$ rpki-client -vvf rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/CE00DA34FF4411EBAD3A632AC4F9AE02.roa File: CE00DA34FF4411EBAD3A632AC4F9AE02.roa (raw, json) Hash identifier: gsNxtD+HCrA+T6b9YqONqQ4jv3lalAETh9MJihh24Cg= Subject key identifier: B4:7C:ED:3A:DB:F0:AC:C6:B8:BD:37:B6:DA:77:30:E8:58:5E:AA:DC Certificate issuer: /CN=A917584F/serialNumber=934ADFB94A39A0C37B77F97903706B61F0BEFEE7 Certificate serial: 04EB Authority key identifier: 93:4A:DF:B9:4A:39:A0:C3:7B:77:F9:79:03:70:6B:61:F0:BE:FE:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0rfuUo5oMN7d_l5A3BrYfC-_uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/CE00DA34FF4411EBAD3A632AC4F9AE02.roa Signing time: Thu 02 Jan 2025 23:22:51 +0000 ROA not before: Thu 02 Jan 2025 23:22:51 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 141004 IP address blocks: 103.159.84.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.crl rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0rfuUo5oMN7d_l5A3BrYfC-_uc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 23:12:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1259 (0x4eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917584F Validity Not Before: Jan 2 23:22:51 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67771fcb-0bb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e9:f1:2d:9c:e8:69:76:a6:14:b1:a4:5a:01: 98:68:e1:5c:01:ac:4e:ca:db:84:ee:32:a9:ec:8d: 36:44:cb:ab:58:ef:73:ad:73:74:f9:54:35:54:9b: 94:ab:f9:3e:c1:b9:a5:d3:3c:96:d6:11:90:b8:79: 86:14:0a:7f:19:6f:ae:22:8f:ea:66:00:98:e0:31: 6a:05:bf:dd:5e:f9:11:37:3f:ff:8f:f8:58:84:ea: b9:f0:7a:89:69:6a:a7:04:af:8e:69:08:12:33:fe: 47:b9:53:a2:be:67:a1:dd:a6:b9:86:88:62:e6:ae: 94:75:00:51:2b:15:b2:91:39:20:ae:3e:7d:26:fb: cb:91:c0:8e:1b:f2:16:84:11:a2:e0:72:42:a4:60: 22:56:eb:7e:9a:b9:7e:c9:6a:6d:64:e9:5b:0c:fa: 78:0b:3c:b0:3e:34:dc:aa:66:20:a9:16:4c:79:1c: c0:45:79:94:81:ce:a9:0c:1c:16:fc:93:3f:0a:8c: dd:a9:ea:c0:38:fa:e5:eb:73:bb:09:92:5c:ec:8a: 21:7d:51:bb:ff:17:51:8a:05:a1:c0:d0:7d:1f:84: cc:85:fa:db:39:db:41:6b:b3:ce:08:a1:e9:1d:99: c4:1a:8c:bd:bb:5f:9a:2a:e4:44:80:52:0b:38:3e: 35:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:7C:ED:3A:DB:F0:AC:C6:B8:BD:37:B6:DA:77:30:E8:58:5E:AA:DC X509v3 Authority Key Identifier: keyid:93:4A:DF:B9:4A:39:A0:C3:7B:77:F9:79:03:70:6B:61:F0:BE:FE:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0rfuUo5oMN7d_l5A3BrYfC-_uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/CE00DA34FF4411EBAD3A632AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.84.0/23 Signature Algorithm: sha256WithRSAEncryption 86:ce:15:82:66:f5:b1:72:08:0b:30:94:62:f4:9e:88:b8:ee: fc:3d:3e:fe:ec:12:78:8b:54:32:ce:ea:a0:8d:48:42:39:44: 82:14:d4:66:5f:04:43:dc:75:44:57:ff:38:da:1d:82:00:b0: 9a:91:36:b0:42:1d:42:61:96:97:78:16:b7:12:66:eb:40:16: 13:ba:55:db:b9:e0:20:70:43:ed:70:f6:9f:c9:23:98:fa:a4: 3a:eb:62:3b:f7:48:23:93:0b:60:10:b8:05:2e:42:0a:d7:73: d6:23:bf:4c:ef:c7:4d:b0:22:ed:1a:35:ca:e7:e0:92:d4:b8: 4e:3d:4f:8c:6a:7a:a5:f7:dd:c2:ed:7a:8b:f3:28:30:df:d1: 00:5d:57:3b:7e:86:7e:ee:d4:96:1b:fc:33:4d:1a:be:2d:41: ab:c1:aa:28:42:7c:08:bb:78:45:21:2c:d2:9c:f9:7a:5a:72: e3:44:8b:9a:53:01:f2:37:4a:e1:82:79:45:80:9f:2c:84:57: dc:7b:11:1f:02:26:c9:3a:a5:fd:9e:51:36:af:11:e5:94:d5: fb:85:ac:b0:1e:78:b4:25:cd:e1:8e:6f:7c:e7:61:98:09:19: b9:98:ec:9c:6b:42:90:94:50:a0:ea:ba:d0:2b:04:5f:3c:23: fb:d0:fe:4e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4NEYxMTAvBgNVBAUTKDkzNEFERkI5NEEzOUEwQzM3Qjc3Rjk3OTAzNzA2QjYx RjBCRUZFRTcwHhcNMjUwMTAyMjMyMjUxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc3MWZjYi0wYmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArenxLZzoaXamFLGkWgGYaOFcAaxOytuE7jKp7I02RMurWO9zrXN0+VQ1VJuU q/k+wbml0zyW1hGQuHmGFAp/GW+uIo/qZgCY4DFqBb/dXvkRNz//j/hYhOq58HqJ aWqnBK+OaQgSM/5HuVOivmeh3aa5hohi5q6UdQBRKxWykTkgrj59JvvLkcCOG/IW hBGi4HJCpGAiVut+mrl+yWptZOlbDPp4CzywPjTcqmYgqRZMeRzARXmUgc6pDBwW /JM/CozdqerAOPrl63O7CZJc7IohfVG7/xdRigWhwNB9H4TMhfrbOdtBa7POCKHp HZnEGoy9u1+aKuREgFILOD41NQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLR87Trb 8KzGuL03ttp3MOhYXqrcMB8GA1UdIwQYMBaAFJNK37lKOaDDe3f5eQNwa2Hwvv7n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTg0Ri9ERDcyQ0U1OEY5 QzkxMUVCOTU1NUIzNkFDNEY5QUUwMi9rMHJmdVVvNW9NTjdkX2w1QTNCcllmQy1f dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2swcmZ1VW81b01ON2RfbDVBM0JyWWZDLV91Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU4NEYvREQ3MkNFNThGOUM5MTFFQjk1NTVCMzZBQzRGOUFFMDIvQ0UwMERBMzRG RjQ0MTFFQkFEM0E2MzJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnn1QwDQYJKoZIhvcNAQELBQADggEBAIbOFYJm9bFyCAsw lGL0noi47vw9Pv7sEniLVDLO6qCNSEI5RIIU1GZfBEPcdURX/zjaHYIAsJqRNrBC HUJhlpd4FrcSZutAFhO6Vdu54CBwQ+1w9p/JI5j6pDrrYjv3SCOTC2AQuAUuQgrX c9Yjv0zvx02wIu0aNcrn4JLUuE49T4xqeqX33cLteovzKDDf0QBdVzt+hn7u1JYb /DNNGr4tQavBqihCfAi7eEUhLNKc+XpacuNEi5pTAfI3SuGCeUWAnyyEV9x7ER8C Jsk6pf2eUTavEeWU1fuFrLAeeLQlzeGOb3znYZgJGbmY7JxrQpCUUKDqutArBF88 I/vQ/k4= -----END CERTIFICATE-----Generated at Thu Mar 13 21:49:46 2025 by rpki-client