$ rpki-client -vvf rpki.apnic.net/member_repository/A9130803/D86ABF00175E11EAA8A33260C4F9AE02/8DC4FE4C175F11EAB3DB1F61C4F9AE02.roa File: 8DC4FE4C175F11EAB3DB1F61C4F9AE02.roa (raw, json) Hash identifier: 44EICOrdULHxxmbJqfrzipdifGEHemkJ/PfPJGyHNtc= Subject key identifier: E0:AD:94:12:E1:74:D6:4F:2C:35:2B:6C:20:E0:94:1C:C4:EC:11:FC Certificate issuer: /CN=A9130803/serialNumber=507A0EAF4751ACB52C2C7FBF981D11BCE8358BA1 Certificate serial: 0B9F Authority key identifier: 50:7A:0E:AF:47:51:AC:B5:2C:2C:7F:BF:98:1D:11:BC:E8:35:8B:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHoOr0dRrLUsLH-_mB0RvOg1i6E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130803/D86ABF00175E11EAA8A33260C4F9AE02/8DC4FE4C175F11EAB3DB1F61C4F9AE02.roa Signing time: Mon 30 Dec 2024 18:47:43 +0000 ROA not before: Mon 30 Dec 2024 18:47:43 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 139825 IP address blocks: 103.145.210.0/23 maxlen: 23 103.145.210.0/24 maxlen: 24 103.145.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130803/D86ABF00175E11EAA8A33260C4F9AE02/UHoOr0dRrLUsLH-_mB0RvOg1i6E.crl rsync://rpki.apnic.net/member_repository/A9130803/D86ABF00175E11EAA8A33260C4F9AE02/UHoOr0dRrLUsLH-_mB0RvOg1i6E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHoOr0dRrLUsLH-_mB0RvOg1i6E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:44:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2975 (0xb9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130803, serialNumber=507A0EAF4751ACB52C2C7FBF981D11BCE8358BA1 Validity Not Before: Dec 30 18:47:43 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6772eacf-9898 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:48:37:cf:e6:13:f7:d2:8e:ca:f5:36:ef:ad: eb:14:cc:5e:1e:a9:d3:0f:3a:fd:8a:82:34:5e:64: 35:d9:b6:43:d3:17:1a:b3:b4:61:8e:10:bd:dd:e2: 88:80:32:93:13:b7:3d:3e:2e:bc:fd:fe:2f:f4:63: 94:c5:54:14:fb:df:5a:46:7a:fc:70:50:da:1a:59: d6:2e:0b:68:6c:88:21:b9:5d:d5:21:c2:15:c6:78: 58:37:de:58:56:e8:4d:e7:cb:e9:4b:ef:8b:c3:c6: 3c:59:c9:ac:a9:3e:ba:ab:f7:b4:ab:b9:e1:48:30: 17:18:40:ca:57:08:a9:67:b5:07:fd:7e:6b:42:c9: c0:e3:42:52:0b:ee:c3:4c:dc:d6:13:4f:5d:92:b7: 3b:ca:51:4e:5d:d6:b1:38:f9:47:39:b2:ec:4e:7a: 89:7f:05:8c:d6:d7:46:aa:47:3a:aa:97:b3:a1:9e: b4:9c:97:b8:ff:26:d6:17:77:8e:a8:67:0b:3b:6b: 7e:15:94:16:00:b5:4d:ef:65:0b:19:1a:63:19:d6: ff:cf:b4:f2:83:72:25:ff:b5:34:14:d3:57:46:36: 63:44:e3:02:5e:7f:42:47:fc:b0:29:cf:d0:b2:67: e2:af:fa:2a:fc:60:74:38:50:d0:e5:e2:da:46:93: ce:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:AD:94:12:E1:74:D6:4F:2C:35:2B:6C:20:E0:94:1C:C4:EC:11:FC X509v3 Authority Key Identifier: keyid:50:7A:0E:AF:47:51:AC:B5:2C:2C:7F:BF:98:1D:11:BC:E8:35:8B:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130803/D86ABF00175E11EAA8A33260C4F9AE02/UHoOr0dRrLUsLH-_mB0RvOg1i6E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UHoOr0dRrLUsLH-_mB0RvOg1i6E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130803/D86ABF00175E11EAA8A33260C4F9AE02/8DC4FE4C175F11EAB3DB1F61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.210.0/23 Signature Algorithm: sha256WithRSAEncryption 51:ed:e7:bb:51:0a:87:9d:de:2a:f3:8f:fc:13:87:b0:c7:db: 6a:94:e4:2b:bb:e5:69:52:d0:61:22:e9:91:9b:7a:91:8f:87: 7c:52:6f:de:b5:5e:1b:a9:bd:07:a7:66:65:f2:8e:84:39:af: bc:66:cb:e1:21:6b:c2:21:c7:ce:2d:5d:ca:87:05:3c:f4:cd: 51:f3:cd:8b:f9:a0:3c:ea:0a:bf:88:21:d1:13:7b:49:a7:d9: e5:f2:8b:29:56:c9:a2:3e:44:8a:42:d6:e9:66:84:45:94:c7: 8a:ec:57:d5:3a:18:14:22:c3:49:8d:24:af:20:7a:05:08:aa: 30:ec:db:9a:f6:5c:0c:52:42:72:65:b1:33:f8:03:31:eb:15: 85:1b:64:f8:c6:b2:03:8a:21:24:9d:c0:f2:e9:2e:c0:ca:fa: 8a:f1:bd:65:28:86:67:8b:96:c2:a5:d5:db:86:bd:85:5e:66: 1c:3b:b3:ad:9d:35:5c:39:4f:93:e9:1f:da:21:76:ff:e8:41: 1c:f7:6f:23:90:dd:84:a3:8c:cc:f9:de:c3:68:1d:6b:8e:92: fe:79:d0:f7:61:88:f6:79:8a:77:36:7c:7c:66:71:30:64:ca: 47:aa:1b:13:21:eb:b7:cf:99:e6:76:66:21:af:fc:92:1d:a9: b4:cd:e7:74 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC58wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA4MDMxMTAvBgNVBAUTKDUwN0EwRUFGNDc1MUFDQjUyQzJDN0ZCRjk4MUQxMUJD RTgzNThCQTEwHhcNMjQxMjMwMTg0NzQzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzcyZWFjZi05ODk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEg3z+YT99KOyvU2763rFMxeHqnTDzr9ioI0XmQ12bZD0xcas7RhjhC93eKI gDKTE7c9Pi68/f4v9GOUxVQU+99aRnr8cFDaGlnWLgtobIghuV3VIcIVxnhYN95Y VuhN58vpS++Lw8Y8WcmsqT66q/e0q7nhSDAXGEDKVwipZ7UH/X5rQsnA40JSC+7D TNzWE09dkrc7ylFOXdaxOPlHObLsTnqJfwWM1tdGqkc6qpezoZ60nJe4/ybWF3eO qGcLO2t+FZQWALVN72ULGRpjGdb/z7Tyg3Il/7U0FNNXRjZjROMCXn9CR/ywKc/Q smfir/oq/GB0OFDQ5eLaRpPOOwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOCtlBLh dNZPLDUrbCDglBzE7BH8MB8GA1UdIwQYMBaAFFB6Dq9HUay1LCx/v5gdEbzoNYuh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDgwMy9EODZBQkYwMDE3 NUUxMUVBQThBMzMyNjBDNEY5QUUwMi9VSG9PcjBkUnJMVXNMSC1fbUIwUnZPZzFp NkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VIb09yMGRSckxVc0xILV9tQjBSdk9nMWk2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzA4MDMvRDg2QUJGMDAxNzVFMTFFQUE4QTMzMjYwQzRGOUFFMDIvOERDNEZFNEMx NzVGMTFFQUIzREIxRjYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkdIwDQYJKoZIhvcNAQELBQADggEBAFHt57tRCoed3irz j/wTh7DH22qU5Cu75WlS0GEi6ZGbepGPh3xSb961XhupvQenZmXyjoQ5r7xmy+Eh a8Ihx84tXcqHBTz0zVHzzYv5oDzqCr+IIdETe0mn2eXyiylWyaI+RIpC1ulmhEWU x4rsV9U6GBQiw0mNJK8gegUIqjDs25r2XAxSQnJlsTP4AzHrFYUbZPjGsgOKISSd wPLpLsDK+orxvWUohmeLlsKl1duGvYVeZhw7s62dNVw5T5PpH9ohdv/oQRz3byOQ 3YSjjMz53sNoHWuOkv550PdhiPZ5inc2fHxmcTBkykeqGxMh67fPmeZ2ZiGv/JId qbTN53Q= -----END CERTIFICATE-----Generated at Sat Apr 26 13:06:31 2025 by rpki-client