$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/807CB298903A11EBA9783756C4F9AE02.roa File: 807CB298903A11EBA9783756C4F9AE02.roa (raw, json) Hash identifier: HcRkeL0L46StqN8XUYCiDhZBU5a1szFT/RluEKL79UI= Subject key identifier: 01:E7:73:AC:34:84:E4:E4:F2:F8:0E:8F:60:11:EB:3A:47:E4:41:A6 Certificate issuer: /CN=A9157B66/serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44 Certificate serial: 05E9 Authority key identifier: C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/807CB298903A11EBA9783756C4F9AE02.roa Signing time: Fri 06 Dec 2024 22:41:52 +0000 ROA not before: Fri 06 Dec 2024 22:41:52 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 132102 IP address blocks: 103.28.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:27:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1513 (0x5e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B66, serialNumber=C455B086BAB8647CD2510CA83241E70014CD8A44 Validity Not Before: Dec 6 22:41:52 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67537db0-5fd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d5:e8:e3:74:c4:43:47:ca:a0:6d:ef:30:dc: 71:43:52:2a:e0:28:07:a3:b6:dd:d0:ac:00:ab:a3: 1a:e9:7b:7e:d3:6a:6c:92:97:42:e6:dc:e5:9e:66: ee:5f:62:9b:6f:49:48:21:7e:0b:fc:eb:1e:76:e9: f5:71:73:5d:8e:f6:4a:07:51:7b:1a:20:d0:ba:5a: 6e:7b:39:96:a1:49:d8:3c:91:9a:bd:5f:1c:85:ee: ee:bc:1d:06:08:79:df:05:7e:56:90:d9:b3:4c:62: 0d:e2:bf:f1:10:ad:fc:e2:c3:44:ff:d9:87:23:67: 1e:52:30:f8:e7:81:dd:54:85:36:ad:40:7e:c3:a5: 0e:c0:aa:89:8c:9b:b3:e8:bb:ba:95:17:45:de:4f: f6:8f:e1:3f:66:32:a6:48:e7:a0:30:22:22:aa:28: 76:cc:5f:e4:6d:47:4e:1d:52:01:5d:88:ab:ab:80: f9:83:f8:aa:db:25:08:8e:2a:ba:fe:c4:eb:2d:5d: cb:7c:57:99:6c:7a:39:1b:58:e2:eb:c6:db:54:76: 33:96:be:34:14:23:2e:64:5a:69:36:ce:42:b0:c8: 6a:97:7b:ca:94:bf:a0:e3:f5:4a:02:46:b4:86:da: d6:a3:9e:3f:f2:24:0b:5f:0e:f3:0c:cc:87:8c:a3: c7:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:E7:73:AC:34:84:E4:E4:F2:F8:0E:8F:60:11:EB:3A:47:E4:41:A6 X509v3 Authority Key Identifier: keyid:C4:55:B0:86:BA:B8:64:7C:D2:51:0C:A8:32:41:E7:00:14:CD:8A:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/xFWwhrq4ZHzSUQyoMkHnABTNikQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xFWwhrq4ZHzSUQyoMkHnABTNikQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B66/E5C4D326903811EBA4DC5A54C4F9AE02/807CB298903A11EBA9783756C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.28.20.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:90:f6:80:b5:b6:7d:12:cf:b8:07:33:86:0a:b0:d2:d9:58: 5a:3d:b3:4e:77:a2:c2:e2:0a:e2:5b:37:39:52:44:b0:3f:57: ff:30:80:60:15:09:bb:99:64:1f:b3:b6:47:ae:bb:24:f0:89: 12:64:98:b9:12:22:c6:6c:01:c1:88:f2:4a:79:d6:a4:2f:02: 6d:8b:70:bc:c1:bb:67:cd:6d:10:d9:7c:85:42:37:1c:db:2c: b3:74:26:a5:08:f0:d4:4d:ad:96:1c:e3:c9:41:00:05:e0:96: 73:3e:e7:2c:4f:ea:c7:af:e8:b5:66:bd:98:6c:62:6e:b1:48: ef:40:69:1e:81:be:3f:0c:9c:2c:42:8d:59:1d:55:b6:d6:c6: 49:b2:b2:ff:a8:45:c3:a2:eb:01:06:56:28:4f:52:bc:86:14: a1:0c:44:54:31:e8:a0:cb:95:85:26:a3:7f:05:3e:a1:8c:e4: 95:23:aa:48:2c:84:ef:a4:3f:de:c1:0f:7c:30:fe:c3:44:ad: 35:6c:39:84:9c:37:bf:92:7e:88:0a:a7:66:d0:36:3f:44:67: 47:d3:e8:25:a6:93:2f:01:46:3c:d1:66:66:a6:db:62:c3:ed: 6b:90:83:93:5c:ab:08:f4:3a:57:d1:d0:c5:36:d3:7d:ac:a8: bf:3c:75:cb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCNjYxMTAvBgNVBAUTKEM0NTVCMDg2QkFCODY0N0NEMjUxMENBODMyNDFFNzAw MTRDRDhBNDQwHhcNMjQxMjA2MjI0MTUyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUzN2RiMC01ZmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudXo43TEQ0fKoG3vMNxxQ1Iq4CgHo7bd0KwAq6Ma6Xt+02pskpdC5tzlnmbu X2Kbb0lIIX4L/Osedun1cXNdjvZKB1F7GiDQulpuezmWoUnYPJGavV8che7uvB0G CHnfBX5WkNmzTGIN4r/xEK384sNE/9mHI2ceUjD454HdVIU2rUB+w6UOwKqJjJuz 6Lu6lRdF3k/2j+E/ZjKmSOegMCIiqih2zF/kbUdOHVIBXYirq4D5g/iq2yUIjiq6 /sTrLV3LfFeZbHo5G1ji68bbVHYzlr40FCMuZFppNs5CsMhql3vKlL+g4/VKAka0 htrWo54/8iQLXw7zDMyHjKPHXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAHnc6w0 hOTk8vgOj2AR6zpH5EGmMB8GA1UdIwQYMBaAFMRVsIa6uGR80lEMqDJB5wAUzYpE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0I2Ni9FNUM0RDMyNjkw MzgxMUVCQTREQzVBNTRDNEY5QUUwMi94Rld3aHJxNFpIelNVUXlvTWtIbkFCVE5p a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hGV3docnE0Wkh6U1VReW9Na0huQUJUTmlrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdCNjYvRTVDNEQzMjY5MDM4MTFFQkE0REM1QTU0QzRGOUFFMDIvODA3Q0IyOTg5 MDNBMTFFQkE5NzgzNzU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnHBQwDQYJKoZIhvcNAQELBQADggEBAFuQ9oC1tn0Sz7gH M4YKsNLZWFo9s053osLiCuJbNzlSRLA/V/8wgGAVCbuZZB+ztkeuuyTwiRJkmLkS IsZsAcGI8kp51qQvAm2LcLzBu2fNbRDZfIVCNxzbLLN0JqUI8NRNrZYc48lBAAXg lnM+5yxP6sev6LVmvZhsYm6xSO9AaR6Bvj8MnCxCjVkdVbbWxkmysv+oRcOi6wEG VihPUryGFKEMRFQx6KDLlYUmo38FPqGM5JUjqkgshO+kP97BD3ww/sNErTVsOYSc N7+SfogKp2bQNj9EZ0fT6CWmky8BRjzRZmam22LD7WuQg5Ncqwj0OlfR0MU2032s qL88dcs= -----END CERTIFICATE-----Generated at Sat Apr 26 09:20:29 2025 by rpki-client