$ rpki-client -vvf rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/8818EDF88F2C11EDA558DE4DC4F9AE02.roa File: 8818EDF88F2C11EDA558DE4DC4F9AE02.roa (raw, json) Hash identifier: b6hr7IhNuFUDMwuO8Nb6ge3GDbb3DEInCX/HHEiFoVM= Subject key identifier: B2:70:D2:70:CF:48:89:69:DE:87:F4:86:1C:77:27:D2:B4:8B:95:46 Certificate issuer: /CN=A9129797/serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43 Certificate serial: 10E7 Authority key identifier: 70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/8818EDF88F2C11EDA558DE4DC4F9AE02.roa Signing time: Fri 28 Feb 2025 18:27:00 +0000 ROA not before: Fri 28 Feb 2025 18:27:00 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 58689 IP address blocks: 103.132.248.0/23 maxlen: 23 103.132.248.0/24 maxlen: 24 103.132.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.crl rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:18:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4327 (0x10e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129797, serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43 Validity Not Before: Feb 28 18:27:00 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c1fff3-0b82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:91:fa:52:d5:f5:cc:fd:79:53:43:25:8a:33: 80:94:87:69:17:bd:4e:14:b1:bf:4a:90:d9:26:17: f9:5d:3c:25:41:4d:71:db:a3:96:6d:d6:f4:67:7e: 41:14:fb:4a:0f:38:ee:c0:03:3f:8c:b2:b9:f2:ee: 5c:8c:18:90:67:5a:f3:0e:33:cb:1d:72:90:cd:86: 94:eb:17:b6:09:45:4a:9e:f0:e6:1d:f3:fa:5c:24: 2a:a0:a3:e9:54:c6:57:83:3f:f8:da:13:45:57:51: 9a:f3:77:14:d0:7b:6a:ca:4e:c3:d7:f7:8b:d8:af: a4:4b:9c:17:db:1b:5c:c1:84:83:1b:f8:67:b7:47: 5b:0c:d3:91:81:bd:68:48:ff:e7:9d:45:b1:f6:63: 53:d8:56:6f:21:19:93:78:14:76:5e:32:47:7f:a4: f8:bb:90:46:d8:11:ef:79:ce:85:60:88:46:ad:ce: cc:f6:2b:44:a2:fc:7d:53:65:40:5e:ef:9f:29:4c: 45:75:27:23:55:72:66:d5:be:47:a1:5f:02:3d:70: 48:01:f4:e9:59:f5:14:db:d5:7e:70:f6:0d:94:61: b1:3a:5f:e2:5d:97:cb:4b:b7:8e:c2:2b:18:a9:c6: 0f:96:d7:a1:97:92:2b:23:f6:a6:03:31:7a:e7:c4: 5d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:70:D2:70:CF:48:89:69:DE:87:F4:86:1C:77:27:D2:B4:8B:95:46 X509v3 Authority Key Identifier: keyid:70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/8818EDF88F2C11EDA558DE4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.132.248.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:4f:2f:35:7c:55:bf:e5:94:b8:4e:aa:e0:38:39:f1:2a:d2: 0e:c2:2a:e5:79:78:cf:e2:94:ad:76:a6:32:87:85:2b:10:4a: 16:d9:aa:6d:03:bf:6c:56:ce:a5:a5:87:1b:be:bc:09:5b:fb: 18:39:d5:77:eb:db:b6:7c:d4:29:ad:41:b4:6e:fa:3e:f3:fe: 35:e7:d5:85:cf:a1:bf:eb:00:5d:4b:12:c1:c0:9c:49:4f:26: 82:5d:35:3c:44:81:d6:8e:2b:6c:7b:c5:fe:0d:d5:ef:27:b1: 07:1a:79:57:ac:37:72:00:0b:4b:2a:da:5f:ac:21:bc:52:10: 61:e5:66:c5:f2:7a:17:e3:8f:4e:2d:71:ff:4f:12:04:82:67: 6e:d9:d2:1e:4d:b3:c1:7e:b1:fe:a9:f2:2d:22:38:65:d2:3c: 36:78:15:7a:d1:d4:b8:c1:77:50:6d:e7:77:24:ee:86:2e:75: ec:32:f8:34:58:b0:01:0e:10:30:7d:c2:19:0b:e9:8c:8e:00: fb:ff:96:2d:e5:95:07:c1:03:36:78:ac:6b:1e:b1:ff:07:40: b6:f2:55:40:a0:5c:57:c4:79:b3:61:00:c6:87:af:b9:dc:18: cd:bf:86:e9:7d:54:05:88:e3:65:46:5a:fb:d8:02:27:d7:e6: 90:1b:4b:9d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3OTcxMTAvBgNVBAUTKDcwQkQxQTVEOTUxMkJGNkRFMEJBNjkyNTNEQkJGMDEx MDNFNTNBNDMwHhcNMjUwMjI4MTgyNzAwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MxZmZmMy0wYjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAppH6UtX1zP15U0MlijOAlIdpF71OFLG/SpDZJhf5XTwlQU1x26OWbdb0Z35B FPtKDzjuwAM/jLK58u5cjBiQZ1rzDjPLHXKQzYaU6xe2CUVKnvDmHfP6XCQqoKPp VMZXgz/42hNFV1Ga83cU0Htqyk7D1/eL2K+kS5wX2xtcwYSDG/hnt0dbDNORgb1o SP/nnUWx9mNT2FZvIRmTeBR2XjJHf6T4u5BG2BHvec6FYIhGrc7M9itEovx9U2VA Xu+fKUxFdScjVXJm1b5HoV8CPXBIAfTpWfUU29V+cPYNlGGxOl/iXZfLS7eOwisY qcYPltehl5IrI/amAzF658Rd0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFLJw0nDP SIlp3of0hhx3J9K0i5VGMB8GA1UdIwQYMBaAFHC9Gl2VEr9t4LppJT278BED5TpD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTc5Ny8wOUYyRDk5NDFB MjIxMUU5QkMwNkQzMEFDNEY5QUUwMi9jTDBhWFpVU3YyM2d1bWtsUGJ2d0VRUGxP a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMMGFYWlVTdjIzZ3Vta2xQYnZ3RVFQbE9rTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk3OTcvMDlGMkQ5OTQxQTIyMTFFOUJDMDZEMzBBQzRGOUFFMDIvODgxOEVERjg4 RjJDMTFFREE1NThERTREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnhPgwDQYJKoZIhvcNAQELBQADggEBAG5PLzV8Vb/llLhO quA4OfEq0g7CKuV5eM/ilK12pjKHhSsQShbZqm0Dv2xWzqWlhxu+vAlb+xg51Xfr 27Z81CmtQbRu+j7z/jXn1YXPob/rAF1LEsHAnElPJoJdNTxEgdaOK2x7xf4N1e8n sQcaeVesN3IAC0sq2l+sIbxSEGHlZsXyehfjj04tcf9PEgSCZ27Z0h5Ns8F+sf6p 8i0iOGXSPDZ4FXrR1LjBd1Bt53ck7oYudewy+DRYsAEOEDB9whkL6YyOAPv/li3l lQfBAzZ4rGsesf8HQLbyVUCgXFfEebNhAMaHr7ncGM2/hul9VAWI42VGWvvYAifX 5pAbS50= -----END CERTIFICATE-----Generated at Sat Apr 26 17:05:07 2025 by rpki-client