$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/CF257402276E11EEBE7B7B49C4F9AE02.roa File: CF257402276E11EEBE7B7B49C4F9AE02.roa (raw, json) Hash identifier: DfS1XhJ0VY2l1Vl6FaTOWiiwrvVb4J6NRESIx8xEXkI= Subject key identifier: 8B:FC:FC:8A:79:40:90:B0:C2:8F:F5:86:A4:02:C8:70:93:01:B5:56 Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0C6F Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/CF257402276E11EEBE7B7B49C4F9AE02.roa Signing time: Wed 12 Feb 2025 19:27:02 +0000 ROA not before: Wed 12 Feb 2025 19:27:02 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 135386 IP address blocks: 103.133.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3183 (0xc6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5 Validity Not Before: Feb 12 19:27:02 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67acf606-93c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:77:7f:6a:c2:95:2b:5f:1d:eb:31:b4:2f:f5: 04:9c:3d:ff:44:c6:73:29:4a:a3:99:79:83:39:47: e7:a3:88:34:7e:25:b4:fd:b0:8f:3c:de:73:dd:5f: cd:8d:da:bb:ec:de:a6:81:46:42:95:51:b7:e1:24: 6f:b7:1a:2c:38:10:2a:16:80:73:93:da:1a:02:4f: 84:fe:31:11:eb:3d:47:f7:96:a8:7f:75:79:39:76: 58:ff:db:c4:28:9b:78:e4:85:45:f4:88:a8:c6:c9: 17:e4:94:fe:28:f2:d3:09:7e:1b:f8:8d:55:0a:20: 7e:31:b0:1c:8d:b3:de:47:7d:5c:ef:93:02:5e:49: b4:7a:96:ae:a4:63:ca:8c:69:b6:0d:02:fa:2e:87: cd:c4:e2:59:c4:e8:14:2e:7c:83:06:2f:2c:06:ba: 1c:96:b0:7e:79:93:68:16:4d:fd:91:58:c3:28:19: a3:d4:db:6d:cb:8c:45:b6:2e:79:93:4f:c0:c0:c0: ef:4b:f1:e3:e2:e5:b9:ab:12:62:0b:d2:54:fe:86: ab:4a:6d:ef:e9:29:0a:6e:f8:11:16:ca:e4:2a:15: a8:9d:4f:8a:71:2a:7e:d4:ad:26:ed:d1:17:18:58: 45:8d:72:47:d2:de:81:4b:40:f4:d1:9a:f8:2e:23: 62:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:FC:FC:8A:79:40:90:B0:C2:8F:F5:86:A4:02:C8:70:93:01:B5:56 X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/CF257402276E11EEBE7B7B49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.92.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:8f:09:5b:ff:7d:32:a0:4c:2b:30:cc:63:2c:58:f9:02:7d: 6b:44:5d:51:60:a0:30:86:6c:e3:0f:63:ae:85:74:17:65:50: a2:a4:13:87:66:ac:9f:66:a8:bc:95:9c:34:23:51:cb:a3:f6: bb:e9:22:6f:7d:44:e1:c6:69:d3:f7:16:b9:1c:01:ee:a7:d5: 81:7c:d3:c6:6d:d9:94:2e:a1:eb:e2:a5:8e:81:fd:ad:cb:36: 15:52:cb:6c:85:35:12:c3:bb:c0:d3:42:3d:66:c5:0a:3e:93: 4e:1b:6a:26:2b:18:d8:a3:e7:d0:99:19:69:6d:05:55:56:21: 8e:e4:a3:51:7e:c1:35:9a:14:60:01:f6:3d:a9:b8:eb:cb:5e: 83:e3:fe:b1:d6:47:43:28:03:ff:ae:97:f0:03:19:df:48:f8: 64:41:31:8d:ad:c8:be:6f:d6:83:d0:9f:9c:0b:e3:64:63:af: 96:b8:4b:5e:60:26:36:16:93:67:c7:61:f2:8a:8f:23:19:84: 44:f2:40:08:03:37:9b:a9:ed:04:60:b8:fe:a1:c6:03:4d:fb: 4d:94:8e:a6:48:c0:4b:28:3e:d0:67:01:25:ab:e0:19:bf:ab: 73:b7:5e:e5:90:bd:6f:7d:16:08:c6:e8:5e:92:13:5e:f1:b6: 46:52:f3:e1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDG8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjUwMjEyMTkyNzAyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FjZjYwNi05M2M3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHd/asKVK18d6zG0L/UEnD3/RMZzKUqjmXmDOUfno4g0fiW0/bCPPN5z3V/N jdq77N6mgUZClVG34SRvtxosOBAqFoBzk9oaAk+E/jER6z1H95aof3V5OXZY/9vE KJt45IVF9IioxskX5JT+KPLTCX4b+I1VCiB+MbAcjbPeR31c75MCXkm0epaupGPK jGm2DQL6LofNxOJZxOgULnyDBi8sBroclrB+eZNoFk39kVjDKBmj1Ntty4xFti55 k0/AwMDvS/Hj4uW5qxJiC9JU/oarSm3v6SkKbvgRFsrkKhWonU+KcSp+1K0m7dEX GFhFjXJH0t6BS0D00Zr4LiNinQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIv8/Ip5 QJCwwo/1hqQCyHCTAbVWMB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzRFQjUvQUZFQTI5QzIwNjE5MTFFQTg1NEEzNTE2QzRGOUFFMDIvQ0YyNTc0MDIy NzZFMTFFRUJFN0I3QjQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnhVwwDQYJKoZIhvcNAQELBQADggEBAA2PCVv/fTKgTCsw zGMsWPkCfWtEXVFgoDCGbOMPY66FdBdlUKKkE4dmrJ9mqLyVnDQjUcuj9rvpIm99 ROHGadP3FrkcAe6n1YF808Zt2ZQuoevipY6B/a3LNhVSy2yFNRLDu8DTQj1mxQo+ k04baiYrGNij59CZGWltBVVWIY7ko1F+wTWaFGAB9j2puOvLXoPj/rHWR0MoA/+u l/ADGd9I+GRBMY2tyL5v1oPQn5wL42Rjr5a4S15gJjYWk2fHYfKKjyMZhETyQAgD N5up7QRguP6hxgNN+02UjqZIwEsoPtBnASWr4Bm/q3O3XuWQvW99FgjG6F6SE17x tkZS8+E= -----END CERTIFICATE-----Generated at Sat Apr 5 07:08:42 2025 by rpki-client