$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/8F34BFAADF7E11EF9F3F8268C4F9AE02.roa File: 8F34BFAADF7E11EF9F3F8268C4F9AE02.roa (raw, json) Hash identifier: SmDboYhKwuZzIbakrz2sFj299ozGSUzEkefc5ZQryT4= Subject key identifier: 0D:80:74:57:BF:09:E9:00:02:6F:50:C8:9E:E0:AB:9D:96:84:15:7D Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 34E2 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/8F34BFAADF7E11EF9F3F8268C4F9AE02.roa Signing time: Fri 31 Jan 2025 02:53:33 +0000 ROA not before: Fri 31 Jan 2025 02:53:33 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 36352 IP address blocks: 103.120.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Feb 2025 15:51:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13538 (0x34e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214 Validity Not Before: Jan 31 02:53:33 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=679c3b2d-d200 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:b9:18:4f:eb:e2:38:c7:62:49:93:fa:de:fa: 1d:42:ac:73:ff:c0:75:c1:a9:c6:b7:47:93:f4:ef: a9:ad:8c:93:45:a1:55:9c:6f:44:5d:0c:00:fa:04: 6c:03:8b:88:a7:38:a6:03:4f:c2:d0:1b:a9:c8:0b: bb:ed:70:8b:6b:1f:d4:4e:3b:1e:d2:f7:04:37:56: c5:be:b4:19:88:55:7c:37:4d:0f:7a:a9:19:29:2e: 05:66:57:24:67:02:89:05:aa:ea:ae:b9:6c:6e:3d: c3:20:02:0f:3e:04:bf:1c:cd:20:33:ea:25:ab:a0: a6:4c:d5:7a:2f:c0:a7:a4:d5:22:3b:5e:a8:68:75: f6:06:df:e2:6d:13:ca:15:97:0b:44:6e:83:72:da: 83:7c:f0:93:3a:d5:5b:e8:d9:13:64:dd:8d:af:f3: 3d:43:5c:cd:6c:1e:ba:f8:01:90:af:2c:5d:19:ea: 0c:e4:73:ff:d0:e0:11:d4:28:4f:d3:2e:b8:e8:6f: 42:74:48:0d:da:03:41:d3:7c:3c:d3:3b:0e:70:db: 3f:75:9c:ae:2e:1a:54:a6:cb:44:4f:3e:16:59:78: 02:20:48:da:22:fc:a9:52:d8:bf:28:94:37:b2:ee: 36:76:c3:b5:26:05:96:27:21:28:ed:15:5c:b3:49: 00:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:80:74:57:BF:09:E9:00:02:6F:50:C8:9E:E0:AB:9D:96:84:15:7D X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/8F34BFAADF7E11EF9F3F8268C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.204.0/24 Signature Algorithm: sha256WithRSAEncryption 38:92:22:c2:92:74:3d:bd:98:f3:7b:ce:d3:e1:df:2d:93:02: d9:45:55:3c:67:e5:3f:85:08:ac:ed:09:b1:56:9c:4d:c2:21: e0:91:30:1a:09:7d:01:0c:95:ba:14:9c:87:02:30:6c:b7:50: a7:74:d1:15:53:83:28:f4:73:2f:67:12:f7:f5:97:32:41:bd: b0:a8:4b:e7:0a:f2:b6:2d:08:1d:79:50:bc:49:4d:e7:02:48: 0c:e3:5e:a2:92:46:18:92:b2:76:51:7d:9c:51:05:cd:a6:23: e2:70:9b:12:06:42:28:71:79:0f:15:24:c0:6f:9c:ce:c1:1c: 3b:6d:57:2e:29:8e:4e:7e:2c:ba:f6:2f:a1:dc:fc:21:19:1f: b5:f1:a9:b5:60:b4:24:7c:55:df:c4:a8:36:ef:46:4d:78:df: c1:43:6a:e7:74:75:d1:f1:e2:6a:86:81:dc:ff:55:52:c5:de: bb:78:6e:e4:6a:80:15:e0:3e:b4:d4:ab:91:a6:95:c0:0a:04: e7:26:c9:ff:a3:ee:d1:fb:78:e9:73:99:e5:8a:38:df:07:1c: a1:5a:23:16:d2:f0:05:ab:5b:46:b5:0f:1a:ef:03:6d:67:2d: 85:51:31:2d:e6:06:90:9a:01:e8:3a:23:06:f8:44:bb:e5:6b: 34:58:2b:5b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjUwMTMxMDI1MzMzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzljM2IyZC1kMjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk7kYT+viOMdiSZP63vodQqxz/8B1wanGt0eT9O+prYyTRaFVnG9EXQwA+gRs A4uIpzimA0/C0BupyAu77XCLax/UTjse0vcEN1bFvrQZiFV8N00PeqkZKS4FZlck ZwKJBarqrrlsbj3DIAIPPgS/HM0gM+olq6CmTNV6L8CnpNUiO16oaHX2Bt/ibRPK FZcLRG6DctqDfPCTOtVb6NkTZN2Nr/M9Q1zNbB66+AGQryxdGeoM5HP/0OAR1ChP 0y646G9CdEgN2gNB03w80zsOcNs/dZyuLhpUpstETz4WWXgCIEjaIvypUti/KJQ3 su42dsO1JgWWJyEo7RVcs0kAUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFA2AdFe/ CekAAm9QyJ7gq52WhBV9MB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvOEYzNEJGQUFE RjdFMTFFRjlGM0Y4MjY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABneMwwDQYJKoZIhvcNAQELBQADggEBADiSIsKSdD29mPN7 ztPh3y2TAtlFVTxn5T+FCKztCbFWnE3CIeCRMBoJfQEMlboUnIcCMGy3UKd00RVT gyj0cy9nEvf1lzJBvbCoS+cK8rYtCB15ULxJTecCSAzjXqKSRhiSsnZRfZxRBc2m I+JwmxIGQihxeQ8VJMBvnM7BHDttVy4pjk5+LLr2L6Hc/CEZH7XxqbVgtCR8Vd/E qDbvRk1438FDaud0ddHx4mqGgdz/VVLF3rt4buRqgBXgPrTUq5GmlcAKBOcmyf+j 7tH7eOlzmeWKON8HHKFaIxbS8AWrW0a1DxrvA21nLYVRMS3mBpCaAeg6Iwb4RLvl azRYK1s= -----END CERTIFICATE-----Generated at Wed Feb 19 22:43:52 2025 by rpki-client