$ rpki-client -vvf rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/670793E8F0EC11EFB7FBC612C4F9AE02.roa File: 670793E8F0EC11EFB7FBC612C4F9AE02.roa (raw, json) Hash identifier: w54klPBWsGxsJLf7o8O4d/YfYtzij9sx4wGXmrfgKPU= Subject key identifier: DF:80:59:BE:83:04:51:8B:3B:85:F9:2E:18:6D:20:9B:DF:4B:17:D0 Certificate issuer: /CN=A913B805/serialNumber=42D3ECB9C8570AB090EB601EDB3379C0D3D8A6D0 Certificate serial: 25C8 Authority key identifier: 42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/670793E8F0EC11EFB7FBC612C4F9AE02.roa Signing time: Sat 22 Feb 2025 07:12:41 +0000 ROA not before: Sat 22 Feb 2025 07:12:41 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 1221 IP address blocks: 103.138.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 17:35:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9672 (0x25c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B805 Validity Not Before: Feb 22 07:12:41 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67b978e8-a2fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a1:3f:e9:65:bd:95:09:28:68:63:52:94:4c: ab:5b:7d:24:9f:a0:8e:35:e8:0b:94:43:2b:3c:d8: 06:41:cb:e4:ca:8f:dc:bd:71:3b:5f:8f:55:44:f5: d8:82:d6:ca:7b:92:13:a9:62:2c:b2:d3:63:84:22: c7:e8:44:89:c0:a2:19:e3:28:d8:78:a9:3a:c6:c4: c5:71:52:b4:d9:c0:29:b5:5b:d7:51:52:73:2c:7f: cd:f7:5f:61:ae:a2:00:d8:e7:2d:99:7e:06:7e:42: 68:f0:d4:c7:ed:69:0c:db:3c:36:c4:4d:62:6e:aa: 21:f2:14:04:51:2e:a4:7b:9f:6d:ed:6c:40:08:bf: df:3e:5f:03:78:9d:69:57:eb:b6:b4:b6:23:f7:54: 45:76:df:74:90:db:bf:ca:74:da:3d:e4:af:4b:14: db:a8:a3:eb:9e:91:9e:68:e8:d8:45:81:bb:6b:b7: 98:38:6f:c3:e1:6d:6b:ba:a7:68:6b:b5:18:01:ed: 9b:80:c6:5b:b4:45:f5:1f:7e:0e:9e:63:8b:85:08: e2:45:cc:13:96:38:a6:50:da:98:cb:fa:89:a6:02: 59:fb:4f:fe:6e:dc:28:8d:62:52:8d:bc:d1:7a:4e: 6b:16:23:3a:10:6f:fd:91:fb:5b:72:e1:9c:95:04: 0c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:80:59:BE:83:04:51:8B:3B:85:F9:2E:18:6D:20:9B:DF:4B:17:D0 X509v3 Authority Key Identifier: keyid:42:D3:EC:B9:C8:57:0A:B0:90:EB:60:1E:DB:33:79:C0:D3:D8:A6:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/QtPsuchXCrCQ62Ae2zN5wNPYptA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QtPsuchXCrCQ62Ae2zN5wNPYptA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B805/F8076B8A7B7B11E98B6EC074C4F9AE02/670793E8F0EC11EFB7FBC612C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.210.0/24 Signature Algorithm: sha256WithRSAEncryption ab:ef:f1:8f:4f:d4:fc:84:c3:0e:53:78:37:9f:8c:a7:75:e1: 65:6b:1e:06:8c:11:55:9a:e9:f2:0c:d1:d7:91:f7:14:99:0a: b2:99:42:29:22:3e:69:c0:3a:89:b7:8e:d1:5b:84:aa:80:51: d6:35:68:d9:61:05:f9:a8:40:b3:90:e4:ab:26:62:b7:ef:72: f6:40:dd:53:54:b4:68:45:2c:c7:29:c9:d9:ff:18:a2:86:65: a6:d5:95:b3:13:00:c7:2e:88:7a:b1:d0:8b:b4:70:bb:21:4e: eb:4b:f6:99:71:6f:19:d8:77:6f:6d:d1:e7:c3:ae:de:06:71: 21:e1:a7:75:bc:d4:de:31:03:9a:fc:b1:c2:c4:e2:08:84:ef: 46:45:1f:ef:f8:14:8d:88:e0:8e:a9:7e:ea:e7:b2:1d:ab:e8: e9:09:89:43:31:0e:eb:9e:85:d5:75:0b:02:53:d8:26:ea:15: 1e:e9:df:d2:18:f4:fc:a8:cb:1f:75:0a:78:3a:11:6a:b6:f6: 21:00:c6:dc:c2:69:7f:37:eb:4f:94:d7:b5:ba:4d:75:7c:84: 80:eb:e2:72:e4:8a:7f:c8:22:e3:ce:e0:7c:24:49:96:e3:3a: 8a:6a:0d:72:03:4c:71:41:7c:ea:e6:3c:e1:3b:c3:0f:2e:a5: 3d:d1:68:88 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I4MDUxMTAvBgNVBAUTKDQyRDNFQ0I5Qzg1NzBBQjA5MEVCNjAxRURCMzM3OUMw RDNEOEE2RDAwHhcNMjUwMjIyMDcxMjQxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I5NzhlOC1hMmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqaE/6WW9lQkoaGNSlEyrW30kn6CONegLlEMrPNgGQcvkyo/cvXE7X49VRPXY gtbKe5ITqWIsstNjhCLH6ESJwKIZ4yjYeKk6xsTFcVK02cAptVvXUVJzLH/N919h rqIA2OctmX4GfkJo8NTH7WkM2zw2xE1ibqoh8hQEUS6ke59t7WxACL/fPl8DeJ1p V+u2tLYj91RFdt90kNu/ynTaPeSvSxTbqKPrnpGeaOjYRYG7a7eYOG/D4W1ruqdo a7UYAe2bgMZbtEX1H34OnmOLhQjiRcwTljimUNqYy/qJpgJZ+0/+btwojWJSjbzR ek5rFiM6EG/9kftbcuGclQQMdQIDAQABo4IClTCCApEwHQYDVR0OBBYEFN+AWb6D BFGLO4X5LhhtIJvfSxfQMB8GA1UdIwQYMBaAFELT7LnIVwqwkOtgHtszecDT2KbQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjgwNS9GODA3NkI4QTdC N0IxMUU5OEI2RUMwNzRDNEY5QUUwMi9RdFBzdWNoWENyQ1E2MkFlMnpONXdOUFlw dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F0UHN1Y2hYQ3JDUTYyQWUyek41d05QWXB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I4MDUvRjgwNzZCOEE3QjdCMTFFOThCNkVDMDc0QzRGOUFFMDIvNjcwNzkzRThG MEVDMTFFRkI3RkJDNjEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnitIwDQYJKoZIhvcNAQELBQADggEBAKvv8Y9P1PyEww5T eDefjKd14WVrHgaMEVWa6fIM0deR9xSZCrKZQikiPmnAOom3jtFbhKqAUdY1aNlh BfmoQLOQ5KsmYrfvcvZA3VNUtGhFLMcpydn/GKKGZabVlbMTAMcuiHqx0Iu0cLsh TutL9plxbxnYd29t0efDrt4GcSHhp3W81N4xA5r8scLE4giE70ZFH+/4FI2I4I6p furnsh2r6OkJiUMxDuuehdV1CwJT2CbqFR7p39IY9Pyoyx91Cng6EWq29iEAxtzC aX8360+U17W6TXV8hIDr4nLkin/IIuPO4HwkSZbjOopqDXIDTHFBfOrmPOE7ww8u pT3RaIg= -----END CERTIFICATE-----Generated at Thu Mar 13 07:06:21 2025 by rpki-client