$ rpki-client -vvf rpki.apnic.net/member_repository/A916D750/0FA7C6B62A1911EB9CAF267EC4F9AE02/1687F94A2A1B11EB97B90C81C4F9AE02.roa File: 1687F94A2A1B11EB97B90C81C4F9AE02.roa (raw, json) Hash identifier: BUCMAVGIMlnR8k8i7KszkAOXuwUyfuND14A8FxskuTM= Subject key identifier: 46:38:4F:FE:83:07:54:90:99:98:56:3A:9A:95:87:57:42:16:0A:08 Certificate issuer: /CN=A916D750/serialNumber=F189CDF0FB9F9C691291A1466819D13C4E8C9600 Certificate serial: 0677 Authority key identifier: F1:89:CD:F0:FB:9F:9C:69:12:91:A1:46:68:19:D1:3C:4E:8C:96:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YnN8PufnGkSkaFGaBnRPE6MlgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D750/0FA7C6B62A1911EB9CAF267EC4F9AE02/1687F94A2A1B11EB97B90C81C4F9AE02.roa Signing time: Thu 18 Apr 2024 23:32:18 +0000 ROA not before: Thu 18 Apr 2024 23:32:18 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 4618 IP address blocks: 103.138.176.0/24 maxlen: 24 103.138.177.0/24 maxlen: 24 103.138.178.0/24 maxlen: 24 103.138.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D750/0FA7C6B62A1911EB9CAF267EC4F9AE02/8YnN8PufnGkSkaFGaBnRPE6MlgA.crl rsync://rpki.apnic.net/member_repository/A916D750/0FA7C6B62A1911EB9CAF267EC4F9AE02/8YnN8PufnGkSkaFGaBnRPE6MlgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YnN8PufnGkSkaFGaBnRPE6MlgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1655 (0x677) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D750 Validity Not Before: Apr 18 23:32:18 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6621ad81-f2d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:05:0f:a7:b1:d0:cf:c2:dd:18:6a:0f:a7:a5: ce:37:a9:19:46:f8:8b:d5:b4:e6:40:6a:03:e2:ed: 6b:5c:bc:2a:ac:92:56:2c:5e:02:7d:b3:7e:58:69: 97:61:08:d1:e0:10:c7:eb:10:47:29:3f:4f:4b:9a: 51:74:b3:d0:e0:b8:7c:cf:75:23:d3:d0:0b:d4:7d: 86:4d:6a:e1:3b:40:6b:6a:8e:b5:a1:63:4d:61:c5: bb:46:de:e9:f1:81:04:66:0a:53:f8:3b:aa:d4:4e: 69:b4:f6:ac:9c:de:88:d4:97:c2:63:83:d6:26:8b: f3:ea:6b:6a:d8:0b:ba:c6:71:a4:f4:cd:d0:c2:a1: 9b:44:de:ae:12:db:f4:8a:5b:63:49:3f:d1:04:2b: 81:ea:eb:a3:fd:df:d0:93:44:42:24:b5:6d:79:b7: 8b:ac:c2:ac:9a:89:e2:26:e0:28:fe:5b:8b:c8:3d: 8e:05:9e:5e:f2:08:34:ed:c1:57:0e:fd:25:42:4f: 25:79:c1:f0:d8:8f:99:63:85:6f:2f:b2:35:d8:c6: 29:40:a6:0d:df:72:5d:46:f0:6e:53:4f:12:d8:b9: ae:c4:13:cf:5c:9c:37:d7:f8:9c:0e:9b:eb:14:30: cd:8f:07:f0:d5:01:46:77:8e:91:03:3b:18:f9:8a: ae:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:38:4F:FE:83:07:54:90:99:98:56:3A:9A:95:87:57:42:16:0A:08 X509v3 Authority Key Identifier: keyid:F1:89:CD:F0:FB:9F:9C:69:12:91:A1:46:68:19:D1:3C:4E:8C:96:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D750/0FA7C6B62A1911EB9CAF267EC4F9AE02/8YnN8PufnGkSkaFGaBnRPE6MlgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8YnN8PufnGkSkaFGaBnRPE6MlgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D750/0FA7C6B62A1911EB9CAF267EC4F9AE02/1687F94A2A1B11EB97B90C81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.176.0/22 Signature Algorithm: sha256WithRSAEncryption 57:64:a9:86:4c:14:50:74:37:cc:ed:c7:22:22:fa:0c:e0:09: bb:87:64:a0:28:19:48:42:b0:40:8e:b4:6c:f6:f5:1c:9e:6a: a2:87:37:4d:a9:c3:dd:ef:a3:f4:fc:0c:93:e4:1c:74:23:af: d2:97:bf:23:d7:08:23:45:f8:ee:43:6f:7e:cb:d9:2e:cb:c6: 17:0a:f7:91:f1:50:8e:fe:97:97:c2:72:eb:15:c1:71:6b:e9: 3f:c9:ff:48:f8:2b:f1:2c:f1:29:b9:84:41:ce:d4:3d:b4:3a: c9:f7:ac:f6:32:8a:62:87:c1:7a:e1:f8:89:1f:d6:43:93:bc: 0b:cf:e5:e5:1b:18:28:96:5c:50:3c:2e:1c:ba:0f:7e:91:3c: 28:9b:b3:3d:80:42:e6:44:fc:52:97:8b:69:ec:0d:0f:ee:a3: 4f:7b:c1:63:63:6c:27:cd:84:19:4d:e7:10:fc:f7:c6:5a:a2: 47:57:45:12:0c:57:60:0b:f2:13:f2:81:0d:7a:99:41:b2:fd: 3a:78:ac:c1:5a:87:bc:bf:29:76:55:6e:80:e0:98:66:0f:ff: 00:c3:b0:8d:a6:72:a8:a3:6e:61:89:db:11:0b:de:4c:48:be: 4f:b0:ea:33:47:44:87:4e:bf:30:b5:b1:c4:7c:e6:3e:29:49: 4d:a8:16:b0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ3NTAxMTAvBgNVBAUTKEYxODlDREYwRkI5RjlDNjkxMjkxQTE0NjY4MTlEMTND NEU4Qzk2MDAwHhcNMjQwNDE4MjMzMjE4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjIxYWQ4MS1mMmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgUPp7HQz8LdGGoPp6XON6kZRviL1bTmQGoD4u1rXLwqrJJWLF4CfbN+WGmX YQjR4BDH6xBHKT9PS5pRdLPQ4Lh8z3Uj09AL1H2GTWrhO0Brao61oWNNYcW7Rt7p 8YEEZgpT+Duq1E5ptPasnN6I1JfCY4PWJovz6mtq2Au6xnGk9M3QwqGbRN6uEtv0 iltjST/RBCuB6uuj/d/Qk0RCJLVtebeLrMKsmoniJuAo/luLyD2OBZ5e8gg07cFX Dv0lQk8lecHw2I+ZY4VvL7I12MYpQKYN33JdRvBuU08S2LmuxBPPXJw31/icDpvr FDDNjwfw1QFGd46RAzsY+Yqu4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFEY4T/6D B1SQmZhWOpqVh1dCFgoIMB8GA1UdIwQYMBaAFPGJzfD7n5xpEpGhRmgZ0TxOjJYA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDc1MC8wRkE3QzZCNjJB MTkxMUVCOUNBRjI2N0VDNEY5QUUwMi84WW5OOFB1Zm5Ha1NrYUZHYUJuUlBFNk1s Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhZbk44UHVmbkdrU2thRkdhQm5SUEU2TWxnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQ3NTAvMEZBN0M2QjYyQTE5MTFFQjlDQUYyNjdFQzRGOUFFMDIvMTY4N0Y5NEEy QTFCMTFFQjk3QjkwQzgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnirAwDQYJKoZIhvcNAQELBQADggEBAFdkqYZMFFB0N8zt xyIi+gzgCbuHZKAoGUhCsECOtGz29RyeaqKHN02pw93vo/T8DJPkHHQjr9KXvyPX CCNF+O5Db37L2S7LxhcK95HxUI7+l5fCcusVwXFr6T/J/0j4K/Es8Sm5hEHO1D20 Osn3rPYyimKHwXrh+Ikf1kOTvAvP5eUbGCiWXFA8Lhy6D36RPCibsz2AQuZE/FKX i2nsDQ/uo097wWNjbCfNhBlN5xD898ZaokdXRRIMV2AL8hPygQ16mUGy/Tp4rMFa h7y/KXZVboDgmGYP/wDDsI2mcqijbmGJ2xEL3kxIvk+w6jNHRIdOvzC1scR85j4p SU2oFrA= -----END CERTIFICATE-----Generated at Mon Feb 17 08:02:14 2025 by rpki-client