$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/6C1DC926C3E111E9A0172583C4F9AE02.roa File: 6C1DC926C3E111E9A0172583C4F9AE02.roa (raw, json) Hash identifier: Y9YreMnj4c/Gmbs8JYt4xiAjkQnraU6hVdNLY4y3pHE= Subject key identifier: D2:CC:27:4A:AC:33:5A:47:6D:52:5C:72:A4:15:B1:EF:C7:F5:3C:70 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 34C5 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/6C1DC926C3E111E9A0172583C4F9AE02.roa Signing time: Fri 24 Jan 2025 16:02:28 +0000 ROA not before: Fri 24 Jan 2025 16:02:28 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 24211 IP address blocks: 103.49.220.0/22 maxlen: 22 103.49.220.0/23 maxlen: 23 103.49.222.0/23 maxlen: 23 203.190.240.0/21 maxlen: 21 203.190.244.0/23 maxlen: 23 203.190.246.0/23 maxlen: 23 2402:a000::/32 maxlen: 32 2402:a000::/48 maxlen: 48 2402:a000:fffe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 15:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13509 (0x34c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214 Validity Not Before: Jan 24 16:02:28 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6793b994-939b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:06:bd:c1:9e:d3:ed:b5:f0:05:7e:73:22:95: e6:e3:d3:3e:7b:5d:56:fd:b8:93:d0:52:c6:cf:f8: 1f:0b:1f:be:6c:b0:1e:e5:65:12:f6:da:03:7c:9f: ef:22:d9:20:d6:66:2f:01:e8:9d:c3:3b:a9:2a:3f: d3:de:a0:e4:1b:74:77:26:37:b7:c7:49:ef:3f:56: 90:5e:39:97:1c:3b:91:24:d1:2a:0c:a5:88:d1:fe: bf:6a:ae:b7:da:3e:b6:d1:2c:da:49:2c:70:ad:18: 84:18:6a:d4:a6:3b:12:5f:9c:c3:44:b2:28:a1:06: 0d:34:a5:63:fb:51:ba:70:bb:7d:77:17:ee:9a:3d: 70:a1:6c:aa:fa:c5:ff:f1:1d:3c:7d:7d:64:e4:1e: e6:20:57:e3:44:48:84:4d:fd:c3:96:d7:9b:a2:b9: dd:16:a1:70:a8:0d:c3:c0:3f:df:90:ab:ea:76:ef: b9:d6:f5:92:f0:c2:3a:ec:51:39:c6:14:b8:fc:88: 10:ca:eb:e5:b2:42:28:cd:fa:b6:ff:2b:63:a2:7b: 38:5c:16:9a:da:f6:81:e9:4d:bf:4c:f3:78:aa:f7: 88:0d:ef:15:69:f1:24:d5:05:96:d6:65:5c:bf:7b: d4:42:44:17:5c:b7:3c:ab:0a:69:84:cf:f8:07:75: 3c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:CC:27:4A:AC:33:5A:47:6D:52:5C:72:A4:15:B1:EF:C7:F5:3C:70 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/6C1DC926C3E111E9A0172583C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.49.220.0/22 203.190.240.0/21 IPv6: 2402:a000::/32 Signature Algorithm: sha256WithRSAEncryption 45:33:45:25:51:64:6e:1e:48:74:fe:2b:64:17:f9:04:c4:82: 3f:b4:59:cd:27:03:df:f7:69:e5:18:6a:28:5c:3d:50:81:41: 80:8c:2f:fc:fc:fc:c5:aa:46:66:48:3b:54:22:cd:a0:87:58: 7c:0d:04:17:1f:93:5f:57:9f:31:fb:0a:a1:b1:84:10:6c:90: 91:53:35:e6:8d:cd:7d:b2:4e:30:1e:0d:f9:0a:13:92:a2:49: 05:6f:d7:b6:e8:85:8e:91:52:81:bc:ed:ca:12:b2:d9:29:f8: 9f:f9:59:2c:c8:8c:e2:b4:d8:86:ba:64:1c:ac:b0:77:ca:c6: dc:16:e4:c9:3d:7b:26:63:5e:23:28:ef:a6:d5:a2:51:9a:26: ac:70:f6:d3:c5:f9:20:02:77:50:6d:11:25:a6:16:d3:04:6e: 86:1c:2c:86:a1:92:8b:e5:ea:ed:81:67:9b:53:b3:30:05:ce: 25:4a:98:98:52:e8:f0:23:d2:f3:4d:8d:14:d9:96:de:86:41: 56:84:fb:c2:79:be:32:5c:7a:91:9c:f4:04:04:d4:73:f9:60: db:df:83:be:ee:14:fe:5d:07:62:9d:bb:76:aa:70:ce:93:3b: 1a:ac:da:6d:30:73:0e:58:56:77:cc:15:55:b5:b1:ac:a7:d3: 35:86:11:a7 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICNMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjUwMTI0MTYwMjI4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkzYjk5NC05MzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvga9wZ7T7bXwBX5zIpXm49M+e11W/biT0FLGz/gfCx++bLAe5WUS9toDfJ/v Itkg1mYvAeidwzupKj/T3qDkG3R3Jje3x0nvP1aQXjmXHDuRJNEqDKWI0f6/aq63 2j620SzaSSxwrRiEGGrUpjsSX5zDRLIooQYNNKVj+1G6cLt9dxfumj1woWyq+sX/ 8R08fX1k5B7mIFfjREiETf3DlteborndFqFwqA3DwD/fkKvqdu+51vWS8MI67FE5 xhS4/IgQyuvlskIozfq2/ytjons4XBaa2vaB6U2/TPN4qveIDe8VafEk1QWW1mVc v3vUQkQXXLc8qwpphM/4B3U84wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFNLMJ0qs M1pHbVJccqQVse/H9TxwMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvNkMxREM5MjZD M0UxMTFFOUEwMTcyNTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnMdwDBAPLvvAwDQQCAAIwBwMFACQCoAAwDQYJKoZIhvcN AQELBQADggEBAEUzRSVRZG4eSHT+K2QX+QTEgj+0Wc0nA9/3aeUYaihcPVCBQYCM L/z8/MWqRmZIO1QizaCHWHwNBBcfk19XnzH7CqGxhBBskJFTNeaNzX2yTjAeDfkK E5KiSQVv17bohY6RUoG87coSstkp+J/5WSzIjOK02Ia6ZByssHfKxtwW5Mk9eyZj XiMo76bVolGaJqxw9tPF+SACd1BtESWmFtMEboYcLIahkovl6u2BZ5tTszAFziVK mJhS6PAj0vNNjRTZlt6GQVaE+8J5vjJcepGc9AQE1HP5YNvfg77uFP5dB2Kdu3aq cM6TOxqs2m0wcw5YVnfMFVW1sayn0zWGEac= -----END CERTIFICATE-----Generated at Mon Apr 7 17:03:39 2025 by rpki-client