$ rpki-client -vvf rpki.apnic.net/member_repository/A9143078/DA29B4AEAD1111EC989E3A0DC4F9AE02/1332B7BCEC7211EFBA9EF77FC4F9AE02.roa File: 1332B7BCEC7211EFBA9EF77FC4F9AE02.roa (raw, json) Hash identifier: 6mC/txbLj6N85EveWxsVzvziGwZn6iYsN0nn29ZX8bA= Subject key identifier: F0:9E:D1:93:70:A4:3B:DC:13:9D:BE:AC:DC:D5:8F:10:84:C6:3B:36 Certificate issuer: /CN=A9143078/serialNumber=0C2042E5FC3361FF7356936D097E1244AFC626CE Certificate serial: 036A Authority key identifier: 0C:20:42:E5:FC:33:61:FF:73:56:93:6D:09:7E:12:44:AF:C6:26:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DCBC5fwzYf9zVpNtCX4SRK_GJs4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143078/DA29B4AEAD1111EC989E3A0DC4F9AE02/1332B7BCEC7211EFBA9EF77FC4F9AE02.roa Signing time: Sat 05 Apr 2025 01:36:12 +0000 ROA not before: Sat 05 Apr 2025 01:36:12 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 10111 IP address blocks: 103.183.218.0/24 maxlen: 24 103.183.219.0/24 maxlen: 24 2400:6460::/40 maxlen: 40 2400:6460:10::/44 maxlen: 48 2400:6460:f0::/48 maxlen: 48 2400:6460:f1::/48 maxlen: 48 2400:6460:f2::/48 maxlen: 48 2400:6460:ff::/48 maxlen: 48 2400:6460:100::/40 maxlen: 48 2400:6460:300::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143078/DA29B4AEAD1111EC989E3A0DC4F9AE02/DCBC5fwzYf9zVpNtCX4SRK_GJs4.crl rsync://rpki.apnic.net/member_repository/A9143078/DA29B4AEAD1111EC989E3A0DC4F9AE02/DCBC5fwzYf9zVpNtCX4SRK_GJs4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DCBC5fwzYf9zVpNtCX4SRK_GJs4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:44:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 874 (0x36a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143078, serialNumber=0C2042E5FC3361FF7356936D097E1244AFC626CE Validity Not Before: Apr 5 01:36:12 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f0890b-df57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:20:cd:ea:ad:ad:a3:78:72:6a:b0:32:43:6b: 6a:b4:aa:02:7a:e8:c9:1c:6b:73:5b:9f:87:f7:4e: f3:80:11:1d:cf:8e:5a:f3:29:bc:56:1f:cb:ac:5a: 17:bf:80:17:2b:d3:34:6e:c0:dc:1f:b8:06:f7:83: e8:fa:81:3c:42:03:7c:c6:38:02:f1:19:dc:d1:f2: 8d:84:f2:04:06:7f:f8:b8:82:0c:42:31:6b:b1:b9: c7:eb:d3:b1:e1:0e:ba:1d:9d:2b:a7:d1:43:64:29: a9:f4:77:4e:7c:30:4f:9c:76:4e:43:72:1d:44:16: cf:3f:9d:6c:3f:a7:f9:c2:51:8d:b1:07:e0:ea:88: 21:77:be:6c:8d:29:07:d1:75:be:9b:b5:8d:87:3d: f7:de:a1:09:2a:2a:e5:8b:1b:1b:1f:43:c0:94:34: 71:bd:da:4e:e4:b3:8e:be:67:b9:2b:6e:e7:5c:50: e0:55:38:db:cc:8d:db:c3:ab:fb:7c:e5:da:39:5b: 03:ee:8a:48:25:89:7d:0f:1a:09:16:c9:cd:a7:a5: 78:91:dc:ce:04:45:3a:55:f6:35:b3:27:de:ed:e7: 70:00:5d:f1:75:a4:60:ff:0b:6f:31:d0:aa:a9:4e: d8:30:f4:50:ae:26:10:52:fc:5d:f2:b8:83:be:d6: 05:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:9E:D1:93:70:A4:3B:DC:13:9D:BE:AC:DC:D5:8F:10:84:C6:3B:36 X509v3 Authority Key Identifier: keyid:0C:20:42:E5:FC:33:61:FF:73:56:93:6D:09:7E:12:44:AF:C6:26:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143078/DA29B4AEAD1111EC989E3A0DC4F9AE02/DCBC5fwzYf9zVpNtCX4SRK_GJs4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DCBC5fwzYf9zVpNtCX4SRK_GJs4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143078/DA29B4AEAD1111EC989E3A0DC4F9AE02/1332B7BCEC7211EFBA9EF77FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.183.218.0/23 IPv6: 2400:6460::/39 2400:6460:300::/40 Signature Algorithm: sha256WithRSAEncryption 82:ad:26:5f:7c:c5:ba:49:0b:88:c1:2a:ea:97:a8:c1:6b:29: bf:4c:88:d6:fd:34:94:6e:4f:5f:71:a6:19:d4:bb:a2:94:fb: 30:2d:1f:b5:64:7f:c6:5a:ff:c1:8e:72:82:80:0e:ca:7a:5c: b6:5b:72:11:d2:af:7c:04:58:55:26:04:e7:67:32:e7:be:ab: 72:ec:cb:16:3b:c8:0b:4c:a6:6b:1c:6c:5c:72:ab:ee:68:5c: ff:9d:8d:84:ff:82:97:9b:0c:b0:b2:c3:33:db:c4:80:ba:8b: 19:4a:40:7a:73:ce:07:96:c0:4d:e4:a1:47:67:db:9f:a5:8a: b6:0e:cf:03:b9:2e:7e:98:3a:cd:09:24:be:7c:8c:fa:02:d2: ee:9f:c7:b8:84:a5:24:2c:33:9f:e2:89:5b:5c:aa:bf:03:d6: 7d:88:fe:18:98:4c:77:84:3c:d9:67:6c:e6:b3:3d:79:38:60: 67:07:33:2d:96:bb:c5:58:e2:69:66:ee:dd:2f:db:47:78:e8: 85:14:0b:8a:da:15:82:2f:c1:36:21:f2:62:9f:f8:37:59:7a: 78:2f:71:a4:19:fe:b5:0f:44:b7:40:54:bb:26:c3:d7:b9:3a: b6:71:9e:29:17:f2:69:93:9a:e9:0e:50:fd:62:5e:6f:9f:0a: bd:0d:00:77 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICA2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMwNzgxMTAvBgNVBAUTKDBDMjA0MkU1RkMzMzYxRkY3MzU2OTM2RDA5N0UxMjQ0 QUZDNjI2Q0UwHhcNMjUwNDA1MDEzNjEyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwODkwYi1kZjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiDN6q2to3hyarAyQ2tqtKoCeujJHGtzW5+H907zgBEdz45a8ym8Vh/LrFoX v4AXK9M0bsDcH7gG94Po+oE8QgN8xjgC8Rnc0fKNhPIEBn/4uIIMQjFrsbnH69Ox 4Q66HZ0rp9FDZCmp9HdOfDBPnHZOQ3IdRBbPP51sP6f5wlGNsQfg6oghd75sjSkH 0XW+m7WNhz333qEJKirlixsbH0PAlDRxvdpO5LOOvme5K27nXFDgVTjbzI3bw6v7 fOXaOVsD7opIJYl9DxoJFsnNp6V4kdzOBEU6VfY1syfe7edwAF3xdaRg/wtvMdCq qU7YMPRQriYQUvxd8riDvtYFOwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFPCe0ZNw pDvcE52+rNzVjxCExjs2MB8GA1UdIwQYMBaAFAwgQuX8M2H/c1aTbQl+EkSvxibO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzA3OC9EQTI5QjRBRUFE MTExMUVDOTg5RTNBMERDNEY5QUUwMi9EQ0JDNWZ3ellmOXpWcE50Q1g0U1JLX0dK czQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RDQkM1Znd6WWY5elZwTnRDWDRTUktfR0pzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDMwNzgvREEyOUI0QUVBRDExMTFFQzk4OUUzQTBEQzRGOUFFMDIvMTMzMkI3QkNF QzcyMTFFRkJBOUVGNzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMAwEAgABMAYDBAFnt9owFgQCAAIwEAMGASQAZGAAAwYAJABkYAMwDQYJKoZI hvcNAQELBQADggEBAIKtJl98xbpJC4jBKuqXqMFrKb9MiNb9NJRuT19xphnUu6KU +zAtH7Vkf8Za/8GOcoKADsp6XLZbchHSr3wEWFUmBOdnMue+q3LsyxY7yAtMpmsc bFxyq+5oXP+djYT/gpebDLCywzPbxIC6ixlKQHpzzgeWwE3koUdn25+lirYOzwO5 Ln6YOs0JJL58jPoC0u6fx7iEpSQsM5/iiVtcqr8D1n2I/hiYTHeEPNlnbOazPXk4 YGcHMy2Wu8VY4mlm7t0v20d46IUUC4raFYIvwTYh8mKf+DdZengvcaQZ/rUPRLdA VLsmw9e5OrZxnikX8mmTmukOUP1iXm+fCr0NAHc= -----END CERTIFICATE-----Generated at Sat Apr 26 08:04:10 2025 by rpki-client