$ rpki-client -vvf rpki.apnic.net/member_repository/A9192920/70C0442627EB11EB82F27047C4F9AE02/213D6260B68511EC81F0D430C4F9AE02.roa File: 213D6260B68511EC81F0D430C4F9AE02.roa (raw, json) Hash identifier: 1GNNxU4cZHFHnGQGEpAVPZfliXXhk8CqSgKLDVtEJBw= Subject key identifier: BE:04:09:3D:9F:1B:DC:BC:31:F4:EE:EF:8E:1E:41:3E:CF:96:0E:5F Certificate issuer: /CN=A9192920/serialNumber=D4A1C71D3573A6E446138941D7F7EFECE397AFB5 Certificate serial: 0710 Authority key identifier: D4:A1:C7:1D:35:73:A6:E4:46:13:89:41:D7:F7:EF:EC:E3:97:AF:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1KHHHTVzpuRGE4lB1_fv7OOXr7U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192920/70C0442627EB11EB82F27047C4F9AE02/213D6260B68511EC81F0D430C4F9AE02.roa Signing time: Fri 10 Jan 2025 21:30:40 +0000 ROA not before: Fri 10 Jan 2025 21:30:40 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 55933 IP address blocks: 103.153.128.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192920/70C0442627EB11EB82F27047C4F9AE02/1KHHHTVzpuRGE4lB1_fv7OOXr7U.crl rsync://rpki.apnic.net/member_repository/A9192920/70C0442627EB11EB82F27047C4F9AE02/1KHHHTVzpuRGE4lB1_fv7OOXr7U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1KHHHTVzpuRGE4lB1_fv7OOXr7U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:53:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1808 (0x710) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192920 Validity Not Before: Jan 10 21:30:40 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=67819180-17ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:21:19:72:62:d0:54:a5:6e:99:4f:29:c7:bd: 6a:03:8e:a0:7c:b6:82:f6:c1:95:b1:30:c0:f4:f4: 17:00:e5:28:fa:20:1a:ee:ae:f3:a8:56:af:07:5f: f1:06:df:f9:b0:01:50:fc:54:15:c3:ee:0c:9c:41: 71:86:94:8a:cf:f8:cb:d6:d3:41:21:a8:f9:71:95: f9:55:b6:59:7b:e3:75:fe:0a:12:78:c8:f1:8a:48: ed:a4:74:83:20:79:23:c4:9a:9b:92:9c:22:ed:ec: c9:d0:41:5f:76:27:95:e9:36:72:a3:29:da:83:ec: c2:4e:6e:70:bd:94:94:d7:99:90:99:75:8b:e8:85: 92:fa:aa:58:a7:50:f3:c7:e8:9f:f9:92:67:48:eb: eb:71:b1:c5:7d:b0:38:98:e3:c3:b8:c0:9c:ff:8e: be:7d:7e:a5:a0:26:bb:af:e6:ca:be:a3:d5:28:cd: 86:10:d6:40:f0:64:91:82:69:98:f3:e0:2e:7a:40: 05:b4:e8:80:e6:61:37:26:43:e4:51:45:6c:46:6b: b5:da:f6:8a:5d:c1:a8:06:8c:5a:52:52:e0:b7:4d: 56:4a:f7:89:b6:94:fa:1c:f6:15:71:80:7b:4e:0f: ff:4a:e8:36:c1:fb:22:b0:66:3f:51:a2:5e:d5:41: 91:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:04:09:3D:9F:1B:DC:BC:31:F4:EE:EF:8E:1E:41:3E:CF:96:0E:5F X509v3 Authority Key Identifier: keyid:D4:A1:C7:1D:35:73:A6:E4:46:13:89:41:D7:F7:EF:EC:E3:97:AF:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192920/70C0442627EB11EB82F27047C4F9AE02/1KHHHTVzpuRGE4lB1_fv7OOXr7U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1KHHHTVzpuRGE4lB1_fv7OOXr7U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192920/70C0442627EB11EB82F27047C4F9AE02/213D6260B68511EC81F0D430C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.128.0/23 Signature Algorithm: sha256WithRSAEncryption 48:ef:4e:1f:28:1e:94:c8:d0:75:c3:d0:3b:20:1f:00:c3:df: 34:00:b8:13:a3:a9:bd:d8:51:03:7a:dc:ba:8e:78:a3:32:3b: b8:85:96:06:fc:4d:56:28:36:4f:f4:4b:53:4d:98:80:68:16: 38:a3:9b:9b:fa:8f:5a:78:14:88:20:89:2c:92:8a:6d:52:29: 5d:8e:f5:1d:7b:d8:27:dd:7b:82:69:c4:0e:31:51:c5:ea:3a: 66:3a:f1:ee:74:ab:20:e7:e2:cf:9b:64:60:1f:81:7b:aa:39: b4:36:3e:28:13:c8:1c:ae:fe:ff:a1:e4:63:9b:55:26:65:b8: 44:f5:42:8d:81:f3:80:eb:31:b5:d8:d7:71:2e:9e:ff:56:e3: dd:17:24:4b:20:5a:56:a8:39:43:75:08:5e:19:b6:0e:37:81: f9:44:c6:ed:cc:a8:1c:be:9f:d3:c1:80:23:4d:8a:5c:9f:6b: 4a:fb:55:8f:1f:c9:2b:61:af:f9:2d:9f:27:97:5b:4e:c8:82: 8c:b3:da:30:62:51:8f:c2:2b:0f:73:bb:f1:be:b1:66:9c:89: 02:f9:e6:fe:06:6d:99:7c:7c:12:7d:66:92:54:ac:94:f8:8d: a2:db:e9:a2:47:22:7b:a0:60:c4:49:83:fe:1d:43:01:1e:b5: 23:87:6c:0d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTI5MjAxMTAvBgNVBAUTKEQ0QTFDNzFEMzU3M0E2RTQ0NjEzODk0MUQ3RjdFRkVD RTM5N0FGQjUwHhcNMjUwMTEwMjEzMDQwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzgxOTE4MC0xN2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1SEZcmLQVKVumU8px71qA46gfLaC9sGVsTDA9PQXAOUo+iAa7q7zqFavB1/x Bt/5sAFQ/FQVw+4MnEFxhpSKz/jL1tNBIaj5cZX5VbZZe+N1/goSeMjxikjtpHSD IHkjxJqbkpwi7ezJ0EFfdieV6TZyoynag+zCTm5wvZSU15mQmXWL6IWS+qpYp1Dz x+if+ZJnSOvrcbHFfbA4mOPDuMCc/46+fX6loCa7r+bKvqPVKM2GENZA8GSRgmmY 8+AuekAFtOiA5mE3JkPkUUVsRmu12vaKXcGoBoxaUlLgt01WSveJtpT6HPYVcYB7 Tg//Sug2wfsisGY/UaJe1UGRVQIDAQABo4IClTCCApEwHQYDVR0OBBYEFL4ECT2f G9y8MfTu744eQT7Plg5fMB8GA1UdIwQYMBaAFNShxx01c6bkRhOJQdf37+zjl6+1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MjkyMC83MEMwNDQyNjI3 RUIxMUVCODJGMjcwNDdDNEY5QUUwMi8xS0hISFRWenB1UkdFNGxCMV9mdjdPT1hy N1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFLSEhIVFZ6cHVSR0U0bEIxX2Z2N09PWHI3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTI5MjAvNzBDMDQ0MjYyN0VCMTFFQjgyRjI3MDQ3QzRGOUFFMDIvMjEzRDYyNjBC Njg1MTFFQzgxRjBENDMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmYAwDQYJKoZIhvcNAQELBQADggEBAEjvTh8oHpTI0HXD 0DsgHwDD3zQAuBOjqb3YUQN63LqOeKMyO7iFlgb8TVYoNk/0S1NNmIBoFjijm5v6 j1p4FIggiSySim1SKV2O9R172Cfde4JpxA4xUcXqOmY68e50qyDn4s+bZGAfgXuq ObQ2PigTyByu/v+h5GObVSZluET1Qo2B84DrMbXY13Eunv9W490XJEsgWlaoOUN1 CF4Ztg43gflExu3MqBy+n9PBgCNNilyfa0r7VY8fySthr/ktnyeXW07Igoyz2jBi UY/CKw9zu/G+sWaciQL55v4GbZl8fBJ9ZpJUrJT4jaLb6aJHInugYMRJg/4dQwEe tSOHbA0= -----END CERTIFICATE-----Generated at Sat Apr 5 07:14:44 2025 by rpki-client