$ rpki-client -vvf rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/1DF2E9F2D3D011EFAF492E7BC4F9AE02.roa File: 1DF2E9F2D3D011EFAF492E7BC4F9AE02.roa (raw, json) Hash identifier: DdcwMrYgxms39/2lnopBgWj9ObBDY+6LEivm3sNs/Qs= Subject key identifier: 8F:8C:CA:56:68:F0:85:BF:81:2D:08:25:50:B3:B9:44:31:72:D1:A8 Certificate issuer: /CN=A915BF76/serialNumber=63EC4E6380FAAEA51107E9C40C2F1058E08F856E Certificate serial: 3496 Authority key identifier: 63:EC:4E:63:80:FA:AE:A5:11:07:E9:C4:0C:2F:10:58:E0:8F:85:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/1DF2E9F2D3D011EFAF492E7BC4F9AE02.roa Signing time: Thu 16 Jan 2025 06:07:08 +0000 ROA not before: Thu 16 Jan 2025 06:07:08 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 51847 IP address blocks: 103.21.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.crl rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Feb 2025 15:32:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13462 (0x3496) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BF76 Validity Not Before: Jan 16 06:07:08 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6788a20c-cf50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:76:3c:6f:e0:b7:73:8e:5f:9c:fe:37:18:47: 71:4c:45:db:80:d8:99:7b:f3:dc:52:11:0f:9a:60: 3e:9f:c4:18:2d:a6:43:97:33:e5:cc:77:23:bb:94: ba:e5:97:2d:d8:31:19:b5:27:8c:3c:d9:ed:c6:26: 35:12:e8:28:b6:6d:76:46:f0:dc:6a:56:68:0d:21: 6d:68:25:70:05:04:61:2a:b1:11:5c:ec:25:d8:f1: 69:9d:5a:02:d2:33:88:28:fe:05:cb:fb:e6:51:ca: 07:6f:15:47:e2:2a:a5:22:98:8c:d7:92:e7:d2:39: 55:7a:91:0c:ec:61:37:f6:3a:d2:cd:80:2f:1c:62: 84:08:8c:f4:a4:74:4f:7f:f3:30:70:7a:c4:14:68: 38:5f:16:ae:3f:00:97:53:04:98:8a:cc:fe:08:cd: 3a:11:74:6d:ad:ca:9f:bd:b0:46:13:f2:3a:28:0a: 8f:47:7f:15:c0:0c:30:3c:37:a2:c9:c5:5f:5e:10: bd:4c:00:19:85:41:f8:29:dd:b3:27:93:47:53:78: af:25:a5:21:5e:e4:36:8b:ab:18:a4:d6:81:6b:fe: dc:ce:31:9e:0e:e6:78:5b:0d:3b:f8:95:c4:1c:a4: 62:6a:f0:1e:be:b2:03:e8:91:73:fe:33:d6:0e:69: 51:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:8C:CA:56:68:F0:85:BF:81:2D:08:25:50:B3:B9:44:31:72:D1:A8 X509v3 Authority Key Identifier: keyid:63:EC:4E:63:80:FA:AE:A5:11:07:E9:C4:0C:2F:10:58:E0:8F:85:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-xOY4D6rqURB-nEDC8QWOCPhW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BF76/944E38921DAB11E2BB30CAA908B02CD2/1DF2E9F2D3D011EFAF492E7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.137.0/24 Signature Algorithm: sha256WithRSAEncryption a4:ac:3d:54:bc:02:87:9c:b6:12:1b:50:9c:c5:9d:9b:46:a3: 36:d6:e5:84:4b:5f:0b:68:c4:7e:03:e1:e3:94:cf:9d:bc:50: 9a:f1:6e:5b:bc:06:0e:5a:4a:97:7e:75:cf:a6:82:bd:0d:2f: 98:c9:77:9f:91:ab:0f:7c:fa:31:05:09:aa:6b:ef:d2:5a:df: b1:5d:f5:3d:f3:63:a4:a3:4b:0e:f1:51:a3:05:17:0c:be:18: f0:61:45:c8:53:1f:e3:e0:b4:2d:d5:ba:df:75:be:1d:05:7e: b5:2f:aa:2d:4e:31:1a:d8:2b:0f:58:c3:9f:52:f4:b4:cf:c9: ca:1f:0a:98:ee:21:14:da:ad:ab:aa:6d:06:32:17:75:e0:73: ba:3f:27:4d:f5:c6:bc:20:f9:8f:f1:b9:9d:cf:36:0b:ba:a8: 54:de:2f:60:81:8b:4e:b0:82:f3:31:9a:e7:ef:fd:9a:3d:3b: 59:d9:9b:53:da:26:10:f6:46:f6:6a:5d:2f:1e:21:fd:75:f4: 31:b8:f6:b0:39:ac:9c:39:40:a6:84:71:27:2a:81:30:bb:3e: 27:6d:a1:58:4b:a2:81:d1:ff:77:35:60:8b:59:7c:57:1c:1f: 1a:ea:d1:cc:86:f6:e5:ae:78:7a:e2:db:c1:e1:21:69:12:3d: 1a:f4:71:38 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJGNzYxMTAvBgNVBAUTKDYzRUM0RTYzODBGQUFFQTUxMTA3RTlDNDBDMkYxMDU4 RTA4Rjg1NkUwHhcNMjUwMTE2MDYwNzA4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg4YTIwYy1jZjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXY8b+C3c45fnP43GEdxTEXbgNiZe/PcUhEPmmA+n8QYLaZDlzPlzHcju5S6 5Zct2DEZtSeMPNntxiY1Eugotm12RvDcalZoDSFtaCVwBQRhKrERXOwl2PFpnVoC 0jOIKP4Fy/vmUcoHbxVH4iqlIpiM15Ln0jlVepEM7GE39jrSzYAvHGKECIz0pHRP f/MwcHrEFGg4XxauPwCXUwSYisz+CM06EXRtrcqfvbBGE/I6KAqPR38VwAwwPDei ycVfXhC9TAAZhUH4Kd2zJ5NHU3ivJaUhXuQ2i6sYpNaBa/7czjGeDuZ4Ww07+JXE HKRiavAevrID6JFz/jPWDmlRTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFI+MylZo 8IW/gS0IJVCzuUQxctGoMB8GA1UdIwQYMBaAFGPsTmOA+q6lEQfpxAwvEFjgj4Vu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkY3Ni85NDRFMzg5MjFE QUIxMUUyQkIzMENBQTkwOEIwMkNEMi9ZLXhPWTRENnJxVVJCLW5FREM4UVdPQ1Bo VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kteE9ZNEQ2cnFVUkItbkVEQzhRV09DUGhXNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUJGNzYvOTQ0RTM4OTIxREFCMTFFMkJCMzBDQUE5MDhCMDJDRDIvMURGMkU5RjJE M0QwMTFFRkFGNDkyRTdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnFYkwDQYJKoZIhvcNAQELBQADggEBAKSsPVS8AoecthIb UJzFnZtGozbW5YRLXwtoxH4D4eOUz528UJrxblu8Bg5aSpd+dc+mgr0NL5jJd5+R qw98+jEFCapr79Ja37Fd9T3zY6SjSw7xUaMFFwy+GPBhRchTH+PgtC3Vut91vh0F frUvqi1OMRrYKw9Yw59S9LTPycofCpjuIRTarauqbQYyF3Xgc7o/J031xrwg+Y/x uZ3PNgu6qFTeL2CBi06wgvMxmufv/Zo9O1nZm1PaJhD2RvZqXS8eIf119DG49rA5 rJw5QKaEcScqgTC7PidtoVhLooHR/3c1YItZfFccHxrq0cyG9uWueHri28HhIWkS PRr0cTg= -----END CERTIFICATE-----Generated at Wed Feb 19 20:42:53 2025 by rpki-client