$ rpki-client -vvf rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/197CE9C2C0C111EE84A55128C4F9AE02.roa File: 197CE9C2C0C111EE84A55128C4F9AE02.roa (raw, json) Hash identifier: MYK+90f38qq09MaAriFmkTSiCYzdZCdhPOebzwsp0Co= Subject key identifier: 78:8C:76:55:D2:8E:22:0B:41:64:81:D5:1D:2A:D5:03:63:F7:B3:CE Certificate issuer: /CN=A911D971/serialNumber=764D1CE6727D31BD8F39662E2004C4689DA6B7E5 Certificate serial: 01C1 Authority key identifier: 76:4D:1C:E6:72:7D:31:BD:8F:39:66:2E:20:04:C4:68:9D:A6:B7:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/197CE9C2C0C111EE84A55128C4F9AE02.roa Signing time: Tue 07 Jan 2025 17:31:05 +0000 ROA not before: Tue 07 Jan 2025 17:31:05 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 140077 IP address blocks: 103.24.16.0/23 maxlen: 23 103.24.16.0/24 maxlen: 24 103.24.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.crl rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:59:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 449 (0x1c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D971, serialNumber=764D1CE6727D31BD8F39662E2004C4689DA6B7E5 Validity Not Before: Jan 7 17:31:05 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=677d64d8-76dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2e:64:8e:59:7a:53:49:8d:4e:09:aa:c6:4a: 0e:6d:02:63:28:94:57:e4:16:6e:aa:e5:4e:d0:aa: e4:6a:21:4e:6a:30:15:8a:6d:7a:34:95:63:db:91: 49:54:ea:30:df:cb:4d:7b:f1:93:8f:63:2c:03:b4: 2f:f6:6e:3f:1a:07:7f:a1:77:63:2c:8b:97:d2:e7: ba:ac:a3:0b:05:cb:66:57:ae:05:cd:99:15:55:06: 2c:f5:db:49:c9:aa:a9:dd:cd:55:88:63:50:c7:47: 71:27:32:9d:36:79:f1:d3:08:84:90:31:42:fc:14: 7a:5f:77:eb:d2:20:c3:0e:59:68:89:db:20:b4:c8: 9b:64:54:29:d0:56:52:c7:23:d9:9c:06:af:3f:2a: 4e:e5:9f:2e:5b:6b:b4:f7:99:17:41:c1:4d:ce:95: 59:ec:2c:5a:fd:a0:10:d6:17:1a:0c:02:90:ce:0f: e7:c4:0c:7d:67:c4:e2:11:79:4a:8c:e9:6f:a6:b4: a0:df:76:7a:c4:d0:5b:bc:a2:b6:10:73:18:e6:23: 71:95:8c:8e:a5:38:bb:7b:c1:60:0f:05:c9:5e:68: e9:98:67:7e:98:fb:38:20:e4:d7:81:4b:71:ec:aa: 02:b9:f3:88:58:e6:2d:b7:e1:35:bb:35:77:88:3a: 02:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:8C:76:55:D2:8E:22:0B:41:64:81:D5:1D:2A:D5:03:63:F7:B3:CE X509v3 Authority Key Identifier: keyid:76:4D:1C:E6:72:7D:31:BD:8F:39:66:2E:20:04:C4:68:9D:A6:B7:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dk0c5nJ9Mb2POWYuIATEaJ2mt-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D971/DE25B86856A411EDA8C00C3EC4F9AE02/197CE9C2C0C111EE84A55128C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.16.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:33:3c:db:a3:a9:61:dc:72:99:bd:8c:7d:89:5b:42:f8:5a: 48:76:c5:ad:a8:48:57:c0:e4:ca:08:f7:9a:7f:c2:34:dd:15: d4:c5:af:12:65:5c:45:28:dc:22:59:0d:19:3f:96:47:f9:a7: b1:9a:b4:c8:e0:b5:3f:3e:a7:17:e7:e7:47:45:99:3e:1b:bd: d9:be:d8:ac:47:65:4f:cf:ef:1e:1e:38:81:c3:d2:fe:c1:b2: cd:d5:7b:c7:de:f6:89:95:d5:d2:6c:7f:bc:37:4a:eb:77:65: 76:1e:6d:3a:1d:81:a5:85:1b:56:55:44:e3:a6:b3:ed:bc:85: 25:68:72:e6:36:a4:e2:3f:43:b8:91:46:14:ce:15:00:64:93: 94:67:78:d3:76:82:5d:b4:df:ff:55:5f:6c:69:8e:fa:e4:83: 3b:ed:ca:eb:24:1d:84:e4:c7:e0:c5:70:a0:be:5d:71:53:1d: f5:23:8a:59:8e:af:60:0b:9a:84:d1:d5:8b:f1:df:10:ab:78: 5b:04:a4:0b:3b:61:ef:c1:2c:e1:9a:ae:08:9d:7f:7f:d1:2e: 57:57:af:56:cd:0e:ae:4b:2f:a4:5a:25:55:29:ad:a7:1b:27: 29:b1:ca:07:aa:0f:1c:dd:a0:c3:96:cb:99:fa:44:ca:e0:d5: 26:43:70:24 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ5NzExMTAvBgNVBAUTKDc2NEQxQ0U2NzI3RDMxQkQ4RjM5NjYyRTIwMDRDNDY4 OURBNkI3RTUwHhcNMjUwMTA3MTczMTA1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdkNjRkOC03NmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuS5kjll6U0mNTgmqxkoObQJjKJRX5BZuquVO0KrkaiFOajAVim16NJVj25FJ VOow38tNe/GTj2MsA7Qv9m4/Ggd/oXdjLIuX0ue6rKMLBctmV64FzZkVVQYs9dtJ yaqp3c1ViGNQx0dxJzKdNnnx0wiEkDFC/BR6X3fr0iDDDlloidsgtMibZFQp0FZS xyPZnAavPypO5Z8uW2u095kXQcFNzpVZ7Cxa/aAQ1hcaDAKQzg/nxAx9Z8TiEXlK jOlvprSg33Z6xNBbvKK2EHMY5iNxlYyOpTi7e8FgDwXJXmjpmGd+mPs4IOTXgUtx 7KoCufOIWOYtt+E1uzV3iDoCjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHiMdlXS jiILQWSB1R0q1QNj97POMB8GA1UdIwQYMBaAFHZNHOZyfTG9jzlmLiAExGidprfl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDk3MS9ERTI1Qjg2ODU2 QTQxMUVEQThDMDBDM0VDNEY5QUUwMi9kazBjNW5KOU1iMlBPV1l1SUFURWFKMm10 LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RrMGM1bko5TWIyUE9XWXVJQVRFYUoybXQtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUQ5NzEvREUyNUI4Njg1NkE0MTFFREE4QzAwQzNFQzRGOUFFMDIvMTk3Q0U5QzJD MEMxMTFFRTg0QTU1MTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnGBAwDQYJKoZIhvcNAQELBQADggEBAIwzPNujqWHccpm9 jH2JW0L4Wkh2xa2oSFfA5MoI95p/wjTdFdTFrxJlXEUo3CJZDRk/lkf5p7GatMjg tT8+pxfn50dFmT4bvdm+2KxHZU/P7x4eOIHD0v7Bss3Ve8fe9omV1dJsf7w3Sut3 ZXYebTodgaWFG1ZVROOms+28hSVocuY2pOI/Q7iRRhTOFQBkk5RneNN2gl203/9V X2xpjvrkgzvtyuskHYTkx+DFcKC+XXFTHfUjilmOr2ALmoTR1Yvx3xCreFsEpAs7 Ye/BLOGargidf3/RLldXr1bNDq5LL6RaJVUpracbJymxygeqDxzdoMOWy5n6RMrg 1SZDcCQ= -----END CERTIFICATE-----Generated at Sat Apr 26 08:29:11 2025 by rpki-client