$ rpki-client -vvf rpki.apnic.net/member_repository/A9172C8D/9A11086469BA11EABC0BD863C4F9AE02/CDD96B60B78911EF9BD3EF80C4F9AE02.roa File: CDD96B60B78911EF9BD3EF80C4F9AE02.roa (raw, json) Hash identifier: sDoqH+F903pEZfTL5CZCahrin5P/dPEPc5OIr03Af9w= Subject key identifier: 7D:4C:CE:7C:87:6F:34:BE:01:FF:98:62:65:9C:54:A5:E0:2C:3A:E4 Certificate issuer: /CN=A9172C8D/serialNumber=E714A81497C8177868CBB4CDB338C3EF6CE9E953 Certificate serial: 09F3 Authority key identifier: E7:14:A8:14:97:C8:17:78:68:CB:B4:CD:B3:38:C3:EF:6C:E9:E9:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xSoFJfIF3hoy7TNszjD72zp6VM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172C8D/9A11086469BA11EABC0BD863C4F9AE02/CDD96B60B78911EF9BD3EF80C4F9AE02.roa Signing time: Wed 11 Dec 2024 06:33:16 +0000 ROA not before: Wed 11 Dec 2024 06:33:16 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 150371 IP address blocks: 103.102.158.0/24 maxlen: 24 103.102.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172C8D/9A11086469BA11EABC0BD863C4F9AE02/5xSoFJfIF3hoy7TNszjD72zp6VM.crl rsync://rpki.apnic.net/member_repository/A9172C8D/9A11086469BA11EABC0BD863C4F9AE02/5xSoFJfIF3hoy7TNszjD72zp6VM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xSoFJfIF3hoy7TNszjD72zp6VM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 19:35:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2547 (0x9f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172C8D Validity Not Before: Dec 11 06:33:16 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6759322c-0193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:03:f9:ed:7b:fc:87:27:65:a8:1b:6d:1c:04: a2:52:d4:ca:f0:fe:ac:91:aa:ca:9d:30:da:43:12: 6d:02:28:39:ab:81:35:be:b1:be:44:6b:17:60:6e: 15:6a:6f:e0:32:11:c6:3f:6c:bc:d8:c7:5f:51:47: 04:51:9d:b5:7a:17:b7:a8:0f:15:6a:74:2f:b1:96: f8:d8:eb:dd:4b:0e:52:b9:65:7a:59:9a:66:f9:36: e4:fc:1f:9c:bb:c7:31:74:c0:ae:e0:ae:af:1d:f4: 57:ff:0c:f3:83:6f:1a:29:c2:62:f0:19:db:c3:48: ae:2e:f4:89:54:5b:c4:38:cf:ba:26:29:ad:61:dd: ba:2f:f8:bc:c6:90:8f:38:47:39:e5:c8:8b:c6:a8: f4:bc:cd:f6:d3:d0:fb:e1:55:e4:3a:a9:0d:33:ae: 6c:73:1e:59:df:09:4a:3e:dc:7e:e3:1e:38:4e:17: 00:28:d0:97:8b:1d:1c:c3:61:8f:56:62:48:4b:99: 34:f5:dd:9d:29:da:cf:fd:b5:f2:65:7a:c3:e0:b1: 82:e1:db:21:28:83:1f:2f:ad:ca:1f:7f:7c:a5:6e: 26:e3:8f:8e:df:69:2a:08:02:e2:00:43:e4:2c:01: 4b:c9:c8:22:c3:7a:cb:06:b7:5d:69:a0:b9:e7:08: ac:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:4C:CE:7C:87:6F:34:BE:01:FF:98:62:65:9C:54:A5:E0:2C:3A:E4 X509v3 Authority Key Identifier: keyid:E7:14:A8:14:97:C8:17:78:68:CB:B4:CD:B3:38:C3:EF:6C:E9:E9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172C8D/9A11086469BA11EABC0BD863C4F9AE02/5xSoFJfIF3hoy7TNszjD72zp6VM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5xSoFJfIF3hoy7TNszjD72zp6VM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172C8D/9A11086469BA11EABC0BD863C4F9AE02/CDD96B60B78911EF9BD3EF80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.158.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:cd:f4:05:a4:d5:cf:4b:d1:6e:3b:fc:b8:52:57:15:b6:be: 4c:fb:33:89:4c:09:7e:1c:3a:30:ca:53:cd:25:b5:85:72:03: ce:37:27:f3:cb:d9:d9:d6:9d:08:7b:72:49:00:a4:6b:e1:65: 12:f6:f9:3d:86:0e:9b:07:11:1c:ad:83:9b:7f:db:54:00:e3: c0:80:52:04:0d:1c:23:26:bf:d7:02:82:e1:a4:1e:e4:08:5a: 86:0c:d6:68:2b:bc:5e:da:0c:d4:58:ed:4f:49:1c:b4:55:a6: 3d:24:70:2b:45:1a:8a:ee:eb:14:b1:02:f5:08:45:2b:18:21: 5c:1c:54:f5:3f:65:c0:df:df:ec:0c:aa:2f:17:35:eb:af:fc: 20:80:62:06:b7:6d:b9:00:42:af:e9:79:d6:68:3a:c6:e0:90: 3b:f7:9d:6b:66:a2:d1:49:88:c3:52:2b:1c:0e:d5:e2:88:7c: 64:50:3e:75:f0:3a:2b:ce:a4:b6:66:89:56:f8:c2:78:b5:2c: 00:98:67:3d:23:d5:db:c8:5f:91:0a:5e:d4:3d:6d:ef:e1:89: a6:a8:76:90:b7:10:dd:1a:54:3e:4b:fd:0c:d1:00:03:ee:fd: a4:16:8a:ff:ba:11:d0:07:23:07:fa:7e:12:cd:2f:e6:09:08: dc:2f:ea:c3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDOEQxMTAvBgNVBAUTKEU3MTRBODE0OTdDODE3Nzg2OENCQjRDREIzMzhDM0VG NkNFOUU5NTMwHhcNMjQxMjExMDYzMzE2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU5MzIyYy0wMTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQP57Xv8hydlqBttHASiUtTK8P6skarKnTDaQxJtAig5q4E1vrG+RGsXYG4V am/gMhHGP2y82MdfUUcEUZ21ehe3qA8VanQvsZb42OvdSw5SuWV6WZpm+Tbk/B+c u8cxdMCu4K6vHfRX/wzzg28aKcJi8Bnbw0iuLvSJVFvEOM+6JimtYd26L/i8xpCP OEc55ciLxqj0vM3209D74VXkOqkNM65scx5Z3wlKPtx+4x44ThcAKNCXix0cw2GP VmJIS5k09d2dKdrP/bXyZXrD4LGC4dshKIMfL63KH398pW4m44+O32kqCALiAEPk LAFLycgiw3rLBrddaaC55wisiQIDAQABo4IClTCCApEwHQYDVR0OBBYEFH1MznyH bzS+Af+YYmWcVKXgLDrkMB8GA1UdIwQYMBaAFOcUqBSXyBd4aMu0zbM4w+9s6elT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkM4RC85QTExMDg2NDY5 QkExMUVBQkMwQkQ4NjNDNEY5QUUwMi81eFNvRkpmSUYzaG95N1ROc3pqRDcyenA2 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV4U29GSmZJRjNob3k3VE5zempENzJ6cDZWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJDOEQvOUExMTA4NjQ2OUJBMTFFQUJDMEJEODYzQzRGOUFFMDIvQ0REOTZCNjBC Nzg5MTFFRjlCRDNFRjgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnZp4wDQYJKoZIhvcNAQELBQADggEBAA/N9AWk1c9L0W47 /LhSVxW2vkz7M4lMCX4cOjDKU80ltYVyA843J/PL2dnWnQh7ckkApGvhZRL2+T2G DpsHERytg5t/21QA48CAUgQNHCMmv9cCguGkHuQIWoYM1mgrvF7aDNRY7U9JHLRV pj0kcCtFGoru6xSxAvUIRSsYIVwcVPU/ZcDf3+wMqi8XNeuv/CCAYga3bbkAQq/p edZoOsbgkDv3nWtmotFJiMNSKxwO1eKIfGRQPnXwOivOpLZmiVb4wni1LACYZz0j 1dvIX5EKXtQ9be/hiaaodpC3EN0aVD5L/QzRAAPu/aQWiv+6EdAHIwf6fhLNL+YJ CNwv6sM= -----END CERTIFICATE-----Generated at Thu Mar 13 06:35:37 2025 by rpki-client