$ rpki-client -vvf rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/4EC7F2781C6D11EE954FFE11C4F9AE02.roa File: 4EC7F2781C6D11EE954FFE11C4F9AE02.roa (raw, json) Hash identifier: w+qinkSXPqfFkGrKujVKRg/K+7W2RknrpOWUP2rWWW8= Subject key identifier: C5:C1:77:7D:58:A7:CD:45:5C:11:7C:C2:48:2F:FD:17:D6:4C:59:B3 Certificate issuer: /CN=A9129969/serialNumber=01666FC7DD875DFFA0E19BC73CBADA8ECF9A5827 Certificate serial: 0172 Authority key identifier: 01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/4EC7F2781C6D11EE954FFE11C4F9AE02.roa Signing time: Thu 17 Apr 2025 06:31:42 +0000 ROA not before: Thu 17 Apr 2025 06:31:42 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 38832 IP address blocks: 103.212.67.0/24 maxlen: 24 119.15.64.0/24 maxlen: 24 119.15.66.0/24 maxlen: 24 119.15.68.0/23 maxlen: 24 119.15.70.0/23 maxlen: 24 203.3.70.0/24 maxlen: 24 203.5.59.0/24 maxlen: 24 203.8.95.0/24 maxlen: 24 203.26.51.0/24 maxlen: 24 203.26.177.0/24 maxlen: 24 203.27.199.0/24 maxlen: 24 203.31.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.crl rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:15:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 370 (0x172) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129969, serialNumber=01666FC7DD875DFFA0E19BC73CBADA8ECF9A5827 Validity Not Before: Apr 17 06:31:42 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6800a04e-898c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:20:48:89:ea:2a:a6:e1:e2:c2:76:dd:ab:af: 69:9b:47:4f:e4:64:5f:b8:96:40:f9:98:15:7e:1c: b1:50:7d:4c:de:ec:92:4d:98:7f:7e:58:ba:75:65: ac:43:b8:56:67:c4:56:7d:db:34:84:2b:f1:bc:14: 97:b4:d5:f9:d6:04:a1:99:a5:6c:1d:ff:4d:5f:a9: f7:18:ce:4a:d7:b1:01:20:56:f1:19:aa:77:4e:03: 40:65:a6:9c:9d:78:bd:df:fd:80:a9:c5:78:bc:ec: 65:a3:21:8d:ef:33:d3:9f:be:04:93:f1:6b:4f:46: 1a:c8:78:2b:90:1e:32:99:35:7f:5a:d2:18:35:e5: c5:3d:d0:86:96:18:1b:45:a8:b4:19:6e:6b:01:fe: 30:56:70:63:b1:9a:15:d0:a1:bc:ff:8a:4b:f9:c8: 13:93:56:d8:86:91:10:44:5f:30:96:ec:52:12:26: 4c:b9:6b:78:f8:a5:7c:ae:5c:e6:6a:9a:18:bb:2d: 63:e9:61:70:4d:10:4e:71:1a:8a:46:3b:49:47:16: 6e:3c:89:23:1b:94:83:22:a3:02:bb:ff:9b:d9:49: ac:ef:3f:3e:e7:91:68:88:be:4f:ef:28:5b:57:c2: 9f:98:54:8d:6a:e0:46:c6:b3:ed:49:9f:b2:4c:98: 28:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:C1:77:7D:58:A7:CD:45:5C:11:7C:C2:48:2F:FD:17:D6:4C:59:B3 X509v3 Authority Key Identifier: keyid:01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/4EC7F2781C6D11EE954FFE11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.67.0/24 119.15.64.0/24 119.15.66.0/24 119.15.68.0/22 203.3.70.0/24 203.5.59.0/24 203.8.95.0/24 203.26.51.0/24 203.26.177.0/24 203.27.199.0/24 203.31.75.0/24 Signature Algorithm: sha256WithRSAEncryption 68:23:c7:d3:c9:52:72:82:a4:14:af:4b:88:8c:51:1c:b3:b0: 8d:99:44:8b:fc:4b:8a:c2:d1:ab:1a:1c:cd:8e:da:0c:2b:8c: 06:a1:ae:75:a4:82:59:d0:cc:64:d3:45:8b:c2:e2:b9:df:a0: 1d:27:d2:e5:a5:b7:25:7b:6d:37:c9:0d:56:b9:af:42:39:80: 0d:a6:e0:1a:dc:16:56:53:3d:27:ae:ce:b8:a7:aa:3d:5a:5a: 71:03:f8:20:34:09:1c:42:c7:b4:c1:5e:1e:8b:2b:19:90:16: 85:16:c6:65:dd:72:ef:89:13:1f:75:79:61:c4:71:e0:c2:f9: ad:a1:6b:57:72:78:f3:cb:9d:20:18:06:fa:94:7c:01:42:97: 12:a6:dc:e7:38:e7:8d:37:fe:fe:7d:89:8d:11:df:8b:2f:f6: ce:cd:17:10:e6:37:92:74:cc:20:e9:12:f1:b0:85:ad:66:68: 59:bc:14:0f:ab:e0:b0:26:62:ec:89:a7:64:51:55:3c:39:46: 46:20:7f:7d:6a:12:cd:04:71:a1:b6:34:20:53:b9:48:17:04: 07:54:b1:f2:a2:b7:81:03:1a:ec:60:8d:e1:d9:ca:80:91:5e: 54:52:ca:64:41:ea:bc:6a:03:ee:2f:8f:02:90:a4:1f:a4:2f: d7:8e:bf:49 -----BEGIN CERTIFICATE----- MIIFrTCCBJWgAwIBAgICAXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk5NjkxMTAvBgNVBAUTKDAxNjY2RkM3REQ4NzVERkZBMEUxOUJDNzNDQkFEQThF Q0Y5QTU4MjcwHhcNMjUwNDE3MDYzMTQyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODAwYTA0ZS04OThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSBIieoqpuHiwnbdq69pm0dP5GRfuJZA+ZgVfhyxUH1M3uySTZh/fli6dWWs Q7hWZ8RWfds0hCvxvBSXtNX51gShmaVsHf9NX6n3GM5K17EBIFbxGap3TgNAZaac nXi93/2AqcV4vOxloyGN7zPTn74Ek/FrT0YayHgrkB4ymTV/WtIYNeXFPdCGlhgb Rai0GW5rAf4wVnBjsZoV0KG8/4pL+cgTk1bYhpEQRF8wluxSEiZMuWt4+KV8rlzm apoYuy1j6WFwTRBOcRqKRjtJRxZuPIkjG5SDIqMCu/+b2Ums7z8+55FoiL5P7yhb V8KfmFSNauBGxrPtSZ+yTJgoXwIDAQABo4IC0TCCAs0wHQYDVR0OBBYEFMXBd31Y p81FXBF8wkgv/RfWTFmzMB8GA1UdIwQYMBaAFAFmb8fdh13/oOGbxzy62o7Pmlgn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTk2OS9DRjM5NUMzODFD NkExMUVFQkY2MkFDMERDNEY5QUUwMi9BV1p2eDkySFhmLWc0WnZIUExyYWpzLWFX Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FXWnZ4OTJIWGYtZzRadkhQTHJhanMtYVdDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk5NjkvQ0YzOTVDMzgxQzZBMTFFRUJGNjJBQzBEQzRGOUFFMDIvNEVDN0YyNzgx QzZEMTFFRTk1NEZGRTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWwYIKwYBBQUHAQcBAf8E TDBKMEgEAgABMEIDBABn1EMDBAB3D0ADBAB3D0IDBAJ3D0QDBADLA0YDBADLBTsD BADLCF8DBADLGjMDBADLGrEDBADLG8cDBADLH0swDQYJKoZIhvcNAQELBQADggEB AGgjx9PJUnKCpBSvS4iMURyzsI2ZRIv8S4rC0asaHM2O2gwrjAahrnWkglnQzGTT RYvC4rnfoB0n0uWltyV7bTfJDVa5r0I5gA2m4BrcFlZTPSeuzrinqj1aWnED+CA0 CRxCx7TBXh6LKxmQFoUWxmXdcu+JEx91eWHEceDC+a2ha1dyePPLnSAYBvqUfAFC lxKm3Oc45403/v59iY0R34sv9s7NFxDmN5J0zCDpEvGwha1maFm8FA+r4LAmYuyJ p2RRVTw5RkYgf31qEs0EcaG2NCBTuUgXBAdUsfKit4EDGuxgjeHZyoCRXlRSymRB 6rxqA+4vjwKQpB+kL9eOv0k= -----END CERTIFICATE-----Generated at Sat Apr 26 17:03:02 2025 by rpki-client