$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/969AE080A14211EC8C49D660C4F9AE02.roa File: 969AE080A14211EC8C49D660C4F9AE02.roa (raw, json) Hash identifier: n7VFHzeUDeBuyUWNvkox2wNIAXMws0upgX8rIok/ab4= Subject key identifier: 05:78:43:22:11:DD:66:DB:A9:A4:E8:BA:B8:4D:8A:51:45:E6:A7:38 Certificate issuer: /CN=A911EA62/serialNumber=89F596110030BDC9B3BAD76CFD05C3124617C952 Certificate serial: 03BF Authority key identifier: 89:F5:96:11:00:30:BD:C9:B3:BA:D7:6C:FD:05:C3:12:46:17:C9:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ifWWEQAwvcmzutds_QXDEkYXyVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/969AE080A14211EC8C49D660C4F9AE02.roa Signing time: Sat 01 Feb 2025 00:34:20 +0000 ROA not before: Sat 01 Feb 2025 00:34:20 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 149419 IP address blocks: 103.178.216.0/23 maxlen: 23 103.178.216.0/24 maxlen: 24 103.178.217.0/24 maxlen: 24 2001:df0:4440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.crl rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ifWWEQAwvcmzutds_QXDEkYXyVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 03 May 2025 19:12:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 959 (0x3bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EA62, serialNumber=89F596110030BDC9B3BAD76CFD05C3124617C952 Validity Not Before: Feb 1 00:34:20 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=679d6c0c-8e9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7c:4c:51:ea:f6:f8:02:c5:44:1a:c1:bf:19: 8f:c3:33:4c:3c:ca:5d:63:02:04:f4:38:ec:7b:74: 36:66:04:5c:c5:7a:1a:08:c5:3f:81:ba:f1:ed:e2: c3:4b:e0:b4:e0:28:5c:18:51:f4:4e:66:00:9c:56: ee:70:19:aa:76:fd:83:e4:3f:1a:e2:24:6c:11:cb: 37:16:eb:b7:5a:f9:9e:bc:52:ae:88:35:c3:c2:81: 7f:0c:49:55:66:44:82:5b:8a:c7:01:6f:5d:c0:b6: 55:2f:4f:d7:22:53:af:3e:d4:39:12:54:d6:7e:0e: d7:d0:86:e5:86:9a:15:d5:8c:d6:56:eb:04:08:06: b5:9c:27:73:f3:1b:9e:ed:0e:c7:05:24:9c:e4:20: 49:b0:b5:e8:d8:02:59:cd:27:a2:aa:0b:57:c7:34: fc:67:e4:cf:11:26:64:64:d2:56:62:c2:4e:fa:4b: 32:c3:d8:21:00:21:92:22:12:bb:54:90:91:0e:78: f0:9d:22:de:1a:ec:18:2d:98:23:8f:73:43:f2:0c: c5:74:a6:45:c2:1b:90:6b:74:1a:6a:97:b3:39:6b: f9:2e:c0:ca:97:c8:f4:0e:86:99:ce:4c:64:e1:f8: bb:0b:d7:ed:c3:13:7e:ac:87:8c:b9:a9:72:6e:fc: 31:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:78:43:22:11:DD:66:DB:A9:A4:E8:BA:B8:4D:8A:51:45:E6:A7:38 X509v3 Authority Key Identifier: keyid:89:F5:96:11:00:30:BD:C9:B3:BA:D7:6C:FD:05:C3:12:46:17:C9:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ifWWEQAwvcmzutds_QXDEkYXyVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/969AE080A14211EC8C49D660C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.178.216.0/23 IPv6: 2001:df0:4440::/48 Signature Algorithm: sha256WithRSAEncryption 87:dc:09:8c:34:9e:e2:ca:14:01:c9:8e:34:24:d3:ea:49:71: d3:fa:df:9f:bf:d4:d5:f7:b9:69:48:5a:90:e6:54:13:3b:78: d7:a1:7c:af:55:65:ce:62:b6:36:c7:e0:79:68:1d:dc:ae:27: 05:88:d3:46:36:51:cf:2e:f7:4f:1a:b2:67:19:5d:b6:4a:ab: c9:2c:47:60:c0:c5:e2:cd:52:01:1a:b0:28:e7:ad:c2:54:51: 7f:32:86:a2:52:d5:0d:ba:4a:5c:bf:ab:ab:e4:a7:35:6e:0f: 4e:ea:17:c8:b0:57:71:14:fc:e9:44:9c:fe:e4:2a:90:fc:52: 93:cf:bd:61:f1:6a:9e:ab:f8:1d:d4:f9:d7:96:c0:a5:5b:c9: ab:c1:7c:aa:55:7e:4c:fe:ee:5b:51:a2:9b:4b:63:9a:55:a7: 7a:59:d9:1a:76:88:14:20:cf:8b:56:82:0c:f2:1e:e3:80:51: 1f:6f:32:3e:c1:b0:ec:91:97:80:c6:fb:1b:62:a3:98:74:5d: bf:2f:e7:10:ff:6c:3d:7c:2d:8f:dd:5c:fb:81:04:b1:0f:e4: 3b:9d:72:5c:63:c0:1e:9b:b6:b2:68:08:c6:d7:dc:44:16:96: f8:2e:f7:da:d0:72:5a:df:f4:67:1a:55:92:bb:4b:3c:fe:82: 30:bf:82:74 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA78wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVBNjIxMTAvBgNVBAUTKDg5RjU5NjExMDAzMEJEQzlCM0JBRDc2Q0ZEMDVDMzEy NDYxN0M5NTIwHhcNMjUwMjAxMDAzNDIwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzlkNmMwYy04ZTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArXxMUer2+ALFRBrBvxmPwzNMPMpdYwIE9Djse3Q2ZgRcxXoaCMU/gbrx7eLD S+C04ChcGFH0TmYAnFbucBmqdv2D5D8a4iRsEcs3Fuu3WvmevFKuiDXDwoF/DElV ZkSCW4rHAW9dwLZVL0/XIlOvPtQ5ElTWfg7X0IblhpoV1YzWVusECAa1nCdz8xue 7Q7HBSSc5CBJsLXo2AJZzSeiqgtXxzT8Z+TPESZkZNJWYsJO+ksyw9ghACGSIhK7 VJCRDnjwnSLeGuwYLZgjj3ND8gzFdKZFwhuQa3QaapezOWv5LsDKl8j0DoaZzkxk 4fi7C9ftwxN+rIeMualybvwxdwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAV4QyIR 3WbbqaTourhNilFF5qc4MB8GA1UdIwQYMBaAFIn1lhEAML3Js7rXbP0FwxJGF8lS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUE2Mi8xMTY4MjExQzgw NkMxMUVDOTJCNTFDNUFDNEY5QUUwMi9pZldXRVFBd3ZjbXp1dGRzX1FYREVrWVh5 VkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lmV1dFUUF3dmNtenV0ZHNfUVhERWtZWHlWSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUVBNjIvMTE2ODIxMUM4MDZDMTFFQzkyQjUxQzVBQzRGOUFFMDIvOTY5QUUwODBB MTQyMTFFQzhDNDlENjYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnstgwDwQCAAIwCQMHACABDfBEQDANBgkqhkiG9w0BAQsF AAOCAQEAh9wJjDSe4soUAcmONCTT6klx0/rfn7/U1fe5aUhakOZUEzt416F8r1Vl zmK2NsfgeWgd3K4nBYjTRjZRzy73TxqyZxldtkqrySxHYMDF4s1SARqwKOetwlRR fzKGolLVDbpKXL+rq+SnNW4PTuoXyLBXcRT86USc/uQqkPxSk8+9YfFqnqv4HdT5 15bApVvJq8F8qlV+TP7uW1Gim0tjmlWnelnZGnaIFCDPi1aCDPIe44BRH28yPsGw 7JGXgMb7G2KjmHRdvy/nEP9sPXwtj91c+4EEsQ/kO51yXGPAHpu2smgIxtfcRBaW +C732tByWt/0ZxpVkrtLPP6CML+CdA== -----END CERTIFICATE-----Generated at Sun Apr 27 04:31:21 2025 by rpki-client