$ rpki-client -vvf rpki.apnic.net/member_repository/A9144354/61A126E404E411E98CAFAA7BC4F9AE02/1C6ADB02525311EA939E4652C4F9AE02.roa File: 1C6ADB02525311EA939E4652C4F9AE02.roa (raw, json) Hash identifier: VfqKvYxCI56t83Xe2xSnLTZ4YYU3+AYmEJ7FdSPfdWA= Subject key identifier: 2F:61:3F:4C:94:F6:A5:D0:78:89:5D:3D:21:62:06:9F:28:35:92:73 Certificate issuer: /CN=A9144354/serialNumber=47D06BD7EA8DF2197F71270B75C964C79AB9F0CC Certificate serial: 1128 Authority key identifier: 47:D0:6B:D7:EA:8D:F2:19:7F:71:27:0B:75:C9:64:C7:9A:B9:F0:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R9Br1-qN8hl_cScLdclkx5q58Mw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144354/61A126E404E411E98CAFAA7BC4F9AE02/1C6ADB02525311EA939E4652C4F9AE02.roa Signing time: Wed 22 Jan 2025 17:25:33 +0000 ROA not before: Wed 22 Jan 2025 17:25:33 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 134926 IP address blocks: 103.127.156.0/24 maxlen: 24 103.127.157.0/24 maxlen: 24 103.127.159.0/24 maxlen: 24 2404:2340::/32 maxlen: 32 2404:2340::/36 maxlen: 36 2404:2340:1000::/36 maxlen: 36 2404:2340:2000::/36 maxlen: 36 2404:2340:3000::/36 maxlen: 36 2404:2340:4000::/36 maxlen: 36 2404:2340:5000::/36 maxlen: 36 2404:2340:6000::/36 maxlen: 36 2404:2340:7000::/36 maxlen: 36 2404:2340:8000::/36 maxlen: 36 2404:2340:9000::/36 maxlen: 36 2404:2340:a000::/36 maxlen: 36 2404:2340:b000::/36 maxlen: 36 2404:2340:c000::/36 maxlen: 36 2404:2340:d000::/36 maxlen: 36 2404:2340:e000::/36 maxlen: 36 2404:2340:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144354/61A126E404E411E98CAFAA7BC4F9AE02/R9Br1-qN8hl_cScLdclkx5q58Mw.crl rsync://rpki.apnic.net/member_repository/A9144354/61A126E404E411E98CAFAA7BC4F9AE02/R9Br1-qN8hl_cScLdclkx5q58Mw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R9Br1-qN8hl_cScLdclkx5q58Mw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:15:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4392 (0x1128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144354, serialNumber=47D06BD7EA8DF2197F71270B75C964C79AB9F0CC Validity Not Before: Jan 22 17:25:33 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67912a0d-9dd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:89:04:ef:09:f3:f9:55:eb:12:51:63:d9:45: 5a:eb:64:56:15:fd:1c:52:a7:62:6b:1b:70:7c:99: 3e:c2:dd:7c:28:bf:2e:b0:47:a7:e8:84:73:a8:3e: 95:a4:22:df:74:3d:64:ae:e4:e5:12:9f:fe:fb:e4: 8d:7e:bd:aa:82:27:d4:f6:65:be:bc:85:9d:3e:52: 39:65:31:39:78:0e:d5:af:ee:93:d2:b8:26:07:3b: f9:ab:d3:5e:da:6c:03:2d:e5:81:40:70:56:51:04: 56:13:10:e3:80:77:97:64:cb:21:ca:de:fc:81:8c: 07:36:0b:bf:0b:1b:f7:7d:b1:d7:b5:42:d6:c1:c1: ee:a5:bd:26:1f:94:10:71:34:1c:ca:69:8a:cd:62: 35:98:ea:96:cf:ea:49:6d:2f:30:64:d8:ca:bd:44: 4b:40:29:c7:0d:fb:5a:05:f4:9e:ac:99:92:d5:36: d0:98:2a:75:f8:a9:5a:3e:99:41:a5:a9:6f:0e:22: ae:cf:a8:14:06:2e:99:57:c8:25:04:47:09:85:66: e5:3c:9e:1d:3c:ae:b8:f3:98:17:2e:d7:26:72:1e: 1e:2b:98:62:21:d9:f2:52:a7:dd:96:72:28:4b:88: 3a:b0:80:7b:9e:fd:0a:1c:0b:bb:18:dc:c0:b5:ad: 7a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:61:3F:4C:94:F6:A5:D0:78:89:5D:3D:21:62:06:9F:28:35:92:73 X509v3 Authority Key Identifier: keyid:47:D0:6B:D7:EA:8D:F2:19:7F:71:27:0B:75:C9:64:C7:9A:B9:F0:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144354/61A126E404E411E98CAFAA7BC4F9AE02/R9Br1-qN8hl_cScLdclkx5q58Mw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R9Br1-qN8hl_cScLdclkx5q58Mw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144354/61A126E404E411E98CAFAA7BC4F9AE02/1C6ADB02525311EA939E4652C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.127.156.0/23 103.127.159.0/24 IPv6: 2404:2340::/32 Signature Algorithm: sha256WithRSAEncryption a4:d4:33:6f:b9:44:a3:c4:0c:fc:80:1b:87:96:a1:19:64:16: a5:00:d4:f2:35:94:15:56:a7:5f:3f:8a:db:f9:d1:1a:fd:9e: 03:42:ee:d7:9e:6c:34:78:ad:a3:55:f0:f0:ab:76:cf:fa:40: 77:9f:00:20:1d:8f:fa:0c:a0:5e:7b:3a:bc:78:f3:2f:fa:ea: 30:07:ef:7e:69:1b:d7:c0:75:c4:7b:77:ac:f8:2f:b5:48:e2: 88:a1:93:ce:e4:db:24:59:8b:ba:24:14:f5:6b:b4:25:62:4b: 06:c6:ab:ec:41:7b:c9:76:72:b2:56:7d:fc:bb:24:d5:3f:4d: 5f:a3:66:b6:4e:9d:a5:4e:73:9d:ae:50:2d:0b:84:e1:e1:fc: 08:a6:13:8a:8a:f2:34:52:03:05:ea:a5:40:ae:bd:2a:fa:d6: ab:19:17:e2:6a:c3:0a:a2:ad:3f:2e:e2:f1:72:05:b0:5d:58: ea:ef:0b:94:08:3b:7a:ac:c9:fc:70:67:a6:d7:cb:31:82:b6: e4:fa:38:74:07:73:8f:48:40:0b:e8:d7:43:6b:9c:c6:e2:fd: af:1f:29:57:7d:e3:51:7d:57:a1:30:2e:51:33:cf:52:d2:27: 23:a1:ad:74:37:3f:34:47:c9:de:e3:72:55:98:e7:52:91:b5: a0:64:01:4b -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICESgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQzNTQxMTAvBgNVBAUTKDQ3RDA2QkQ3RUE4REYyMTk3RjcxMjcwQjc1Qzk2NEM3 OUFCOUYwQ0MwHhcNMjUwMTIyMTcyNTMzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkxMmEwZC05ZGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA34kE7wnz+VXrElFj2UVa62RWFf0cUqdiaxtwfJk+wt18KL8usEen6IRzqD6V pCLfdD1kruTlEp/+++SNfr2qgifU9mW+vIWdPlI5ZTE5eA7Vr+6T0rgmBzv5q9Ne 2mwDLeWBQHBWUQRWExDjgHeXZMshyt78gYwHNgu/Cxv3fbHXtULWwcHupb0mH5QQ cTQcymmKzWI1mOqWz+pJbS8wZNjKvURLQCnHDftaBfSerJmS1TbQmCp1+KlaPplB palvDiKuz6gUBi6ZV8glBEcJhWblPJ4dPK6485gXLtcmch4eK5hiIdnyUqfdlnIo S4g6sIB7nv0KHAu7GNzAta16UwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFC9hP0yU 9qXQeIldPSFiBp8oNZJzMB8GA1UdIwQYMBaAFEfQa9fqjfIZf3EnC3XJZMeaufDM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDM1NC82MUExMjZFNDA0 RTQxMUU5OENBRkFBN0JDNEY5QUUwMi9SOUJyMS1xTjhobF9jU2NMZGNsa3g1cTU4 TXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I5QnIxLXFOOGhsX2NTY0xkY2xreDVxNThNdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQzNTQvNjFBMTI2RTQwNEU0MTFFOThDQUZBQTdCQzRGOUFFMDIvMUM2QURCMDI1 MjUzMTFFQTkzOUU0NjUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnf5wDBABnf58wDQQCAAIwBwMFACQEI0AwDQYJKoZIhvcN AQELBQADggEBAKTUM2+5RKPEDPyAG4eWoRlkFqUA1PI1lBVWp18/itv50Rr9ngNC 7teebDR4raNV8PCrds/6QHefACAdj/oMoF57Orx48y/66jAH735pG9fAdcR7d6z4 L7VI4oihk87k2yRZi7okFPVrtCViSwbGq+xBe8l2crJWffy7JNU/TV+jZrZOnaVO c52uUC0LhOHh/AimE4qK8jRSAwXqpUCuvSr61qsZF+JqwwqirT8u4vFyBbBdWOrv C5QIO3qsyfxwZ6bXyzGCtuT6OHQHc49IQAvo10NrnMbi/a8fKVd941F9V6EwLlEz z1LSJyOhrXQ3PzRHyd7jclWY51KRtaBkAUs= -----END CERTIFICATE-----Generated at Sat Apr 26 08:22:27 2025 by rpki-client