$ rpki-client -vvf rpki.apnic.net/member_repository/A9184F2D/CFBED370D94D11EBBE5D312FC4F9AE02/E90DFC9CF00111EFB541185CC4F9AE02.roa File: E90DFC9CF00111EFB541185CC4F9AE02.roa (raw, json) Hash identifier: CMdVu1oYZTMNZUCHeOb59Qk8iVAIlI8om8iW1SQX+7k= Subject key identifier: CB:5E:88:67:3C:8D:0B:61:B1:9E:3F:9A:94:44:C7:FE:B8:AC:4A:22 Certificate issuer: /CN=A9184F2D/serialNumber=70F85D0495013856AD022CC0922969E0C8FC45E2 Certificate serial: 055A Authority key identifier: 70:F8:5D:04:95:01:38:56:AD:02:2C:C0:92:29:69:E0:C8:FC:45:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cPhdBJUBOFatAizAkilp4Mj8ReI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9184F2D/CFBED370D94D11EBBE5D312FC4F9AE02/E90DFC9CF00111EFB541185CC4F9AE02.roa Signing time: Fri 21 Feb 2025 03:14:07 +0000 ROA not before: Fri 21 Feb 2025 03:14:07 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 396982 IP address blocks: 103.166.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9184F2D/CFBED370D94D11EBBE5D312FC4F9AE02/cPhdBJUBOFatAizAkilp4Mj8ReI.crl rsync://rpki.apnic.net/member_repository/A9184F2D/CFBED370D94D11EBBE5D312FC4F9AE02/cPhdBJUBOFatAizAkilp4Mj8ReI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cPhdBJUBOFatAizAkilp4Mj8ReI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 23:37:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1370 (0x55a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9184F2D Validity Not Before: Feb 21 03:14:07 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67b7ef7f-d53b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:81:da:02:dc:16:cf:0d:90:f1:fe:65:11:7c: 81:41:92:fd:41:61:de:94:bf:c0:fd:cb:5b:22:9a: b1:3b:47:7a:db:ac:01:15:cc:cb:60:74:36:7b:6e: ee:03:43:31:71:c2:80:73:36:08:91:b4:89:98:5c: d2:86:fc:41:a5:79:d2:bb:69:dc:12:87:2d:22:d8: f2:31:1c:05:8d:55:38:57:39:45:cc:50:30:ee:74: a1:91:30:63:d6:0a:49:d6:96:6d:91:ad:4d:d1:5a: b9:ac:f0:8c:79:a8:23:01:28:4f:84:ef:a1:1f:9f: 1a:44:77:e8:a9:15:8b:30:08:ae:18:bd:d0:fd:e0: 9a:db:2a:f5:74:eb:92:e7:a2:d4:6a:ec:9e:9c:38: c9:67:d2:d1:94:d3:c8:04:48:e8:28:91:07:4a:a4: a7:73:12:c3:b6:2f:e5:6f:ad:c8:e3:a7:e2:08:9c: 1a:5b:48:c1:ed:d0:6c:dc:98:e7:f2:e7:e6:2c:69: 42:76:8f:84:52:ac:ee:f0:c6:b6:b6:d4:76:c0:5e: 66:89:3f:84:94:e4:0a:49:37:73:50:ab:27:e4:d5: 3d:cc:8b:f6:31:7c:78:81:7f:ee:e2:2f:c8:57:fe: 2c:a2:b8:fb:27:ac:0c:b0:c9:dc:5a:8c:a5:95:9f: 1b:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:5E:88:67:3C:8D:0B:61:B1:9E:3F:9A:94:44:C7:FE:B8:AC:4A:22 X509v3 Authority Key Identifier: keyid:70:F8:5D:04:95:01:38:56:AD:02:2C:C0:92:29:69:E0:C8:FC:45:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9184F2D/CFBED370D94D11EBBE5D312FC4F9AE02/cPhdBJUBOFatAizAkilp4Mj8ReI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cPhdBJUBOFatAizAkilp4Mj8ReI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9184F2D/CFBED370D94D11EBBE5D312FC4F9AE02/E90DFC9CF00111EFB541185CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.60.0/24 Signature Algorithm: sha256WithRSAEncryption 27:c4:2b:dd:e6:cf:77:6f:e8:6a:63:7a:bb:71:f4:d7:0a:38: 60:b0:b0:ef:1b:39:86:4c:e2:44:d9:8f:f0:01:41:6a:5d:e5: 2f:1c:66:4b:4e:78:4d:c1:d9:b4:9c:42:6f:c7:eb:3c:28:f4: e8:bc:ea:5a:86:c0:a0:7d:cd:21:ae:4a:13:b2:87:68:ea:f6: 91:9a:3b:5d:6d:a2:19:ef:ae:bf:d9:58:db:db:79:18:cf:24: 8d:49:12:40:e1:e4:d5:8d:8a:5b:fc:97:03:6e:4a:1a:9a:4c: 78:bb:4d:cb:11:09:9b:d9:cf:e0:9d:46:5b:42:23:82:b5:2c: cf:be:4d:66:69:d3:0d:c4:e5:9f:86:b1:f3:8e:c3:4b:78:f7: 89:01:6a:23:00:b4:9f:4e:ef:94:74:a4:18:85:5c:10:87:0a: cf:17:8c:e9:3b:c2:ad:47:2e:d1:c2:0a:13:9d:16:e8:22:1a: d5:48:38:78:99:e5:a5:00:6d:3b:28:02:03:81:c5:f5:bc:83: ec:99:f4:d2:bf:8a:33:03:2d:c6:f4:a3:27:c4:92:14:f1:9b: ff:e3:cb:e7:91:52:16:9f:3c:a0:b5:ff:7b:b5:8d:6f:68:a0: 30:e1:0a:60:f9:d9:22:26:de:88:40:cd:2a:e2:e5:82:53:59: 20:2a:e6:07 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODRGMkQxMTAvBgNVBAUTKDcwRjg1RDA0OTUwMTM4NTZBRDAyMkNDMDkyMjk2OUUw QzhGQzQ1RTIwHhcNMjUwMjIxMDMxNDA3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I3ZWY3Zi1kNTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoHaAtwWzw2Q8f5lEXyBQZL9QWHelL/A/ctbIpqxO0d626wBFczLYHQ2e27u A0MxccKAczYIkbSJmFzShvxBpXnSu2ncEoctItjyMRwFjVU4VzlFzFAw7nShkTBj 1gpJ1pZtka1N0Vq5rPCMeagjAShPhO+hH58aRHfoqRWLMAiuGL3Q/eCa2yr1dOuS 56LUauyenDjJZ9LRlNPIBEjoKJEHSqSncxLDti/lb63I46fiCJwaW0jB7dBs3Jjn 8ufmLGlCdo+EUqzu8Ma2ttR2wF5miT+ElOQKSTdzUKsn5NU9zIv2MXx4gX/u4i/I V/4sorj7J6wMsMncWoyllZ8bnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMteiGc8 jQthsZ4/mpREx/64rEoiMB8GA1UdIwQYMBaAFHD4XQSVAThWrQIswJIpaeDI/EXi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NEYyRC9DRkJFRDM3MEQ5 NEQxMUVCQkU1RDMxMkZDNEY5QUUwMi9jUGhkQkpVQk9GYXRBaXpBa2lscDRNajhS ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NQaGRCSlVCT0ZhdEFpekFraWxwNE1qOFJlSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODRGMkQvQ0ZCRUQzNzBEOTREMTFFQkJFNUQzMTJGQzRGOUFFMDIvRTkwREZDOUNG MDAxMTFFRkI1NDExODVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnpjwwDQYJKoZIhvcNAQELBQADggEBACfEK93mz3dv6Gpj ertx9NcKOGCwsO8bOYZM4kTZj/ABQWpd5S8cZktOeE3B2bScQm/H6zwo9Oi86lqG wKB9zSGuShOyh2jq9pGaO11tohnvrr/ZWNvbeRjPJI1JEkDh5NWNilv8lwNuShqa THi7TcsRCZvZz+CdRltCI4K1LM++TWZp0w3E5Z+GsfOOw0t494kBaiMAtJ9O75R0 pBiFXBCHCs8XjOk7wq1HLtHCChOdFugiGtVIOHiZ5aUAbTsoAgOBxfW8g+yZ9NK/ ijMDLcb0oyfEkhTxm//jy+eRUhafPKC1/3u1jW9ooDDhCmD52SIm3ohAzSri5YJT WSAq5gc= -----END CERTIFICATE-----Generated at Fri Apr 4 21:51:28 2025 by rpki-client