$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/C0681BF2CF4911EF8531B085C4F9AE02.roa File: C0681BF2CF4911EF8531B085C4F9AE02.roa (raw, json) Hash identifier: 1+LvjWYI9J8a4Eg8H2uslKbRbyLwQqWNXS1h5+rfIco= Subject key identifier: DE:F8:D8:64:2C:F8:04:78:67:AA:7D:6A:7D:7C:F1:FE:3E:3B:6C:EA Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 066F Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/C0681BF2CF4911EF8531B085C4F9AE02.roa Signing time: Fri 10 Jan 2025 11:55:14 +0000 ROA not before: Fri 10 Jan 2025 11:55:14 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 932 IP address blocks: 103.244.88.0/22 maxlen: 24 116.206.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1647 (0x66f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D Validity Not Before: Jan 10 11:55:14 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67810aa2-b0d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8e:43:7e:ca:97:d4:ce:da:61:e8:6e:4b:82: 4d:60:ba:12:94:ec:4d:37:11:8c:57:37:de:43:97: 24:b5:50:f0:a6:71:40:9d:8b:01:be:c9:55:de:6a: 50:7e:26:9f:01:33:6f:c2:d9:5c:37:96:00:54:43: 4f:88:de:46:c9:0d:c3:b9:26:86:0c:51:f8:0c:c1: 54:a9:85:6e:c7:aa:07:2c:89:0e:18:0c:e6:92:51: 8e:8b:4a:b2:60:41:0b:97:91:f0:f9:c1:b5:03:89: 15:fc:28:05:1a:13:62:3e:8c:88:13:d6:96:c4:42: 4d:49:da:9f:6f:73:6e:19:57:a6:f7:c8:b5:3a:13: 10:fc:b6:e1:e4:28:c4:15:ee:03:2d:8f:6a:0a:45: df:98:20:d0:f8:a9:60:b3:23:d6:1c:b2:26:ce:c9: c5:5e:99:57:5f:8e:6b:b3:60:4f:e7:28:66:73:ae: 0b:10:b0:34:f7:61:88:5d:10:d0:50:6e:3c:07:21: 33:07:a4:69:4a:fc:78:c4:ac:a8:9e:4e:77:cb:13: 35:54:d3:83:9f:90:a8:8d:14:79:77:ac:af:b4:ab: 44:0a:38:1e:31:91:f3:68:8c:20:a8:c4:be:59:3a: 11:b8:51:71:62:ab:db:1b:4b:f2:a5:8a:10:5e:97: 0b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:F8:D8:64:2C:F8:04:78:67:AA:7D:6A:7D:7C:F1:FE:3E:3B:6C:EA X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/C0681BF2CF4911EF8531B085C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.244.88.0/22 116.206.176.0/22 Signature Algorithm: sha256WithRSAEncryption af:dc:1f:f9:5a:fe:db:a4:2f:00:7a:4e:75:b9:50:28:cc:1f: b1:34:69:e2:67:e8:a7:f8:8a:76:d6:e0:9a:2e:a6:57:26:40: af:b8:e1:b5:ff:58:95:5e:92:8b:19:a6:6f:5a:84:54:bb:4a: fa:93:f1:bd:6f:a3:00:75:f8:12:29:90:25:cf:88:6d:c1:80: b7:98:c9:76:ea:a1:af:83:38:6c:8e:e9:1f:ae:e3:0c:b6:a6: 44:eb:fe:21:17:1a:65:f1:b1:3d:13:c5:e9:c6:b9:61:18:32: bf:71:7c:40:94:8b:55:d2:2a:c2:73:a6:5a:d6:aa:1a:81:b5: 59:d3:29:19:6b:7a:28:f4:0d:9a:fb:e5:f0:ed:20:8b:77:b4: 1f:48:ac:6e:3c:70:f1:a6:56:4e:fe:83:ea:8b:93:47:7d:f9: d9:1e:53:9b:f2:e6:d1:a2:bd:38:c6:69:6d:29:b8:15:32:e2: 08:fd:17:82:5b:77:b2:47:90:c9:2f:d0:a5:5f:ca:f5:9f:7f: 9a:cf:e6:8d:7e:62:e4:6a:fe:e6:64:62:8f:9d:13:ae:de:21: 61:87:0b:b7:7a:37:13:b3:e9:50:7f:a9:77:a5:f1:9f:d7:e1: e5:36:82:38:64:8d:2c:c8:4f:21:94:ad:ac:f0:17:39:df:cf: f1:dc:dd:f3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjUwMTEwMTE1NTE0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzgxMGFhMi1iMGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyI5DfsqX1M7aYehuS4JNYLoSlOxNNxGMVzfeQ5cktVDwpnFAnYsBvslV3mpQ fiafATNvwtlcN5YAVENPiN5GyQ3DuSaGDFH4DMFUqYVux6oHLIkOGAzmklGOi0qy YEELl5Hw+cG1A4kV/CgFGhNiPoyIE9aWxEJNSdqfb3NuGVem98i1OhMQ/Lbh5CjE Fe4DLY9qCkXfmCDQ+KlgsyPWHLImzsnFXplXX45rs2BP5yhmc64LELA092GIXRDQ UG48ByEzB6RpSvx4xKyonk53yxM1VNODn5CojRR5d6yvtKtECjgeMZHzaIwgqMS+ WToRuFFxYqvbG0vypYoQXpcLeQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFN742GQs +AR4Z6p9an188f4+O2zqMB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEJCNEQvQ0E1NjNCRTg2NTIyMTFFQjgwRjZFOTRCQzRGOUFFMDIvQzA2ODFCRjJD RjQ5MTFFRjg1MzFCMDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn9FgDBAJ0zrAwDQYJKoZIhvcNAQELBQADggEBAK/cH/la /tukLwB6TnW5UCjMH7E0aeJn6Kf4inbW4JouplcmQK+44bX/WJVekosZpm9ahFS7 SvqT8b1vowB1+BIpkCXPiG3BgLeYyXbqoa+DOGyO6R+u4wy2pkTr/iEXGmXxsT0T xenGuWEYMr9xfECUi1XSKsJzplrWqhqBtVnTKRlreij0DZr75fDtIIt3tB9IrG48 cPGmVk7+g+qLk0d9+dkeU5vy5tGivTjGaW0puBUy4gj9F4Jbd7JHkMkv0KVfyvWf f5rP5o1+YuRq/uZkYo+dE67eIWGHC7d6NxOz6VB/qXel8Z/X4eU2gjhkjSzITyGU razwFznfz/Hc3fM= -----END CERTIFICATE-----Generated at Wed Feb 19 22:00:20 2025 by rpki-client