$ rpki-client -vvf rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/C8BFCD96D7A411EF9AB81933C4F9AE02.roa File: C8BFCD96D7A411EF9AB81933C4F9AE02.roa (raw, json) Hash identifier: Fo5VkT431J+zLy9igbQ3SFfIsb+FgMetIU9BycrAICA= Subject key identifier: C5:E2:06:19:59:D9:4F:55:A5:16:6E:62:34:3D:F8:9A:63:D0:BC:BA Certificate issuer: /CN=A9128576/serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE Certificate serial: 02 Authority key identifier: 18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/C8BFCD96D7A411EF9AB81933C4F9AE02.roa Signing time: Tue 21 Jan 2025 03:07:02 +0000 ROA not before: Tue 21 Jan 2025 03:07:02 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139748 IP address blocks: 103.144.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:37:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128576, serialNumber=1891D54CEF6A90C232FCA891E399F978386711EE Validity Not Before: Jan 21 03:07:02 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=678f0f55-8849 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:96:85:79:b9:e8:85:81:5d:15:57:7c:fb:e7: 1d:45:54:8c:88:cc:d7:ce:4a:d7:92:03:34:f8:8f: 07:1f:fd:09:22:9f:52:4e:d2:df:fc:43:b0:32:42: b1:ac:ee:c6:1b:ef:72:0c:6c:a3:cc:f2:bd:be:1a: 22:ed:32:f8:fb:0e:dd:d4:53:63:e1:ed:3d:45:b8: d2:40:0b:61:cf:e4:89:e8:96:4b:9b:c9:7f:db:f9: c7:64:f8:c2:d3:10:21:f8:72:08:a0:95:ac:2f:4d: cc:af:58:87:13:58:b6:d1:db:ce:d5:5f:e2:06:d1: a1:17:aa:09:76:23:8c:dc:8e:22:6a:25:ec:9c:0c: 8a:ec:fa:9d:91:54:dd:b4:9e:d6:36:82:80:b1:52: c7:df:b3:1b:5f:c6:9d:0c:c2:16:7c:14:29:5f:9c: f9:3d:1c:65:24:e4:a1:87:f8:85:85:ec:59:b5:f4: b0:16:ba:af:ff:ef:57:64:4c:18:8d:fe:df:0e:59: 52:7b:ea:a0:94:fe:3e:31:53:7b:8e:61:c9:8a:b9: 74:42:5f:5d:1e:2a:6d:97:73:6d:1e:06:56:90:df: 27:90:24:e2:0d:e9:68:da:26:46:5f:ed:6c:03:06: 44:b9:96:11:d2:d6:6f:8b:e3:f3:00:d7:38:f0:e8: 88:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:E2:06:19:59:D9:4F:55:A5:16:6E:62:34:3D:F8:9A:63:D0:BC:BA X509v3 Authority Key Identifier: keyid:18:91:D5:4C:EF:6A:90:C2:32:FC:A8:91:E3:99:F9:78:38:67:11:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/GJHVTO9qkMIy_KiR45n5eDhnEe4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJHVTO9qkMIy_KiR45n5eDhnEe4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128576/2DE94A9AD7A411EF964D6D7CC4F9AE02/C8BFCD96D7A411EF9AB81933C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.125.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:87:ea:46:00:75:cc:2e:f3:ce:07:81:c8:bd:50:d7:97:31: 80:58:a3:65:a7:6e:3c:f5:00:7f:cc:99:cf:9a:4b:0b:c3:b8: c3:d7:36:df:28:3d:c9:de:4c:4a:8f:ad:e0:63:13:dc:3f:d7: c9:90:6f:19:f5:7d:77:b6:6b:ef:2a:5f:10:2e:0e:60:04:51: b0:5f:22:8c:f7:c7:52:20:af:f0:15:3b:69:e1:15:2e:14:d9: 8b:20:e5:90:d5:53:67:48:5e:be:e2:e1:37:f7:c4:1f:64:5b: 00:45:09:f7:89:47:1b:73:a3:d2:e5:e8:9f:c7:4b:a1:e9:e4: fe:42:33:e8:9a:05:02:52:7e:11:a0:ff:3f:45:60:00:44:fc: 6b:d6:39:38:eb:fd:33:57:be:da:df:93:57:67:e8:42:eb:72: b4:bb:a5:2f:c1:f1:52:b5:19:0e:cc:3f:7c:a0:d8:a1:7d:67: f8:e2:ce:5f:9c:99:2d:26:2e:83:34:c8:e7:ff:74:af:42:79: 25:f7:1e:1a:28:1a:19:4b:51:5b:da:0d:c0:cb:b4:cf:0f:fc: eb:32:d3:22:97:3c:04:5b:74:a4:22:a0:d1:d0:4a:61:66:9b: bc:58:ef:0b:fc:a2:60:89:c9:c9:1d:f2:c3:ef:83:9c:44:9e: e8:33:b1:32 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy ODU3NjExMC8GA1UEBRMoMTg5MUQ1NENFRjZBOTBDMjMyRkNBODkxRTM5OUY5Nzgz ODY3MTFFRTAeFw0yNTAxMjEwMzA3MDJaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3OGYwZjU1LTg4NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0loV5ueiFgV0VV3z75x1FVIyIzNfOSteSAzT4jwcf/Qkin1JO0t/8Q7AyQrGs 7sYb73IMbKPM8r2+GiLtMvj7Dt3UU2Ph7T1FuNJAC2HP5InolkubyX/b+cdk+MLT ECH4cgiglawvTcyvWIcTWLbR287VX+IG0aEXqgl2I4zcjiJqJeycDIrs+p2RVN20 ntY2goCxUsffsxtfxp0MwhZ8FClfnPk9HGUk5KGH+IWF7Fm19LAWuq//71dkTBiN /t8OWVJ76qCU/j4xU3uOYcmKuXRCX10eKm2Xc20eBlaQ3yeQJOIN6WjaJkZf7WwD BkS5lhHS1m+L4/MA1zjw6Ig9AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUxeIGGVnZ T1WlFm5iND34mmPQvLowHwYDVR0jBBgwFoAUGJHVTO9qkMIy/KiR45n5eDhnEe4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI4NTc2LzJERTk0QTlBRDdB NDExRUY5NjRENkQ3Q0M0RjlBRTAyL0dKSFZUTzlxa01JeV9LaVI0NW41ZURobkVl NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR0pIVlRPOXFrTUl5X0tpUjQ1bjVlRGhuRWU0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODU3Ni8yREU5NEE5QUQ3QTQxMUVGOTY0RDZEN0NDNEY5QUUwMi9DOEJGQ0Q5NkQ3 QTQxMUVGOUFCODE5MzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeQfTANBgkqhkiG9w0BAQsFAAOCAQEAHofqRgB1zC7zzgeB yL1Q15cxgFijZaduPPUAf8yZz5pLC8O4w9c23yg9yd5MSo+t4GMT3D/XyZBvGfV9 d7Zr7ypfEC4OYARRsF8ijPfHUiCv8BU7aeEVLhTZiyDlkNVTZ0hevuLhN/fEH2Rb AEUJ94lHG3Oj0uXon8dLoenk/kIz6JoFAlJ+EaD/P0VgAET8a9Y5OOv9M1e+2t+T V2foQutytLulL8HxUrUZDsw/fKDYoX1n+OLOX5yZLSYugzTI5/90r0J5JfceGiga GUtRW9oNwMu0zw/86zLTIpc8BFt0pCKg0dBKYWabvFjvC/yiYInJyR3yw++DnESe 6DOxMg== -----END CERTIFICATE-----Generated at Sat Apr 26 09:37:26 2025 by rpki-client