$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/6558775AE7D811EF8D280E2FC4F9AE02.roa File: 6558775AE7D811EF8D280E2FC4F9AE02.roa (raw, json) Hash identifier: YJQ9SpoqXrkvlRkEN5wsjZZeJRNdP87R6x7oDal+xTw= Subject key identifier: 22:04:E8:65:6C:C7:36:8A:80:35:A5:4B:DC:47:AD:82:8B:F1:0B:14 Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 0C6F Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/6558775AE7D811EF8D280E2FC4F9AE02.roa Signing time: Mon 10 Feb 2025 17:56:47 +0000 ROA not before: Mon 10 Feb 2025 17:56:47 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 138985 IP address blocks: 103.20.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3183 (0xc6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD Validity Not Before: Feb 10 17:56:47 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67aa3ddf-c78f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:30:b9:99:c1:29:f3:03:b9:4e:7e:bd:7d:f0: 7a:9d:44:f3:44:0b:ee:53:8b:f1:a0:82:4b:7c:75: 22:9e:af:69:09:ac:24:2e:30:9b:a1:27:23:7e:da: b1:16:d8:e4:a8:e1:64:b2:1a:50:0e:94:83:09:63: 52:ab:1d:a4:31:8a:0f:a4:f2:7a:66:dc:a2:f4:1c: 5a:4a:05:70:f9:88:a2:04:b3:bd:0d:fd:3c:c0:34: c7:b6:11:71:90:69:1c:a9:05:00:f2:2f:bc:72:83: f6:e4:35:1e:e6:08:e8:09:03:d0:2f:7e:42:ed:c1: b9:fc:88:63:ff:96:81:41:3d:5c:b0:a0:16:b5:cc: 1e:3f:9d:1d:82:db:9f:a3:d0:f0:04:be:69:cc:4e: 06:6c:7d:0b:bb:35:5e:75:ab:18:65:83:36:6d:05: 8f:60:09:3e:d0:27:d4:3c:4e:98:b7:15:6f:c2:bc: 38:da:2c:71:3f:83:6c:b6:7b:2f:5f:f9:1c:ba:0d: e5:25:a5:7c:8d:51:db:d9:d1:84:84:1b:74:9e:42: 77:f3:97:f8:df:54:5b:cd:64:88:f4:f9:83:c4:4e: 33:02:33:c0:0f:f7:70:a9:69:83:3d:e9:0e:a1:e3: 4c:9c:df:8a:9f:10:9e:cf:0c:0b:23:30:ae:91:7e: 02:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:04:E8:65:6C:C7:36:8A:80:35:A5:4B:DC:47:AD:82:8B:F1:0B:14 X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/6558775AE7D811EF8D280E2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.134.0/24 Signature Algorithm: sha256WithRSAEncryption 32:b1:dc:d7:76:7b:b6:2f:5c:b1:70:c5:4a:c1:25:b6:ca:ee: 36:72:e3:3c:55:77:1f:9c:cd:60:3f:de:c9:0a:46:7c:68:2a: 8f:d4:40:bf:49:3b:b2:25:5a:77:2a:15:f2:8c:a6:65:9c:75: d1:1c:e9:73:aa:d2:a7:8b:b3:11:b3:c9:53:92:65:c9:a2:85: cb:fb:62:3f:4f:9b:40:7e:68:e8:21:29:47:d3:94:a7:20:94: 44:12:e2:5c:61:c5:03:e8:0f:3f:d4:b9:4a:24:e0:5b:38:ea: 8c:4a:89:a4:38:a8:36:88:df:cd:ae:4a:90:94:7b:54:37:ea: 90:d2:47:3a:49:25:4e:a6:e5:a9:fa:ae:aa:a2:22:e9:6b:25: 8d:d1:56:86:c0:36:c5:1c:db:1f:4c:cc:38:39:0a:88:95:f7: 55:45:fc:d0:b4:a3:ac:e1:c9:f1:19:da:dc:33:c9:b0:3e:74: 9c:56:c3:f4:bb:25:90:98:66:91:1f:20:81:e1:a6:30:b3:e9: 57:15:f7:8a:ee:0f:fc:1d:28:66:9e:ae:f0:34:dc:9f:dc:d5: 4b:0c:6d:15:5b:43:99:44:86:0f:49:1b:99:5f:01:c7:52:c0: 82:87:0d:01:82:3c:bd:69:75:b4:01:42:cc:28:c3:16:40:97: 3c:92:80:85 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjUwMjEwMTc1NjQ3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FhM2RkZi1jNzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2DC5mcEp8wO5Tn69ffB6nUTzRAvuU4vxoIJLfHUinq9pCawkLjCboScjftqx FtjkqOFkshpQDpSDCWNSqx2kMYoPpPJ6Ztyi9BxaSgVw+YiiBLO9Df08wDTHthFx kGkcqQUA8i+8coP25DUe5gjoCQPQL35C7cG5/Ihj/5aBQT1csKAWtcweP50dgtuf o9DwBL5pzE4GbH0LuzVedasYZYM2bQWPYAk+0CfUPE6YtxVvwrw42ixxP4Nstnsv X/kcug3lJaV8jVHb2dGEhBt0nkJ385f431RbzWSI9PmDxE4zAjPAD/dwqWmDPekO oeNMnN+KnxCezwwLIzCukX4CiwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCIE6GVs xzaKgDWlS9xHrYKL8QsUMB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvNjU1ODc3NUFF N0Q4MTFFRjhEMjgwRTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnFIYwDQYJKoZIhvcNAQELBQADggEBADKx3Nd2e7YvXLFw xUrBJbbK7jZy4zxVdx+czWA/3skKRnxoKo/UQL9JO7IlWncqFfKMpmWcddEc6XOq 0qeLsxGzyVOSZcmihcv7Yj9Pm0B+aOghKUfTlKcglEQS4lxhxQPoDz/UuUok4Fs4 6oxKiaQ4qDaI382uSpCUe1Q36pDSRzpJJU6m5an6rqqiIulrJY3RVobANsUc2x9M zDg5CoiV91VF/NC0o6zhyfEZ2twzybA+dJxWw/S7JZCYZpEfIIHhpjCz6VcV94ru D/wdKGaervA03J/c1UsMbRVbQ5lEhg9JG5lfAcdSwIKHDQGCPL1pdbQBQswowxZA lzySgIU= -----END CERTIFICATE-----Generated at Wed Feb 19 22:32:17 2025 by rpki-client