$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/7D281FE0CAF911E9912CF92FC4F9AE02.roa File: 7D281FE0CAF911E9912CF92FC4F9AE02.roa (raw, json) Hash identifier: 0jRu1Q749u0XB4exazW+ZBlH5vm1gyXDoRwoNde6qEk= Subject key identifier: 9F:2C:99:7C:D5:E7:EF:83:51:1E:04:CB:44:4D:F7:6D:21:51:F0:63 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 34C0 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/7D281FE0CAF911E9912CF92FC4F9AE02.roa Signing time: Fri 24 Jan 2025 16:02:24 +0000 ROA not before: Fri 24 Jan 2025 16:02:24 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 136841 IP address blocks: 103.100.27.0/24 maxlen: 24 103.100.172.0/24 maxlen: 24 103.100.173.0/24 maxlen: 24 103.100.174.0/24 maxlen: 24 103.100.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13504 (0x34c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214 Validity Not Before: Jan 24 16:02:24 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6793b990-e01b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:20:9c:22:4c:f7:d3:5a:09:fc:a7:8f:5a:1f: ec:d9:f6:52:2f:3a:64:4b:06:04:6b:ee:80:91:15: 45:d0:98:e7:5c:e2:5d:d6:9b:f3:0c:05:7c:cf:b9: 3d:31:69:55:a5:71:b2:db:b3:ba:05:2b:67:7a:6f: 1f:51:33:fe:11:aa:c0:3b:3d:43:21:c0:19:ae:27: 13:1b:8d:e1:99:6d:b5:f9:b7:fd:34:a2:16:93:4d: 48:2a:ea:71:33:bf:0f:f3:b0:5c:e5:89:33:17:5e: 40:87:e2:4b:fa:ce:ac:53:98:af:5f:90:2c:04:36: e0:7a:38:13:da:86:1e:81:12:de:8a:13:5b:9c:0f: e9:7e:7d:54:77:04:74:f4:aa:82:4f:77:8d:65:8b: 65:1b:74:88:12:9a:88:51:ca:b1:45:89:86:34:b6: 34:29:bb:e4:19:c1:86:99:53:29:22:cc:e4:23:cb: 31:9f:16:e9:01:e4:b6:7d:fb:70:ab:d0:4e:8c:ec: 40:90:5c:bb:bc:96:dd:e3:86:1c:38:2a:de:64:3e: ac:1c:d8:03:09:c0:f1:9f:ec:dd:7a:04:a8:62:e0: f1:c8:b9:a7:f2:05:17:4e:ff:72:f9:e7:b6:69:a6: c2:45:d4:c9:ac:c3:a1:4e:41:49:b3:0d:9e:80:62: 51:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:2C:99:7C:D5:E7:EF:83:51:1E:04:CB:44:4D:F7:6D:21:51:F0:63 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/7D281FE0CAF911E9912CF92FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.27.0/24 103.100.172.0/22 Signature Algorithm: sha256WithRSAEncryption 33:ff:36:89:2d:13:cf:f0:ab:a3:70:86:1e:b8:69:3e:0c:12: 0d:df:a7:da:53:56:25:61:80:f2:6a:d0:95:fb:21:48:76:68: 13:88:bd:47:e2:56:db:29:95:98:db:93:16:55:cb:55:2e:eb: ba:4c:8e:22:b9:8b:a9:c8:63:ae:fe:42:2b:23:54:2d:87:ba: 68:18:fd:39:56:dd:90:15:88:8a:18:e8:a4:2a:a8:d2:d7:c8: e9:4d:09:07:87:dc:03:04:98:5d:60:25:5f:c8:7b:00:a9:1f: 2c:67:9b:45:81:ea:b9:a2:63:bb:e8:1e:bb:8a:1a:0c:2a:a9: 2d:a4:70:6a:51:ae:24:54:ca:84:a0:55:df:11:93:a7:09:08: 3f:5a:41:d3:7d:32:4b:ef:f6:62:6f:56:36:07:15:d8:9c:f8: 56:69:cc:b4:d8:d4:72:37:d7:bc:3a:4f:c0:5d:01:b1:3d:18: 8d:c1:1d:f8:e7:ae:27:8b:97:b9:56:32:19:78:22:d3:7e:d1: 2c:7f:42:ee:88:bc:92:8b:3b:4a:00:06:14:a9:00:45:d1:77: e6:cf:93:35:0f:8b:5a:d5:a6:8a:7c:68:35:49:02:42:aa:9e: 32:56:53:02:3b:49:e3:3f:c0:72:57:2a:3e:68:09:1d:14:dd: 56:38:ed:71 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjUwMTI0MTYwMjI0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkzYjk5MC1lMDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1CCcIkz301oJ/KePWh/s2fZSLzpkSwYEa+6AkRVF0JjnXOJd1pvzDAV8z7k9 MWlVpXGy27O6BStnem8fUTP+EarAOz1DIcAZricTG43hmW21+bf9NKIWk01IKupx M78P87Bc5YkzF15Ah+JL+s6sU5ivX5AsBDbgejgT2oYegRLeihNbnA/pfn1UdwR0 9KqCT3eNZYtlG3SIEpqIUcqxRYmGNLY0KbvkGcGGmVMpIszkI8sxnxbpAeS2fftw q9BOjOxAkFy7vJbd44YcOCreZD6sHNgDCcDxn+zdegSoYuDxyLmn8gUXTv9y+ee2 aabCRdTJrMOhTkFJsw2egGJRXwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJ8smXzV 5++DUR4Ey0RN920hUfBjMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvN0QyODFGRTBD QUY5MTFFOTkxMkNGOTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnZBsDBAJnZKwwDQYJKoZIhvcNAQELBQADggEBADP/Nokt E8/wq6Nwhh64aT4MEg3fp9pTViVhgPJq0JX7IUh2aBOIvUfiVtsplZjbkxZVy1Uu 67pMjiK5i6nIY67+QisjVC2HumgY/TlW3ZAViIoY6KQqqNLXyOlNCQeH3AMEmF1g JV/IewCpHyxnm0WB6rmiY7voHruKGgwqqS2kcGpRriRUyoSgVd8Rk6cJCD9aQdN9 Mkvv9mJvVjYHFdic+FZpzLTY1HI317w6T8BdAbE9GI3BHfjnrieLl7lWMhl4ItN+ 0Sx/Qu6IvJKLO0oABhSpAEXRd+bPkzUPi1rVpop8aDVJAkKqnjJWUwI7SeM/wHJX Kj5oCR0U3VY47XE= -----END CERTIFICATE-----Generated at Sun Feb 16 22:00:27 2025 by rpki-client