$ rpki-client -vvf rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/FFFE56DEDEF111EF8EE4AE37C4F9AE02.roa File: FFFE56DEDEF111EF8EE4AE37C4F9AE02.roa (raw, json) Hash identifier: kvRrYXzDEb1knff7u5sMUOY0LST5MU2sRwL9Qq51bMI= Subject key identifier: 77:BD:D8:CB:B8:03:9F:8E:A9:CB:63:DA:38:2E:10:22:F2:C5:77:04 Certificate issuer: /CN=A9118CA7/serialNumber=F1998A475E92DE8A6C7D4094556A0DA67D5D4D0E Certificate serial: 090E Authority key identifier: F1:99:8A:47:5E:92:DE:8A:6C:7D:40:94:55:6A:0D:A6:7D:5D:4D:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ZmKR16S3opsfUCUVWoNpn1dTQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/FFFE56DEDEF111EF8EE4AE37C4F9AE02.roa Signing time: Thu 30 Jan 2025 10:07:24 +0000 ROA not before: Thu 30 Jan 2025 10:07:23 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 139053 IP address blocks: 103.151.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/8ZmKR16S3opsfUCUVWoNpn1dTQ4.crl rsync://rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/8ZmKR16S3opsfUCUVWoNpn1dTQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ZmKR16S3opsfUCUVWoNpn1dTQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:12:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2318 (0x90e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118CA7, serialNumber=F1998A475E92DE8A6C7D4094556A0DA67D5D4D0E Validity Not Before: Jan 30 10:07:23 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=679b4f5b-564a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ef:c3:88:d5:03:a3:c3:b2:be:95:ee:57:fb: 65:1f:7c:ad:25:72:9a:20:0a:62:66:08:48:16:77: da:c9:9c:09:ae:f2:92:d3:6c:1a:cf:46:dd:89:96: 1d:73:96:37:68:d7:52:81:fd:c3:3c:a1:3b:97:ad: 6b:42:e3:aa:e1:27:97:ed:c7:7a:c4:12:44:1c:da: ef:7e:19:56:5b:52:bf:ec:17:2a:47:ae:14:68:51: 92:05:ab:5b:9c:c7:ff:a0:b0:b5:c1:98:d3:7d:63: 2a:41:b7:85:90:42:08:d4:bb:0e:fc:b6:f5:e8:24: 27:f0:1e:35:e0:b4:d5:5c:41:b3:06:85:cc:1c:b0: 9a:00:b6:f3:0a:d0:0d:44:4e:8f:5a:73:90:14:7a: 78:9d:0b:1e:f0:50:b7:ff:00:0a:b9:c4:bf:7d:5a: e7:3f:ef:d1:9d:13:c1:a4:59:d5:7c:ea:cd:e9:ce: 1c:8e:68:05:6d:31:ae:c8:14:54:88:71:7a:8b:16: 4f:7a:b6:43:20:0b:01:01:84:c7:8a:d8:b7:29:d0: cd:d3:76:9a:92:05:c3:36:13:c1:40:df:ec:31:1e: a4:79:98:67:bb:16:d0:0f:37:b3:36:38:8a:63:c4: f6:ec:d0:c0:45:7d:45:b7:14:90:48:a3:8d:7e:d3: 22:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:BD:D8:CB:B8:03:9F:8E:A9:CB:63:DA:38:2E:10:22:F2:C5:77:04 X509v3 Authority Key Identifier: keyid:F1:99:8A:47:5E:92:DE:8A:6C:7D:40:94:55:6A:0D:A6:7D:5D:4D:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/8ZmKR16S3opsfUCUVWoNpn1dTQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ZmKR16S3opsfUCUVWoNpn1dTQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/FFFE56DEDEF111EF8EE4AE37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.170.0/24 Signature Algorithm: sha256WithRSAEncryption 01:c6:f7:73:82:6c:f8:97:83:de:5a:b2:d4:01:fd:c7:94:1b: ed:a5:19:2d:9d:8a:6c:7a:21:f8:e6:a5:a0:4f:59:49:bc:89: 52:b0:a8:f7:79:c4:da:ca:19:a7:9d:21:75:85:a7:b7:5c:51: dc:bf:2d:f2:bc:0c:2f:ee:66:bc:55:04:3c:a4:44:4b:19:d9: 92:8a:a6:75:da:8e:3b:63:8a:ea:2b:79:8d:a4:d0:cb:ac:c6: 15:79:ff:1b:d6:f6:60:a4:a6:f6:e8:f8:e4:37:c7:73:e7:76: cd:b3:e6:cc:c0:16:96:80:bf:85:0a:7a:25:c5:cb:7d:57:94: e0:60:b8:f5:dd:9c:07:a1:10:1f:bf:7f:bb:84:51:47:ab:2d: da:ae:eb:17:a6:34:8d:11:a3:6d:32:04:15:f0:36:66:df:06: c3:48:33:9b:6f:c1:12:c5:44:74:c7:e9:c4:2e:2b:27:94:de: 70:7b:54:43:c4:c1:82:82:22:31:30:09:91:62:91:bb:67:de: c6:32:d7:ec:85:b4:1e:1a:3d:70:c1:e5:fa:b5:b8:49:5d:3e: 59:0f:0a:5d:37:e0:9b:be:ad:9c:b2:a5:d4:74:cb:28:7f:5d: 3e:c3:41:7a:a7:af:f1:28:d9:67:20:97:46:35:cf:e5:99:2f: 41:ea:9a:66 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThDQTcxMTAvBgNVBAUTKEYxOTk4QTQ3NUU5MkRFOEE2QzdENDA5NDU1NkEwREE2 N0Q1RDREMEUwHhcNMjUwMTMwMTAwNzIzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzliNGY1Yi01NjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqe/DiNUDo8OyvpXuV/tlH3ytJXKaIApiZghIFnfayZwJrvKS02waz0bdiZYd c5Y3aNdSgf3DPKE7l61rQuOq4SeX7cd6xBJEHNrvfhlWW1K/7BcqR64UaFGSBatb nMf/oLC1wZjTfWMqQbeFkEII1LsO/Lb16CQn8B414LTVXEGzBoXMHLCaALbzCtAN RE6PWnOQFHp4nQse8FC3/wAKucS/fVrnP+/RnRPBpFnVfOrN6c4cjmgFbTGuyBRU iHF6ixZPerZDIAsBAYTHiti3KdDN03aakgXDNhPBQN/sMR6keZhnuxbQDzezNjiK Y8T27NDARX1FtxSQSKONftMi/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFHe92Mu4 A5+Oqctj2jguECLyxXcEMB8GA1UdIwQYMBaAFPGZikdekt6KbH1AlFVqDaZ9XU0O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOENBNy8yRkM3MEEyNEEw RDUxMUVBQTdGRkRGMjlDNEY5QUUwMi84Wm1LUjE2UzNvcHNmVUNVVldvTnBuMWRU UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhabUtSMTZTM29wc2ZVQ1VWV29OcG4xZFRRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MThDQTcvMkZDNzBBMjRBMEQ1MTFFQUE3RkZERjI5QzRGOUFFMDIvRkZGRTU2REVE RUYxMTFFRjhFRTRBRTM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnl6owDQYJKoZIhvcNAQELBQADggEBAAHG93OCbPiXg95a stQB/ceUG+2lGS2dimx6IfjmpaBPWUm8iVKwqPd5xNrKGaedIXWFp7dcUdy/LfK8 DC/uZrxVBDykREsZ2ZKKpnXajjtjiuoreY2k0MusxhV5/xvW9mCkpvbo+OQ3x3Pn ds2z5szAFpaAv4UKeiXFy31XlOBguPXdnAehEB+/f7uEUUerLdqu6xemNI0Ro20y BBXwNmbfBsNIM5tvwRLFRHTH6cQuKyeU3nB7VEPEwYKCIjEwCZFikbtn3sYy1+yF tB4aPXDB5fq1uEldPlkPCl034Ju+rZyypdR0yyh/XT7DQXqnr/Eo2Wcgl0Y1z+WZ L0HqmmY= -----END CERTIFICATE-----Generated at Sat Apr 26 16:48:10 2025 by rpki-client