$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/35A768B8563B11EC94608B5BC4F9AE02.roa File: 35A768B8563B11EC94608B5BC4F9AE02.roa (raw, json) Hash identifier: PT6HAQnCKQ1h24wBLOcqnEqZNrhbuPQnC+z2D3m/yIA= Subject key identifier: 30:54:74:08:6B:0B:0E:38:39:BF:73:12:C4:47:C8:9C:19:DF:95:2F Certificate issuer: /CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Certificate serial: 049E Authority key identifier: C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/35A768B8563B11EC94608B5BC4F9AE02.roa Signing time: Tue 03 Sep 2024 01:15:45 +0000 ROA not before: Tue 03 Sep 2024 01:15:45 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 13335 IP address blocks: 103.172.110.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1182 (0x49e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D25 Validity Not Before: Sep 3 01:15:45 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d66341-b57a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c8:7c:34:3e:94:a2:be:89:75:f2:0c:4b:f5: 5e:e3:f9:d0:c4:c3:6c:9e:69:30:d6:16:d9:e5:3b: fe:58:84:d7:5a:69:be:5a:e4:d1:2e:a9:e5:8d:d4: a7:be:9f:d3:40:cc:55:b3:36:c3:9d:f6:72:6d:da: 3e:8a:cc:6c:1d:bf:1a:1a:99:68:d3:8e:bd:9e:88: 39:eb:8f:74:5f:3b:31:5c:2e:a9:78:2c:44:66:81: b7:56:9d:aa:d4:29:d4:dc:98:f6:1b:79:83:15:a3: 06:ce:1e:b1:77:43:0d:15:78:26:16:78:42:e3:0b: c8:22:50:95:f8:5c:ee:70:4c:b9:fc:f1:1e:1b:49: cb:2f:0d:9b:ce:29:fd:62:86:70:13:a5:73:b2:55: 5e:01:70:8a:52:09:64:49:f6:36:1a:25:ed:e4:a6: 4d:c6:9e:68:9e:6f:30:d8:d6:e2:a5:7b:38:e3:a0: 9b:d8:5b:ce:63:9c:4d:3a:73:1c:f5:16:8f:fc:6f: ff:f9:cb:bb:64:1c:44:8f:93:e2:a0:a9:d0:af:6d: f6:9e:30:32:fd:c0:c1:4b:08:00:e9:8e:0f:57:9e: 2b:28:25:c4:a8:41:06:b5:c9:b4:c0:5c:c6:f9:7e: 2e:16:c8:c4:e9:eb:70:2a:05:97:95:f9:42:e8:29: 4b:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:54:74:08:6B:0B:0E:38:39:BF:73:12:C4:47:C8:9C:19:DF:95:2F X509v3 Authority Key Identifier: keyid:C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/35A768B8563B11EC94608B5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.110.0/23 Signature Algorithm: sha256WithRSAEncryption 48:e2:4d:b7:5b:99:3b:38:8c:98:b3:26:95:d4:d7:bd:46:87: 4f:fc:0b:f5:a0:6b:c8:b5:f1:cc:3e:46:66:51:85:4a:43:aa: 2e:ac:7e:dd:aa:f3:7c:cf:c4:49:bd:a4:6c:e8:4a:18:5a:64: 45:b2:8b:b4:d5:91:8e:75:fd:ad:76:dd:1e:8a:21:a8:ce:1e: 25:af:3f:bd:60:5b:07:9f:cc:81:ef:25:59:7c:e6:bd:5b:0e: 28:bb:d4:a3:a0:17:05:78:0b:47:2c:74:3a:b2:3f:1d:6c:eb: b1:67:f9:be:af:49:1d:6a:40:e8:97:40:87:3c:e1:8a:8a:6a: 1c:e1:cc:0b:93:fb:ee:68:05:a2:d6:66:0d:b6:dd:59:19:5f: 0c:8e:3d:3e:c2:c5:b2:0a:ac:1c:63:a8:44:ae:3c:21:a2:54: 0c:19:10:96:55:68:ca:f7:b6:06:b3:6f:fb:4d:80:19:38:df: d6:a7:8a:e2:ac:5a:0f:7d:b3:a1:fd:ca:d0:d0:29:43:cb:f5: 0c:d5:5e:58:44:79:f6:0b:0b:8b:a7:b5:31:75:78:bf:3c:ae: e9:54:ef:e2:b5:c5:17:4e:19:e2:f2:40:ce:39:6f:1b:01:e6: 25:01:ec:d3:77:3b:ae:c7:88:33:65:df:c2:8a:ff:e6:ba:f6: e7:f8:ba:64 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVEMjUxMTAvBgNVBAUTKEMyRjI4RTlEMTg4NDM5QzRGRTY5RjYzQTRDQUE2REE0 MjQ5NjI5MUQwHhcNMjQwOTAzMDExNTQ1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjM0MS1iNTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxsh8ND6Uor6JdfIMS/Ve4/nQxMNsnmkw1hbZ5Tv+WITXWmm+WuTRLqnljdSn vp/TQMxVszbDnfZybdo+isxsHb8aGplo0469nog56490XzsxXC6peCxEZoG3Vp2q 1CnU3Jj2G3mDFaMGzh6xd0MNFXgmFnhC4wvIIlCV+FzucEy5/PEeG0nLLw2bzin9 YoZwE6VzslVeAXCKUglkSfY2GiXt5KZNxp5onm8w2NbipXs446Cb2FvOY5xNOnMc 9RaP/G//+cu7ZBxEj5PioKnQr232njAy/cDBSwgA6Y4PV54rKCXEqEEGtcm0wFzG +X4uFsjE6etwKgWXlflC6ClLgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDBUdAhr Cw44Ob9zEsRHyJwZ35UvMB8GA1UdIwQYMBaAFMLyjp0YhDnE/mn2OkyqbaQklikd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQyNS82N0YyQjBEODBC RDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9jVC1hZlk2VEtwdHBDU1dL UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2S09uUmlFT2NULWFmWTZUS3B0cENTV0tSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVEMjUvNjdGMkIwRDgwQkQyMTFFQ0JBQTQ4MDZBQzRGOUFFMDIvMzVBNzY4Qjg1 NjNCMTFFQzk0NjA4QjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrG4wDQYJKoZIhvcNAQELBQADggEBAEjiTbdbmTs4jJiz JpXU171Gh0/8C/Wga8i18cw+RmZRhUpDqi6sft2q83zPxEm9pGzoShhaZEWyi7TV kY51/a123R6KIajOHiWvP71gWwefzIHvJVl85r1bDii71KOgFwV4C0csdDqyPx1s 67Fn+b6vSR1qQOiXQIc84YqKahzhzAuT++5oBaLWZg223VkZXwyOPT7CxbIKrBxj qESuPCGiVAwZEJZVaMr3tgazb/tNgBk439aniuKsWg99s6H9ytDQKUPL9QzVXlhE efYLC4untTF1eL88rulU7+K1xRdOGeLyQM45bxsB5iUB7NN3O67HiDNl38KK/+a6 9uf4umQ= -----END CERTIFICATE-----Generated at Sun Feb 16 22:16:32 2025 by rpki-client