:ed:89:74:fb:56:8f:fb:9a:42:68:74:77:a4: 61:9a:c6:96:b6:04:39:91:52:d6:d8:01:03:db:c7: bc:c1:e4:cc:b8:43:68:97:7a:4c:80:94:3e:3f:a8: 29:e3:b5:4e:7b:dd:31:69:45:df:95:86:fe:0f:0d: 80:7e:56:fd:d2:65:d2:ca:34:6c:1c:1e:23:60:1b: 97:dc:27:09:53:cf:e6:2a:f8:33:20:1a:73:40:53: 2e:de:f0:9c:cb:cd:0b:e2:fc:aa:d0:0d:e4:5e:b3: 78:eb:ee:0e:03:65:1b:95:bf:35:57:61:e1:a3:f4: 00:22:a1:b4:13:4f:17:96:b0:02:5d:8b:df:35:f0: 9c:d2:06:e4:ef:38:ee:88:84:5d:d2:80:44:00:6f: 37:81:41:e0:94:a6:77:1a:9d:77:13:2e:fc:f3:5f: c5:f8:c1:bf:99:0a:65:40:97:35:8f:5e:52:86:e7: c8:c3:43:df:e2:51:55:6f:28:1e:3c:1a:78:e4:03: 2a:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:40:4D:03:04:51:04:27:FF:4C:CA:7D:94:0F:E2:5C:6E:53:54:5D X509v3 Authority Key Identifier: keyid:79:C7:FC:5D:1A:5E:EF:0B:29:8E:00:72:32:6A:B7:36:86:BD:FE:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123918/8EE71486B6C411EFB10EDE58C4F9AE02/ecf8XRpe7wspjgByMmq3Noa9_ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ecf8XRpe7wspjgByMmq3Noa9_ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123918/8EE71486B6C411EFB10EDE58C4F9AE02/345F7BDCF80C11EF831DA737C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.241.0/24 Signature Algorithm: sha256WithRSAEncryption 63:b9:38:9c:d9:18:2c:46:81:84:36:cd:6b:6e:97:67:ae:a9: 97:05:0d:0d:bb:31:4e:64:7d:bf:c6:59:b5:3e:79:c1:37:10: 1a:7c:8a:f7:aa:3a:52:98:98:91:4c:8f:9a:cd:00:49:9c:7d: bd:4d:52:b9:93:b1:6d:23:59:d0:3c:f1:ae:d4:2b:77:a6:a7: 67:07:c1:df:59:31:28:48:c5:78:48:63:1f:6b:20:7d:56:30: cb:d7:5d:19:f0:6d:bb:62:bc:82:2e:de:90:b5:3d:d4:af:6b: ab:96:5f:00:5e:e3:38:47:f6:ca:60:c5:97:94:85:0c:ec:c6: 0b:34:9f:62:bc:d5:ff:72:02:7a:da:a6:29:d1:e4:fd:45:24: ab:59:ac:90:f1:ae:eb:41:4a:99:1f:fe:8e:19:29:de:8c:d7: e3:1d:1f:d3:85:db:12:d9:b1:db:41:03:cc:83:7b:bf:5b:7b: 08:e3:28:e3:02:ec:4f:3a:2e:94:da:1f:26:6b:51:19:f6:36: af:0f:78:a7:36:3b:c8:7c:41:31:2a:af:64:43:d2:5c:9e:a0: 59:6e:ba:d5:b4:90:7a:15:4f:77:af:ce:a4:fb:9b:96:54:99: 96:a2:4f:06:d3:49:eb:99:dd:ff:c1:21:75:4f:a5:60:27:a8: f4:b4:7c:81 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MzkxODExMC8GA1UEBRMoNzlDN0ZDNUQxQTVFRUYwQjI5OEUwMDcyMzI2QUI3MzY4 NkJERkU3ODAeFw0yNTAzMDMwODQ3NThaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YzU2Y2JkLTQ1YTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCS/umUVCx1FHMB8/WObflYj0V1MKJhdhBDj3OUntjUWdNlVz8rwmFbgwDLxqg5 WW7evBHJIDjaMbgMrx6O7Yl0+1aP+5pCaHR3pGGaxpa2BDmRUtbYAQPbx7zB5My4 Q2iXekyAlD4/qCnjtU573TFpRd+Vhv4PDYB+Vv3SZdLKNGwcHiNgG5fcJwlTz+Yq +DMgGnNAUy7e8JzLzQvi/KrQDeRes3jr7g4DZRuVvzVXYeGj9AAiobQTTxeWsAJd i9818JzSBuTvOO6IhF3SgEQAbzeBQeCUpncanXcTLvzzX8X4wb+ZCmVAlzWPXlKG 58jDQ9/iUVVvKB48GnjkAyo/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUikBNAwRR BCf/TMp9lA/iXG5TVF0wHwYDVR0jBBgwFoAUecf8XRpe7wspjgByMmq3Noa9/ngw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIzOTE4LzhFRTcxNDg2QjZD NDExRUZCMTBFREU1OEM0RjlBRTAyL2VjZjhYUnBlN3dzcGpnQnlNbXEzTm9hOV9u Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZWNmOFhScGU3d3NwamdCeU1tcTNOb2E5X25nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzkxOC84RUU3MTQ4NkI2QzQxMUVGQjEwRURFNThDNEY5QUUwMi8zNDVGN0JEQ0Y4 MEMxMUVGODMxREE3MzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGcU8TANBgkqhkiG9w0BAQsFAAOCAQEAY7k4nNkYLEaBhDbN a26XZ66plwUNDbsxTmR9v8ZZtT55wTcQGnyK96o6UpiYkUyPms0ASZx9vU1SuZOx bSNZ0DzxrtQrd6anZwfB31kxKEjFeEhjH2sgfVYwy9ddGfBtu2K8gi7ekLU91K9r q5ZfAF7jOEf2ymDFl5SFDOzGCzSfYrzV/3ICetqmKdHk/UUkq1mskPGu60FKmR/+ jhkp3ozX4x0f04XbEtmx20EDzIN7v1t7COMo4wLsTzoulNofJmtRGfY2rw94pzY7 yHxBMSqvZEPSXJ6gWW661bSQehVPd6/OpPubllSZlqJPBtNJ65nd/8EhdU+lYCeo 9LR8gQ== -----END CERTIFICATE-----Generated at Sun Apr 6 01:41:52 2025 by rpki-client