$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/FDA3EFA45C6211EB91658215C4F9AE02.roa File: FDA3EFA45C6211EB91658215C4F9AE02.roa (raw, json) Hash identifier: Fb/SlWPpuirXxScQ8K2j3QvFK2QuAZBQm5YwL5xNiGw= Subject key identifier: E2:43:1E:C2:04:D8:D8:D2:E1:FF:1E:76:0C:2B:8C:0A:DB:B2:AF:22 Certificate issuer: /CN=A9171A1B/serialNumber=4C349C51CA598907D5C07CB1F24851FC048DAD1A Certificate serial: 0684 Authority key identifier: 4C:34:9C:51:CA:59:89:07:D5:C0:7C:B1:F2:48:51:FC:04:8D:AD:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDScUcpZiQfVwHyx8khR_ASNrRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/FDA3EFA45C6211EB91658215C4F9AE02.roa Signing time: Mon 02 Dec 2024 22:31:36 +0000 ROA not before: Mon 02 Dec 2024 22:31:36 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 14618 IP address blocks: 103.124.134.0/24 maxlen: 24 103.124.135.0/24 maxlen: 24 2403:e040:8000::/34 maxlen: 34 2403:e040:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/TDScUcpZiQfVwHyx8khR_ASNrRo.crl rsync://rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/TDScUcpZiQfVwHyx8khR_ASNrRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDScUcpZiQfVwHyx8khR_ASNrRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1668 (0x684) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A1B Validity Not Before: Dec 2 22:31:36 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674e3548-9f50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:d7:10:18:c0:b7:92:f2:9c:36:85:ca:15:9f: 00:8a:f1:c4:16:78:41:9d:66:99:d3:78:35:f3:95: ca:bc:86:e4:6b:17:ad:c8:14:77:bc:0f:03:a5:b8: ea:1b:cf:74:e4:fa:e6:a8:ff:7c:f1:74:b5:0a:a0: 3a:9c:3a:cc:ea:6c:82:83:11:af:d9:70:73:c4:7c: 2a:fe:a9:fa:b7:90:90:54:17:79:f3:3f:7c:66:7d: be:03:43:45:99:25:9d:1b:f3:cf:9d:df:97:eb:83: f0:b9:9e:78:23:59:22:18:b1:80:94:ca:c9:2e:fd: 31:df:80:65:64:51:e0:c9:24:6b:3d:5a:85:cc:e3: fd:40:49:89:b7:93:34:1b:c8:f7:01:35:46:fc:f5: 3f:98:06:06:f6:08:3f:f6:34:5c:67:00:06:b5:4a: 7e:bf:9c:e2:a7:1d:0a:95:35:5f:15:8f:39:b2:f0: cc:91:8b:42:36:e5:9e:28:e0:f4:1e:99:cc:c0:ea: 4a:9e:e0:59:2b:60:27:71:86:d6:d4:9c:d7:a3:f2: 07:9f:a6:4f:c4:f9:ac:5a:97:0e:d5:bc:21:25:bd: 37:a9:2f:ec:9f:b5:45:a1:8c:a9:d4:d7:8e:b0:01: a0:43:0a:11:14:16:65:74:79:af:a4:fe:e4:87:7f: ee:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:43:1E:C2:04:D8:D8:D2:E1:FF:1E:76:0C:2B:8C:0A:DB:B2:AF:22 X509v3 Authority Key Identifier: keyid:4C:34:9C:51:CA:59:89:07:D5:C0:7C:B1:F2:48:51:FC:04:8D:AD:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/TDScUcpZiQfVwHyx8khR_ASNrRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TDScUcpZiQfVwHyx8khR_ASNrRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A1B/DC58CC5A5C4111EB81D7C60BC4F9AE02/FDA3EFA45C6211EB91658215C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.134.0/23 IPv6: 2403:e040:8000::/33 Signature Algorithm: sha256WithRSAEncryption c1:c6:0b:be:a7:ed:1c:c4:d1:4b:8f:70:f5:37:17:c9:39:66: ac:41:b1:8d:be:79:c1:9e:db:2a:00:76:4e:2f:53:7f:f5:c3: 1c:5e:2b:39:c2:60:b9:9a:a6:e9:ae:55:4b:91:d7:b8:8a:35: a8:97:8e:16:bd:b5:88:46:80:b1:52:6d:b5:fa:83:c7:f4:83: 85:40:a3:87:7e:a6:65:85:d1:fd:ba:47:17:07:42:22:c9:e6: b2:d7:c0:c9:9c:46:35:de:3c:15:ae:8b:4e:2a:14:31:77:95: e6:e9:2a:31:61:fd:0e:46:c8:00:ca:26:76:fd:d7:b2:c7:fc: 5f:a1:a1:39:e4:8f:fd:c2:6f:77:72:63:34:07:f1:79:04:50: f9:6a:aa:ea:e8:da:3a:52:3a:9a:6b:3d:48:b0:a9:8f:a9:63: a7:37:c7:53:bc:52:2d:85:13:12:a2:2c:c3:0c:66:63:5d:b8: e5:4c:4f:96:57:41:7c:79:a1:72:61:90:0e:7f:f1:58:d4:e7: a5:61:b9:d5:3d:e7:a8:dc:61:e7:1e:ed:09:13:fb:a6:75:62: 54:a0:cf:2e:8e:36:30:27:f6:42:2c:b7:cf:1f:8d:e2:d8:59: 9f:f8:c8:a1:03:4c:18:5b:17:88:ac:17:66:f2:1d:ba:7e:b7: ae:dc:ec:6b -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICBoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBMUIxMTAvBgNVBAUTKDRDMzQ5QzUxQ0E1OTg5MDdENUMwN0NCMUYyNDg1MUZD MDQ4REFEMUEwHhcNMjQxMjAyMjIzMTM2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRlMzU0OC05ZjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3NcQGMC3kvKcNoXKFZ8AivHEFnhBnWaZ03g185XKvIbkaxetyBR3vA8Dpbjq G8905PrmqP988XS1CqA6nDrM6myCgxGv2XBzxHwq/qn6t5CQVBd58z98Zn2+A0NF mSWdG/PPnd+X64PwuZ54I1kiGLGAlMrJLv0x34BlZFHgySRrPVqFzOP9QEmJt5M0 G8j3ATVG/PU/mAYG9gg/9jRcZwAGtUp+v5zipx0KlTVfFY85svDMkYtCNuWeKOD0 HpnMwOpKnuBZK2AncYbW1JzXo/IHn6ZPxPmsWpcO1bwhJb03qS/sn7VFoYyp1NeO sAGgQwoRFBZldHmvpP7kh3/uWwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFOJDHsIE 2NjS4f8edgwrjArbsq8iMB8GA1UdIwQYMBaAFEw0nFHKWYkH1cB8sfJIUfwEja0a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUExQi9EQzU4Q0M1QTVD NDExMUVCODFEN0M2MEJDNEY5QUUwMi9URFNjVWNwWmlRZlZ3SHl4OGtoUl9BU05y Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1REU2NVY3BaaVFmVndIeXg4a2hSX0FTTnJSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFBMUIvREM1OENDNUE1QzQxMTFFQjgxRDdDNjBCQzRGOUFFMDIvRkRBM0VGQTQ1 QzYyMTFFQjkxNjU4MjE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBAFnfIYwDgQCAAIwCAMGByQD4ECAMA0GCSqGSIb3DQEBCwUA A4IBAQDBxgu+p+0cxNFLj3D1NxfJOWasQbGNvnnBntsqAHZOL1N/9cMcXis5wmC5 mqbprlVLkde4ijWol44WvbWIRoCxUm21+oPH9IOFQKOHfqZlhdH9ukcXB0Iiyeay 18DJnEY13jwVrotOKhQxd5Xm6SoxYf0ORsgAyiZ2/deyx/xfoaE55I/9wm93cmM0 B/F5BFD5aqrq6No6Ujqaaz1IsKmPqWOnN8dTvFIthRMSoizDDGZjXbjlTE+WV0F8 eaFyYZAOf/FY1OelYbnVPeeo3GHnHu0JE/umdWJUoM8ujjYwJ/ZCLLfPH43i2Fmf +MihA0wYWxeIrBdm8h26freu3Oxr -----END CERTIFICATE-----Generated at Sun Feb 16 15:30:27 2025 by rpki-client