$ rpki-client -vvf rpki.apnic.net/member_repository/A9137917/492AB5942A0311EBA69DDD2DC4F9AE02/DF8912BEB1E511EB90B9DD25C4F9AE02.roa File: DF8912BEB1E511EB90B9DD25C4F9AE02.roa (raw, json) Hash identifier: T5bntFKOXUJY90ZSt6wzx94eeco+PumRT0JCKh3cGUw= Subject key identifier: 1C:58:7A:46:87:7E:71:E1:DA:C8:70:4A:AF:49:F8:CD:89:52:4F:2C Certificate issuer: /CN=A9137917/serialNumber=F4541FB77965DE14A59F9EF233DE19F9205F5F98 Certificate serial: 072F Authority key identifier: F4:54:1F:B7:79:65:DE:14:A5:9F:9E:F2:33:DE:19:F9:20:5F:5F:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FQft3ll3hSln57yM94Z-SBfX5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137917/492AB5942A0311EBA69DDD2DC4F9AE02/DF8912BEB1E511EB90B9DD25C4F9AE02.roa Signing time: Mon 30 Dec 2024 21:40:39 +0000 ROA not before: Mon 30 Dec 2024 21:40:39 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 38230 IP address blocks: 103.158.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137917/492AB5942A0311EBA69DDD2DC4F9AE02/9FQft3ll3hSln57yM94Z-SBfX5g.crl rsync://rpki.apnic.net/member_repository/A9137917/492AB5942A0311EBA69DDD2DC4F9AE02/9FQft3ll3hSln57yM94Z-SBfX5g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FQft3ll3hSln57yM94Z-SBfX5g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1839 (0x72f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137917, serialNumber=F4541FB77965DE14A59F9EF233DE19F9205F5F98 Validity Not Before: Dec 30 21:40:39 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67731357-6317 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:94:c2:db:be:ff:6a:c7:fd:b2:81:6a:93:cf: b7:97:bf:20:15:66:76:ba:08:10:64:4a:8a:df:f9: 26:af:b0:db:7c:0a:68:51:36:4c:ab:70:c0:f2:31: 26:fa:20:23:f1:bd:34:fb:60:b7:c2:4e:91:9d:d2: 0d:76:ae:c9:ac:b6:12:fb:24:6d:71:8d:02:34:20: 38:cc:f1:60:0d:7f:48:3d:5d:a5:05:1d:c9:eb:b9: 98:7e:49:97:b0:f8:a2:74:e4:df:38:da:b0:4a:fa: f3:f1:54:a7:29:b9:6a:71:64:d7:d5:ab:d1:73:93: 0d:bd:d7:53:bd:38:e9:22:89:65:11:28:4f:73:f8: 9d:e4:b3:9b:4b:b7:9f:8d:38:ae:dd:38:78:11:6e: e6:6d:2f:38:47:e5:2c:79:a3:fc:09:0a:9f:3d:3e: 12:c1:d2:39:ed:e3:74:81:85:46:10:9f:9e:69:38: 4f:9e:36:18:0a:0b:2e:1a:a0:85:04:ee:cd:9a:50: 68:7b:9a:05:59:32:5f:5f:ab:42:6a:11:93:dc:b2: 89:c3:4b:ca:a2:ca:bc:3e:e8:06:27:0b:e6:89:e6: 6a:f5:b7:4c:16:2c:e3:7d:a0:54:ad:96:96:e1:22: 53:66:54:fa:ae:be:de:de:ef:6b:cb:bc:7f:8e:7e: e0:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:58:7A:46:87:7E:71:E1:DA:C8:70:4A:AF:49:F8:CD:89:52:4F:2C X509v3 Authority Key Identifier: keyid:F4:54:1F:B7:79:65:DE:14:A5:9F:9E:F2:33:DE:19:F9:20:5F:5F:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137917/492AB5942A0311EBA69DDD2DC4F9AE02/9FQft3ll3hSln57yM94Z-SBfX5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FQft3ll3hSln57yM94Z-SBfX5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137917/492AB5942A0311EBA69DDD2DC4F9AE02/DF8912BEB1E511EB90B9DD25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.222.0/24 Signature Algorithm: sha256WithRSAEncryption 75:1a:bf:1d:b2:5b:f6:40:db:34:01:66:d1:af:a3:ef:53:1d: 86:da:f8:ad:e5:f9:2c:58:71:0c:ae:6f:62:37:4b:d0:0a:02: 2e:a7:ab:ba:4d:5b:38:94:0e:e5:45:65:86:58:a7:cb:a8:2f: 7a:a6:33:d2:59:28:06:e0:22:29:88:aa:69:a5:7c:be:ca:50: ad:98:53:6c:c2:ee:c5:f3:f7:10:e4:3e:d9:8e:ed:60:95:53: 64:2e:cd:79:25:5a:fe:99:e2:08:55:ff:8b:a7:76:14:77:96: b2:bb:c7:1b:e7:9e:3b:d2:18:cb:e0:3e:fe:3f:b3:b5:29:d2: 70:ca:3d:43:42:9e:0a:25:32:4d:8f:48:bc:2a:15:9d:18:70: 1c:09:ba:e8:72:19:15:d4:ad:c9:2e:d3:c8:54:2b:a9:b2:e9: b6:a8:8f:01:c3:04:3b:a7:ad:bc:dc:7f:37:c8:0d:f1:70:e0: 90:47:a8:c2:a5:d6:05:3b:27:fa:06:d4:76:75:48:56:8f:bb: e2:be:88:f4:d7:b2:77:45:a3:f6:51:00:72:c3:37:f0:17:35: 70:cb:cf:01:16:98:f4:ff:b5:8d:97:c4:38:20:7c:8b:a4:b1: d0:b6:a9:e7:f6:3e:d7:94:6c:50:bc:a3:b0:34:e2:58:bb:a2: dd:f4:a5:df -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzc5MTcxMTAvBgNVBAUTKEY0NTQxRkI3Nzk2NURFMTRBNTlGOUVGMjMzREUxOUY5 MjA1RjVGOTgwHhcNMjQxMjMwMjE0MDM5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzczMTM1Ny02MzE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZTC277/asf9soFqk8+3l78gFWZ2uggQZEqK3/kmr7DbfApoUTZMq3DA8jEm +iAj8b00+2C3wk6RndINdq7JrLYS+yRtcY0CNCA4zPFgDX9IPV2lBR3J67mYfkmX sPiidOTfONqwSvrz8VSnKblqcWTX1avRc5MNvddTvTjpIollEShPc/id5LObS7ef jTiu3Th4EW7mbS84R+UseaP8CQqfPT4SwdI57eN0gYVGEJ+eaThPnjYYCgsuGqCF BO7NmlBoe5oFWTJfX6tCahGT3LKJw0vKosq8PugGJwvmieZq9bdMFizjfaBUrZaW 4SJTZlT6rr7e3u9ry7x/jn7gEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBxYekaH fnHh2shwSq9J+M2JUk8sMB8GA1UdIwQYMBaAFPRUH7d5Zd4UpZ+e8jPeGfkgX1+Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzkxNy80OTJBQjU5NDJB MDMxMUVCQTY5REREMkRDNEY5QUUwMi85RlFmdDNsbDNoU2xuNTd5TTk0Wi1TQmZY NWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGUWZ0M2xsM2hTbG41N3lNOTRaLVNCZlg1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzc5MTcvNDkyQUI1OTQyQTAzMTFFQkE2OURERDJEQzRGOUFFMDIvREY4OTEyQkVC MUU1MTFFQjkwQjlERDI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnnt4wDQYJKoZIhvcNAQELBQADggEBAHUavx2yW/ZA2zQB ZtGvo+9THYba+K3l+SxYcQyub2I3S9AKAi6nq7pNWziUDuVFZYZYp8uoL3qmM9JZ KAbgIimIqmmlfL7KUK2YU2zC7sXz9xDkPtmO7WCVU2QuzXklWv6Z4ghV/4undhR3 lrK7xxvnnjvSGMvgPv4/s7Up0nDKPUNCngolMk2PSLwqFZ0YcBwJuuhyGRXUrcku 08hUK6my6baojwHDBDunrbzcfzfIDfFw4JBHqMKl1gU7J/oG1HZ1SFaPu+K+iPTX sndFo/ZRAHLDN/AXNXDLzwEWmPT/tY2XxDggfIuksdC2qef2PteUbFC8o7A04li7 ot30pd8= -----END CERTIFICATE-----Generated at Sat Apr 26 05:56:34 2025 by rpki-client