$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/4C6227D2B69B11EFA181E00AC4F9AE02.roa File: 4C6227D2B69B11EFA181E00AC4F9AE02.roa (raw, json) Hash identifier: 3UDqux2pyFF/Bk7qZfNBKUplKVtNPBgZPpnXk8snk4g= Subject key identifier: F7:70:40:AC:C6:6E:5A:C1:32:F9:7D:9E:3D:57:25:E7:CB:15:AF:38 Certificate issuer: /CN=A9168B4A/serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Certificate serial: 13C1 Authority key identifier: AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/4C6227D2B69B11EFA181E00AC4F9AE02.roa Signing time: Tue 10 Dec 2024 02:07:21 +0000 ROA not before: Tue 10 Dec 2024 02:07:21 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 137899 IP address blocks: 103.106.188.0/22 maxlen: 24 103.116.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Feb 2025 17:28:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5057 (0x13c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B4A Validity Not Before: Dec 10 02:07:21 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6757a259-a4c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:cf:93:b6:3f:16:39:62:86:61:b8:0b:40:d7: d3:51:ea:38:c7:2b:52:9e:2e:2c:76:50:01:0e:74: f0:b5:0f:e5:05:21:ea:ed:86:a6:31:a5:92:5f:b3: 30:aa:02:d0:f7:d9:6b:83:ed:ae:2b:78:4c:e7:41: 84:a6:3e:b6:8a:22:c0:af:bc:08:20:fe:ee:1e:f8: 5a:00:92:4a:58:4b:4b:38:01:69:90:28:f2:b3:a2: f8:78:85:08:97:4d:cf:c8:53:33:62:5e:c6:ea:3b: a4:2e:03:cf:f3:a5:16:aa:6a:c4:2e:a8:35:3a:07: 13:e0:15:c3:4a:6d:ee:ce:d7:7d:6b:c4:ba:43:37: a1:4e:61:6e:d5:b4:50:e9:28:c1:a5:29:bc:00:3a: ba:e1:66:ee:f5:b5:84:15:82:12:54:83:6d:7d:dc: 9a:6f:76:c4:a0:d3:ef:04:c4:4d:a8:33:a1:ab:a0: ac:4c:bd:e0:a5:24:a7:86:d6:e2:6e:49:3d:ca:29: 08:54:80:dd:38:eb:25:74:a6:6b:f1:d2:a0:bd:21: a9:8b:f0:f2:61:72:10:0d:91:d9:1e:6f:58:2b:c7: b6:5b:d1:d6:2c:f9:95:70:99:7c:1c:cc:30:6d:f1: 44:e1:cd:a7:db:f4:10:40:57:45:2d:27:2b:20:ca: 13:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:70:40:AC:C6:6E:5A:C1:32:F9:7D:9E:3D:57:25:E7:CB:15:AF:38 X509v3 Authority Key Identifier: keyid:AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/4C6227D2B69B11EFA181E00AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.188.0/22 103.116.244.0/22 Signature Algorithm: sha256WithRSAEncryption 26:2e:17:b2:35:b8:16:fc:a9:ab:13:a5:6a:fa:81:3e:7f:65: 79:f9:48:b9:56:69:47:bf:e2:3e:8c:96:d4:68:17:3d:c9:20: 7f:ba:bc:fd:43:03:bf:57:2b:40:95:54:e4:a7:ef:5b:96:cb: 38:61:81:a3:e0:6f:5e:ea:8d:21:61:72:18:b8:16:72:d6:dd: 3e:8c:e6:22:d0:d7:c9:7a:d7:43:98:af:dc:22:68:36:f7:fe: ba:f3:af:ff:7a:16:60:e7:d4:00:bf:2f:e4:5d:11:ae:a2:ec: 88:d7:1e:f7:34:97:71:1b:53:34:fb:67:cb:11:8d:59:a4:cb: 11:92:42:0b:00:9f:94:f3:8d:11:8b:80:28:d6:56:e0:1e:6a: 58:9b:f2:eb:fa:3a:18:3f:bb:f9:85:a0:ef:ef:c5:cc:6b:c8: 89:75:67:0d:77:16:9d:d4:91:6c:52:c3:54:1f:a3:96:0a:b8: 23:21:13:b8:85:95:b5:ec:04:0f:dd:e0:b0:19:5a:d9:20:50: 7e:62:89:a8:b0:86:e6:94:00:86:f4:2e:46:8b:c4:fc:d0:73: a7:7d:9a:6e:eb:b6:65:fc:42:4b:58:54:65:f4:1b:24:f4:af: 73:56:9d:59:1e:36:1e:5e:11:5a:7e:41:01:15:b9:b2:be:33: e6:95:7f:eb -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICE8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCNEExMTAvBgNVBAUTKEFGMDI1MTFGN0M4MERGQzBFOEVENTA2RjY2MzBGNjdC RDY0MDBFMDkwHhcNMjQxMjEwMDIwNzIxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU3YTI1OS1hNGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvc+Ttj8WOWKGYbgLQNfTUeo4xytSni4sdlABDnTwtQ/lBSHq7YamMaWSX7Mw qgLQ99lrg+2uK3hM50GEpj62iiLAr7wIIP7uHvhaAJJKWEtLOAFpkCjys6L4eIUI l03PyFMzYl7G6jukLgPP86UWqmrELqg1OgcT4BXDSm3uztd9a8S6QzehTmFu1bRQ 6SjBpSm8ADq64Wbu9bWEFYISVINtfdyab3bEoNPvBMRNqDOhq6CsTL3gpSSnhtbi bkk9yikIVIDdOOsldKZr8dKgvSGpi/DyYXIQDZHZHm9YK8e2W9HWLPmVcJl8HMww bfFE4c2n2/QQQFdFLScrIMoTpQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPdwQKzG blrBMvl9nj1XJefLFa84MB8GA1UdIwQYMBaAFK8CUR98gN/A6O1Qb2Yw9nvWQA4J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEI0QS8wQURCMTdDMDgw MEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4RG83VkJ2WmpEMmU5WkFE Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J3SlJIM3lBMzhEbzdWQnZaakQyZTlaQURnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjhCNEEvMEFEQjE3QzA4MDBBMTFFODlCNDgzRTdDQzRGOUFFMDIvNEM2MjI3RDJC NjlCMTFFRkExODFFMDBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnarwDBAJndPQwDQYJKoZIhvcNAQELBQADggEBACYuF7I1 uBb8qasTpWr6gT5/ZXn5SLlWaUe/4j6MltRoFz3JIH+6vP1DA79XK0CVVOSn71uW yzhhgaPgb17qjSFhchi4FnLW3T6M5iLQ18l610OYr9wiaDb3/rrzr/96FmDn1AC/ L+RdEa6i7IjXHvc0l3EbUzT7Z8sRjVmkyxGSQgsAn5TzjRGLgCjWVuAealib8uv6 Ohg/u/mFoO/vxcxryIl1Zw13Fp3UkWxSw1Qfo5YKuCMhE7iFlbXsBA/d4LAZWtkg UH5iiaiwhuaUAIb0LkaLxPzQc6d9mm7rtmX8QktYVGX0GyT0r3NWnVkeNh5eEVp+ QQEVubK+M+aVf+s= -----END CERTIFICATE-----Generated at Wed Feb 19 22:00:50 2025 by rpki-client