$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/3F9678DA78E811E79F549F43C4F9AE02.roa File: 3F9678DA78E811E79F549F43C4F9AE02.roa (raw, json) Hash identifier: WnVyFGdGh4nH1+BIoslG+uUUOp+ePN6X0FSgq3J9+n0= Subject key identifier: 0D:0C:31:9E:58:9B:1F:5F:70:72:B3:D2:46:32:8C:CD:E0:A0:2C:43 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 34B5 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/3F9678DA78E811E79F549F43C4F9AE02.roa Signing time: Fri 24 Jan 2025 16:02:14 +0000 ROA not before: Fri 24 Jan 2025 16:02:14 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 133339 IP address blocks: 103.225.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 15:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13493 (0x34b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214 Validity Not Before: Jan 24 16:02:14 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6793b986-5481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a7:13:12:1b:ef:93:29:20:74:47:1a:e1:fd: d6:e6:c8:14:33:8f:59:ed:7b:58:d3:23:fc:23:88: ad:a0:ba:a0:a3:86:e9:59:5a:e8:e4:44:55:38:8c: 31:bd:9f:8c:56:ab:ba:69:22:85:6f:d7:32:da:e0: 74:e8:e0:88:2f:02:bd:3b:bf:d0:85:3a:c5:76:4b: 81:bf:55:bb:60:d9:ac:e6:2a:83:b6:36:0c:6c:7c: fb:72:6f:5e:fa:6c:68:86:93:aa:d8:4e:7a:cd:93: 18:83:2c:53:76:c4:96:87:07:44:2c:cb:ca:4e:30: a0:be:3d:9b:1f:af:d6:be:b6:e3:76:4e:95:1d:db: 45:43:32:2a:50:93:d8:28:58:56:f7:55:fc:04:0b: 1f:16:e0:3a:96:53:b1:79:9c:55:26:39:38:12:d7: 45:35:f7:e2:97:58:81:e3:a9:0b:8e:0c:b3:27:af: 8b:91:85:d7:1f:a1:76:e0:a6:f4:58:be:be:69:cb: 28:e0:8a:ee:95:aa:18:77:60:9d:33:63:31:f6:4b: 5a:8c:c9:4f:7a:f5:b4:44:3b:95:ba:ce:40:8e:e6: 1b:00:5a:64:a7:39:09:ce:b8:1e:aa:ef:f1:95:cc: 82:37:60:16:9d:32:a8:46:3f:db:77:68:90:73:66: 49:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:0C:31:9E:58:9B:1F:5F:70:72:B3:D2:46:32:8C:CD:E0:A0:2C:43 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/3F9678DA78E811E79F549F43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.225.171.0/24 Signature Algorithm: sha256WithRSAEncryption 86:b0:fe:ed:19:75:f2:dc:6d:f8:cd:a4:42:93:5c:9c:10:78: c1:cc:0a:14:63:c0:a0:f8:1c:91:9a:ad:c6:18:5a:42:99:6f: be:47:1f:ce:95:6b:2a:ed:1e:78:22:47:d9:c3:60:2c:da:01: 8d:e4:3a:29:c2:a9:a3:d2:fb:99:14:97:fd:24:a7:06:c3:c6: 9f:f9:fa:b0:0a:58:ac:4f:f1:19:0e:8f:26:38:38:11:04:61: ea:2c:38:ef:b4:ed:8e:c1:96:05:f8:8d:1f:81:86:82:ad:b1: 0a:c0:ef:ea:29:cf:30:91:d6:35:33:eb:cd:37:e1:df:d2:6f: 18:9a:67:e9:a9:49:b8:f5:c4:cf:f0:bf:41:95:00:1a:53:12: 96:d2:db:0f:e1:73:5d:55:ba:b0:62:07:3f:69:59:e0:ea:5e: 5c:dd:ea:77:40:31:7a:86:b0:6f:ea:18:bf:37:13:95:7f:c8: 09:81:ca:2f:07:c2:95:1a:a9:17:85:68:df:97:8b:98:19:e8: f5:df:aa:f8:d8:50:2d:84:0e:a5:6a:2d:35:d5:af:78:20:ce: 96:61:5a:ab:ca:4d:b7:c6:9f:92:07:18:1a:0f:2f:af:42:31: f6:c1:55:85:e8:f7:2a:0a:28:04:96:e3:67:df:9d:fd:1f:8c: 9f:a4:ae:49 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjUwMTI0MTYwMjE0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkzYjk4Ni01NDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwacTEhvvkykgdEca4f3W5sgUM49Z7XtY0yP8I4itoLqgo4bpWVro5ERVOIwx vZ+MVqu6aSKFb9cy2uB06OCILwK9O7/QhTrFdkuBv1W7YNms5iqDtjYMbHz7cm9e +mxohpOq2E56zZMYgyxTdsSWhwdELMvKTjCgvj2bH6/Wvrbjdk6VHdtFQzIqUJPY KFhW91X8BAsfFuA6llOxeZxVJjk4EtdFNffil1iB46kLjgyzJ6+LkYXXH6F24Kb0 WL6+acso4IrulaoYd2CdM2Mx9ktajMlPevW0RDuVus5AjuYbAFpkpzkJzrgequ/x lcyCN2AWnTKoRj/bd2iQc2ZJkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFA0MMZ5Y mx9fcHKz0kYyjM3goCxDMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvM0Y5Njc4REE3 OEU4MTFFNzlGNTQ5RjQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn4aswDQYJKoZIhvcNAQELBQADggEBAIaw/u0ZdfLcbfjN pEKTXJwQeMHMChRjwKD4HJGarcYYWkKZb75HH86VayrtHngiR9nDYCzaAY3kOinC qaPS+5kUl/0kpwbDxp/5+rAKWKxP8RkOjyY4OBEEYeosOO+07Y7BlgX4jR+BhoKt sQrA7+opzzCR1jUz68034d/SbxiaZ+mpSbj1xM/wv0GVABpTEpbS2w/hc11VurBi Bz9pWeDqXlzd6ndAMXqGsG/qGL83E5V/yAmByi8HwpUaqReFaN+Xi5gZ6PXfqvjY UC2EDqVqLTXVr3ggzpZhWqvKTbfGn5IHGBoPL69CMfbBVYXo9yoKKASW42ffnf0f jJ+krkk= -----END CERTIFICATE-----Generated at Mon Apr 7 17:03:23 2025 by rpki-client