$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F12/FF333B8A68C111EFA753A164C4F9AE02/A1418C5E68C411EF841B7987C4F9AE02.roa File: A1418C5E68C411EF841B7987C4F9AE02.roa (raw, json) Hash identifier: w11TSOq/EaycCd3tkTNvuoFONdTStuPzFxhygocn60Q= Subject key identifier: 45:65:7C:A9:77:EA:C5:22:B0:C3:68:70:0D:65:9A:89:59:1C:FD:45 Certificate issuer: /CN=A9132F12/serialNumber=A69EE62C5AE881174A42123759EA423D61F73423 Certificate serial: 61 Authority key identifier: A6:9E:E6:2C:5A:E8:81:17:4A:42:12:37:59:EA:42:3D:61:F7:34:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pp7mLFrogRdKQhI3WepCPWH3NCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132F12/FF333B8A68C111EFA753A164C4F9AE02/A1418C5E68C411EF841B7987C4F9AE02.roa Signing time: Sat 01 Mar 2025 09:09:51 +0000 ROA not before: Sat 01 Mar 2025 09:09:51 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 1221 IP address blocks: 103.247.118.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132F12/FF333B8A68C111EFA753A164C4F9AE02/pp7mLFrogRdKQhI3WepCPWH3NCM.crl rsync://rpki.apnic.net/member_repository/A9132F12/FF333B8A68C111EFA753A164C4F9AE02/pp7mLFrogRdKQhI3WepCPWH3NCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pp7mLFrogRdKQhI3WepCPWH3NCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 05:31:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132F12, serialNumber=A69EE62C5AE881174A42123759EA423D61F73423 Validity Not Before: Mar 1 09:09:51 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c2cede-2149 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:37:1b:ce:59:a1:d3:7b:76:2d:3f:46:85:34: bd:e9:e7:1d:a4:3f:c0:20:e4:e7:23:8e:26:d6:ae: 71:8e:99:23:1e:cc:38:87:26:b0:ac:0c:2c:92:51: 5a:6b:3b:b9:a9:31:b3:34:ef:1b:76:aa:08:d2:a9: 5d:c0:70:1b:86:04:e5:16:42:e6:21:2d:0e:ea:ca: f6:1d:4b:81:b9:18:aa:56:06:50:cf:4f:90:6a:78: d8:eb:be:4d:70:f5:8a:bd:17:b8:56:4e:88:4c:78: 5a:64:c5:c1:d6:2f:d8:a7:4f:6c:c6:e1:a1:6e:32: b1:05:b5:b6:80:a7:d3:22:a5:87:45:7a:a4:58:d6: e5:44:4e:96:f5:2e:41:9d:f5:11:05:46:be:62:98: 26:ce:6f:98:41:e5:35:98:4e:6c:92:4c:f3:36:a2: c1:26:62:14:3e:5b:1c:6f:d1:c7:25:1a:e7:ed:af: fa:05:c3:e3:8f:08:73:7e:b7:5b:5f:49:48:81:5e: a0:2e:fd:76:0f:cc:bd:e8:00:37:32:fb:43:4b:64: fc:aa:9e:44:02:2d:19:f3:df:68:1b:c0:fd:81:bf: 30:4e:92:f9:ae:18:95:e0:50:2e:ac:9d:c2:50:8a: 53:fe:2a:c8:f6:d8:35:09:b8:75:7b:c2:53:1a:4b: b7:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:65:7C:A9:77:EA:C5:22:B0:C3:68:70:0D:65:9A:89:59:1C:FD:45 X509v3 Authority Key Identifier: keyid:A6:9E:E6:2C:5A:E8:81:17:4A:42:12:37:59:EA:42:3D:61:F7:34:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132F12/FF333B8A68C111EFA753A164C4F9AE02/pp7mLFrogRdKQhI3WepCPWH3NCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pp7mLFrogRdKQhI3WepCPWH3NCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F12/FF333B8A68C111EFA753A164C4F9AE02/A1418C5E68C411EF841B7987C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.247.118.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:00:7a:ac:87:12:2f:ef:47:ff:a9:fe:96:d5:2e:0d:95:5d: 76:c0:b6:82:bb:5b:11:36:84:92:52:33:ec:8a:35:09:2a:5c: 4e:72:ba:2c:1b:a7:d6:8d:99:d0:f3:29:3e:2a:97:e5:a5:57: 41:73:cd:15:11:d7:a0:c7:50:bb:d5:a7:3c:d8:e4:4d:75:3e: c4:cb:03:c3:3c:e3:83:29:3d:09:aa:52:3a:a9:58:55:97:bf: 9f:3b:55:7d:67:e1:20:4c:35:91:77:2d:e0:f0:f2:60:36:8f: ad:af:55:55:7c:34:43:f4:84:af:cf:b9:2f:13:d6:29:77:6c: c1:f5:81:d4:a2:ba:ed:30:24:8e:d3:2d:6a:1e:2f:e0:78:2f: 30:4a:9a:f9:e2:e4:2d:e3:2d:12:fe:8e:47:8c:94:95:72:76: a3:b6:10:a6:70:c3:d1:2e:74:9c:c3:53:c5:29:5a:d6:a6:38: 52:d6:62:95:89:26:28:3b:c6:8d:49:17:2d:5c:70:9d:ce:58: a6:24:a9:d2:15:ef:22:99:15:1a:7c:30:48:5b:b1:9a:fd:81: 7d:6a:e7:9e:bb:67:10:af:6a:1a:58:01:e4:dc:20:30:b7:1d: 25:23:25:d2:14:9d:6d:7d:fb:61:ae:ab:f4:45:41:88:26:5e: b4:d6:9a:c3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MkYxMjExMC8GA1UEBRMoQTY5RUU2MkM1QUU4ODExNzRBNDIxMjM3NTlFQTQyM0Q2 MUY3MzQyMzAeFw0yNTAzMDEwOTA5NTFaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YzJjZWRlLTIxNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaNxvOWaHTe3YtP0aFNL3p5x2kP8Ag5OcjjibWrnGOmSMezDiHJrCsDCySUVpr O7mpMbM07xt2qgjSqV3AcBuGBOUWQuYhLQ7qyvYdS4G5GKpWBlDPT5BqeNjrvk1w 9Yq9F7hWTohMeFpkxcHWL9inT2zG4aFuMrEFtbaAp9MipYdFeqRY1uVETpb1LkGd 9REFRr5imCbOb5hB5TWYTmySTPM2osEmYhQ+Wxxv0cclGuftr/oFw+OPCHN+t1tf SUiBXqAu/XYPzL3oADcy+0NLZPyqnkQCLRnz32gbwP2BvzBOkvmuGJXgUC6sncJQ ilP+Ksj22DUJuHV7wlMaS7fvAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQURWV8qXfq xSKww2hwDWWaiVkc/UUwHwYDVR0jBBgwFoAUpp7mLFrogRdKQhI3WepCPWH3NCMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMyRjEyL0ZGMzMzQjhBNjhD MTExRUZBNzUzQTE2NEM0RjlBRTAyL3BwN21MRnJvZ1JkS1FoSTNXZXBDUFdIM05D TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcHA3bUxGcm9nUmRLUWhJM1dlcENQV0gzTkNNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkYxMi9GRjMzM0I4QTY4QzExMUVGQTc1M0ExNjRDNEY5QUUwMi9BMTQxOEM1RTY4 QzQxMUVGODQxQjc5ODdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWf3djANBgkqhkiG9w0BAQsFAAOCAQEAjQB6rIcSL+9H/6n+ ltUuDZVddsC2grtbETaEklIz7Io1CSpcTnK6LBun1o2Z0PMpPiqX5aVXQXPNFRHX oMdQu9WnPNjkTXU+xMsDwzzjgyk9CapSOqlYVZe/nztVfWfhIEw1kXct4PDyYDaP ra9VVXw0Q/SEr8+5LxPWKXdswfWB1KK67TAkjtMtah4v4HgvMEqa+eLkLeMtEv6O R4yUlXJ2o7YQpnDD0S50nMNTxSla1qY4UtZilYkmKDvGjUkXLVxwnc5YpiSp0hXv IpkVGnwwSFuxmv2BfWrnnrtnEK9qGlgB5NwgMLcdJSMl0hSdbX37Ya6r9EVBiCZe tNaaww== -----END CERTIFICATE-----Generated at Mon Apr 14 00:13:48 2025 by rpki-client