$ rpki-client -vvf rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/9F0D6574BFF011EAA38D3B64C4F9AE02.roa File: 9F0D6574BFF011EAA38D3B64C4F9AE02.roa (raw, json) Hash identifier: SP/lqoxG8K385fFbiDzYapHGnCnV/BlNMKEYD/Qv8r8= Subject key identifier: 7D:B1:27:5E:FA:C2:B7:27:97:15:C1:89:D7:0A:18:6A:30:6A:0E:F0 Certificate issuer: /CN=A914DD78/serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Certificate serial: 0A6A Authority key identifier: D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/9F0D6574BFF011EAA38D3B64C4F9AE02.roa Signing time: Thu 02 May 2024 20:39:23 +0000 ROA not before: Thu 02 May 2024 20:39:23 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.248.128.0/24 maxlen: 24 2403:5f40:ca00::/44 maxlen: 44 2403:5f40:ca00::/48 maxlen: 48 2403:5f40:ca01::/48 maxlen: 48 2403:5f40:ca02::/48 maxlen: 48 2403:5f40:ca03::/48 maxlen: 48 2403:5f40:ca04::/48 maxlen: 48 2403:5f40:ca05::/48 maxlen: 48 2403:5f40:ca06::/48 maxlen: 48 2403:5f40:ca07::/48 maxlen: 48 2403:5f40:ca08::/48 maxlen: 48 2403:5f40:ca09::/48 maxlen: 48 2403:5f40:ca0a::/48 maxlen: 48 2403:5f40:ca0b::/48 maxlen: 48 2403:5f40:ca0c::/48 maxlen: 48 2403:5f40:ca0d::/48 maxlen: 48 2403:5f40:ca0e::/48 maxlen: 48 2403:5f40:ca0f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 19:10:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2666 (0xa6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DD78 Validity Not Before: May 2 20:39:23 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6633f9fb-11b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b3:3e:9f:ce:84:9f:9a:20:49:94:02:91:b3: da:36:48:42:81:7a:b1:09:eb:13:ac:d2:1e:55:25: 76:d0:c6:f1:ca:e4:9e:e2:95:f5:64:4b:00:da:5d: 3f:71:bd:aa:7a:be:7d:66:d8:87:24:ee:ff:9e:d2: 71:7c:e3:a5:6a:33:83:59:98:93:0a:74:72:23:5d: 25:c4:7f:5d:b9:b2:5a:9a:e9:02:4c:4c:ad:b9:f0: 5f:d0:0b:03:33:81:70:5c:cc:5f:f3:05:d8:2f:40: 5c:ec:25:e2:f6:c9:0f:6e:d2:42:bb:ec:ba:49:78: 41:c9:52:c1:9b:c9:d2:2f:d5:2a:57:89:49:ff:3f: 88:69:ea:70:87:60:98:7e:94:eb:d5:80:17:fe:28: ec:ce:94:1f:1f:4e:ee:41:ab:be:03:d8:cd:c8:77: cc:9a:89:0d:30:aa:92:f2:fd:da:eb:11:2e:b7:40: 64:02:77:57:fa:21:7b:77:e6:05:3b:f9:2e:5b:cb: 9b:ae:32:99:eb:cd:ac:1d:bb:67:5f:18:e8:71:d9: 4f:25:36:b3:02:95:71:cc:ac:92:72:8e:a2:b8:94: 83:3b:ae:73:91:1a:f4:96:74:29:63:8e:d3:9b:8f: dd:d2:24:ff:16:22:17:4a:ee:e8:32:76:aa:c7:49: e9:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:B1:27:5E:FA:C2:B7:27:97:15:C1:89:D7:0A:18:6A:30:6A:0E:F0 X509v3 Authority Key Identifier: keyid:D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/9F0D6574BFF011EAA38D3B64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.248.128.0/24 IPv6: 2403:5f40:ca00::/44 Signature Algorithm: sha256WithRSAEncryption b6:aa:3d:46:12:af:7c:32:c3:95:2d:4e:02:12:29:96:ae:67: 84:86:9f:14:d3:42:e9:7f:12:69:16:43:50:fb:45:c0:fc:a7: cc:85:15:50:f1:d7:db:50:2b:d6:2b:d5:7c:d4:0b:d0:85:c4: 93:71:cd:dc:ec:a3:ee:ca:ce:a7:df:7a:28:62:78:c0:28:e8: 1b:fe:8e:e2:6c:80:f0:19:4f:33:9d:3c:47:54:30:2b:cc:d6: 38:6f:aa:ad:c0:ea:41:8f:68:11:44:5d:47:4a:a0:66:54:cb: 89:76:17:6c:ce:f6:7a:a8:42:94:d7:61:d0:2d:de:89:69:b4: 0e:7c:e0:00:d3:03:98:41:fd:84:5f:2d:b7:42:2b:15:af:fa: ef:23:06:7b:59:16:86:ee:95:d6:ed:ef:14:d5:b7:43:c8:c2: 14:69:11:b4:5c:d7:84:48:8e:85:48:63:3e:56:7e:f7:3e:89: 80:78:eb:be:84:5f:b7:97:26:70:87:2e:9f:06:49:aa:75:4c: f7:68:8a:da:29:e9:f0:96:9d:6a:15:23:87:b0:f4:47:1c:6b: 9e:31:01:4a:3d:ee:4d:34:c0:cb:72:9e:96:db:f5:0e:ae:cf: 92:07:3d:09:67:83:8a:43:18:de:c3:c1:8a:2a:95:96:d3:2e: 2c:5e:7c:0e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERENzgxMTAvBgNVBAUTKEQzQzY2QzI2QTlGRDFCOUU3QzQ1NUJEREIzNTE1OTY4 OEQwMTQwRkUwHhcNMjQwNTAyMjAzOTIzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMzZjlmYi0xMWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1bM+n86En5ogSZQCkbPaNkhCgXqxCesTrNIeVSV20MbxyuSe4pX1ZEsA2l0/ cb2qer59ZtiHJO7/ntJxfOOlajODWZiTCnRyI10lxH9dubJamukCTEytufBf0AsD M4FwXMxf8wXYL0Bc7CXi9skPbtJCu+y6SXhByVLBm8nSL9UqV4lJ/z+Iaepwh2CY fpTr1YAX/ijszpQfH07uQau+A9jNyHfMmokNMKqS8v3a6xEut0BkAndX+iF7d+YF O/kuW8ubrjKZ682sHbtnXxjocdlPJTazApVxzKySco6iuJSDO65zkRr0lnQpY47T m4/d0iT/FiIXSu7oMnaqx0npFQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFH2xJ176 wrcnlxXBidcKGGowag7wMB8GA1UdIwQYMBaAFNPGbCap/RuefEVb3bNRWWiNAUD+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REQ3OC9ENEU5NjQ5QzQy RjgxMUVBQjQ2MEU5M0ZDNEY5QUUwMi8wOFpzSnFuOUc1NThSVnZkczFGWmFJMEJR UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA4WnNKcW45RzU1OFJWdmRzMUZaYUkwQlFQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERENzgvRDRFOTY0OUM0MkY4MTFFQUI0NjBFOTNGQzRGOUFFMDIvOUYwRDY1NzRC RkYwMTFFQUEzOEQzQjY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn+IAwDwQCAAIwCQMHBCQDX0DKADANBgkqhkiG9w0BAQsF AAOCAQEAtqo9RhKvfDLDlS1OAhIplq5nhIafFNNC6X8SaRZDUPtFwPynzIUVUPHX 21Ar1ivVfNQL0IXEk3HN3Oyj7srOp996KGJ4wCjoG/6O4myA8BlPM508R1QwK8zW OG+qrcDqQY9oEURdR0qgZlTLiXYXbM72eqhClNdh0C3eiWm0DnzgANMDmEH9hF8t t0IrFa/67yMGe1kWhu6V1u3vFNW3Q8jCFGkRtFzXhEiOhUhjPlZ+9z6JgHjrvoRf t5cmcIcunwZJqnVM92iK2inp8JadahUjh7D0RxxrnjEBSj3uTTTAy3Keltv1Dq7P kgc9CWeDikMY3sPBiiqVltMuLF58Dg== -----END CERTIFICATE-----Generated at Thu Mar 13 21:57:10 2025 by rpki-client