$ rpki-client -vvf rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/F23B6474DCCB11EFA04C156DC4F9AE02.roa File: F23B6474DCCB11EFA04C156DC4F9AE02.roa (raw, json) Hash identifier: 8CP+soQ8V1MqPicKDXfIlfLOoa+kVRyCORkx4Rr2qj4= Subject key identifier: 10:FC:59:46:C7:96:D0:1F:06:E1:7E:DB:B3:16:8C:62:45:D2:80:45 Certificate issuer: /CN=A9144C70/serialNumber=0289E1E082B6DA1ABA5552840C0CAB02C2A3B74E Certificate serial: 2E Authority key identifier: 02:89:E1:E0:82:B6:DA:1A:BA:55:52:84:0C:0C:AB:02:C2:A3:B7:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aonh4IK22hq6VVKEDAyrAsKjt04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/F23B6474DCCB11EFA04C156DC4F9AE02.roa Signing time: Mon 27 Jan 2025 16:29:57 +0000 ROA not before: Mon 27 Jan 2025 16:29:57 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137964 IP address blocks: 103.183.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.crl rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aonh4IK22hq6VVKEDAyrAsKjt04.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144C70, serialNumber=0289E1E082B6DA1ABA5552840C0CAB02C2A3B74E Validity Not Before: Jan 27 16:29:57 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6797b485-2bca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:84:1c:37:4b:c5:36:bc:66:5f:4d:af:c0:bb: ed:7e:6a:ad:3b:bb:d4:7f:ff:13:6b:2d:80:34:6f: 8b:ff:e4:00:2a:72:c0:f1:f1:45:db:07:11:ec:6f: 90:98:04:5a:47:ee:e0:49:ee:19:e7:e2:25:5c:c7: 47:12:8e:be:e5:a7:63:e1:bb:bb:62:c3:f4:af:34: 8e:dd:47:bc:ff:9e:76:44:a1:4a:58:fa:6e:da:79: 0d:30:ee:76:10:03:3b:cf:fb:b1:1a:be:50:2c:98: 68:d8:1c:64:9f:b2:80:c7:95:35:72:f0:73:34:6d: a7:34:ea:e6:ef:fe:c0:50:2b:50:34:1b:eb:da:fa: a7:01:36:14:c3:1d:9d:5e:14:2e:cf:38:51:b2:80: 55:30:d9:10:ac:f2:d4:69:ab:f4:7b:4b:32:c4:7e: 63:a7:70:6c:77:4b:1e:1a:87:96:9c:c5:c9:ad:95: ba:5f:1a:da:c9:b8:bf:1b:c8:20:74:24:5b:c2:83: 20:46:a4:0c:d9:95:9d:ac:6e:d4:ca:63:e0:83:5f: 5b:76:f5:eb:44:c2:02:5f:37:bf:ee:90:80:d1:78: fe:f7:08:fc:75:b0:3f:22:22:b6:57:07:ab:fc:6a: 4c:9b:f7:96:11:68:00:6f:d7:25:7b:b6:fe:75:41: 5d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:FC:59:46:C7:96:D0:1F:06:E1:7E:DB:B3:16:8C:62:45:D2:80:45 X509v3 Authority Key Identifier: keyid:02:89:E1:E0:82:B6:DA:1A:BA:55:52:84:0C:0C:AB:02:C2:A3:B7:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/Aonh4IK22hq6VVKEDAyrAsKjt04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aonh4IK22hq6VVKEDAyrAsKjt04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144C70/82BC84EEAC6711ECB75CDA24C4F9AE02/F23B6474DCCB11EFA04C156DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.183.117.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:40:52:c9:77:38:de:e7:61:2d:70:83:50:36:15:ee:b3:89: 33:33:23:87:9b:97:b9:47:f4:31:f3:d4:e0:d4:09:67:60:dd: 11:bd:44:a5:2c:c7:40:28:ac:b0:c5:a0:cb:52:69:4c:79:fc: 04:49:02:16:05:a1:cb:16:d9:5e:0b:45:27:3b:d1:82:3d:00: 85:ba:e0:a0:bd:4b:01:54:3f:67:70:78:1a:01:f5:ad:e3:05: 96:2b:84:bb:4f:23:c6:ff:b1:03:48:e0:ea:45:18:8d:7a:2a: ca:05:9f:b4:da:f5:d9:bc:5b:15:aa:8c:d2:d5:1f:a2:08:67: 04:5e:3e:7c:03:cf:3e:49:16:ba:26:05:3c:40:59:23:96:6f: 7b:71:5f:67:47:e6:95:4f:a9:49:0b:02:02:90:c4:7b:32:19: aa:e1:ea:e9:a7:12:b6:d1:ac:d6:ca:6d:49:1a:50:d9:e8:15: 45:8b:55:33:f3:43:a1:4a:e3:c7:ea:91:15:01:69:c0:25:39: 1d:a7:b3:14:13:ce:4e:3e:ee:95:25:8e:f8:4a:0d:5d:ad:d8: 63:0b:c6:50:05:a6:72:63:0e:11:bc:74:8c:a2:9b:01:14:54: e9:4c:68:ab:d2:8a:36:18:de:ef:07:e1:a3:57:06:38:53:04: 43:0c:bc:18 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NEM3MDExMC8GA1UEBRMoMDI4OUUxRTA4MkI2REExQUJBNTU1Mjg0MEMwQ0FCMDJD MkEzQjc0RTAeFw0yNTAxMjcxNjI5NTdaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3OTdiNDg1LTJiY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDrhBw3S8U2vGZfTa/Au+1+aq07u9R//xNrLYA0b4v/5AAqcsDx8UXbBxHsb5CY BFpH7uBJ7hnn4iVcx0cSjr7lp2Phu7tiw/SvNI7dR7z/nnZEoUpY+m7aeQ0w7nYQ AzvP+7EavlAsmGjYHGSfsoDHlTVy8HM0bac06ubv/sBQK1A0G+va+qcBNhTDHZ1e FC7POFGygFUw2RCs8tRpq/R7SzLEfmOncGx3Sx4ah5acxcmtlbpfGtrJuL8byCB0 JFvCgyBGpAzZlZ2sbtTKY+CDX1t29etEwgJfN7/ukIDReP73CPx1sD8iIrZXB6v8 akyb95YRaABv1yV7tv51QV0bAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUEPxZRseW 0B8G4X7bsxaMYkXSgEUwHwYDVR0jBBgwFoAUAonh4IK22hq6VVKEDAyrAsKjt04w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0QzcwLzgyQkM4NEVFQUM2 NzExRUNCNzVDREEyNEM0RjlBRTAyL0Fvbmg0SUsyMmhxNlZWS0VEQXlyQXNLanQw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQW9uaDRJSzIyaHE2VlZLRURBeXJBc0tqdDA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEM3MC84MkJDODRFRUFDNjcxMUVDQjc1Q0RBMjRDNEY5QUUwMi9GMjNCNjQ3NERD Q0IxMUVGQTA0QzE1NkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGe3dTANBgkqhkiG9w0BAQsFAAOCAQEAC0BSyXc43udhLXCD UDYV7rOJMzMjh5uXuUf0MfPU4NQJZ2DdEb1EpSzHQCissMWgy1JpTHn8BEkCFgWh yxbZXgtFJzvRgj0AhbrgoL1LAVQ/Z3B4GgH1reMFliuEu08jxv+xA0jg6kUYjXoq ygWftNr12bxbFaqM0tUfoghnBF4+fAPPPkkWuiYFPEBZI5Zve3FfZ0fmlU+pSQsC ApDEezIZquHq6acSttGs1sptSRpQ2egVRYtVM/NDoUrjx+qRFQFpwCU5HaezFBPO Tj7ulSWO+EoNXa3YYwvGUAWmcmMOEbx0jKKbARRU6Uxoq9KKNhje7wfho1cGOFME Qwy8GA== -----END CERTIFICATE-----Generated at Sat Apr 26 08:03:47 2025 by rpki-client