$ rpki-client -vvf rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/F648238E766911EC9EADC512C4F9AE02.roa File: F648238E766911EC9EADC512C4F9AE02.roa (raw, json) Hash identifier: cXtJZrxFT7iK9u3HHySRT4oRhzJJpyziBzdACacCcms= Subject key identifier: FF:6B:68:15:AE:42:FF:BC:B3:10:4A:81:9D:8B:21:06:45:FA:E8:9D Certificate issuer: /CN=A912147F/serialNumber=B6F797D84F2E49B8BB322206B7946D27918CA164 Certificate serial: 0B92 Authority key identifier: B6:F7:97:D8:4F:2E:49:B8:BB:32:22:06:B7:94:6D:27:91:8C:A1:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tveX2E8uSbi7MiIGt5RtJ5GMoWQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/F648238E766911EC9EADC512C4F9AE02.roa Signing time: Fri 20 Dec 2024 19:07:35 +0000 ROA not before: Fri 20 Dec 2024 19:07:35 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 137048 IP address blocks: 103.103.32.0/24 maxlen: 24 103.103.33.0/24 maxlen: 24 103.103.34.0/24 maxlen: 24 103.103.35.0/24 maxlen: 24 2401:ee40::/32 maxlen: 32 2401:ee40::/48 maxlen: 48 2401:ee40:1::/48 maxlen: 48 2401:ee40:2::/48 maxlen: 48 2401:ee40:3::/48 maxlen: 48 2401:ee40:4::/48 maxlen: 48 2401:ee40:5::/48 maxlen: 48 2401:ee40:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/tveX2E8uSbi7MiIGt5RtJ5GMoWQ.crl rsync://rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/tveX2E8uSbi7MiIGt5RtJ5GMoWQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tveX2E8uSbi7MiIGt5RtJ5GMoWQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:49:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2962 (0xb92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912147F, serialNumber=B6F797D84F2E49B8BB322206B7946D27918CA164 Validity Not Before: Dec 20 19:07:35 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6765c076-b132 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ce:f6:b6:5f:be:60:08:35:2e:0f:9a:79:cc: cb:54:4b:87:81:84:4a:cf:d7:f8:8d:69:24:6f:0e: d6:94:3d:7f:0b:f9:3a:e0:47:e9:ac:e1:d0:60:ed: a0:7c:4a:1e:c9:1f:a5:7d:2d:60:87:27:e6:2b:55: 61:84:d3:41:44:24:af:56:7e:68:e2:3c:42:d4:36: 49:8d:58:65:e7:cd:21:22:96:93:31:5b:fc:02:3d: 7c:f5:8d:9b:d7:b0:82:bd:97:1e:83:50:56:a6:05: 9b:a1:2e:b8:c3:e9:3b:61:cf:ee:46:0a:e2:67:67: 63:a9:5d:34:44:7a:5e:2c:9f:13:f0:32:1a:e9:85: 42:f8:fa:7d:44:27:f8:52:33:a2:57:b5:6e:07:43: 77:a2:de:7b:35:3e:66:58:4c:68:1c:4b:a6:a5:8a: bb:27:17:34:37:13:24:66:12:79:c8:ab:1d:48:55: 71:7e:b9:de:4e:79:4b:df:19:47:79:1f:5d:11:ee: 87:c9:5d:b1:ff:72:4d:52:4b:45:34:31:4f:19:6b: d6:83:26:ca:35:b5:9f:21:4b:37:2a:e2:8e:20:bf: 00:5c:1d:58:c6:71:41:f9:e6:70:f6:84:9e:d8:70: a5:32:b1:96:22:60:5f:38:a3:cb:82:40:e7:80:41: a0:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:6B:68:15:AE:42:FF:BC:B3:10:4A:81:9D:8B:21:06:45:FA:E8:9D X509v3 Authority Key Identifier: keyid:B6:F7:97:D8:4F:2E:49:B8:BB:32:22:06:B7:94:6D:27:91:8C:A1:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/tveX2E8uSbi7MiIGt5RtJ5GMoWQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tveX2E8uSbi7MiIGt5RtJ5GMoWQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912147F/161AABEC1CF711EAAD664532C4F9AE02/F648238E766911EC9EADC512C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.103.32.0/22 IPv6: 2401:ee40::/32 Signature Algorithm: sha256WithRSAEncryption 12:7e:ce:00:bd:4a:f9:f8:fb:ce:8d:d9:62:d4:c2:5e:00:40: 4f:b0:e0:30:42:3e:77:83:a6:d4:89:3d:28:30:df:ac:37:5f: c0:68:cd:85:08:cf:1c:92:db:3d:e2:80:bc:c4:13:9a:ea:27: 82:44:c3:52:48:6f:70:07:7f:c7:31:5e:89:49:5f:53:01:26: a5:bc:4e:2e:65:ea:a7:b5:30:8e:eb:e8:4b:36:56:38:06:09: 66:0b:dd:e9:65:61:63:32:b6:ef:3d:b3:33:23:c2:b5:b6:3d: 16:ad:e6:e2:ca:be:a8:1c:26:82:b4:21:97:26:9a:01:74:e4: 24:a3:78:20:db:1d:d7:1e:ee:12:82:64:ca:39:dd:a3:16:de: 39:14:a4:bf:c3:8d:48:d1:31:68:f1:ed:49:23:90:1a:25:44: f3:9a:f6:9f:52:14:58:20:5e:75:4e:53:bc:b1:cf:9f:00:ca: f1:aa:99:e9:f0:d6:db:9a:3b:b4:95:fb:3c:17:95:02:59:94: 52:22:f3:e7:e6:c3:09:f7:0d:d7:3b:93:1a:2b:54:c9:68:98: ee:f5:90:34:9b:b8:01:93:b0:56:2c:39:81:09:4e:17:f4:62: db:17:02:05:66:e4:c6:c2:20:a1:a5:d9:10:ef:27:a4:97:cb: f0:15:92:76 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC5IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE0N0YxMTAvBgNVBAUTKEI2Rjc5N0Q4NEYyRTQ5QjhCQjMyMjIwNkI3OTQ2RDI3 OTE4Q0ExNjQwHhcNMjQxMjIwMTkwNzM1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY1YzA3Ni1iMTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAps72tl++YAg1Lg+aeczLVEuHgYRKz9f4jWkkbw7WlD1/C/k64EfprOHQYO2g fEoeyR+lfS1ghyfmK1VhhNNBRCSvVn5o4jxC1DZJjVhl580hIpaTMVv8Aj189Y2b 17CCvZceg1BWpgWboS64w+k7Yc/uRgriZ2djqV00RHpeLJ8T8DIa6YVC+Pp9RCf4 UjOiV7VuB0N3ot57NT5mWExoHEumpYq7Jxc0NxMkZhJ5yKsdSFVxfrneTnlL3xlH eR9dEe6HyV2x/3JNUktFNDFPGWvWgybKNbWfIUs3KuKOIL8AXB1YxnFB+eZw9oSe 2HClMrGWImBfOKPLgkDngEGgbQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFP9raBWu Qv+8sxBKgZ2LIQZF+uidMB8GA1UdIwQYMBaAFLb3l9hPLkm4uzIiBreUbSeRjKFk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTQ3Ri8xNjFBQUJFQzFD RjcxMUVBQUQ2NjQ1MzJDNEY5QUUwMi90dmVYMkU4dVNiaTdNaUlHdDVSdEo1R01v V1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3R2ZVgyRTh1U2JpN01pSUd0NVJ0SjVHTW9XUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE0N0YvMTYxQUFCRUMxQ0Y3MTFFQUFENjY0NTMyQzRGOUFFMDIvRjY0ODIzOEU3 NjY5MTFFQzlFQURDNTEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnZyAwDQQCAAIwBwMFACQB7kAwDQYJKoZIhvcNAQELBQAD ggEBABJ+zgC9Svn4+86N2WLUwl4AQE+w4DBCPneDptSJPSgw36w3X8BozYUIzxyS 2z3igLzEE5rqJ4JEw1JIb3AHf8cxXolJX1MBJqW8Ti5l6qe1MI7r6Es2VjgGCWYL 3ellYWMytu89szMjwrW2PRat5uLKvqgcJoK0IZcmmgF05CSjeCDbHdce7hKCZMo5 3aMW3jkUpL/DjUjRMWjx7UkjkBolRPOa9p9SFFggXnVOU7yxz58AyvGqmenw1tua O7SV+zwXlQJZlFIi8+fmwwn3Ddc7kxorVMlomO71kDSbuAGTsFYsOYEJThf0YtsX AgVm5MbCIKGl2RDvJ6SXy/AVknY= -----END CERTIFICATE-----Generated at Sat Apr 26 13:04:39 2025 by rpki-client