$ rpki-client -vvf rpki.apnic.net/member_repository/A9136CB3/A5FD84F2571B11EEB418AB3EC4F9AE02/B210BF28D1BF11EF95281B83C4F9AE02.roa File: B210BF28D1BF11EF95281B83C4F9AE02.roa (raw, json) Hash identifier: ZnF+YTP2pRwfo0eUOGSGb1Y71fB7TRDK5QfyiO+cZbM= Subject key identifier: 99:B7:23:A3:63:07:FD:90:AE:7E:92:97:B0:1B:2C:C3:3D:BD:F0:DD Certificate issuer: /CN=A9136CB3/serialNumber=AB45DBFC35577F27C99FCF40A39B386B32350ADA Certificate serial: 0104 Authority key identifier: AB:45:DB:FC:35:57:7F:27:C9:9F:CF:40:A3:9B:38:6B:32:35:0A:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0Xb_DVXfyfJn89Ao5s4azI1Cto.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136CB3/A5FD84F2571B11EEB418AB3EC4F9AE02/B210BF28D1BF11EF95281B83C4F9AE02.roa Signing time: Mon 13 Jan 2025 15:04:33 +0000 ROA not before: Mon 13 Jan 2025 15:04:33 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 10103 IP address blocks: 103.158.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136CB3/A5FD84F2571B11EEB418AB3EC4F9AE02/q0Xb_DVXfyfJn89Ao5s4azI1Cto.crl rsync://rpki.apnic.net/member_repository/A9136CB3/A5FD84F2571B11EEB418AB3EC4F9AE02/q0Xb_DVXfyfJn89Ao5s4azI1Cto.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0Xb_DVXfyfJn89Ao5s4azI1Cto.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 03:35:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136CB3 Validity Not Before: Jan 13 15:04:33 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67852b81-d046 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:43:38:03:f9:5e:9e:cb:05:49:25:49:42:53: 55:cb:86:ad:40:8f:42:07:a5:ab:9c:db:c2:5b:4c: 66:97:86:c4:d1:17:fb:b6:bf:a6:18:c3:66:81:bd: 00:15:1d:c9:ad:d0:e5:a9:8f:3b:bf:75:c9:eb:35: ab:92:48:df:e7:df:d1:0d:08:1a:21:e2:ce:89:57: 8b:d6:e9:a8:97:97:56:8d:95:05:d0:13:e6:b8:8e: 78:cb:f2:c7:0a:62:54:8d:bd:76:5b:3d:9f:45:f1: ea:0e:6e:4a:21:3c:bd:dd:3d:d6:1c:fc:2b:47:a2: 69:05:cb:e9:0a:ef:8d:4c:39:a7:25:74:c3:c3:84: fe:76:6a:25:81:a0:01:46:fa:1b:be:32:21:01:64: b2:88:37:9b:6e:37:b6:dc:42:16:7c:6a:d4:c7:92: c0:90:0d:48:cc:55:c3:28:c6:f4:21:88:01:04:b4: ac:1a:6d:55:fc:8b:12:14:35:ad:49:e4:75:5b:16: 70:da:e0:98:11:93:ac:4e:40:1b:4b:de:7d:72:8b: 0a:db:0d:a3:07:a6:62:ac:e7:a4:71:e6:c4:03:9c: 13:2b:8c:c2:3c:08:54:e1:b3:17:f5:21:5c:fd:db: ca:ff:5c:9a:7a:55:c4:45:cc:12:fe:88:58:09:0e: 90:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:B7:23:A3:63:07:FD:90:AE:7E:92:97:B0:1B:2C:C3:3D:BD:F0:DD X509v3 Authority Key Identifier: keyid:AB:45:DB:FC:35:57:7F:27:C9:9F:CF:40:A3:9B:38:6B:32:35:0A:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136CB3/A5FD84F2571B11EEB418AB3EC4F9AE02/q0Xb_DVXfyfJn89Ao5s4azI1Cto.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0Xb_DVXfyfJn89Ao5s4azI1Cto.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136CB3/A5FD84F2571B11EEB418AB3EC4F9AE02/B210BF28D1BF11EF95281B83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.83.0/24 Signature Algorithm: sha256WithRSAEncryption 24:ba:98:40:6a:60:b7:27:46:ae:60:5d:da:00:c2:9f:ce:bb: 83:98:48:c0:33:10:93:61:8f:0a:51:c7:50:fa:cb:e0:ef:db: 62:db:f4:b7:4a:00:bf:a7:53:72:ee:d5:24:92:9e:d4:d0:66: 19:72:2d:d8:fe:dd:fa:97:56:de:e1:74:b5:9c:93:dd:aa:75: f9:b5:1f:23:d2:bb:e8:a7:fd:f6:b1:f6:ec:f4:90:28:c3:9a: 3b:67:3d:ed:37:ba:e7:f0:66:09:66:bd:49:1e:63:2a:c3:1b: 9a:d2:02:88:43:e1:05:c1:9e:3e:3a:7f:1d:c4:72:dc:93:42: 6b:50:d1:b2:c6:0e:32:a3:bd:02:67:a8:8c:49:6c:12:c5:16: 6e:45:99:6b:cd:8c:e9:c4:fc:4e:99:20:94:47:a5:c5:ba:6c: 07:1b:02:38:5d:ae:ce:b7:79:9f:c3:f0:17:c3:1a:60:c2:4c: f5:98:15:59:20:b7:85:cd:e6:06:6c:aa:2b:05:9c:c0:8c:2b: c8:6c:4d:dc:f6:fe:c6:e5:72:19:0c:42:1e:ec:cf:0c:86:b1: 41:02:75:ab:1d:07:61:c9:c4:61:f4:1e:c7:98:70:4e:9a:9b: a6:0d:2a:f6:03:64:d1:ec:bf:86:d4:47:20:85:77:cd:cc:8d: 4b:44:34:b9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZDQjMxMTAvBgNVBAUTKEFCNDVEQkZDMzU1NzdGMjdDOTlGQ0Y0MEEzOUIzODZC MzIzNTBBREEwHhcNMjUwMTEzMTUwNDMzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg1MmI4MS1kMDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkkM4A/lenssFSSVJQlNVy4atQI9CB6WrnNvCW0xml4bE0Rf7tr+mGMNmgb0A FR3JrdDlqY87v3XJ6zWrkkjf59/RDQgaIeLOiVeL1umol5dWjZUF0BPmuI54y/LH CmJUjb12Wz2fRfHqDm5KITy93T3WHPwrR6JpBcvpCu+NTDmnJXTDw4T+dmolgaAB RvobvjIhAWSyiDebbje23EIWfGrUx5LAkA1IzFXDKMb0IYgBBLSsGm1V/IsSFDWt SeR1WxZw2uCYEZOsTkAbS959cosK2w2jB6ZirOekcebEA5wTK4zCPAhU4bMX9SFc /dvK/1yaelXERcwS/ohYCQ6QjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJm3I6Nj B/2Qrn6Sl7AbLMM9vfDdMB8GA1UdIwQYMBaAFKtF2/w1V38nyZ/PQKObOGsyNQra MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkNCMy9BNUZEODRGMjU3 MUIxMUVFQjQxOEFCM0VDNEY5QUUwMi9xMFhiX0RWWGZ5ZkpuODlBbzVzNGF6STFD dG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EwWGJfRFZYZnlmSm44OUFvNXM0YXpJMUN0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZDQjMvQTVGRDg0RjI1NzFCMTFFRUI0MThBQjNFQzRGOUFFMDIvQjIxMEJGMjhE MUJGMTFFRjk1MjgxQjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnnlMwDQYJKoZIhvcNAQELBQADggEBACS6mEBqYLcnRq5g XdoAwp/Ou4OYSMAzEJNhjwpRx1D6y+Dv22Lb9LdKAL+nU3Lu1SSSntTQZhlyLdj+ 3fqXVt7hdLWck92qdfm1HyPSu+in/fax9uz0kCjDmjtnPe03uufwZglmvUkeYyrD G5rSAohD4QXBnj46fx3EctyTQmtQ0bLGDjKjvQJnqIxJbBLFFm5FmWvNjOnE/E6Z IJRHpcW6bAcbAjhdrs63eZ/D8BfDGmDCTPWYFVkgt4XN5gZsqisFnMCMK8hsTdz2 /sblchkMQh7szwyGsUECdasdB2HJxGH0HseYcE6am6YNKvYDZNHsv4bURyCFd83M jUtENLk= -----END CERTIFICATE-----Generated at Fri Apr 11 09:05:08 2025 by rpki-client