$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/4D609E86FF3B11EB910E8847C4F9AE02.roa File: 4D609E86FF3B11EB910E8847C4F9AE02.roa (raw, json) Hash identifier: IlNlaUUrIO5psWG9zVe/2cJLa9A72orRKr8ki0wRJ+c= Subject key identifier: A4:1E:CC:E8:89:56:20:44:29:00:44:3D:1C:E5:09:44:30:67:AF:93 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1CFE Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/4D609E86FF3B11EB910E8847C4F9AE02.roa Signing time: Tue 18 Feb 2025 16:43:41 +0000 ROA not before: Tue 18 Feb 2025 16:43:41 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 17767 IP address blocks: 103.81.184.0/22 maxlen: 22 202.144.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 16:09:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7422 (0x1cfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2 Validity Not Before: Feb 18 16:43:41 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67b4b8bd-c726 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:38:5c:e4:2c:11:3a:a4:e1:1a:89:34:e9:d0: fb:f9:87:e3:e0:e9:45:fc:e1:a5:6e:5d:5b:8f:aa: 17:15:38:53:44:20:55:c2:6f:87:11:22:63:7a:17: ad:56:29:9f:7f:91:15:15:44:58:d4:a0:82:4d:da: d5:27:73:06:d2:23:c4:aa:70:a3:56:16:0f:05:b0: a5:74:6a:8e:b3:1a:bb:26:79:45:80:c7:49:6d:51: 9c:95:90:66:c7:b5:21:e3:c5:31:1d:8e:bb:79:a0: c8:1f:65:e9:0e:4f:1a:75:21:18:b2:57:d3:f6:a5: e8:f6:ac:06:1e:17:12:0d:f5:b3:57:24:5f:81:18: 38:8e:7e:eb:1d:6b:6d:25:7a:81:3f:aa:58:a3:3d: 12:31:98:36:b5:ec:19:03:04:e1:b0:bd:60:16:e1: 92:88:95:4b:63:1f:8e:a9:7c:33:7f:ac:a6:53:57: 40:d6:a3:07:16:61:fe:a4:15:59:95:d3:df:85:0e: 5f:9a:90:14:bb:ee:d6:54:3c:56:5c:70:c0:8f:3d: 3f:b8:f4:0d:e0:62:fd:e1:10:c3:dc:31:ac:d5:84: 42:24:a6:05:ce:a3:8c:4d:83:2e:0a:f9:4a:b8:2d: 4d:3b:c2:66:6e:43:c5:a2:4e:73:f6:88:69:8f:be: bc:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:1E:CC:E8:89:56:20:44:29:00:44:3D:1C:E5:09:44:30:67:AF:93 X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/4D609E86FF3B11EB910E8847C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.81.184.0/22 202.144.196.0/22 Signature Algorithm: sha256WithRSAEncryption 02:d9:ca:83:d8:bf:50:f5:94:01:26:1d:17:6f:41:38:96:08: 56:c4:55:cf:97:e9:b5:e7:17:57:83:de:d5:47:cb:43:a6:42: 7b:66:74:0f:aa:df:73:fa:08:29:74:f7:72:dc:dd:56:22:de: dd:89:ff:e0:dd:46:b6:7a:82:21:84:7e:a6:30:9f:0e:f3:66: 0a:af:21:0c:e3:0f:23:30:b6:c8:79:a0:83:33:8b:df:2d:75: 3e:5c:e5:3e:90:98:23:8a:50:31:a3:a8:1c:fb:ce:1e:5e:6e: 50:55:6f:96:49:7f:2b:41:18:1c:41:32:83:69:bc:fa:43:98: 1a:7f:ed:75:7e:8f:9f:ce:0a:04:3c:a4:93:25:47:79:dd:e7: 12:20:2b:c9:d0:3a:d7:ab:f6:63:40:9f:9a:99:60:0b:c8:a0: 5d:fa:f0:06:a9:5f:10:27:c7:f8:ca:79:2e:e1:5a:32:c5:a4: 16:dc:b5:a4:b3:ec:7d:2a:ff:db:cf:2a:ae:51:a4:3f:35:78: 1a:51:23:6a:14:a4:ef:ef:ab:03:f2:76:bc:8b:b6:58:e8:74: ba:00:3b:1b:8c:d2:a7:af:dc:a5:e2:90:1a:5a:79:0b:78:d6: d3:81:81:ec:c1:28:4f:26:0f:94:49:d7:98:41:34:09:fc:3b: 42:29:e1:f0 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICHP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjUwMjE4MTY0MzQxWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I0YjhiZC1jNzI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwThc5CwROqThGok06dD7+Yfj4OlF/OGlbl1bj6oXFThTRCBVwm+HESJjehet Vimff5EVFURY1KCCTdrVJ3MG0iPEqnCjVhYPBbCldGqOsxq7JnlFgMdJbVGclZBm x7Uh48UxHY67eaDIH2XpDk8adSEYslfT9qXo9qwGHhcSDfWzVyRfgRg4jn7rHWtt JXqBP6pYoz0SMZg2tewZAwThsL1gFuGSiJVLYx+OqXwzf6ymU1dA1qMHFmH+pBVZ ldPfhQ5fmpAUu+7WVDxWXHDAjz0/uPQN4GL94RDD3DGs1YRCJKYFzqOMTYMuCvlK uC1NO8JmbkPFok5z9ohpj768rwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKQezOiJ ViBEKQBEPRzlCUQwZ6+TMB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RCRjIvRTM0NDUwMTZDMkY4MTFFNjk5N0FFQjZCQzRGOUFFMDIvNEQ2MDlFODZG RjNCMTFFQjkxMEU4ODQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnUbgDBALKkMQwDQYJKoZIhvcNAQELBQADggEBAALZyoPY v1D1lAEmHRdvQTiWCFbEVc+X6bXnF1eD3tVHy0OmQntmdA+q33P6CCl093Lc3VYi 3t2J/+DdRrZ6giGEfqYwnw7zZgqvIQzjDyMwtsh5oIMzi98tdT5c5T6QmCOKUDGj qBz7zh5eblBVb5ZJfytBGBxBMoNpvPpDmBp/7XV+j5/OCgQ8pJMlR3nd5xIgK8nQ Oter9mNAn5qZYAvIoF368AapXxAnx/jKeS7hWjLFpBbctaSz7H0q/9vPKq5RpD81 eBpRI2oUpO/vqwPydryLtljodLoAOxuM0qev3KXikBpaeQt41tOBgezBKE8mD5RJ 15hBNAn8O0Ip4fA= -----END CERTIFICATE-----Generated at Thu Mar 13 21:51:32 2025 by rpki-client