$ rpki-client -vvf rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/AA5485827F3611ECBED94963C4F9AE02.roa File: AA5485827F3611ECBED94963C4F9AE02.roa (raw, json) Hash identifier: L7q5MhSYBL7XAFYcbCU7483l92C9DWVyV5PtuFnvCCo= Subject key identifier: C1:6B:E6:43:AF:81:8F:90:1F:E9:EC:33:FF:6D:96:2B:C3:A4:2B:D8 Certificate issuer: /CN=A9154D26/serialNumber=CDA03F65F4D33A339969973F6A9BD07DAF9E3724 Certificate serial: 0473 Authority key identifier: CD:A0:3F:65:F4:D3:3A:33:99:69:97:3F:6A:9B:D0:7D:AF:9E:37:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/AA5485827F3611ECBED94963C4F9AE02.roa Signing time: Tue 25 Mar 2025 00:07:01 +0000 ROA not before: Tue 25 Mar 2025 00:07:01 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141752 IP address blocks: 103.163.61.0/24 maxlen: 25 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1139 (0x473) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154D26, serialNumber=CDA03F65F4D33A339969973F6A9BD07DAF9E3724 Validity Not Before: Mar 25 00:07:01 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e1f3a5-e90a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:10:31:b5:38:5f:eb:aa:1b:40:d7:78:5e:0e: 82:1d:43:f7:44:4a:9e:fb:0f:b7:f3:d8:fb:ff:62: 86:b6:58:fc:2b:8d:83:45:ae:3b:7c:15:07:fb:30: 29:f6:97:39:71:53:a9:0f:fb:01:b1:c7:44:ed:a7: 45:ea:14:64:42:d9:e9:a7:16:f2:81:6a:4f:87:14: af:31:8c:43:01:8f:b6:c7:27:b6:4e:3c:02:25:cb: 27:90:c9:8e:1e:2f:2f:1d:13:3b:c4:c3:5a:49:c7: 9a:9d:ce:70:1d:98:5d:15:f9:66:33:00:2d:8f:58: a7:4d:e9:06:ab:19:8c:9a:ef:63:74:6a:37:59:7c: 6d:23:fb:56:b0:9b:f2:ae:49:2e:87:23:98:15:0d: bf:df:65:67:64:55:63:06:e2:4d:24:b1:e3:f3:6e: 8d:1e:fa:79:a2:25:eb:85:c7:a4:27:4f:ac:cf:2c: 8d:2c:24:58:0f:d0:c2:9e:bf:c5:23:89:6d:c2:65: b0:ab:0d:7e:07:db:c9:85:c8:5e:d2:0d:46:ff:d9: 7c:e6:fe:17:7d:19:3f:53:a6:81:30:63:89:0e:8a: 0e:04:65:d3:9c:23:78:c2:36:6a:c9:dc:80:76:ca: 95:48:4b:21:21:a3:1b:7d:b8:94:e9:15:a2:57:e8: 14:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:6B:E6:43:AF:81:8F:90:1F:E9:EC:33:FF:6D:96:2B:C3:A4:2B:D8 X509v3 Authority Key Identifier: keyid:CD:A0:3F:65:F4:D3:3A:33:99:69:97:3F:6A:9B:D0:7D:AF:9E:37:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zaA_ZfTTOjOZaZc_apvQfa-eNyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154D26/C00D9726413B11ECB06AE030C4F9AE02/AA5485827F3611ECBED94963C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.61.0/24 Signature Algorithm: sha256WithRSAEncryption bb:6c:58:06:90:fd:63:79:7e:5c:8e:0f:08:fc:d9:04:b6:1d: f9:7a:12:92:af:52:fd:c4:58:61:b3:73:5d:39:a0:28:a9:7f: 5d:8b:4e:42:cb:ba:c7:65:6c:80:da:87:27:04:09:aa:ba:e1: 47:d8:55:27:af:2b:2b:2d:43:8f:44:d3:ea:3c:30:35:4f:2b: 32:2b:bf:cc:05:a1:a5:17:3e:2c:93:ff:10:c1:18:80:81:c5: e2:3c:c4:82:c0:0d:ef:e5:9f:c4:c5:e2:15:7f:b1:b7:41:ad: f1:da:b0:e5:50:9f:a1:64:38:2a:36:39:cf:de:b3:fc:ff:f0: 7e:6c:55:3c:30:50:66:2b:f4:ca:0b:3f:52:da:5a:01:7b:22: d9:67:22:a6:6e:2a:12:73:83:17:19:c8:b6:52:94:09:08:8d: 5c:e3:41:c7:d2:97:f2:e1:72:b0:e5:e8:fa:69:c6:6d:69:6c: dd:56:cd:12:be:f4:a7:95:50:19:ad:59:8c:2a:e2:c0:14:4b: 25:da:0e:7c:9d:94:ac:a7:35:22:43:b6:7b:0d:6b:8b:c2:18: 00:6f:51:a6:3e:24:58:77:76:2c:d4:f9:43:af:fc:68:dd:5d: 6c:7f:0c:60:ed:c6:69:12:3c:13:7d:6b:f3:70:90:dd:bf:4f: 31:d1:eb:39 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTREMjYxMTAvBgNVBAUTKENEQTAzRjY1RjREMzNBMzM5OTY5OTczRjZBOUJEMDdE QUY5RTM3MjQwHhcNMjUwMzI1MDAwNzAxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2UxZjNhNS1lOTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhAxtThf66obQNd4Xg6CHUP3REqe+w+389j7/2KGtlj8K42DRa47fBUH+zAp 9pc5cVOpD/sBscdE7adF6hRkQtnppxbygWpPhxSvMYxDAY+2xye2TjwCJcsnkMmO Hi8vHRM7xMNaSceanc5wHZhdFflmMwAtj1inTekGqxmMmu9jdGo3WXxtI/tWsJvy rkkuhyOYFQ2/32VnZFVjBuJNJLHj826NHvp5oiXrhcekJ0+szyyNLCRYD9DCnr/F I4ltwmWwqw1+B9vJhche0g1G/9l85v4XfRk/U6aBMGOJDooOBGXTnCN4wjZqydyA dsqVSEshIaMbfbiU6RWiV+gUhQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMFr5kOv gY+QH+nsM/9tlivDpCvYMB8GA1UdIwQYMBaAFM2gP2X00zozmWmXP2qb0H2vnjck MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEQyNi9DMDBEOTcyNjQx M0IxMUVDQjA2QUUwMzBDNEY5QUUwMi96YUFfWmZUVE9qT1phWmNfYXB2UWZhLWVO eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3phQV9aZlRUT2pPWmFaY19hcHZRZmEtZU55US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTREMjYvQzAwRDk3MjY0MTNCMTFFQ0IwNkFFMDMwQzRGOUFFMDIvQUE1NDg1ODI3 RjM2MTFFQ0JFRDk0OTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnoz0wDQYJKoZIhvcNAQELBQADggEBALtsWAaQ/WN5flyO Dwj82QS2Hfl6EpKvUv3EWGGzc105oCipf12LTkLLusdlbIDahycECaq64UfYVSev KystQ49E0+o8MDVPKzIrv8wFoaUXPiyT/xDBGICBxeI8xILADe/ln8TF4hV/sbdB rfHasOVQn6FkOCo2Oc/es/z/8H5sVTwwUGYr9MoLP1LaWgF7ItlnIqZuKhJzgxcZ yLZSlAkIjVzjQcfSl/LhcrDl6Pppxm1pbN1WzRK+9KeVUBmtWYwq4sAUSyXaDnyd lKynNSJDtnsNa4vCGABvUaY+JFh3dizU+UOv/GjdXWx/DGDtxmkSPBN9a/NwkN2/ TzHR6zk= -----END CERTIFICATE-----Generated at Sat Apr 26 07:41:13 2025 by rpki-client