$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F48/D9EF99C06D6311EB9DF81949C4F9AE02/9BCBA2EA6D6511EB80F7684BC4F9AE02.roa File: 9BCBA2EA6D6511EB80F7684BC4F9AE02.roa (raw, json) Hash identifier: hdIhzh8K12opQ1D1WK4zXsMffrmcGa0gdrGINvycqaM= Subject key identifier: 16:34:12:03:4F:B8:2A:8D:0F:36:D9:41:B3:2E:C1:DB:75:6F:23:72 Certificate issuer: /CN=A9149F48/serialNumber=000B3B4F88957CDD6D37DFF613138D6F54A85B79 Certificate serial: 0681 Authority key identifier: 00:0B:3B:4F:88:95:7C:DD:6D:37:DF:F6:13:13:8D:6F:54:A8:5B:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AAs7T4iVfN1tN9_2ExONb1SoW3k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F48/D9EF99C06D6311EB9DF81949C4F9AE02/9BCBA2EA6D6511EB80F7684BC4F9AE02.roa Signing time: Sun 02 Mar 2025 23:21:12 +0000 ROA not before: Sun 02 Mar 2025 23:21:12 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141723 IP address blocks: 103.162.186.0/23 maxlen: 24 2407:1d40::/32 maxlen: 32 2407:1d40::/36 maxlen: 36 2407:1d40:1::/48 maxlen: 48 2407:1d40:2::/48 maxlen: 48 2407:1d40:3::/48 maxlen: 48 2407:1d40:4::/48 maxlen: 48 2407:1d40:5::/48 maxlen: 48 2407:1d40:6::/48 maxlen: 48 2407:1d40:7::/48 maxlen: 48 2407:1d40:8::/48 maxlen: 48 2407:1d40:9::/48 maxlen: 48 2407:1d40:a::/48 maxlen: 48 2407:1d40:b::/48 maxlen: 48 2407:1d40:c::/48 maxlen: 48 2407:1d40:d::/48 maxlen: 48 2407:1d40:e::/48 maxlen: 48 2407:1d40:f::/48 maxlen: 48 2407:1d40:1000::/36 maxlen: 36 2407:1d40:1000::/48 maxlen: 48 2407:1d40:1001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F48/D9EF99C06D6311EB9DF81949C4F9AE02/AAs7T4iVfN1tN9_2ExONb1SoW3k.crl rsync://rpki.apnic.net/member_repository/A9149F48/D9EF99C06D6311EB9DF81949C4F9AE02/AAs7T4iVfN1tN9_2ExONb1SoW3k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AAs7T4iVfN1tN9_2ExONb1SoW3k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:04:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1665 (0x681) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F48, serialNumber=000B3B4F88957CDD6D37DFF613138D6F54A85B79 Validity Not Before: Mar 2 23:21:12 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c4e7e8-5cf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:3e:0a:94:72:77:37:54:25:dc:06:0a:3f:20: c7:a0:04:00:5a:e8:dc:75:1b:b3:d1:3b:13:92:9b: 08:b0:b8:0e:7e:bd:b5:5f:28:36:c5:4a:fa:4f:47: ee:a4:8f:d0:d5:7a:be:7e:d6:d5:e2:82:3f:1c:1a: ea:34:10:a7:14:d5:e7:04:f4:bd:d0:5b:db:91:e8: b6:da:f2:f7:c5:ff:dc:5f:98:0e:b6:17:dc:76:72: 67:2a:cd:2f:92:57:72:75:26:e8:9e:e1:46:b0:fd: 94:c8:f3:f3:65:88:f4:7e:4c:b7:fc:3a:e2:f8:18: c1:23:0d:40:93:ba:20:2a:2d:89:df:73:98:9b:f4: 0d:13:3f:4e:e7:4d:71:db:c7:6d:8f:6b:be:55:36: 28:f4:d7:06:ac:af:d1:28:c8:fa:2b:c6:f6:fc:91: f0:cf:6f:26:21:f4:4e:fb:4d:ea:f0:f9:4c:61:b0: b9:f9:69:ea:0a:29:c2:be:65:5a:d3:0d:35:3b:c4: 8d:23:76:15:18:fc:bf:e4:26:be:8f:c1:3a:ef:d2: ef:89:d5:3b:c0:3a:73:6d:e5:10:7c:3c:65:47:e8: b3:24:56:85:65:78:3c:24:2b:1d:ac:25:d4:b8:23: b4:86:c3:61:d2:d3:c1:3b:30:75:1c:1a:cf:f4:f6: 58:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:34:12:03:4F:B8:2A:8D:0F:36:D9:41:B3:2E:C1:DB:75:6F:23:72 X509v3 Authority Key Identifier: keyid:00:0B:3B:4F:88:95:7C:DD:6D:37:DF:F6:13:13:8D:6F:54:A8:5B:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F48/D9EF99C06D6311EB9DF81949C4F9AE02/AAs7T4iVfN1tN9_2ExONb1SoW3k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AAs7T4iVfN1tN9_2ExONb1SoW3k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F48/D9EF99C06D6311EB9DF81949C4F9AE02/9BCBA2EA6D6511EB80F7684BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.186.0/23 IPv6: 2407:1d40::/32 Signature Algorithm: sha256WithRSAEncryption 98:63:8f:2b:fb:df:ce:9f:28:2d:88:be:a2:a3:ac:4b:48:10: 2c:00:f7:9c:8a:35:12:53:a5:d0:79:4d:69:5c:ad:50:e2:bf: 2e:4a:22:a1:d3:ed:3a:96:26:1b:19:e7:95:b7:4e:be:f0:df: 66:ab:a4:62:4a:7e:f2:66:db:ef:b0:a8:18:1f:5d:df:1b:12: c6:13:85:01:16:8f:38:b7:f8:41:e9:6f:0b:fe:79:4d:ac:aa: a8:9a:fc:e0:a5:6b:9f:fb:b9:54:1c:e6:be:d9:96:90:93:ca: 27:8e:3d:75:57:a7:8c:b0:fa:3b:a6:0d:73:d6:b5:5c:b8:0d: b5:6d:85:ce:91:95:bb:18:60:26:c4:bb:94:ec:c2:12:47:5f: ff:47:b2:24:8a:82:21:05:ef:d0:b0:f1:0f:fe:be:5c:57:d9: 24:b2:21:f1:54:a1:36:7f:93:d8:1a:05:0c:9c:2b:3b:8c:df: 9e:e8:fc:ed:d1:aa:bd:2b:0a:3a:9a:d9:cf:e6:aa:bd:01:6d: db:60:4f:0e:ba:fc:cb:9d:c6:ad:3f:9a:68:d0:47:2c:33:d3: 5e:b4:24:5b:ad:6e:f4:81:63:44:83:1b:59:63:74:7d:a7:98: cf:4d:43:11:60:9c:8e:33:21:10:12:33:ca:ee:3a:23:d9:93: a1:ef:9b:45 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGNDgxMTAvBgNVBAUTKDAwMEIzQjRGODg5NTdDREQ2RDM3REZGNjEzMTM4RDZG NTRBODVCNzkwHhcNMjUwMzAyMjMyMTEyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2M0ZTdlOC01Y2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1D4KlHJ3N1Ql3AYKPyDHoAQAWujcdRuz0TsTkpsIsLgOfr21Xyg2xUr6T0fu pI/Q1Xq+ftbV4oI/HBrqNBCnFNXnBPS90Fvbkei22vL3xf/cX5gOthfcdnJnKs0v kldydSbonuFGsP2UyPPzZYj0fky3/Dri+BjBIw1Ak7ogKi2J33OYm/QNEz9O501x 28dtj2u+VTYo9NcGrK/RKMj6K8b2/JHwz28mIfRO+03q8PlMYbC5+WnqCinCvmVa 0w01O8SNI3YVGPy/5Ca+j8E679LvidU7wDpzbeUQfDxlR+izJFaFZXg8JCsdrCXU uCO0hsNh0tPBOzB1HBrP9PZYiQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBY0EgNP uCqNDzbZQbMuwdt1byNyMB8GA1UdIwQYMBaAFAALO0+IlXzdbTff9hMTjW9UqFt5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUY0OC9EOUVGOTlDMDZE NjMxMUVCOURGODE5NDlDNEY5QUUwMi9BQXM3VDRpVmZOMXROOV8yRXhPTmIxU29X M2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FBczdUNGlWZk4xdE45XzJFeE9OYjFTb1czay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGNDgvRDlFRjk5QzA2RDYzMTFFQjlERjgxOTQ5QzRGOUFFMDIvOUJDQkEyRUE2 RDY1MTFFQjgwRjc2ODRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnorowDQQCAAIwBwMFACQHHUAwDQYJKoZIhvcNAQELBQAD ggEBAJhjjyv7386fKC2IvqKjrEtIECwA95yKNRJTpdB5TWlcrVDivy5KIqHT7TqW JhsZ55W3Tr7w32arpGJKfvJm2++wqBgfXd8bEsYThQEWjzi3+EHpbwv+eU2sqqia /OCla5/7uVQc5r7ZlpCTyieOPXVXp4yw+jumDXPWtVy4DbVthc6RlbsYYCbEu5Ts whJHX/9HsiSKgiEF79Cw8Q/+vlxX2SSyIfFUoTZ/k9gaBQycKzuM357o/O3Rqr0r Cjqa2c/mqr0BbdtgTw66/Mudxq0/mmjQRywz0160JFutbvSBY0SDG1ljdH2nmM9N QxFgnI4zIRASM8ruOiPZk6Hvm0U= -----END CERTIFICATE-----Generated at Sat Apr 26 08:03:03 2025 by rpki-client