$ rpki-client -vvf rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/36E93942D6C511EEB512CC7FC4F9AE02.roa File: 36E93942D6C511EEB512CC7FC4F9AE02.roa (raw, json) Hash identifier: J/FdYg39XgCJ8nqyyiXOfjFTbprUGYfmqvQJ8jAj03A= Subject key identifier: 25:D4:0E:25:F8:45:2F:FA:59:57:14:88:8F:78:3E:19:7E:CA:0F:B1 Certificate issuer: /CN=A9129969/serialNumber=01666FC7DD875DFFA0E19BC73CBADA8ECF9A5827 Certificate serial: 0145 Authority key identifier: 01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/36E93942D6C511EEB512CC7FC4F9AE02.roa Signing time: Fri 07 Feb 2025 03:16:18 +0000 ROA not before: Fri 07 Feb 2025 03:16:18 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 14618 IP address blocks: 103.212.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.crl rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129969 Validity Not Before: Feb 7 03:16:18 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a57b02-2aaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:96:1a:b4:86:92:90:20:70:cd:d1:11:54:48: 8f:aa:e1:c1:d9:b1:8b:6b:4f:31:5b:a6:25:99:4c: 1e:9e:fb:0d:cc:4a:7f:18:49:3a:6e:4d:06:5b:57: df:61:90:94:89:69:4e:1a:f2:a8:3e:87:22:66:4e: 74:11:49:65:c8:40:5b:c2:f6:fc:13:16:a2:bb:ee: 86:74:73:35:44:e9:03:01:3b:80:2b:e1:52:71:eb: 94:1b:e2:1b:9c:6f:5f:e7:5e:cd:c3:68:f8:9c:87: 10:23:fa:d4:40:9b:db:c7:ee:2a:6d:9c:48:9b:7c: 69:6a:14:24:79:6b:0c:08:67:85:0a:2d:af:81:55: b6:1c:a8:aa:32:7f:8a:da:8e:34:dc:53:47:13:4a: 99:59:f0:f9:08:69:70:ce:ea:b1:c4:57:11:b9:24: 9d:0d:8c:b3:55:85:e2:13:86:0b:05:a0:38:92:47: 1c:d4:0c:cd:02:62:fc:a2:5e:f7:1f:da:58:f8:57: 57:40:1a:f5:ee:e9:cd:84:c8:56:6c:fa:b0:d7:2f: 34:00:95:9f:a0:b6:f6:6a:89:59:db:56:15:36:7a: 3d:66:74:4a:f5:f4:87:cd:c4:e5:8c:e7:f9:57:7d: c0:b8:5a:56:c5:77:fc:5b:5f:da:32:b1:e1:08:72: 7f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:D4:0E:25:F8:45:2F:FA:59:57:14:88:8F:78:3E:19:7E:CA:0F:B1 X509v3 Authority Key Identifier: keyid:01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/36E93942D6C511EEB512CC7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.67.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:cf:11:ee:1e:6f:30:9d:4b:70:94:5b:a7:94:31:5b:59:99: ca:96:75:39:a5:3c:a7:e8:a2:ac:f6:5d:c9:05:8d:dd:32:a9: 02:6c:54:37:ed:ad:f2:bd:b7:b4:8b:ae:0f:ac:93:a2:43:b8: 45:a6:2a:de:16:8c:5d:4f:d5:30:8b:c3:40:32:f5:46:e8:90: fb:70:75:62:82:76:a8:78:86:09:02:55:8b:c0:52:82:c0:c7: 62:dc:73:6b:93:59:3f:61:20:7b:37:30:dd:49:59:41:ba:65: 25:4f:d3:11:10:67:0c:8f:30:71:07:a3:af:a4:68:fc:57:0a: 9a:86:0d:10:e4:a2:3d:5f:e9:f9:4f:9f:b5:ee:8e:08:29:92: d2:2a:0b:c4:18:31:75:ed:75:72:fb:8a:a8:b4:24:b1:ae:95: da:dc:f8:9d:d1:d7:7f:30:69:1e:42:d9:ea:14:0d:18:bd:68: 10:d7:c2:64:c0:23:01:25:ce:32:b2:4c:e7:0a:fb:c9:85:11: 27:35:29:a4:98:e8:0b:44:93:f7:d4:5c:00:06:90:7b:b7:bb: 66:82:13:06:39:37:58:33:b2:43:4c:ab:0f:99:3d:8c:ee:f3: 6f:2a:b3:fb:c7:7c:7d:75:41:e9:4d:aa:98:f9:f5:a9:58:80: 3d:88:a3:90 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk5NjkxMTAvBgNVBAUTKDAxNjY2RkM3REQ4NzVERkZBMEUxOUJDNzNDQkFEQThF Q0Y5QTU4MjcwHhcNMjUwMjA3MDMxNjE4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E1N2IwMi0yYWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3JYatIaSkCBwzdERVEiPquHB2bGLa08xW6YlmUwenvsNzEp/GEk6bk0GW1ff YZCUiWlOGvKoPociZk50EUllyEBbwvb8Exaiu+6GdHM1ROkDATuAK+FSceuUG+Ib nG9f517Nw2j4nIcQI/rUQJvbx+4qbZxIm3xpahQkeWsMCGeFCi2vgVW2HKiqMn+K 2o403FNHE0qZWfD5CGlwzuqxxFcRuSSdDYyzVYXiE4YLBaA4kkcc1AzNAmL8ol73 H9pY+FdXQBr17unNhMhWbPqw1y80AJWfoLb2aolZ21YVNno9ZnRK9fSHzcTljOf5 V33AuFpWxXf8W1/aMrHhCHJ/nwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCXUDiX4 RS/6WVcUiI94Phl+yg+xMB8GA1UdIwQYMBaAFAFmb8fdh13/oOGbxzy62o7Pmlgn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTk2OS9DRjM5NUMzODFD NkExMUVFQkY2MkFDMERDNEY5QUUwMi9BV1p2eDkySFhmLWc0WnZIUExyYWpzLWFX Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FXWnZ4OTJIWGYtZzRadkhQTHJhanMtYVdDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk5NjkvQ0YzOTVDMzgxQzZBMTFFRUJGNjJBQzBEQzRGOUFFMDIvMzZFOTM5NDJE NkM1MTFFRUI1MTJDQzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn1EMwDQYJKoZIhvcNAQELBQADggEBAF/PEe4ebzCdS3CU W6eUMVtZmcqWdTmlPKfooqz2XckFjd0yqQJsVDftrfK9t7SLrg+sk6JDuEWmKt4W jF1P1TCLw0Ay9UbokPtwdWKCdqh4hgkCVYvAUoLAx2Lcc2uTWT9hIHs3MN1JWUG6 ZSVP0xEQZwyPMHEHo6+kaPxXCpqGDRDkoj1f6flPn7XujggpktIqC8QYMXXtdXL7 iqi0JLGuldrc+J3R138waR5C2eoUDRi9aBDXwmTAIwElzjKyTOcK+8mFESc1KaSY 6AtEk/fUXAAGkHu3u2aCEwY5N1gzskNMqw+ZPYzu828qs/vHfH11QelNqpj59alY gD2Io5A= -----END CERTIFICATE-----Generated at Fri Apr 4 23:58:36 2025 by rpki-client