$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/1F77EFA44C4011EC952D5A23C4F9AE02.roa File: 1F77EFA44C4011EC952D5A23C4F9AE02.roa (raw, json) Hash identifier: c5WQ+yUKORBq8d/u8k3An8QJMDIFK4yVXiwWYWbL5qc= Subject key identifier: D9:60:C0:A0:90:E7:EA:0F:BE:FC:D5:6A:67:C8:76:40:81:38:C1:BA Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 0437 Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/1F77EFA44C4011EC952D5A23C4F9AE02.roa Signing time: Sun 01 Dec 2024 00:33:47 +0000 ROA not before: Sun 01 Dec 2024 00:33:47 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 4755 IP address blocks: 103.23.24.0/24 maxlen: 24 103.23.25.0/24 maxlen: 24 103.23.26.0/24 maxlen: 24 103.23.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 23:48:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1079 (0x437) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5 Validity Not Before: Dec 1 00:33:47 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674baeeb-37ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:44:d5:c5:00:7a:b0:fe:b4:1c:63:8d:0f:1b: ea:eb:c8:fa:08:36:5b:a9:d9:66:90:b2:b6:f0:2e: 63:be:7c:cf:c7:1f:3c:8a:00:2f:e8:a1:31:47:e6: 97:1b:53:04:aa:95:d2:b6:03:ed:d7:98:69:c7:f8: 3d:4b:e4:d2:c9:79:76:f1:de:64:24:bc:96:53:c7: 79:e5:61:74:5f:77:41:b8:31:14:b5:03:e6:86:29: a2:db:b5:6c:3d:31:09:4c:f2:30:11:24:f8:7f:9e: 2b:f1:4c:af:de:6e:ad:d8:83:9d:59:49:82:14:f7: a5:01:30:57:58:3b:76:e5:d1:a3:65:a3:27:4c:b2: 5c:8e:d8:b1:e0:ad:9b:bd:71:4e:b1:bf:ed:8d:3a: 6c:e9:3c:a3:fe:3b:fd:0b:19:1d:32:f7:50:c4:7c: 96:e1:53:6f:3c:c9:f8:99:5b:e9:e0:19:7e:90:23: 70:76:83:9d:77:45:5b:36:91:75:29:76:3a:ed:f4: 25:8b:b8:1a:4b:e9:bc:ad:02:fb:84:5c:3b:46:35: 38:51:46:87:f6:4a:61:0b:8f:30:4a:1d:af:77:3b: 83:c2:1b:18:fc:df:85:14:96:14:c1:25:b6:16:2a: b2:13:52:c8:31:e4:09:94:54:9b:fe:84:31:45:b2: d0:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:60:C0:A0:90:E7:EA:0F:BE:FC:D5:6A:67:C8:76:40:81:38:C1:BA X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/1F77EFA44C4011EC952D5A23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.24.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:35:6a:2f:21:64:0e:a8:81:21:2f:c4:5c:3d:78:e7:d4:cc: c8:dd:46:d0:92:21:b0:61:f1:2d:50:24:5a:b2:64:f9:97:a1: 36:f1:89:5a:3c:24:ab:86:42:72:22:7c:5d:bc:53:3c:2f:80: 05:d7:d2:78:b5:b3:9c:14:72:86:ad:b6:b1:a4:4d:ea:90:36: ac:c3:c3:c6:67:71:2b:86:05:19:ad:f5:4c:36:82:f4:f7:e7: a4:4a:38:a0:bc:e8:0c:2a:b7:df:eb:76:50:15:b0:55:fb:6b: 2c:96:1e:b4:94:f1:22:77:2b:b1:a0:af:20:4c:aa:5a:d9:e4: 14:3c:de:5a:fe:53:a0:c2:c9:49:73:58:05:84:69:2e:dd:78: f4:5b:af:82:c1:9e:94:63:ea:74:84:04:cf:c5:34:36:51:eb: 3f:62:6b:8d:6f:39:c3:41:a9:16:d3:67:51:82:9a:b8:2e:d2: 41:d5:4e:ab:65:9c:ca:ad:df:10:40:61:b6:03:2e:79:92:ae: 65:ff:72:26:ab:5e:b0:2c:43:53:6a:15:d5:29:4f:cd:f0:c6: 9c:db:ce:6d:e1:87:e3:bc:e9:35:ec:ae:9c:04:f0:37:b5:c2: f4:28:72:17:a4:f4:ad:4b:c5:04:48:3c:ad:7c:d6:30:70:ae: 92:b3:71:96 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjQxMjAxMDAzMzQ3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRiYWVlYi0zN2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwETVxQB6sP60HGONDxvq68j6CDZbqdlmkLK28C5jvnzPxx88igAv6KExR+aX G1MEqpXStgPt15hpx/g9S+TSyXl28d5kJLyWU8d55WF0X3dBuDEUtQPmhimi27Vs PTEJTPIwEST4f54r8Uyv3m6t2IOdWUmCFPelATBXWDt25dGjZaMnTLJcjtix4K2b vXFOsb/tjTps6Tyj/jv9CxkdMvdQxHyW4VNvPMn4mVvp4Bl+kCNwdoOdd0VbNpF1 KXY67fQli7gaS+m8rQL7hFw7RjU4UUaH9kphC48wSh2vdzuDwhsY/N+FFJYUwSW2 FiqyE1LIMeQJlFSb/oQxRbLQ8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFNlgwKCQ 5+oPvvzVamfIdkCBOMG6MB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdDQzUvMkFDNEQzM0U0NkIxMTFFQzk0NUI0RjU3QzRGOUFFMDIvMUY3N0VGQTQ0 QzQwMTFFQzk1MkQ1QTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnFxgwDQYJKoZIhvcNAQELBQADggEBAHs1ai8hZA6ogSEv xFw9eOfUzMjdRtCSIbBh8S1QJFqyZPmXoTbxiVo8JKuGQnIifF28UzwvgAXX0ni1 s5wUcoattrGkTeqQNqzDw8ZncSuGBRmt9Uw2gvT356RKOKC86Awqt9/rdlAVsFX7 ayyWHrSU8SJ3K7GgryBMqlrZ5BQ83lr+U6DCyUlzWAWEaS7dePRbr4LBnpRj6nSE BM/FNDZR6z9ia41vOcNBqRbTZ1GCmrgu0kHVTqtlnMqt3xBAYbYDLnmSrmX/ciar XrAsQ1NqFdUpT83wxpzbzm3hh+O86TXsrpwE8De1wvQochek9K1LxQRIPK181jBw rpKzcZY= -----END CERTIFICATE-----Generated at Thu Mar 13 21:51:46 2025 by rpki-client