$ rpki-client -vvf rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/E4C4FBB8200811F0AB28851DC4F9AE02.roa File: E4C4FBB8200811F0AB28851DC4F9AE02.roa (raw, json) Hash identifier: pVHrgOFKFC07D4oFMxsUE21iWBEjMFIznwU/76ruSbU= Subject key identifier: 4B:A1:45:E6:C0:CD:AD:BE:8E:85:1B:4A:57:84:F3:C2:C6:F8:39:9C Certificate issuer: /CN=A9140D69/serialNumber=103FA8BDFFFB9F0557072C47332B81A9E80EDD35 Certificate serial: 02C4 Authority key identifier: 10:3F:A8:BD:FF:FB:9F:05:57:07:2C:47:33:2B:81:A9:E8:0E:DD:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ED-ovf_7nwVXByxHMyuBqegO3TU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/E4C4FBB8200811F0AB28851DC4F9AE02.roa Signing time: Wed 23 Apr 2025 06:05:50 +0000 ROA not before: Wed 23 Apr 2025 06:05:50 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 62610 IP address blocks: 103.237.101.0/24 maxlen: 24 103.237.102.0/23 maxlen: 23 163.53.244.0/24 maxlen: 24 163.53.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/ED-ovf_7nwVXByxHMyuBqegO3TU.crl rsync://rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/ED-ovf_7nwVXByxHMyuBqegO3TU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ED-ovf_7nwVXByxHMyuBqegO3TU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 708 (0x2c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140D69, serialNumber=103FA8BDFFFB9F0557072C47332B81A9E80EDD35 Validity Not Before: Apr 23 06:05:50 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6808833d-8e50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7e:5e:fc:f7:99:07:5a:08:93:98:e0:a0:64: b7:4f:1a:39:ac:1f:cc:e4:9e:da:8f:5f:d5:87:64: f4:b1:76:8f:e6:cd:36:3c:c4:e4:90:1b:60:1a:4f: f6:23:91:4f:41:b9:3b:80:62:b2:d9:be:a1:61:87: 90:38:4f:73:91:c3:94:18:0a:15:37:73:1c:23:34: 67:c4:3e:83:f1:92:2e:0f:03:37:39:64:08:9c:87: 94:df:2f:b5:f3:75:57:70:13:4b:38:5c:36:b1:53: fb:cc:8e:f2:7f:01:80:c2:73:a0:b4:7f:d9:c7:ef: 82:ff:b5:cb:3c:f6:82:ed:af:68:a1:21:b5:51:58: f2:43:0b:a1:1a:7a:57:be:65:8e:22:fd:6f:46:fa: 0d:0d:c1:61:29:4a:39:4e:06:ea:16:ce:e3:09:08: eb:14:07:32:dc:e6:fc:c6:fc:19:9d:5b:53:56:53: 1c:4a:7d:e5:fb:9d:2a:20:a3:42:80:48:78:d3:dd: dc:89:7d:ec:f5:af:0c:87:eb:12:83:7e:46:97:38: 60:10:74:de:32:49:43:f5:df:ab:4b:0c:0b:4f:d6: b1:84:99:59:85:cf:86:a5:f0:65:ba:5c:eb:ab:4e: c4:15:23:ac:db:15:38:08:db:9f:75:57:2b:0c:1e: fa:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A1:45:E6:C0:CD:AD:BE:8E:85:1B:4A:57:84:F3:C2:C6:F8:39:9C X509v3 Authority Key Identifier: keyid:10:3F:A8:BD:FF:FB:9F:05:57:07:2C:47:33:2B:81:A9:E8:0E:DD:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/ED-ovf_7nwVXByxHMyuBqegO3TU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ED-ovf_7nwVXByxHMyuBqegO3TU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140D69/0E177D5A058C11EDADD66011C4F9AE02/E4C4FBB8200811F0AB28851DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.237.101.0-103.237.103.255 163.53.244.0/24 163.53.247.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:50:b6:01:49:13:e7:d7:bf:e4:0e:db:4a:1c:7e:80:c5:a5: 90:e3:1a:80:d2:f9:7d:44:8f:e8:76:d6:7b:03:c6:ce:f0:04: 0a:35:36:8a:2a:96:d6:de:b1:ca:7e:f1:0e:f4:fa:b7:32:07: ea:22:1b:92:eb:fa:f0:db:db:64:f7:bf:36:a2:3d:b0:4b:f9: 1f:a6:f0:38:47:1e:c8:58:ce:64:69:4e:fa:99:4d:79:8c:9b: e6:f4:98:e5:93:21:e0:2c:ef:66:e2:87:65:25:18:6c:33:39: 8a:f6:5c:00:9a:76:58:0d:53:af:19:1f:5b:a1:2e:89:3a:37: d3:f7:3d:3a:6e:b6:3a:18:d0:a1:8a:73:0b:39:74:6f:e6:e6: 7b:13:f8:6f:4e:44:b8:f8:c4:a5:83:e3:8f:0f:5d:e8:63:65: f8:35:2a:c0:c2:39:dc:3f:7b:0d:e7:cf:9c:48:75:60:a4:8a: e6:f0:96:c0:1e:57:a5:31:da:cd:44:e0:33:17:ad:7c:f6:6f: d2:fc:a1:01:c1:f8:43:41:0e:ec:86:c5:e1:00:fb:62:82:71: 0e:74:1f:09:ee:f0:12:0d:b2:ba:f8:4b:5a:ef:bd:67:11:14: d1:8b:57:6e:97:94:98:52:2b:56:fc:c5:de:c2:14:16:61:b7: 2a:d5:b4:09 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICAsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBENjkxMTAvBgNVBAUTKDEwM0ZBOEJERkZGQjlGMDU1NzA3MkM0NzMzMkI4MUE5 RTgwRUREMzUwHhcNMjUwNDIzMDYwNTUwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA4ODMzZC04ZTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApH5e/PeZB1oIk5jgoGS3Txo5rB/M5J7aj1/Vh2T0sXaP5s02PMTkkBtgGk/2 I5FPQbk7gGKy2b6hYYeQOE9zkcOUGAoVN3McIzRnxD6D8ZIuDwM3OWQInIeU3y+1 83VXcBNLOFw2sVP7zI7yfwGAwnOgtH/Zx++C/7XLPPaC7a9ooSG1UVjyQwuhGnpX vmWOIv1vRvoNDcFhKUo5TgbqFs7jCQjrFAcy3Ob8xvwZnVtTVlMcSn3l+50qIKNC gEh4093ciX3s9a8Mh+sSg35GlzhgEHTeMklD9d+rSwwLT9axhJlZhc+GpfBlulzr q07EFSOs2xU4CNufdVcrDB76EQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFEuhRebA za2+joUbSleE88LG+DmcMB8GA1UdIwQYMBaAFBA/qL3/+58FVwcsRzMrganoDt01 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEQ2OS8wRTE3N0Q1QTA1 OEMxMUVEQURENjYwMTFDNEY5QUUwMi9FRC1vdmZfN253VlhCeXhITXl1QnFlZ08z VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VELW92Zl83bndWWEJ5eEhNeXVCcWVnTzNUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBENjkvMEUxNzdENUEwNThDMTFFREFERDY2MDExQzRGOUFFMDIvRTRDNEZCQjgy MDA4MTFGMEFCMjg4NTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEAGftZQMEA2ftYAMEAKM19AMEAKM19zANBgkqhkiG9w0B AQsFAAOCAQEAT1C2AUkT59e/5A7bShx+gMWlkOMagNL5fUSP6HbWewPGzvAECjU2 iiqW1t6xyn7xDvT6tzIH6iIbkuv68NvbZPe/NqI9sEv5H6bwOEceyFjOZGlO+plN eYyb5vSY5ZMh4CzvZuKHZSUYbDM5ivZcAJp2WA1TrxkfW6EuiTo30/c9Om62OhjQ oYpzCzl0b+bmexP4b05EuPjEpYPjjw9d6GNl+DUqwMI53D97DefPnEh1YKSK5vCW wB5XpTHazUTgMxetfPZv0vyhAcH4Q0EO7IbF4QD7YoJxDnQfCe7wEg2yuvhLWu+9 ZxEU0YtXbpeUmFIrVvzF3sIUFmG3KtW0CQ== -----END CERTIFICATE-----Generated at Sat Apr 26 08:15:11 2025 by rpki-client