$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/A197DDE6BF2011E99B065B7DC4F9AE02.roa File: A197DDE6BF2011E99B065B7DC4F9AE02.roa (raw, json) Hash identifier: y3nJkKov+9nDSfAB9eiP5L2LmysH6Jg/joscc/qzkE0= Subject key identifier: 09:3F:8E:09:80:F4:84:59:FF:F1:0A:CF:30:18:1D:A9:2B:32:84:E9 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 34D7 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/A197DDE6BF2011E99B065B7DC4F9AE02.roa Signing time: Fri 24 Jan 2025 16:02:46 +0000 ROA not before: Fri 24 Jan 2025 16:02:46 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 55695 IP address blocks: 103.25.54.0/24 maxlen: 24 103.25.55.0/24 maxlen: 24 202.0.92.0/23 maxlen: 24 2405:2d40::/32 maxlen: 32 2405:2d40::/48 maxlen: 48 2405:2d40:1::/48 maxlen: 48 2405:2d40:2::/48 maxlen: 48 2405:2d40:11::/48 maxlen: 48 2405:2d40:12::/48 maxlen: 48 2405:2d40:13::/48 maxlen: 48 2405:2d40:14::/48 maxlen: 48 2405:2d40:15::/48 maxlen: 48 2405:2d40:16::/48 maxlen: 48 2405:2d40:17::/48 maxlen: 48 2405:2d40:18::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:38:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13527 (0x34d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214 Validity Not Before: Jan 24 16:02:46 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6793b9a5-496f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f8:62:ef:da:02:83:b5:21:da:a8:94:9c:73: 5b:79:89:8f:c2:71:4e:b5:b3:45:ab:8e:35:69:fd: c2:5c:6c:f0:12:c2:93:ba:00:4d:08:66:20:71:83: 44:3c:19:23:bd:0d:cb:98:8f:77:e5:3d:8b:6b:39: fa:8d:64:7c:60:14:cf:07:af:05:e8:1c:c9:69:6f: 31:f0:9c:ad:66:56:de:68:d3:cf:3a:c0:4e:e6:db: f1:64:17:3a:7f:f9:dd:62:00:7a:ed:03:fd:57:7b: 76:97:5a:24:cc:a2:be:c8:06:4c:19:51:d7:8c:05: 2f:78:b4:f8:94:b5:62:88:1f:62:bc:8d:34:04:ce: c7:52:07:b1:ae:0c:ff:9e:b8:df:c6:87:ed:85:87: d5:74:fc:00:c5:36:f1:da:03:8c:e6:b6:91:2a:22: f2:fd:ad:f7:5d:64:c9:ae:ad:39:f0:8a:b0:9e:10: e2:30:4a:f3:bf:39:17:9e:ee:9d:68:4a:c3:b2:9d: 3d:41:9a:ed:ea:d1:11:91:1c:32:e8:9e:0f:c8:04: 16:bb:25:a3:c3:11:40:9c:06:c3:86:04:df:57:b4: 6b:8b:33:75:06:99:a1:fd:11:60:80:63:8f:b3:4f: 5a:5c:c0:f8:c2:85:37:1f:56:4d:fd:fe:52:a0:c8: 0f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:3F:8E:09:80:F4:84:59:FF:F1:0A:CF:30:18:1D:A9:2B:32:84:E9 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/A197DDE6BF2011E99B065B7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.25.54.0/23 202.0.92.0/23 IPv6: 2405:2d40::/32 Signature Algorithm: sha256WithRSAEncryption b2:06:e8:91:0c:71:fe:e3:ee:42:9b:dc:6c:e5:4d:7d:f5:b0: 80:5f:cf:cb:fd:e4:4c:7e:31:2a:53:9f:cd:55:b7:e1:49:d4: 47:55:06:85:45:b4:ed:06:2b:46:6f:3f:7e:d3:b2:7d:2c:1c: 2c:bd:cc:90:96:8d:ee:9c:28:aa:35:74:72:27:4c:01:b1:3e: 46:39:96:d2:05:27:c1:53:ce:f7:0e:ac:2e:08:f2:39:91:24: bf:7f:9e:f4:6d:20:83:79:76:df:cc:51:cc:e8:2b:6d:c8:98: 7e:fe:be:a6:3d:11:8f:cc:13:dc:14:b2:49:74:c2:b8:21:9c: 6b:02:d5:9c:65:b3:06:75:d1:16:7a:7b:02:53:30:84:c9:8b: 64:59:34:59:b4:47:b5:8d:43:b8:50:55:d0:af:f1:22:1e:32: c3:d9:2b:a8:c1:b9:63:7a:2e:43:ff:3a:5f:29:13:ed:1a:4f: 83:9a:36:bb:14:34:a0:ab:31:3b:d5:4f:cd:bd:4b:27:b2:6e: 95:f9:c7:3c:12:33:34:48:82:a4:f6:b0:58:99:11:8d:8e:4f: c8:5e:a1:b7:5c:79:a8:06:fa:6d:80:68:78:a8:ac:29:65:d4: 91:6d:b6:93:fc:14:df:fc:07:b7:a4:de:45:7e:df:74:4f:7f: d6:fd:01:03 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICNNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjUwMTI0MTYwMjQ2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkzYjlhNS00OTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfhi79oCg7Uh2qiUnHNbeYmPwnFOtbNFq441af3CXGzwEsKTugBNCGYgcYNE PBkjvQ3LmI935T2Lazn6jWR8YBTPB68F6BzJaW8x8JytZlbeaNPPOsBO5tvxZBc6 f/ndYgB67QP9V3t2l1okzKK+yAZMGVHXjAUveLT4lLViiB9ivI00BM7HUgexrgz/ nrjfxofthYfVdPwAxTbx2gOM5raRKiLy/a33XWTJrq058IqwnhDiMErzvzkXnu6d aErDsp09QZrt6tERkRwy6J4PyAQWuyWjwxFAnAbDhgTfV7RrizN1Bpmh/RFggGOP s09aXMD4woU3H1ZN/f5SoMgPPwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFAk/jgmA 9IRZ//EKzzAYHakrMoTpMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvQTE5N0RERTZC RjIwMTFFOTlCMDY1QjdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnGTYDBAHKAFwwDQQCAAIwBwMFACQFLUAwDQYJKoZIhvcN AQELBQADggEBALIG6JEMcf7j7kKb3GzlTX31sIBfz8v95Ex+MSpTn81Vt+FJ1EdV BoVFtO0GK0ZvP37Tsn0sHCy9zJCWje6cKKo1dHInTAGxPkY5ltIFJ8FTzvcOrC4I 8jmRJL9/nvRtIIN5dt/MUczoK23ImH7+vqY9EY/ME9wUskl0wrghnGsC1ZxlswZ1 0RZ6ewJTMITJi2RZNFm0R7WNQ7hQVdCv8SIeMsPZK6jBuWN6LkP/Ol8pE+0aT4Oa NrsUNKCrMTvVT829SyeybpX5xzwSMzRIgqT2sFiZEY2OT8heobdceagG+m2AaHio rCll1JFttpP8FN/8B7ek3kV+33RPf9b9AQM= -----END CERTIFICATE-----Generated at Sun Apr 6 14:49:30 2025 by rpki-client