$ rpki-client -vvf rpki.apnic.net/member_repository/A9144354/61A126E404E411E98CAFAA7BC4F9AE02/1B3EC39C525311EA939E4652C4F9AE02.roa File: 1B3EC39C525311EA939E4652C4F9AE02.roa (raw, json) Hash identifier: 31ZyQUCr1HmkiWyW7LxwjsOe8qq4XgICKJjGASD158Y= Subject key identifier: 35:FC:01:58:E0:D1:29:65:D8:DF:2A:03:63:4A:88:37:6A:C3:24:69 Certificate issuer: /CN=A9144354/serialNumber=47D06BD7EA8DF2197F71270B75C964C79AB9F0CC Certificate serial: 1129 Authority key identifier: 47:D0:6B:D7:EA:8D:F2:19:7F:71:27:0B:75:C9:64:C7:9A:B9:F0:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R9Br1-qN8hl_cScLdclkx5q58Mw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144354/61A126E404E411E98CAFAA7BC4F9AE02/1B3EC39C525311EA939E4652C4F9AE02.roa Signing time: Wed 22 Jan 2025 17:25:34 +0000 ROA not before: Wed 22 Jan 2025 17:25:34 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 35916 IP address blocks: 103.127.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144354/61A126E404E411E98CAFAA7BC4F9AE02/R9Br1-qN8hl_cScLdclkx5q58Mw.crl rsync://rpki.apnic.net/member_repository/A9144354/61A126E404E411E98CAFAA7BC4F9AE02/R9Br1-qN8hl_cScLdclkx5q58Mw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R9Br1-qN8hl_cScLdclkx5q58Mw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 22:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4393 (0x1129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144354, serialNumber=47D06BD7EA8DF2197F71270B75C964C79AB9F0CC Validity Not Before: Jan 22 17:25:34 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67912a0e-409d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ae:a7:80:a4:a3:47:4e:4c:29:67:47:50:01: 0c:5e:f8:c7:1a:39:c1:55:d4:16:08:2c:27:c4:94: 75:0c:6d:fb:49:b9:5e:0a:49:ef:ce:21:3c:5e:a5: 01:98:60:b9:c0:27:0b:b1:83:b8:30:ed:1a:99:66: fe:da:54:e3:2c:d0:f9:da:f0:6a:b7:8f:cb:cc:71: 9f:14:9b:d0:f1:f6:c6:fe:56:fd:d7:ad:ea:7e:70: 94:73:65:a0:c6:3b:99:3f:45:c8:b3:e1:b7:45:68: 52:66:a5:2c:1d:52:99:89:26:c0:09:c3:c8:2b:77: 7e:be:b5:22:3b:89:c5:d2:1b:94:6d:a4:50:59:ac: ff:0c:5a:c8:e6:54:03:44:6e:c8:e5:e6:aa:d3:00: ad:93:58:28:a8:6d:6f:26:ee:5c:fc:fb:1a:64:91: 3b:87:98:11:a4:9f:99:1d:a8:c1:d0:e6:59:a2:b7: f4:4e:62:5d:1f:52:3e:10:3f:23:47:fe:04:71:43: 74:59:9c:02:7e:a9:f1:99:a8:12:d6:02:ca:99:9b: aa:38:69:22:99:60:69:69:02:b0:fa:5d:66:42:84: 2c:0d:b0:f8:5f:9f:fd:86:6d:b9:c1:97:43:83:ed: 9d:c0:81:7c:e9:53:ca:5a:74:b3:63:0f:fe:66:3e: 3d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:FC:01:58:E0:D1:29:65:D8:DF:2A:03:63:4A:88:37:6A:C3:24:69 X509v3 Authority Key Identifier: keyid:47:D0:6B:D7:EA:8D:F2:19:7F:71:27:0B:75:C9:64:C7:9A:B9:F0:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144354/61A126E404E411E98CAFAA7BC4F9AE02/R9Br1-qN8hl_cScLdclkx5q58Mw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R9Br1-qN8hl_cScLdclkx5q58Mw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144354/61A126E404E411E98CAFAA7BC4F9AE02/1B3EC39C525311EA939E4652C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.127.158.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:ed:73:e9:78:c9:5a:81:41:c4:53:dd:22:e2:60:44:f0:7f: 8e:5c:f1:4f:e7:5f:68:56:d5:56:7f:c2:1d:84:5d:b8:ba:2f: d0:2d:69:d4:06:82:7d:30:56:04:c7:91:60:a2:66:35:31:ef: 5d:31:f2:d7:31:d7:d3:97:3f:bf:72:fe:0f:38:5b:6b:29:0e: 6e:70:0b:18:57:40:d5:71:3c:1c:45:56:24:db:58:2d:ff:47: bf:aa:04:84:0d:56:06:76:01:58:c6:f6:f1:fc:bd:05:d7:3d: c7:b5:ad:8f:dc:70:c4:ff:50:bf:17:d6:41:3a:e3:e1:9c:23: 70:06:fe:6c:6d:e3:21:87:92:2d:24:a5:6d:ad:91:08:c9:2a: 85:72:db:c1:55:45:8f:e2:39:ab:ba:c5:ae:b5:51:30:76:e9: 07:c5:55:e4:48:0a:66:3b:65:e6:88:90:45:12:95:6d:fb:51: 4f:98:07:7a:5b:9d:d3:e6:f2:89:96:c0:aa:06:13:80:8f:7f: e6:be:df:50:ac:5a:f3:55:6f:40:64:26:fc:a0:b8:80:03:9f: 20:47:52:59:8f:7f:99:3e:2f:1a:3e:e6:b6:d8:a8:79:67:fd: 4e:b3:9b:f7:d5:b8:b5:69:67:36:7e:ba:08:9d:1e:3b:3e:37: bf:4b:d4:65 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICESkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQzNTQxMTAvBgNVBAUTKDQ3RDA2QkQ3RUE4REYyMTk3RjcxMjcwQjc1Qzk2NEM3 OUFCOUYwQ0MwHhcNMjUwMTIyMTcyNTM0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkxMmEwZS00MDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoa6ngKSjR05MKWdHUAEMXvjHGjnBVdQWCCwnxJR1DG37SbleCknvziE8XqUB mGC5wCcLsYO4MO0amWb+2lTjLND52vBqt4/LzHGfFJvQ8fbG/lb9163qfnCUc2Wg xjuZP0XIs+G3RWhSZqUsHVKZiSbACcPIK3d+vrUiO4nF0huUbaRQWaz/DFrI5lQD RG7I5eaq0wCtk1goqG1vJu5c/PsaZJE7h5gRpJ+ZHajB0OZZorf0TmJdH1I+ED8j R/4EcUN0WZwCfqnxmagS1gLKmZuqOGkimWBpaQKw+l1mQoQsDbD4X5/9hm25wZdD g+2dwIF86VPKWnSzYw/+Zj49+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFDX8AVjg 0Sll2N8qA2NKiDdqwyRpMB8GA1UdIwQYMBaAFEfQa9fqjfIZf3EnC3XJZMeaufDM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDM1NC82MUExMjZFNDA0 RTQxMUU5OENBRkFBN0JDNEY5QUUwMi9SOUJyMS1xTjhobF9jU2NMZGNsa3g1cTU4 TXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I5QnIxLXFOOGhsX2NTY0xkY2xreDVxNThNdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQzNTQvNjFBMTI2RTQwNEU0MTFFOThDQUZBQTdCQzRGOUFFMDIvMUIzRUMzOUM1 MjUzMTFFQTkzOUU0NjUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnf54wDQYJKoZIhvcNAQELBQADggEBAI/tc+l4yVqBQcRT 3SLiYETwf45c8U/nX2hW1VZ/wh2EXbi6L9AtadQGgn0wVgTHkWCiZjUx710x8tcx 19OXP79y/g84W2spDm5wCxhXQNVxPBxFViTbWC3/R7+qBIQNVgZ2AVjG9vH8vQXX Pce1rY/ccMT/UL8X1kE64+GcI3AG/mxt4yGHki0kpW2tkQjJKoVy28FVRY/iOau6 xa61UTB26QfFVeRICmY7ZeaIkEUSlW37UU+YB3pbndPm8omWwKoGE4CPf+a+31Cs WvNVb0BkJvyguIADnyBHUlmPf5k+Lxo+5rbYqHln/U6zm/fVuLVpZzZ+ugidHjs+ N79L1GU= -----END CERTIFICATE-----Generated at Mon Apr 14 20:05:58 2025 by rpki-client