$ rpki-client -vvf rpki.apnic.net/member_repository/A9114431/12247E249A5811EC8582F31AC4F9AE02/162108BA9A5A11EC951D391BC4F9AE02.roa File: 162108BA9A5A11EC951D391BC4F9AE02.roa (raw, json) Hash identifier: Fvfha9KVlHyCADzshJ79PsXJU9IfuH07KjiuOr5+Ai8= Subject key identifier: 24:AE:95:16:AD:B5:7C:35:A1:0F:09:B8:AA:40:FF:50:E2:D5:B7:2E Certificate issuer: /CN=A9114431/serialNumber=8444EAAC929588E896B7C591F60E343042B0DFBC Certificate serial: 0367 Authority key identifier: 84:44:EA:AC:92:95:88:E8:96:B7:C5:91:F6:0E:34:30:42:B0:DF:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hETqrJKViOiWt8WR9g40MEKw37w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114431/12247E249A5811EC8582F31AC4F9AE02/162108BA9A5A11EC951D391BC4F9AE02.roa Signing time: Wed 05 Feb 2025 00:33:57 +0000 ROA not before: Wed 05 Feb 2025 00:33:57 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 149287 IP address blocks: 103.178.6.0/23 maxlen: 23 103.178.6.0/24 maxlen: 24 103.178.7.0/24 maxlen: 24 2400:3e60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114431/12247E249A5811EC8582F31AC4F9AE02/hETqrJKViOiWt8WR9g40MEKw37w.crl rsync://rpki.apnic.net/member_repository/A9114431/12247E249A5811EC8582F31AC4F9AE02/hETqrJKViOiWt8WR9g40MEKw37w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hETqrJKViOiWt8WR9g40MEKw37w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:34:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 871 (0x367) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114431, serialNumber=8444EAAC929588E896B7C591F60E343042B0DFBC Validity Not Before: Feb 5 00:33:57 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67a2b1f4-77a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1c:4a:10:05:2c:15:53:00:93:3f:72:d8:be: 93:48:bb:53:6e:89:bb:2f:07:e7:c0:a7:9b:26:2b: 4f:a1:6f:82:18:0f:22:05:0a:de:57:dc:b5:89:7f: 8b:d2:87:c2:0f:48:e4:4b:e7:f6:36:6b:4f:4c:0a: 65:17:0e:ac:76:6c:1d:0b:a9:e3:0b:07:c3:ad:bd: b7:f1:73:de:ea:56:2f:e2:7e:c5:65:76:45:3b:16: 6d:b9:f3:95:64:12:03:18:81:4a:82:65:3f:ec:b4: 15:d3:42:7b:11:4d:47:9c:94:86:04:cb:e7:72:2d: ac:84:90:a6:cb:f3:0c:21:9a:57:45:d6:34:8c:ba: 45:9a:e9:10:d6:3a:25:d6:46:64:3c:fb:cc:91:c6: c4:38:2c:81:ac:5a:25:ca:49:c5:5e:11:e0:89:dd: 5e:94:49:38:2d:76:e7:e5:96:d0:ac:8f:52:fa:7b: 0f:8d:53:19:51:ba:a5:61:57:42:4c:13:16:7d:2b: 3b:c9:6c:90:a2:c2:db:e2:ff:68:7a:f6:25:5b:8d: 9f:3e:77:a4:82:bb:b4:0a:7d:5d:ea:47:ac:5f:e9: b4:d3:5f:37:0d:91:c5:6f:57:85:dd:7e:3c:ed:0f: 59:83:ee:c6:d2:1c:df:15:77:97:36:66:56:22:da: 58:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:AE:95:16:AD:B5:7C:35:A1:0F:09:B8:AA:40:FF:50:E2:D5:B7:2E X509v3 Authority Key Identifier: keyid:84:44:EA:AC:92:95:88:E8:96:B7:C5:91:F6:0E:34:30:42:B0:DF:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114431/12247E249A5811EC8582F31AC4F9AE02/hETqrJKViOiWt8WR9g40MEKw37w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hETqrJKViOiWt8WR9g40MEKw37w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114431/12247E249A5811EC8582F31AC4F9AE02/162108BA9A5A11EC951D391BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.178.6.0/23 IPv6: 2400:3e60::/32 Signature Algorithm: sha256WithRSAEncryption 83:69:31:3a:ea:bb:87:95:09:36:e9:44:fd:e5:19:07:5e:f3: f1:a6:0f:8d:d9:e4:67:65:83:80:f2:19:b1:de:4d:21:db:0b: 83:11:30:6c:a2:1c:b6:cf:07:72:d0:29:71:2e:55:80:df:77: ca:14:64:b1:6a:01:1b:02:ba:ef:42:4c:48:50:0c:91:f5:70: ce:4c:83:eb:99:a1:54:2b:62:9a:e7:7a:37:ba:11:88:57:84: d5:8a:9e:8b:21:df:19:1a:49:ba:63:35:47:ff:c8:02:54:b7: 3f:4a:cd:14:7f:3e:14:9d:5e:d8:f9:bb:13:01:4d:fb:8c:cb: 0d:c3:21:ce:cc:f6:b8:b5:76:a7:71:47:84:a3:4d:37:50:63: 31:82:71:b5:ed:8b:01:4b:cd:95:2a:43:d5:24:73:6b:3d:07: b3:24:ed:38:c2:f2:5d:d7:ae:2d:b3:d7:e5:64:d2:73:36:2e: de:df:ab:fb:4c:2b:ff:b0:04:7d:92:2c:a2:74:71:12:51:bc: ff:e2:06:ca:07:c8:28:66:a4:7a:07:a4:4d:18:6a:54:d8:5f: 95:4e:be:0c:b0:c4:ae:0a:8f:0d:d0:ec:44:d8:06:6b:90:ab: fe:38:a4:4a:94:c4:17:55:d2:72:f8:2d:08:11:a8:ac:ac:dd: 64:c4:76:6c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICA2cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQ0MzExMTAvBgNVBAUTKDg0NDRFQUFDOTI5NTg4RTg5NkI3QzU5MUY2MEUzNDMw NDJCMERGQkMwHhcNMjUwMjA1MDAzMzU3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyYjFmNC03N2E5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuBxKEAUsFVMAkz9y2L6TSLtTbom7LwfnwKebJitPoW+CGA8iBQreV9y1iX+L 0ofCD0jkS+f2NmtPTAplFw6sdmwdC6njCwfDrb238XPe6lYv4n7FZXZFOxZtufOV ZBIDGIFKgmU/7LQV00J7EU1HnJSGBMvnci2shJCmy/MMIZpXRdY0jLpFmukQ1jol 1kZkPPvMkcbEOCyBrFolyknFXhHgid1elEk4LXbn5ZbQrI9S+nsPjVMZUbqlYVdC TBMWfSs7yWyQosLb4v9oevYlW42fPnekgru0Cn1d6kesX+m00183DZHFb1eF3X48 7Q9Zg+7G0hzfFXeXNmZWItpYoQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCSulRat tXw1oQ8JuKpA/1Di1bcuMB8GA1UdIwQYMBaAFIRE6qySlYjolrfFkfYONDBCsN+8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDQzMS8xMjI0N0UyNDlB NTgxMUVDODU4MkYzMUFDNEY5QUUwMi9oRVRxckpLVmlPaVd0OFdSOWc0ME1FS3cz N3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hFVHFySktWaU9pV3Q4V1I5ZzQwTUVLdzM3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTQ0MzEvMTIyNDdFMjQ5QTU4MTFFQzg1ODJGMzFBQzRGOUFFMDIvMTYyMTA4QkE5 QTVBMTFFQzk1MUQzOTFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnsgYwDQQCAAIwBwMFACQAPmAwDQYJKoZIhvcNAQELBQAD ggEBAINpMTrqu4eVCTbpRP3lGQde8/GmD43Z5Gdlg4DyGbHeTSHbC4MRMGyiHLbP B3LQKXEuVYDfd8oUZLFqARsCuu9CTEhQDJH1cM5Mg+uZoVQrYprneje6EYhXhNWK nosh3xkaSbpjNUf/yAJUtz9KzRR/PhSdXtj5uxMBTfuMyw3DIc7M9ri1dqdxR4Sj TTdQYzGCcbXtiwFLzZUqQ9Ukc2s9B7Mk7TjC8l3Xri2z1+Vk0nM2Lt7fq/tMK/+w BH2SLKJ0cRJRvP/iBsoHyChmpHoHpE0YalTYX5VOvgywxK4Kjw3Q7ETYBmuQq/44 pEqUxBdV0nL4LQgRqKys3WTEdmw= -----END CERTIFICATE-----Generated at Sat Apr 26 13:07:48 2025 by rpki-client