$ rpki-client -vvf rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/42629FDADD9511EEAA0F2324C4F9AE02.roa File: 42629FDADD9511EEAA0F2324C4F9AE02.roa (raw, json) Hash identifier: +hn7T4kOPQRiT4pAI5U0s2X9XGmZExacuKpk1xJzme8= Subject key identifier: 02:C5:3B:26:EC:10:8F:19:87:DB:38:06:E2:58:DE:1D:DC:B8:A6:94 Certificate issuer: /CN=A916D29F/serialNumber=AA85CCD2DD3E1C003BF72FF53E58C7200E7CF0A8 Certificate serial: 0E53 Authority key identifier: AA:85:CC:D2:DD:3E:1C:00:3B:F7:2F:F5:3E:58:C7:20:0E:7C:F0:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qoXM0t0-HAA79y_1PljHIA588Kg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/42629FDADD9511EEAA0F2324C4F9AE02.roa Signing time: Wed 22 Jan 2025 17:56:05 +0000 ROA not before: Wed 22 Jan 2025 17:56:05 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 7018 IP address blocks: 103.105.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/qoXM0t0-HAA79y_1PljHIA588Kg.crl rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/qoXM0t0-HAA79y_1PljHIA588Kg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qoXM0t0-HAA79y_1PljHIA588Kg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3667 (0xe53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D29F Validity Not Before: Jan 22 17:56:05 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67913135-3587 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:43:b9:67:94:e4:cd:d5:aa:cf:c4:30:94:32: d6:59:82:7e:a6:08:5d:b7:70:48:f7:0a:61:ff:cc: 4b:de:77:06:c1:3d:c0:d5:ed:8b:47:cf:b3:5e:85: 8e:47:f2:5c:b6:06:47:d3:a3:1c:8b:10:00:3a:b2: 09:78:6b:94:a7:0c:b5:1f:e6:e9:e0:e4:fe:46:a3: 3e:7c:62:cf:e7:fa:f5:b1:29:34:41:de:fa:34:df: 5e:07:19:a2:7d:ff:eb:04:47:7a:a1:1d:28:f4:c6: 3e:bc:f0:ff:4e:0a:d6:10:2a:55:40:29:e4:1d:6a: 01:a6:de:3e:db:bd:2d:a5:7b:7f:5c:81:65:52:9c: 2e:5a:cb:99:00:23:e8:cc:3f:c6:dc:e2:1a:25:06: 68:89:7e:ed:7b:4a:3b:40:34:7b:74:5f:b0:54:63: 4d:cb:c9:08:0d:ee:b8:3b:bb:0b:70:70:4b:a6:b8: fb:77:20:77:68:c7:34:d5:1c:14:50:9d:e1:ab:a5: 98:67:54:36:a5:c8:45:6c:2a:87:8e:91:3e:29:3c: c0:ca:09:c9:a0:53:a0:e3:97:93:eb:8a:bb:8f:34: d3:d5:c3:ba:48:f2:37:13:e0:fb:e8:4e:73:90:b5: f3:18:12:e4:13:a1:9e:9f:a7:2a:60:9d:1c:b9:90: fa:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:C5:3B:26:EC:10:8F:19:87:DB:38:06:E2:58:DE:1D:DC:B8:A6:94 X509v3 Authority Key Identifier: keyid:AA:85:CC:D2:DD:3E:1C:00:3B:F7:2F:F5:3E:58:C7:20:0E:7C:F0:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/qoXM0t0-HAA79y_1PljHIA588Kg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qoXM0t0-HAA79y_1PljHIA588Kg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/42629FDADD9511EEAA0F2324C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.105.166.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:55:b3:cf:95:94:e1:3a:d4:d9:21:16:78:ca:a9:9c:91:9f: 69:6e:4d:fb:b7:77:af:37:d1:48:f5:23:6c:d7:79:c3:1d:00: 0d:68:c9:f3:6e:d0:58:37:fa:60:a4:63:66:90:a1:52:cb:dd: fe:2e:f4:f0:36:23:b6:59:ff:8c:69:bf:17:08:69:90:46:ba: 19:89:8c:b1:f6:57:df:d0:ae:ff:16:ff:34:94:00:39:66:c1: 1c:d1:6e:9e:f7:10:82:89:c6:0f:a8:b1:18:ea:41:de:ce:5c: 93:3a:10:c9:c9:d0:7d:f4:52:5a:b9:17:90:ff:91:4e:0f:19: 2f:b2:d6:f4:21:ce:24:95:34:c8:3c:15:be:a9:ef:c5:39:92: d4:3f:8e:68:ed:22:75:8f:28:46:2e:ec:99:1e:14:59:81:a6: db:5d:39:78:a4:46:1d:0c:49:df:42:93:ca:f5:0d:f2:96:67: f9:91:90:c2:e4:e1:6b:2f:02:8b:79:d9:78:8b:4d:9f:7b:9a: 2c:2d:76:5e:2a:1a:ea:2d:bf:5a:3b:07:03:e1:a6:e3:12:88: eb:83:1f:21:08:de:ef:b8:98:39:35:bb:75:89:3c:77:69:8e: bc:9b:66:58:03:28:f1:f8:9c:6b:f7:d1:28:0d:91:7f:55:f3: 39:27:47:e4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQyOUYxMTAvBgNVBAUTKEFBODVDQ0QyREQzRTFDMDAzQkY3MkZGNTNFNThDNzIw MEU3Q0YwQTgwHhcNMjUwMTIyMTc1NjA1WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkxMzEzNS0zNTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskO5Z5TkzdWqz8QwlDLWWYJ+pghdt3BI9wph/8xL3ncGwT3A1e2LR8+zXoWO R/JctgZH06McixAAOrIJeGuUpwy1H+bp4OT+RqM+fGLP5/r1sSk0Qd76NN9eBxmi ff/rBEd6oR0o9MY+vPD/TgrWECpVQCnkHWoBpt4+270tpXt/XIFlUpwuWsuZACPo zD/G3OIaJQZoiX7te0o7QDR7dF+wVGNNy8kIDe64O7sLcHBLprj7dyB3aMc01RwU UJ3hq6WYZ1Q2pchFbCqHjpE+KTzAygnJoFOg45eT64q7jzTT1cO6SPI3E+D76E5z kLXzGBLkE6Gen6cqYJ0cuZD6OQIDAQABo4IClTCCApEwHQYDVR0OBBYEFALFOybs EI8Zh9s4BuJY3h3cuKaUMB8GA1UdIwQYMBaAFKqFzNLdPhwAO/cv9T5YxyAOfPCo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDI5Ri82OTFGNzRDNDk4 ODgxMUU5OTFBRjY2MzZDNEY5QUUwMi9xb1hNMHQwLUhBQTc5eV8xUGxqSElBNTg4 S2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FvWE0wdDAtSEFBNzl5XzFQbGpISUE1ODhLZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQyOUYvNjkxRjc0QzQ5ODg4MTFFOTkxQUY2NjM2QzRGOUFFMDIvNDI2MjlGREFE RDk1MTFFRUFBMEYyMzI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnaaYwDQYJKoZIhvcNAQELBQADggEBABtVs8+VlOE61Nkh FnjKqZyRn2luTfu3d6830Uj1I2zXecMdAA1oyfNu0Fg3+mCkY2aQoVLL3f4u9PA2 I7ZZ/4xpvxcIaZBGuhmJjLH2V9/Qrv8W/zSUADlmwRzRbp73EIKJxg+osRjqQd7O XJM6EMnJ0H30Ulq5F5D/kU4PGS+y1vQhziSVNMg8Fb6p78U5ktQ/jmjtInWPKEYu 7JkeFFmBpttdOXikRh0MSd9Ck8r1DfKWZ/mRkMLk4WsvAot52XiLTZ97miwtdl4q Guotv1o7BwPhpuMSiOuDHyEI3u+4mDk1u3WJPHdpjrybZlgDKPH4nGv30SgNkX9V 8zknR+Q= -----END CERTIFICATE-----Generated at Sun Feb 16 15:24:18 2025 by rpki-client