$ rpki-client -vvf rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/4EC7F2781C6D11EE954FFE11C4F9AE02.roa File: 4EC7F2781C6D11EE954FFE11C4F9AE02.roa (raw, json) Hash identifier: YDsWftvdk2Q7BaSxjiR80kkuNnqE/WyQhmXOQ8BgKAE= Subject key identifier: 1C:6F:E4:A2:2C:74:ED:CF:DF:EF:2D:37:08:E6:5F:4B:E5:EA:80:E1 Certificate issuer: /CN=A9129969/serialNumber=01666FC7DD875DFFA0E19BC73CBADA8ECF9A5827 Certificate serial: 0160 Authority key identifier: 01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/4EC7F2781C6D11EE954FFE11C4F9AE02.roa Signing time: Mon 24 Mar 2025 06:20:25 +0000 ROA not before: Mon 24 Mar 2025 06:20:25 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 38832 IP address blocks: 103.212.67.0/24 maxlen: 24 119.15.66.0/24 maxlen: 24 119.15.68.0/23 maxlen: 24 203.3.70.0/24 maxlen: 24 203.5.59.0/24 maxlen: 24 203.8.95.0/24 maxlen: 24 203.27.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.crl rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:38:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 352 (0x160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129969 Validity Not Before: Mar 24 06:20:25 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67e0f9a8-c95c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:14:df:30:60:03:6e:c1:59:06:be:ab:9d:f9: 25:3e:6c:63:fd:f4:d4:bf:d1:f2:1b:e0:49:a6:47: 80:5c:19:11:4c:5e:c3:4a:e0:44:57:3d:91:98:1e: d6:b4:63:c0:df:9f:57:1b:90:c4:48:ec:d0:27:eb: 67:4f:ce:68:43:a7:da:98:7b:0f:65:7e:48:6a:e7: d1:9b:34:87:3f:50:56:39:74:dc:39:ba:74:9e:fa: 5d:b1:8a:23:4a:72:0f:54:8d:50:59:1c:f3:cc:27: e1:2e:97:08:8b:02:69:38:03:3a:a6:91:8c:9a:8c: fc:b2:23:91:28:aa:a7:06:52:69:86:64:44:7c:a1: 5b:b0:99:89:79:1e:14:da:bb:46:9b:34:43:dd:10: 3c:4b:ff:44:1e:f0:1b:d5:a1:5e:b4:24:96:f8:54: 60:6b:5c:08:24:b4:99:78:51:c9:b2:ef:c8:74:f9: 59:78:4f:9d:01:b5:95:60:ef:55:ac:91:a3:48:d2: e0:35:a8:af:91:86:1e:89:b6:7e:55:95:63:b1:03: 37:f9:19:3c:40:b3:32:c9:07:47:cd:2e:e4:bc:e4: 32:1a:a1:38:33:76:75:99:13:fa:93:e9:59:a7:6d: 6b:0a:cf:dd:c2:d2:45:49:71:b5:47:52:10:62:b6: fa:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:6F:E4:A2:2C:74:ED:CF:DF:EF:2D:37:08:E6:5F:4B:E5:EA:80:E1 X509v3 Authority Key Identifier: keyid:01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/4EC7F2781C6D11EE954FFE11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.67.0/24 119.15.66.0/24 119.15.68.0/23 203.3.70.0/24 203.5.59.0/24 203.8.95.0/24 203.27.199.0/24 Signature Algorithm: sha256WithRSAEncryption 29:34:b5:22:16:1c:36:d3:bb:2e:2f:4b:58:e9:44:db:ee:da: c5:76:a1:47:42:0a:3c:0e:60:da:51:45:5f:6b:4f:28:a3:be: 2e:98:cc:d4:b7:5e:3b:79:92:91:0c:b3:98:c2:a6:7f:5a:85: fd:a8:4c:fa:c3:6e:eb:29:1e:34:24:4a:57:d2:f5:12:e7:4b: b2:c7:53:4c:e4:a9:41:a9:b0:da:e6:e7:f8:86:2d:8b:4f:e7: bd:1f:2f:c2:fb:65:77:3b:98:c2:9e:9b:2f:51:ba:46:49:bd: 51:56:19:30:4f:db:96:d0:1e:02:a6:21:a9:76:12:00:f4:a1: 84:23:5c:1f:ae:7d:87:bd:56:73:cd:94:60:de:c0:71:4e:ed: f1:ff:d5:a8:52:23:0f:06:e1:20:b3:eb:f7:0d:26:35:68:2a: 4e:b0:b3:1e:dc:4a:d4:2f:77:41:72:01:08:f9:eb:d8:25:cc: b2:25:d1:7c:0e:12:ae:0e:01:69:a3:36:38:43:2f:40:71:34: 59:51:98:03:72:e9:22:e4:a6:9c:55:90:6f:31:ff:c0:d7:7f: 81:0c:f9:fe:4d:17:cd:b2:98:de:ed:23:e4:4c:4b:5f:1a:78: 12:02:a3:7e:0b:a9:b8:ed:1b:28:01:92:8e:77:e5:2a:af:42: 84:4e:2b:11 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICAWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk5NjkxMTAvBgNVBAUTKDAxNjY2RkM3REQ4NzVERkZBMEUxOUJDNzNDQkFEQThF Q0Y5QTU4MjcwHhcNMjUwMzI0MDYyMDI1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2UwZjlhOC1jOTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAohTfMGADbsFZBr6rnfklPmxj/fTUv9HyG+BJpkeAXBkRTF7DSuBEVz2RmB7W tGPA359XG5DESOzQJ+tnT85oQ6famHsPZX5IaufRmzSHP1BWOXTcObp0nvpdsYoj SnIPVI1QWRzzzCfhLpcIiwJpOAM6ppGMmoz8siORKKqnBlJphmREfKFbsJmJeR4U 2rtGmzRD3RA8S/9EHvAb1aFetCSW+FRga1wIJLSZeFHJsu/IdPlZeE+dAbWVYO9V rJGjSNLgNaivkYYeibZ+VZVjsQM3+Rk8QLMyyQdHzS7kvOQyGqE4M3Z1mRP6k+lZ p21rCs/dwtJFSXG1R1IQYrb6EwIDAQABo4ICuTCCArUwHQYDVR0OBBYEFBxv5KIs dO3P3+8tNwjmX0vl6oDhMB8GA1UdIwQYMBaAFAFmb8fdh13/oOGbxzy62o7Pmlgn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTk2OS9DRjM5NUMzODFD NkExMUVFQkY2MkFDMERDNEY5QUUwMi9BV1p2eDkySFhmLWc0WnZIUExyYWpzLWFX Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FXWnZ4OTJIWGYtZzRadkhQTHJhanMtYVdDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk5NjkvQ0YzOTVDMzgxQzZBMTFFRUJGNjJBQzBEQzRGOUFFMDIvNEVDN0YyNzgx QzZEMTFFRTk1NEZGRTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMDAEAgABMCoDBABn1EMDBAB3D0IDBAF3D0QDBADLA0YDBADLBTsDBADLCF8D BADLG8cwDQYJKoZIhvcNAQELBQADggEBACk0tSIWHDbTuy4vS1jpRNvu2sV2oUdC CjwOYNpRRV9rTyijvi6YzNS3Xjt5kpEMs5jCpn9ahf2oTPrDbuspHjQkSlfS9RLn S7LHU0zkqUGpsNrm5/iGLYtP570fL8L7ZXc7mMKemy9RukZJvVFWGTBP25bQHgKm Ial2EgD0oYQjXB+ufYe9VnPNlGDewHFO7fH/1ahSIw8G4SCz6/cNJjVoKk6wsx7c StQvd0FyAQj569glzLIl0XwOEq4OAWmjNjhDL0BxNFlRmANy6SLkppxVkG8x/8DX f4EM+f5NF82ymN7tI+RMS18aeBICo34LqbjtGygBko535SqvQoROKxE= -----END CERTIFICATE-----Generated at Sat Apr 5 22:54:24 2025 by rpki-client