$ rpki-client -vvf rpki.apnic.net/member_repository/A9167742/94E50800B7D711EC9A837462C4F9AE02/C80B0244CB2F11EEB240B62AC4F9AE02.roa File: C80B0244CB2F11EEB240B62AC4F9AE02.roa (raw, json) Hash identifier: Qkfcmv4EU2MLLZ10mmkNAoxwMk8NbbQ+23qgsWTS+60= Subject key identifier: 88:E7:81:09:C1:6D:67:13:A8:02:E6:11:F2:E5:EF:08:DF:93:C0:18 Certificate issuer: /CN=A9167742/serialNumber=863CD03CD7B0ACB589659ED6A91CF1EB20436753 Certificate serial: 029B Authority key identifier: 86:3C:D0:3C:D7:B0:AC:B5:89:65:9E:D6:A9:1C:F1:EB:20:43:67:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hjzQPNewrLWJZZ7WqRzx6yBDZ1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167742/94E50800B7D711EC9A837462C4F9AE02/C80B0244CB2F11EEB240B62AC4F9AE02.roa Signing time: Tue 23 Apr 2024 04:06:28 +0000 ROA not before: Tue 23 Apr 2024 04:06:28 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 134424 IP address blocks: 103.185.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167742/94E50800B7D711EC9A837462C4F9AE02/hjzQPNewrLWJZZ7WqRzx6yBDZ1M.crl rsync://rpki.apnic.net/member_repository/A9167742/94E50800B7D711EC9A837462C4F9AE02/hjzQPNewrLWJZZ7WqRzx6yBDZ1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hjzQPNewrLWJZZ7WqRzx6yBDZ1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 667 (0x29b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167742 Validity Not Before: Apr 23 04:06:28 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=662733c4-6193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ea:84:42:a5:37:10:7c:5b:9c:35:2f:48:aa: 69:f0:9c:80:59:56:74:5a:2e:e8:a1:46:95:be:84: c4:c6:f3:f8:87:d7:91:a3:a4:a8:b0:ad:1b:49:2d: 69:41:3e:e4:d8:b4:ac:75:98:2d:ca:64:09:23:0a: 74:9c:cf:e7:e1:33:64:5d:dd:85:bd:99:7e:d9:84: 5c:46:05:9e:4e:fc:46:4f:79:1a:a3:39:3b:2b:c4: 9c:df:23:0d:31:47:e3:89:8b:ec:62:e5:6d:19:15: aa:fb:b5:4f:b8:25:fb:88:67:22:73:c7:c3:2f:6a: a3:2e:50:98:e8:a5:20:1e:1a:4d:a0:a1:2c:f8:b0: c1:ed:9b:6a:99:cd:47:97:54:6a:43:51:0b:61:c8: 65:d8:a0:08:c1:5c:b4:ed:84:08:ab:1c:e4:71:d6: 03:ff:5e:8e:59:44:48:e4:35:5a:60:99:c7:fa:ba: 58:e9:41:ef:36:be:cf:76:a1:79:6f:45:ac:81:57: 19:80:50:24:9a:46:62:b3:17:61:59:55:03:f9:7f: 32:68:82:8f:e2:6d:51:c0:eb:e9:b5:e8:cc:1b:71: 14:3a:b8:81:fe:15:88:d4:7f:3b:66:18:6e:8e:be: 79:2f:45:70:30:58:73:ac:95:84:17:09:c8:de:24: 6f:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:E7:81:09:C1:6D:67:13:A8:02:E6:11:F2:E5:EF:08:DF:93:C0:18 X509v3 Authority Key Identifier: keyid:86:3C:D0:3C:D7:B0:AC:B5:89:65:9E:D6:A9:1C:F1:EB:20:43:67:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167742/94E50800B7D711EC9A837462C4F9AE02/hjzQPNewrLWJZZ7WqRzx6yBDZ1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hjzQPNewrLWJZZ7WqRzx6yBDZ1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167742/94E50800B7D711EC9A837462C4F9AE02/C80B0244CB2F11EEB240B62AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.185.25.0/24 Signature Algorithm: sha256WithRSAEncryption 88:22:1c:cb:2a:81:b2:83:0e:c9:89:ba:1b:57:63:77:e3:bf: b1:58:5f:0b:1f:c0:4a:8c:e9:df:db:9a:45:d7:c3:38:7b:0c: 4f:d1:b9:9b:e9:9c:0f:91:93:ad:96:f5:05:09:db:7d:00:1f: b6:0a:d4:5d:5f:72:66:f4:f7:7f:b3:6e:eb:8b:0c:47:3f:1b: 25:78:fa:3a:51:99:b0:4d:22:cc:f9:a6:c8:f5:76:03:cf:59: fb:39:d5:13:c7:42:52:9c:c1:45:27:cb:fc:2f:70:8b:47:5c: 85:9d:70:b6:93:cb:2a:08:00:36:07:06:85:e5:10:bf:40:3b: 35:87:3f:a2:df:79:e3:34:98:8a:85:89:60:45:25:6c:c9:dc: da:1a:eb:43:d1:ad:50:c2:92:5b:b3:8d:e8:ea:b1:05:8c:65: f2:bc:9e:f0:94:9f:a3:a6:8f:bf:3f:b1:a5:02:03:91:fb:61: 98:e9:df:75:55:a3:e4:4d:51:3c:d9:3d:e2:85:7a:f1:b9:00: ef:6e:76:fb:b1:2a:e8:97:50:9f:37:b0:fb:89:2f:ac:37:2c: a0:1c:c2:bd:8d:66:d9:bf:7a:cf:24:28:9c:68:bb:95:ce:86: b2:24:c0:30:a3:ff:19:de:bd:69:54:34:50:4d:6b:cf:32:c8: 6e:4b:c4:d5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICApswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njc3NDIxMTAvBgNVBAUTKDg2M0NEMDNDRDdCMEFDQjU4OTY1OUVENkE5MUNGMUVC MjA0MzY3NTMwHhcNMjQwNDIzMDQwNjI4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI3MzNjNC02MTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtuqEQqU3EHxbnDUvSKpp8JyAWVZ0Wi7ooUaVvoTExvP4h9eRo6SosK0bSS1p QT7k2LSsdZgtymQJIwp0nM/n4TNkXd2FvZl+2YRcRgWeTvxGT3kaozk7K8Sc3yMN MUfjiYvsYuVtGRWq+7VPuCX7iGcic8fDL2qjLlCY6KUgHhpNoKEs+LDB7Ztqmc1H l1RqQ1ELYchl2KAIwVy07YQIqxzkcdYD/16OWURI5DVaYJnH+rpY6UHvNr7PdqF5 b0WsgVcZgFAkmkZisxdhWVUD+X8yaIKP4m1RwOvptejMG3EUOriB/hWI1H87Zhhu jr55L0VwMFhzrJWEFwnI3iRvMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIjngQnB bWcTqALmEfLl7wjfk8AYMB8GA1UdIwQYMBaAFIY80DzXsKy1iWWe1qkc8esgQ2dT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Nzc0Mi85NEU1MDgwMEI3 RDcxMUVDOUE4Mzc0NjJDNEY5QUUwMi9oanpRUE5ld3JMV0paWjdXcVJ6eDZ5QkRa MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hqelFQTmV3ckxXSlpaN1dxUnp4NnlCRFoxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njc3NDIvOTRFNTA4MDBCN0Q3MTFFQzlBODM3NDYyQzRGOUFFMDIvQzgwQjAyNDRD QjJGMTFFRUIyNDBCNjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnuRkwDQYJKoZIhvcNAQELBQADggEBAIgiHMsqgbKDDsmJ uhtXY3fjv7FYXwsfwEqM6d/bmkXXwzh7DE/RuZvpnA+Rk62W9QUJ230AH7YK1F1f cmb093+zbuuLDEc/GyV4+jpRmbBNIsz5psj1dgPPWfs51RPHQlKcwUUny/wvcItH XIWdcLaTyyoIADYHBoXlEL9AOzWHP6LfeeM0mIqFiWBFJWzJ3Noa60PRrVDCkluz jejqsQWMZfK8nvCUn6Omj78/saUCA5H7YZjp33VVo+RNUTzZPeKFevG5AO9udvux KuiXUJ83sPuJL6w3LKAcwr2NZtm/es8kKJxou5XOhrIkwDCj/xnevWlUNFBNa88y yG5LxNU= -----END CERTIFICATE-----Generated at Mon Feb 17 08:00:08 2025 by rpki-client