$ rpki-client -vvf rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/7338235CC06011EE882BC34AC4F9AE02.roa File: 7338235CC06011EE882BC34AC4F9AE02.roa (raw, json) Hash identifier: gzRITOkOOGrTx/TsBYiR/c3khv1Gc2m9Qh3FJnnq+g4= Subject key identifier: 22:42:F4:DE:64:67:4A:2A:B5:2A:27:33:23:F6:E0:F7:52:34:02:16 Certificate issuer: /CN=A91301D5/serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Certificate serial: 14F9 Authority key identifier: 44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/7338235CC06011EE882BC34AC4F9AE02.roa Signing time: Sat 12 Apr 2025 16:55:39 +0000 ROA not before: Sat 12 Apr 2025 16:55:39 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 135106 IP address blocks: 103.209.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:53:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5369 (0x14f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91301D5, serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Validity Not Before: Apr 12 16:55:39 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67fa9b0a-22ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:28:98:2a:c7:20:1b:77:95:0e:ac:f4:d0:a1: 36:2f:48:83:f9:ca:b2:65:87:f6:5c:c1:0a:bc:06: 97:23:01:a1:8c:38:c0:2f:ab:39:51:7b:79:6d:56: be:cf:0b:5a:dd:9c:d4:1e:5a:b5:aa:ea:cf:dd:78: 46:65:c3:a8:7f:7e:57:6b:16:2e:27:c5:49:89:3c: 24:b1:e4:5e:53:f5:dd:7e:ee:26:c7:e7:01:0e:fe: 95:21:f3:dd:7c:3c:60:73:8b:f7:2d:84:b5:b2:8b: a8:f3:f1:8b:71:56:92:f5:ae:e1:63:aa:61:de:f9: 7f:09:70:44:5f:23:83:e5:3a:ef:94:92:f8:87:3b: 43:6c:2d:1b:df:26:6d:45:52:a8:80:ca:1a:84:16: a7:27:d3:b6:ac:04:8d:4a:b1:c9:a1:58:fb:37:ac: 28:56:cd:c0:22:34:38:48:5b:8b:62:e1:d0:93:1f: d0:f7:8a:a5:bb:9a:41:1f:6e:fd:52:28:ed:d4:63: a0:b1:64:3a:08:4b:b5:34:1e:89:ee:17:a2:d7:b8: 9e:7e:85:e5:11:92:cf:4f:21:3b:ed:56:6a:ed:33: 55:15:db:6a:51:c7:d5:c9:8a:ac:46:e7:35:6a:f2: 4b:ff:da:38:ec:3e:3c:76:42:a2:99:b2:22:df:8b: 3b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:42:F4:DE:64:67:4A:2A:B5:2A:27:33:23:F6:E0:F7:52:34:02:16 X509v3 Authority Key Identifier: keyid:44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/7338235CC06011EE882BC34AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.124.0/24 Signature Algorithm: sha256WithRSAEncryption bf:88:8e:88:14:a9:a8:90:4d:fd:61:e9:64:60:66:9c:d5:1d: 0e:4a:0f:0b:8c:9a:ea:c7:6a:2c:e5:18:3f:a9:92:5f:d4:53: 38:53:92:4a:d6:e1:4b:04:db:5d:97:67:07:12:e3:15:d2:2b: 47:e2:91:ef:3e:10:b6:cc:42:74:42:2d:e8:05:ff:1f:6a:d9: c1:02:cc:47:dd:32:f6:09:6d:9a:31:59:ed:1b:5f:1d:68:45: f6:55:88:5c:a5:87:b9:e4:b5:8f:ed:e8:cc:b5:71:fe:b5:a7: 30:c9:df:0c:07:c9:0e:84:11:28:35:97:d5:eb:7b:2d:d9:6a: 0c:aa:df:e1:45:d1:6b:33:4c:85:f1:72:be:f9:9d:03:ea:b8: eb:f4:76:b0:dd:77:dc:6c:a6:34:4d:61:35:c8:86:53:d1:26: a5:50:9a:69:54:00:c0:06:33:b8:8f:47:4b:f0:3b:77:b3:5e: 38:a7:7c:c8:8d:39:d3:6e:4d:11:7f:23:6a:9f:ce:75:37:e2: d1:71:ee:b1:75:55:58:1f:d0:8e:dc:b7:cf:0c:f4:08:b0:64: bb:07:de:31:4f:b8:95:75:03:48:b7:81:2c:db:ad:2f:d1:9d: a8:51:19:05:34:6b:a1:38:90:ce:e1:de:88:e7:ce:27:83:60: 0c:b2:6d:8b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxRDUxMTAvBgNVBAUTKDQ0OEJEOTcxQTMwNkFCMDM2Mzk5RTcxNkRDMjIxQ0Ez MzhGNThCNTkwHhcNMjUwNDEyMTY1NTM5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZhOWIwYS0yMmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAryiYKscgG3eVDqz00KE2L0iD+cqyZYf2XMEKvAaXIwGhjDjAL6s5UXt5bVa+ zwta3ZzUHlq1qurP3XhGZcOof35XaxYuJ8VJiTwkseReU/Xdfu4mx+cBDv6VIfPd fDxgc4v3LYS1souo8/GLcVaS9a7hY6ph3vl/CXBEXyOD5TrvlJL4hztDbC0b3yZt RVKogMoahBanJ9O2rASNSrHJoVj7N6woVs3AIjQ4SFuLYuHQkx/Q94qlu5pBH279 Uijt1GOgsWQ6CEu1NB6J7hei17iefoXlEZLPTyE77VZq7TNVFdtqUcfVyYqsRuc1 avJL/9o47D48dkKimbIi34s7RQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCJC9N5k Z0oqtSonMyP24PdSNAIWMB8GA1UdIwQYMBaAFESL2XGjBqsDY5nnFtwiHKM49YtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDFENS9ENEJFMDBENDYz RTUxMUU4QjVDRkU0MUFDNEY5QUUwMi9SSXZaY2FNR3F3TmptZWNXM0NJY296ajFp MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JJdlpjYU1HcXdOam1lY1czQ0ljb3pqMWkxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzAxRDUvRDRCRTAwRDQ2M0U1MTFFOEI1Q0ZFNDFBQzRGOUFFMDIvNzMzODIzNUND MDYwMTFFRTg4MkJDMzRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn0XwwDQYJKoZIhvcNAQELBQADggEBAL+IjogUqaiQTf1h 6WRgZpzVHQ5KDwuMmurHaizlGD+pkl/UUzhTkkrW4UsE212XZwcS4xXSK0fike8+ ELbMQnRCLegF/x9q2cECzEfdMvYJbZoxWe0bXx1oRfZViFylh7nktY/t6My1cf61 pzDJ3wwHyQ6EESg1l9Xrey3Zagyq3+FF0WszTIXxcr75nQPquOv0drDdd9xspjRN YTXIhlPRJqVQmmlUAMAGM7iPR0vwO3ezXjinfMiNOdNuTRF/I2qfznU34tFx7rF1 VVgf0I7ct88M9AiwZLsH3jFPuJV1A0i3gSzbrS/RnahRGQU0a6E4kM7h3ojnzieD YAyybYs= -----END CERTIFICATE-----Generated at Sat Apr 26 05:54:07 2025 by rpki-client