$ rpki-client -vvf rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/24D8D69CADAE11EBB6E7565AC4F9AE02.roa File: 24D8D69CADAE11EBB6E7565AC4F9AE02.roa (raw, json) Hash identifier: g8Lb40zN9J+dX+baJw4w7wBfRZECh6tNIBDlZG3Davc= Subject key identifier: 46:4D:BB:B2:FC:06:B7:21:A5:AD:EA:55:37:4F:74:E8:34:6C:05:1D Certificate issuer: /CN=A9173DB5/serialNumber=47EC53BFDD351320E89B2C541BACDD4D8D52A0B3 Certificate serial: 0668 Authority key identifier: 47:EC:53:BF:DD:35:13:20:E8:9B:2C:54:1B:AC:DD:4D:8D:52:A0:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/24D8D69CADAE11EBB6E7565AC4F9AE02.roa Signing time: Sat 31 May 2025 23:11:45 +0000 ROA not before: Sat 31 May 2025 23:11:45 +0000 ROA not after: Wed 01 Oct 2025 00:00:00 +0000 asID: 64063 IP address blocks: 103.164.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.crl rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 22:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1640 (0x668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173DB5, serialNumber=47EC53BFDD351320E89B2C541BACDD4D8D52A0B3 Validity Not Before: May 31 23:11:45 2025 GMT Not After : Oct 1 00:00:00 2025 GMT Subject: CN=683b8cb0-1497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:79:54:b2:0a:82:c1:c1:70:45:12:0d:eb:a1: 56:02:db:b6:9e:a4:a5:ff:9c:eb:e2:9a:ec:3c:49: 8b:d9:4c:87:06:a2:f5:29:2f:16:c7:56:f1:d1:2b: f1:1e:c1:e1:63:c5:26:a1:35:e8:c0:ca:56:13:f3: 83:be:28:c6:7f:ed:f2:64:e1:ca:d4:16:87:b3:eb: b2:a3:23:f0:d0:0c:78:23:f8:04:aa:f0:fc:a4:50: c5:a8:dd:e8:1b:ab:3c:70:76:81:4d:f2:e1:85:e3: 71:38:c3:3b:ad:8e:28:6f:30:3f:6f:79:77:71:7b: 1f:f6:fd:d3:99:b7:32:6d:17:7f:2b:2f:06:04:5c: 37:19:60:d9:14:64:da:a8:6d:af:d5:d2:be:10:c2: fa:cf:99:cf:b3:90:d2:af:fe:83:6f:44:79:dc:0e: cc:9b:a5:3e:b0:2f:24:4f:11:e8:b7:89:1e:dd:3f: 28:5e:ea:24:52:43:6a:75:10:25:03:ac:71:d3:12: c5:ef:4f:c1:5e:39:d6:25:cd:78:b9:2f:d2:56:aa: b5:07:d8:80:61:54:6a:3b:77:a0:dd:c6:8c:05:56: 81:b5:ee:38:a9:88:d9:7a:51:4a:4a:46:58:a3:14: bb:32:6e:9e:3e:67:a9:8e:ca:e1:eb:fb:dc:ff:ee: a0:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:4D:BB:B2:FC:06:B7:21:A5:AD:EA:55:37:4F:74:E8:34:6C:05:1D X509v3 Authority Key Identifier: keyid:47:EC:53:BF:DD:35:13:20:E8:9B:2C:54:1B:AC:DD:4D:8D:52:A0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/24D8D69CADAE11EBB6E7565AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.164.254.0/24 Signature Algorithm: sha256WithRSAEncryption 19:bd:d6:cd:74:c7:4c:31:97:40:0c:2c:97:0f:a4:1c:29:4c: dc:18:36:e1:a5:2b:69:cd:e6:93:d4:66:e1:df:b3:b8:c8:f7: d1:8f:d4:a2:ea:fb:77:e1:b4:08:c9:63:af:67:4c:a9:98:ee: 65:2d:9e:37:fb:d1:3f:4b:af:73:70:ed:ec:91:38:36:ef:ee: 07:ec:14:c4:e5:a7:79:6a:47:85:e3:98:1a:c3:72:c2:3a:fe: 5d:3f:73:37:96:f9:e9:20:fc:71:64:86:27:b2:a9:bb:6b:ba: 36:da:20:5a:98:00:f8:df:ab:34:f3:95:9a:22:aa:80:fc:df: ca:2c:fe:f2:d4:38:32:2d:12:6d:94:2b:27:7d:8b:2e:e2:fd: cf:87:39:8f:f7:6f:15:38:d9:d8:3e:aa:6f:18:dc:45:bf:7f: e6:6f:e5:5f:31:2f:56:ed:63:12:b5:93:25:fd:14:07:e1:81: f8:da:58:f3:8e:9f:23:69:fd:44:6d:64:f7:a0:37:e5:8c:e2: de:bc:3c:17:a6:be:1b:23:19:28:b3:d7:6e:f6:50:56:25:ad: 46:57:4b:a3:a8:f4:29:0c:0c:15:93:df:b9:a2:03:e1:80:d5: be:34:2f:4a:e8:f4:b6:e3:50:b7:ae:27:0e:39:94:6c:38:c4: 64:8d:36:7b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNEQjUxMTAvBgNVBAUTKDQ3RUM1M0JGREQzNTEzMjBFODlCMkM1NDFCQUNERDRE OEQ1MkEwQjMwHhcNMjUwNTMxMjMxMTQ1WhcNMjUxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNiOGNiMC0xNDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1nlUsgqCwcFwRRIN66FWAtu2nqSl/5zr4prsPEmL2UyHBqL1KS8Wx1bx0Svx HsHhY8UmoTXowMpWE/ODvijGf+3yZOHK1BaHs+uyoyPw0Ax4I/gEqvD8pFDFqN3o G6s8cHaBTfLhheNxOMM7rY4obzA/b3l3cXsf9v3TmbcybRd/Ky8GBFw3GWDZFGTa qG2v1dK+EML6z5nPs5DSr/6Db0R53A7Mm6U+sC8kTxHot4ke3T8oXuokUkNqdRAl A6xx0xLF70/BXjnWJc14uS/SVqq1B9iAYVRqO3eg3caMBVaBte44qYjZelFKSkZY oxS7Mm6ePmepjsrh6/vc/+6gAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEZNu7L8 Brchpa3qVTdPdOg0bAUdMB8GA1UdIwQYMBaAFEfsU7/dNRMg6JssVBus3U2NUqCz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0RCNS8wQzk5OUVDMDhG QTExMUVCQTIyMDY2MUVDNEY5QUUwMi9SLXhUdjkwMUV5RG9teXhVRzZ6ZFRZMVNv TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IteFR2OTAxRXlEb215eFVHNnpkVFkxU29MTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNEQjUvMEM5OTlFQzA4RkExMTFFQkEyMjA2NjFFQzRGOUFFMDIvMjREOEQ2OUNB REFFMTFFQkI2RTc1NjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnpP4wDQYJKoZIhvcNAQELBQADggEBABm91s10x0wxl0AM LJcPpBwpTNwYNuGlK2nN5pPUZuHfs7jI99GP1KLq+3fhtAjJY69nTKmY7mUtnjf7 0T9Lr3Nw7eyRODbv7gfsFMTlp3lqR4XjmBrDcsI6/l0/czeW+ekg/HFkhieyqbtr ujbaIFqYAPjfqzTzlZoiqoD838os/vLUODItEm2UKyd9iy7i/c+HOY/3bxU42dg+ qm8Y3EW/f+Zv5V8xL1btYxK1kyX9FAfhgfjaWPOOnyNp/URtZPegN+WM4t68PBem vhsjGSiz1272UFYlrUZXS6Oo9CkMDBWT37miA+GA1b40L0ro9LbjULeuJw45lGw4 xGSNNns= -----END CERTIFICATE-----Generated at Thu Jun 5 19:57:46 2025 by rpki-client