$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/6E30D6B6BE7A11E99ADDFD75C4F9AE02.roa File: 6E30D6B6BE7A11E99ADDFD75C4F9AE02.roa (raw, json) Hash identifier: 6ziMLUDwR4XjDj0dTcooivNvkl4e8aoFTmI8x8LxIO4= Subject key identifier: 9D:A5:47:4F:49:B6:BC:7C:3A:5C:EC:9D:92:B1:E6:6E:69:5D:9A:05 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 34D6 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/6E30D6B6BE7A11E99ADDFD75C4F9AE02.roa Signing time: Fri 24 Jan 2025 16:02:45 +0000 ROA not before: Fri 24 Jan 2025 16:02:45 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 55684 IP address blocks: 103.23.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 15:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13526 (0x34d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214 Validity Not Before: Jan 24 16:02:45 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6793b9a4-af18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:11:1b:8a:36:e1:48:ae:ca:58:34:70:63:d3: 5c:34:81:a2:60:11:80:33:c6:e0:7a:00:a5:66:ad: 00:e5:19:f4:6b:cc:7e:e3:d3:cc:62:e1:23:f2:b1: 35:1f:95:80:71:25:60:e9:25:7d:b9:2e:7b:5c:c3: 5c:a6:55:34:be:ab:75:2b:28:ad:50:00:fc:6c:56: 67:5a:55:b1:e8:70:91:ef:57:bc:35:ff:70:e8:f0: 05:60:6c:3f:a3:2d:a2:e8:c2:65:ce:cf:53:6e:ae: 65:77:95:86:c9:01:54:41:02:66:32:10:9d:5a:ad: ad:f5:f5:0b:c2:2c:f7:9a:af:c6:d6:3c:a1:9a:90: 1e:11:97:b9:e6:47:08:22:bc:a5:14:8c:3a:3c:69: c9:42:33:19:a0:41:20:bd:10:ce:da:9f:bd:37:16: d4:fa:29:f8:e2:52:79:03:14:ca:58:c0:24:19:db: ae:5a:ba:ca:92:bc:3e:b1:57:19:95:47:4e:85:d3: 35:25:6e:e3:f9:e8:ba:ad:73:d7:a9:83:d9:9f:91: 32:99:35:5b:5a:b8:23:0f:b8:d2:88:a0:0d:24:fc: 86:90:69:0b:df:4e:f2:60:0f:27:71:b3:d4:e7:6f: a4:20:c9:89:ab:af:dd:bb:9b:b0:d2:6c:dc:d2:e1: a7:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:A5:47:4F:49:B6:BC:7C:3A:5C:EC:9D:92:B1:E6:6E:69:5D:9A:05 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/6E30D6B6BE7A11E99ADDFD75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.224.0/22 Signature Algorithm: sha256WithRSAEncryption a4:37:da:fa:cb:a2:db:21:10:31:37:3e:c3:05:33:d7:61:a3: 35:a6:c4:ed:88:e2:e2:dd:ca:2a:d3:58:b1:85:03:fe:cc:9b: 8a:e2:89:2c:3b:b2:77:8c:d0:7d:ad:e2:04:fa:87:52:3b:db: a2:a0:22:6e:22:ad:46:8a:c2:12:ca:d1:2a:ea:fb:0c:58:cf: 94:44:37:d2:5d:e3:12:9e:16:9c:2c:9a:80:97:62:d5:21:ea: 87:ab:ef:b7:ba:ef:47:78:33:ea:f3:99:24:04:26:11:ef:9b: 7c:7c:5c:df:f1:8d:cd:ee:65:b1:54:ed:b9:4e:53:6a:db:ed: f7:c5:30:6d:5b:d1:98:34:8c:be:47:51:eb:8b:91:ab:31:b0: 62:9f:a0:0d:33:8a:1c:0e:6d:8c:c7:f9:5b:14:9e:6d:15:95: 28:4c:b7:1f:d0:b5:39:c1:f1:eb:21:64:83:96:6e:d7:10:e0: 37:42:1c:71:85:a7:c3:74:51:2c:b3:34:e9:0b:df:d8:9b:bd: 82:28:cf:b1:28:52:0e:a8:a3:5f:db:7a:fe:a5:7f:d8:c1:e5: 4c:0e:22:89:a6:41:8e:e5:bb:77:17:46:75:6a:55:2f:81:1b: 32:ac:40:a8:95:7c:7d:b1:8a:87:3d:3c:90:b1:33:b3:b5:9e: 2e:3d:83:79 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjUwMTI0MTYwMjQ1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkzYjlhNC1hZjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxEbijbhSK7KWDRwY9NcNIGiYBGAM8bgegClZq0A5Rn0a8x+49PMYuEj8rE1 H5WAcSVg6SV9uS57XMNcplU0vqt1KyitUAD8bFZnWlWx6HCR71e8Nf9w6PAFYGw/ oy2i6MJlzs9Tbq5ld5WGyQFUQQJmMhCdWq2t9fULwiz3mq/G1jyhmpAeEZe55kcI IrylFIw6PGnJQjMZoEEgvRDO2p+9NxbU+in44lJ5AxTKWMAkGduuWrrKkrw+sVcZ lUdOhdM1JW7j+ei6rXPXqYPZn5EymTVbWrgjD7jSiKANJPyGkGkL307yYA8ncbPU 52+kIMmJq6/du5uw0mzc0uGnRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ2lR09J trx8OlzsnZKx5m5pXZoFMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvNkUzMEQ2QjZC RTdBMTFFOTlBRERGRDc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnF+AwDQYJKoZIhvcNAQELBQADggEBAKQ32vrLotshEDE3 PsMFM9dhozWmxO2I4uLdyirTWLGFA/7Mm4riiSw7sneM0H2t4gT6h1I726KgIm4i rUaKwhLK0Srq+wxYz5REN9Jd4xKeFpwsmoCXYtUh6oer77e670d4M+rzmSQEJhHv m3x8XN/xjc3uZbFU7blOU2rb7ffFMG1b0Zg0jL5HUeuLkasxsGKfoA0zihwObYzH +VsUnm0VlShMtx/QtTnB8eshZIOWbtcQ4DdCHHGFp8N0USyzNOkL39ibvYIoz7Eo Ug6oo1/bev6lf9jB5UwOIommQY7lu3cXRnVqVS+BGzKsQKiVfH2xioc9PJCxM7O1 ni49g3k= -----END CERTIFICATE-----Generated at Mon Apr 7 16:54:38 2025 by rpki-client