$ rpki-client -vvf rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/DD530B9222B111EDA3B74073C4F9AE02.roa File: DD530B9222B111EDA3B74073C4F9AE02.roa (raw, json) Hash identifier: bYO1Amr7/ABGR4G9K++l8TjNlm4b6fexGqE2t0jU2Es= Subject key identifier: A7:AB:0D:7B:62:27:22:0A:5E:78:D8:E1:97:EC:05:81:A6:F9:DA:BA Certificate issuer: /CN=A9142AA2/serialNumber=8EC4E3FAFD509128AEC2C0879E6AF9139E15EAB6 Certificate serial: 01F4 Authority key identifier: 8E:C4:E3:FA:FD:50:91:28:AE:C2:C0:87:9E:6A:F9:13:9E:15:EA:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsTj-v1QkSiuwsCHnmr5E54V6rY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/DD530B9222B111EDA3B74073C4F9AE02.roa Signing time: Thu 19 Dec 2024 02:05:12 +0000 ROA not before: Thu 19 Dec 2024 02:05:12 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 149170 IP address blocks: 103.177.208.0/23 maxlen: 23 103.177.208.0/24 maxlen: 24 103.177.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/jsTj-v1QkSiuwsCHnmr5E54V6rY.crl rsync://rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/jsTj-v1QkSiuwsCHnmr5E54V6rY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsTj-v1QkSiuwsCHnmr5E54V6rY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:40:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142AA2, serialNumber=8EC4E3FAFD509128AEC2C0879E6AF9139E15EAB6 Validity Not Before: Dec 19 02:05:12 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67637f58-b6c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a3:55:3d:7d:7a:2a:b4:e2:36:c9:f8:21:d3: b3:94:34:e8:7f:30:09:6a:25:58:4a:bb:95:b3:fd: 9c:bf:a4:26:f7:53:85:4c:3d:e6:2f:55:92:b2:e9: d6:d1:55:f6:56:e0:16:94:71:e6:c7:6f:13:1c:72: 30:b0:ce:0a:03:f7:4f:a3:0f:f8:60:e5:a0:ac:d8: 00:61:42:64:4c:b9:98:b2:42:2a:f5:d2:18:e9:29: 6d:ce:12:40:d6:31:b4:ca:03:40:7c:a7:07:c0:af: 39:28:66:51:1f:f0:3e:02:98:d6:94:60:8b:0c:6a: 95:02:14:d6:33:61:6f:83:d8:88:60:c7:bd:56:c6: d3:79:48:b3:77:3e:59:5d:31:78:ed:24:c5:a6:68: 33:26:40:d5:5c:25:39:48:5a:a2:01:cc:b7:94:5a: c7:ec:41:4b:6b:63:4e:ae:88:eb:5e:0b:6c:31:a5: c8:2a:1c:a4:d9:a5:e6:1e:8e:96:6a:ed:48:58:02: 32:82:b0:e4:89:bc:8b:50:e0:ee:27:d2:47:1c:89: 87:61:4a:f5:a2:a3:b5:2e:78:aa:3e:b0:aa:91:14: 20:fb:32:67:89:48:a5:57:ab:79:3c:86:8b:aa:6c: a1:a8:a3:99:bb:57:3f:84:0e:27:4e:b3:fb:de:f0: e3:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:AB:0D:7B:62:27:22:0A:5E:78:D8:E1:97:EC:05:81:A6:F9:DA:BA X509v3 Authority Key Identifier: keyid:8E:C4:E3:FA:FD:50:91:28:AE:C2:C0:87:9E:6A:F9:13:9E:15:EA:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/jsTj-v1QkSiuwsCHnmr5E54V6rY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jsTj-v1QkSiuwsCHnmr5E54V6rY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142AA2/3DA8A94422A211EDBC8A6C80C4F9AE02/DD530B9222B111EDA3B74073C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.177.208.0/23 Signature Algorithm: sha256WithRSAEncryption 51:14:65:dd:ab:e9:e1:4d:08:d8:0c:e3:30:db:de:06:b2:91: 72:b9:88:31:1c:d2:41:07:be:85:a6:33:94:08:44:a4:ce:5d: 00:f8:b1:d9:82:dc:fa:5f:76:58:b4:51:f0:d5:20:90:cb:c3: 31:d3:d4:e0:20:d9:7a:2b:49:f0:0b:3f:a8:67:39:3f:1a:0d: 03:aa:26:c7:07:3e:e5:9d:21:98:8f:47:37:30:ae:0e:63:d3: 77:8d:85:46:75:bf:f6:3a:3a:c4:9b:41:66:ca:fd:ce:93:42: 8a:b5:38:2a:45:47:ee:42:82:7a:87:8c:1b:34:d8:ea:80:79: 65:fa:44:76:23:62:5a:ac:a0:88:6d:4a:d3:f4:94:b3:07:97: 97:f8:02:be:c4:0f:67:ae:24:ae:d6:e1:8e:53:48:48:02:85: db:fe:6e:05:a2:43:0d:32:24:ab:3c:8a:95:6e:45:ff:95:a4: 2f:26:df:bc:c0:95:2f:fd:9c:a2:6e:9d:21:63:3c:9f:2b:ed: 96:32:7f:67:ab:60:84:7a:20:77:1f:f7:69:d7:6e:7c:e8:af: a2:8a:e0:07:ae:d5:84:bb:ab:0c:b6:a3:12:22:8e:d3:07:68: f2:3c:57:f1:b8:ab:76:3e:53:a2:2d:9c:a9:2a:e4:fe:fe:69: a2:9d:66:f9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJBQTIxMTAvBgNVBAUTKDhFQzRFM0ZBRkQ1MDkxMjhBRUMyQzA4NzlFNkFGOTEz OUUxNUVBQjYwHhcNMjQxMjE5MDIwNTEyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYzN2Y1OC1iNmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoaNVPX16KrTiNsn4IdOzlDTofzAJaiVYSruVs/2cv6Qm91OFTD3mL1WSsunW 0VX2VuAWlHHmx28THHIwsM4KA/dPow/4YOWgrNgAYUJkTLmYskIq9dIY6SltzhJA 1jG0ygNAfKcHwK85KGZRH/A+ApjWlGCLDGqVAhTWM2Fvg9iIYMe9VsbTeUizdz5Z XTF47STFpmgzJkDVXCU5SFqiAcy3lFrH7EFLa2NOrojrXgtsMaXIKhyk2aXmHo6W au1IWAIygrDkibyLUODuJ9JHHImHYUr1oqO1LniqPrCqkRQg+zJniUilV6t5PIaL qmyhqKOZu1c/hA4nTrP73vDjuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKerDXti JyIKXnjY4ZfsBYGm+dq6MB8GA1UdIwQYMBaAFI7E4/r9UJEorsLAh55q+ROeFeq2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkFBMi8zREE4QTk0NDIy QTIxMUVEQkM4QTZDODBDNEY5QUUwMi9qc1RqLXYxUWtTaXV3c0NIbm1yNUU1NFY2 clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pzVGotdjFRa1NpdXdzQ0hubXI1RTU0VjZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDJBQTIvM0RBOEE5NDQyMkEyMTFFREJDOEE2QzgwQzRGOUFFMDIvREQ1MzBCOTIy MkIxMTFFREEzQjc0MDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnsdAwDQYJKoZIhvcNAQELBQADggEBAFEUZd2r6eFNCNgM 4zDb3gaykXK5iDEc0kEHvoWmM5QIRKTOXQD4sdmC3Ppfdli0UfDVIJDLwzHT1OAg 2XorSfALP6hnOT8aDQOqJscHPuWdIZiPRzcwrg5j03eNhUZ1v/Y6OsSbQWbK/c6T Qoq1OCpFR+5CgnqHjBs02OqAeWX6RHYjYlqsoIhtStP0lLMHl5f4Ar7ED2euJK7W 4Y5TSEgChdv+bgWiQw0yJKs8ipVuRf+VpC8m37zAlS/9nKJunSFjPJ8r7ZYyf2er YIR6IHcf92nXbnzor6KK4Aeu1YS7qwy2oxIijtMHaPI8V/G4q3Y+U6ItnKkq5P7+ aaKdZvk= -----END CERTIFICATE-----Generated at Sat Apr 26 08:16:56 2025 by rpki-client