$ rpki-client -vvf rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/799C6AD8149711EFB0CB9E0AC4F9AE02.roa File: 799C6AD8149711EFB0CB9E0AC4F9AE02.roa (raw, json) Hash identifier: Z6c5AlKVKf/klPMN7KddRfh49KHTtioUb3aQg5mvfg0= Subject key identifier: D0:9B:F8:E2:07:AD:8D:1E:C0:68:A4:61:DE:62:54:57:D6:9D:59:20 Certificate issuer: /CN=A9149A0D/serialNumber=5F8F0161B7ACBB255F13CF081B6653619B4E2C02 Certificate serial: 0770 Authority key identifier: 5F:8F:01:61:B7:AC:BB:25:5F:13:CF:08:1B:66:53:61:9B:4E:2C:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/799C6AD8149711EFB0CB9E0AC4F9AE02.roa Signing time: Mon 06 Jan 2025 21:20:15 +0000 ROA not before: Mon 06 Jan 2025 21:20:15 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 138456 IP address blocks: 103.126.24.0/24 maxlen: 24 103.152.206.0/24 maxlen: 24 2001:df7:3700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.crl rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 21:09:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1904 (0x770) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149A0D Validity Not Before: Jan 6 21:20:15 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=677c490f-3724 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ef:fa:e9:90:63:7b:92:e9:ea:5c:b8:61:b0: b4:9d:7a:6c:88:28:4d:80:77:fd:79:05:7e:45:17: 61:62:83:c3:32:35:5e:2b:76:41:98:44:0d:2c:cd: 2d:07:57:83:00:ee:c1:0c:d6:4c:cc:77:66:39:78: b1:24:0b:27:c1:64:02:c1:d6:d3:6c:c5:01:4e:72: 23:76:80:8c:ed:4a:2f:30:c7:ea:04:fd:60:cc:e2: 49:e1:8c:63:6f:02:91:59:23:e7:84:2a:d5:3d:1b: 4a:f5:d6:cf:f5:df:04:db:5b:ac:6f:bf:99:b9:f7: 97:33:66:0f:85:28:cb:1f:be:1a:4e:a2:0b:cb:b0: e5:b1:b0:c7:58:94:2f:83:44:4d:af:a6:50:12:6f: 2d:c2:a8:e6:b2:97:3e:0b:89:3b:87:09:33:71:83: 19:34:c6:ec:26:26:b4:7b:be:d0:21:72:5d:11:0a: 36:00:83:67:19:c0:9e:b7:57:3d:9e:b5:e8:7e:55: cf:a7:a4:a7:41:4b:6c:cb:f4:f0:b5:4c:0e:d7:d2: 60:aa:5b:6d:56:5a:de:fc:66:f1:54:ed:35:31:0b: d7:76:51:55:fd:71:56:08:a7:a4:64:de:ee:9e:c3: a1:f6:92:70:2a:36:b7:69:cc:9f:ef:c8:8a:12:59: 26:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:9B:F8:E2:07:AD:8D:1E:C0:68:A4:61:DE:62:54:57:D6:9D:59:20 X509v3 Authority Key Identifier: keyid:5F:8F:01:61:B7:AC:BB:25:5F:13:CF:08:1B:66:53:61:9B:4E:2C:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/799C6AD8149711EFB0CB9E0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.24.0/24 103.152.206.0/24 IPv6: 2001:df7:3700::/48 Signature Algorithm: sha256WithRSAEncryption 6a:c1:c8:72:54:de:71:0b:74:a5:dc:c9:e0:64:9c:46:f8:85: 36:fc:93:56:68:d4:a3:ae:d3:b2:b1:ec:67:9b:ac:26:73:f1: a3:ee:c3:e8:28:f9:7b:48:f7:b1:2e:f4:f8:3c:59:3b:cd:55: ac:07:08:5a:cf:99:3d:d2:73:b3:c2:61:b1:9f:09:3e:e1:76: 53:aa:5f:c2:57:02:4f:a6:12:9f:39:37:47:e9:1b:fa:75:7e: 85:d3:f5:69:60:7d:0f:18:a2:cc:80:41:65:a6:fa:be:9e:b2: 52:6f:e2:ee:05:7b:b1:f0:e9:ef:2e:dd:19:25:e4:b5:30:a7: 4c:27:cb:b7:3a:19:e2:7e:32:e9:ac:fe:8f:3b:09:c3:5a:d1: 2b:69:12:cc:04:25:5e:02:d7:12:ee:88:67:17:7c:b9:e5:ba: db:f1:e1:56:3c:51:ca:53:6e:ed:6c:e0:f2:a0:10:b5:09:b6: 12:6c:d6:ac:80:b1:39:b9:f2:21:dc:0f:ce:3d:08:e7:49:0e: 74:54:c6:ab:ad:72:b1:f7:18:69:0f:17:73:5d:d9:2d:99:82: 8b:e9:58:38:e5:f7:6b:f4:b9:2a:1e:0a:80:a1:4d:f1:6e:ca: a0:35:86:35:48:1c:1d:10:cb:4b:dc:bd:27:c7:fd:34:22:6f: 76:72:b4:9c -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICB3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlBMEQxMTAvBgNVBAUTKDVGOEYwMTYxQjdBQ0JCMjU1RjEzQ0YwODFCNjY1MzYx OUI0RTJDMDIwHhcNMjUwMTA2MjEyMDE1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdjNDkwZi0zNzI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+/66ZBje5Lp6ly4YbC0nXpsiChNgHf9eQV+RRdhYoPDMjVeK3ZBmEQNLM0t B1eDAO7BDNZMzHdmOXixJAsnwWQCwdbTbMUBTnIjdoCM7UovMMfqBP1gzOJJ4Yxj bwKRWSPnhCrVPRtK9dbP9d8E21usb7+ZufeXM2YPhSjLH74aTqILy7DlsbDHWJQv g0RNr6ZQEm8twqjmspc+C4k7hwkzcYMZNMbsJia0e77QIXJdEQo2AINnGcCet1c9 nrXoflXPp6SnQUtsy/TwtUwO19JgqlttVlre/GbxVO01MQvXdlFV/XFWCKekZN7u nsOh9pJwKja3acyf78iKElkmywIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFNCb+OIH rY0ewGikYd5iVFfWnVkgMB8GA1UdIwQYMBaAFF+PAWG3rLslXxPPCBtmU2GbTiwC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUEwRC8wRkI3OTE2NEZC MTUxMUVBQjAxMUVDNkVDNEY5QUUwMi9YNDhCWWJlc3V5VmZFODhJRzJaVFladE9M QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0OEJZYmVzdXlWZkU4OElHMlpUWVp0T0xBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlBMEQvMEZCNzkxNjRGQjE1MTFFQUIwMTFFQzZFQzRGOUFFMDIvNzk5QzZBRDgx NDk3MTFFRkIwQ0I5RTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnfhgDBABnmM4wDwQCAAIwCQMHACABDfc3ADANBgkqhkiG 9w0BAQsFAAOCAQEAasHIclTecQt0pdzJ4GScRviFNvyTVmjUo67TsrHsZ5usJnPx o+7D6Cj5e0j3sS70+DxZO81VrAcIWs+ZPdJzs8JhsZ8JPuF2U6pfwlcCT6YSnzk3 R+kb+nV+hdP1aWB9DxiizIBBZab6vp6yUm/i7gV7sfDp7y7dGSXktTCnTCfLtzoZ 4n4y6az+jzsJw1rRK2kSzAQlXgLXEu6IZxd8ueW62/HhVjxRylNu7Wzg8qAQtQm2 EmzWrICxObnyIdwPzj0I50kOdFTGq61ysfcYaQ8Xc13ZLZmCi+lYOOX3a/S5Kh4K gKFN8W7KoDWGNUgcHRDLS9y9J8f9NCJvdnK0nA== -----END CERTIFICATE-----Generated at Sat Apr 12 05:36:33 2025 by rpki-client