$ rpki-client -vvf rpki.apnic.net/member_repository/A9144CD3/F0A65C3E1B6611F0A05CB529C4F9AE02/B51F229E1BC611F08FE24C2CC4F9AE02.roa File: B51F229E1BC611F08FE24C2CC4F9AE02.roa (raw, json) Hash identifier: +A23Vf7UDZZ1gLqCLzyRAUce3j4brOUg3a6CYPzeOps= Subject key identifier: E2:B4:0B:09:EC:B8:CD:38:8C:64:30:1B:94:05:F6:6F:FA:59:5F:AD Certificate issuer: /CN=A9144CD3/serialNumber=69FE973B7EEBEB0FF89B29B9CB5BEBABD0E31D6B Certificate serial: 03 Authority key identifier: 69:FE:97:3B:7E:EB:EB:0F:F8:9B:29:B9:CB:5B:EB:AB:D0:E3:1D:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af6XO37r6w_4mym5y1vrq9DjHWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144CD3/F0A65C3E1B6611F0A05CB529C4F9AE02/B51F229E1BC611F08FE24C2CC4F9AE02.roa Signing time: Thu 17 Apr 2025 20:01:11 +0000 ROA not before: Thu 17 Apr 2025 20:01:11 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 31287 IP address blocks: 103.146.168.0/24 maxlen: 24 103.173.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144CD3/F0A65C3E1B6611F0A05CB529C4F9AE02/af6XO37r6w_4mym5y1vrq9DjHWs.crl rsync://rpki.apnic.net/member_repository/A9144CD3/F0A65C3E1B6611F0A05CB529C4F9AE02/af6XO37r6w_4mym5y1vrq9DjHWs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af6XO37r6w_4mym5y1vrq9DjHWs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:09:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144CD3, serialNumber=69FE973B7EEBEB0FF89B29B9CB5BEBABD0E31D6B Validity Not Before: Apr 17 20:01:11 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68015e06-45c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d2:13:2f:fa:dd:c8:3e:d7:d0:c4:db:af:7b: 35:29:ec:e7:9e:4b:1b:a4:e5:e0:c7:c6:8b:88:27: b4:c4:47:e1:b5:89:7c:8d:6b:18:63:0e:2d:c9:54: 92:53:2a:da:59:fa:a4:cf:47:65:d1:a2:c0:90:e8: c8:84:4f:13:e2:fc:14:c5:20:d1:f8:44:0d:05:5b: cc:26:cc:fa:d5:4a:44:ed:4e:1f:0f:ba:18:ca:e2: 71:1e:3f:c7:e8:68:be:0f:d5:4e:35:c1:6a:fe:79: 51:59:25:77:56:da:b5:09:84:6d:19:74:86:c4:26: b8:10:1e:77:71:ff:c0:fd:d0:2e:ed:6e:89:36:92: 08:dc:d9:15:9c:8a:83:05:5e:d9:97:78:5f:9c:c8: cb:81:05:8b:a8:1e:2c:c7:c4:b5:80:14:aa:3b:41: db:f4:71:ce:08:29:af:6e:b2:9c:87:09:b5:89:c6: d4:d5:22:2c:31:3b:b9:07:20:1a:46:ea:f7:f7:ea: 58:99:f7:07:ae:1f:1c:d1:f8:c8:1d:eb:cd:8c:db: ee:00:e7:68:9e:21:8d:03:fd:ea:b7:a6:19:f5:09: ca:f1:fe:70:04:c3:b4:7c:33:a8:fa:68:3b:da:a6: 4f:e7:75:53:01:c6:78:bb:e7:7f:65:d8:ae:b9:df: fe:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:B4:0B:09:EC:B8:CD:38:8C:64:30:1B:94:05:F6:6F:FA:59:5F:AD X509v3 Authority Key Identifier: keyid:69:FE:97:3B:7E:EB:EB:0F:F8:9B:29:B9:CB:5B:EB:AB:D0:E3:1D:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144CD3/F0A65C3E1B6611F0A05CB529C4F9AE02/af6XO37r6w_4mym5y1vrq9DjHWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af6XO37r6w_4mym5y1vrq9DjHWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144CD3/F0A65C3E1B6611F0A05CB529C4F9AE02/B51F229E1BC611F08FE24C2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.168.0/24 103.173.116.0/24 Signature Algorithm: sha256WithRSAEncryption ae:8e:65:01:04:34:db:3b:7c:75:ba:1f:61:a5:2e:f5:f8:7b: 32:45:17:a2:ab:7f:ac:2d:1b:77:18:43:a6:30:ac:cf:75:ba: e4:ed:79:92:5d:ab:32:3f:a2:58:7e:b3:a8:32:ea:4f:41:d1: b8:9e:4b:4b:34:44:3f:d6:26:0c:10:9a:bb:cf:76:5b:b1:fe: c4:30:c6:c8:d2:42:65:66:f5:b5:18:4e:88:6f:e3:88:bf:0d: 96:b9:af:d2:32:27:a7:42:4c:67:fe:75:a9:df:07:f2:45:79: 48:56:3c:20:58:c1:f0:70:e6:de:86:5e:59:d6:04:1e:8c:41: eb:32:01:11:9e:0d:bd:f8:83:b1:bb:cc:8b:c2:1e:1b:95:88: f4:68:09:ce:a0:f2:0e:76:ad:39:b8:9d:00:3c:3b:b2:c1:9d: 8a:ee:6b:1b:99:c6:9f:27:90:ab:bd:9b:32:8a:6a:6d:67:af: 1b:82:d8:64:bc:f6:49:64:35:c3:dc:25:23:c7:ea:89:15:b9: fd:2d:2e:39:fa:85:4d:9f:f0:36:ba:1e:30:dd:d9:cd:58:22: 17:aa:15:67:9e:bc:39:df:e0:46:e6:a9:9c:b6:39:48:80:f1: 0f:00:de:e9:dd:03:e7:57:45:81:66:00:53:8f:86:0b:fe:25: bf:16:14:69 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NENEMzExMC8GA1UEBRMoNjlGRTk3M0I3RUVCRUIwRkY4OUIyOUI5Q0I1QkVCQUJE MEUzMUQ2QjAeFw0yNTA0MTcyMDAxMTFaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MDE1ZTA2LTQ1YzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+0hMv+t3IPtfQxNuvezUp7OeeSxuk5eDHxouIJ7TER+G1iXyNaxhjDi3JVJJT KtpZ+qTPR2XRosCQ6MiETxPi/BTFINH4RA0FW8wmzPrVSkTtTh8PuhjK4nEeP8fo aL4P1U41wWr+eVFZJXdW2rUJhG0ZdIbEJrgQHndx/8D90C7tbok2kgjc2RWcioMF XtmXeF+cyMuBBYuoHizHxLWAFKo7Qdv0cc4IKa9uspyHCbWJxtTVIiwxO7kHIBpG 6vf36liZ9weuHxzR+Mgd682M2+4A52ieIY0D/eq3phn1Ccrx/nAEw7R8M6j6aDva pk/ndVMBxni7539l2K653/7NAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU4rQLCey4 zTiMZDAblAX2b/pZX60wHwYDVR0jBBgwFoAUaf6XO37r6w/4mym5y1vrq9DjHWsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0Q0QzL0YwQTY1QzNFMUI2 NjExRjBBMDVDQjUyOUM0RjlBRTAyL2FmNlhPMzdyNndfNG15bTV5MXZycTlEakhX cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYWY2WE8zN3I2d180bXltNXkxdnJxOURqSFdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NENEMy9GMEE2NUMzRTFCNjYxMUYwQTA1Q0I1MjlDNEY5QUUwMi9CNTFGMjI5RTFC QzYxMUYwOEZFMjRDMkNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAGeSqAMEAGetdDANBgkqhkiG9w0BAQsFAAOCAQEAro5lAQQ0 2zt8dbofYaUu9fh7MkUXoqt/rC0bdxhDpjCsz3W65O15kl2rMj+iWH6zqDLqT0HR uJ5LSzREP9YmDBCau892W7H+xDDGyNJCZWb1tRhOiG/jiL8Nlrmv0jInp0JMZ/51 qd8H8kV5SFY8IFjB8HDm3oZeWdYEHoxB6zIBEZ4NvfiDsbvMi8IeG5WI9GgJzqDy DnatObidADw7ssGdiu5rG5nGnyeQq72bMopqbWevG4LYZLz2SWQ1w9wlI8fqiRW5 /S0uOfqFTZ/wNroeMN3ZzVgiF6oVZ568Od/gRuapnLY5SIDxDwDe6d0D51dFgWYA U4+GC/4lvxYUaQ== -----END CERTIFICATE-----Generated at Sat Apr 26 07:46:11 2025 by rpki-client