$ rpki-client -vvf rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/2E4BBE4EB4B511EF8A24821EC4F9AE02.roa File: 2E4BBE4EB4B511EF8A24821EC4F9AE02.roa (raw, json) Hash identifier: UpMy5YvHwAoOrHu9/2m6YmhC+FBzuF02PJm6nhV30kU= Subject key identifier: FB:A9:84:F6:1D:E4:02:0A:F1:D5:E2:BB:5F:4B:D5:21:9F:DE:48:2E Certificate issuer: /CN=A9158131/serialNumber=C79BBEAA66241EECF01C30335DB18EF2B3F56026 Certificate serial: 0AB0 Authority key identifier: C7:9B:BE:AA:66:24:1E:EC:F0:1C:30:33:5D:B1:8E:F2:B3:F5:60:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/2E4BBE4EB4B511EF8A24821EC4F9AE02.roa Signing time: Sun 08 Dec 2024 07:48:34 +0000 ROA not before: Sun 08 Dec 2024 07:48:34 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 64018 IP address blocks: 103.35.168.0/24 maxlen: 24 103.35.169.0/24 maxlen: 24 103.35.170.0/24 maxlen: 24 103.35.171.0/24 maxlen: 24 2403:2d40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.crl rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:19:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2736 (0xab0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158131, serialNumber=C79BBEAA66241EECF01C30335DB18EF2B3F56026 Validity Not Before: Dec 8 07:48:34 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67554f52-7b1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:25:12:3f:30:b5:8b:68:1c:46:c9:98:5a:07: 6d:73:e5:19:f0:19:83:79:a3:da:7f:6a:1e:7a:6c: ed:2b:28:8a:fc:f8:70:3c:6d:23:54:2d:6f:d4:bd: 5b:96:07:d4:84:da:f3:da:08:cb:18:3d:04:ff:49: bf:dc:27:36:de:e0:71:15:d7:e4:99:17:a4:98:73: 5b:eb:cf:3c:eb:38:8e:12:aa:eb:f4:9a:b2:20:50: 80:8e:4e:98:0a:fa:73:f6:e8:2f:1d:c9:3c:cf:2a: 89:33:80:5c:37:ec:1a:7f:28:02:45:3b:b0:df:c2: c0:5e:eb:87:0b:10:b6:1b:ed:60:70:17:5a:4a:53: 3c:b3:17:59:a5:34:2e:a3:d4:3e:e9:ca:04:c0:fd: 7d:64:ce:fc:62:6f:9d:f9:00:94:ce:3a:92:10:77: d0:ab:09:9b:70:49:c3:7b:fe:ff:2f:1b:b5:89:ec: ce:cf:89:84:fc:cc:86:6e:ef:ed:27:8f:43:ce:a5: bc:81:c6:7d:a3:a8:1b:2f:06:5c:51:b8:91:37:ff: 77:a9:1e:e3:df:73:39:b1:56:f2:4c:b4:af:15:13: 46:38:92:34:f0:be:0c:7c:fb:9f:2b:8e:86:4f:16: 22:e5:7c:3f:97:05:be:2c:da:76:f1:c2:73:e0:66: c4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:A9:84:F6:1D:E4:02:0A:F1:D5:E2:BB:5F:4B:D5:21:9F:DE:48:2E X509v3 Authority Key Identifier: keyid:C7:9B:BE:AA:66:24:1E:EC:F0:1C:30:33:5D:B1:8E:F2:B3:F5:60:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/x5u-qmYkHuzwHDAzXbGO8rP1YCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x5u-qmYkHuzwHDAzXbGO8rP1YCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158131/982AB6E648B111EA96A06C7EC4F9AE02/2E4BBE4EB4B511EF8A24821EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.168.0/22 IPv6: 2403:2d40::/32 Signature Algorithm: sha256WithRSAEncryption 2f:33:04:ff:b4:9d:3a:b6:fb:4b:4c:ef:37:64:45:cf:87:be: 52:6d:3c:5c:32:bc:f4:9c:65:77:6a:c4:b1:cb:60:11:38:41: eb:a9:0c:26:5e:b3:e4:b4:6b:cc:0b:78:65:da:37:69:05:6b: c6:87:df:9e:3d:ec:ff:52:80:b7:0e:5e:bf:01:e9:89:73:73: 52:19:31:37:f6:8e:5d:33:24:ff:98:ad:2f:2b:9c:69:c3:8d: 39:56:8a:e1:f8:e9:29:42:78:c4:9a:00:83:ee:1e:74:f6:23: 6d:ed:58:d6:31:05:88:86:50:30:de:01:80:9a:76:e2:39:57: 89:39:b5:05:2b:5f:57:b5:e9:9a:3b:c1:66:68:26:58:e5:8f: 9f:23:93:d7:1b:73:48:1a:a8:1b:ab:6f:24:cd:c6:73:d0:a8: 46:79:b6:5b:12:c2:4a:68:7b:5d:bd:43:18:cc:21:f5:c6:28: ec:45:c1:3c:44:c7:52:6e:67:6a:c2:d9:97:d2:3a:cc:ac:96: 76:49:79:ce:25:29:15:19:d9:dc:92:40:30:b8:cc:d8:dd:49: e6:d6:48:79:65:41:85:12:e4:5a:ff:19:8c:23:0b:93:bb:49: ca:30:d9:d5:b2:38:e3:50:b3:70:50:d2:11:ef:0b:14:c1:27: b6:50:e8:1a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgxMzExMTAvBgNVBAUTKEM3OUJCRUFBNjYyNDFFRUNGMDFDMzAzMzVEQjE4RUYy QjNGNTYwMjYwHhcNMjQxMjA4MDc0ODM0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU1NGY1Mi03YjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSUSPzC1i2gcRsmYWgdtc+UZ8BmDeaPaf2oeemztKyiK/PhwPG0jVC1v1L1b lgfUhNrz2gjLGD0E/0m/3Cc23uBxFdfkmRekmHNb68886ziOEqrr9JqyIFCAjk6Y Cvpz9ugvHck8zyqJM4BcN+wafygCRTuw38LAXuuHCxC2G+1gcBdaSlM8sxdZpTQu o9Q+6coEwP19ZM78Ym+d+QCUzjqSEHfQqwmbcEnDe/7/Lxu1iezOz4mE/MyGbu/t J49DzqW8gcZ9o6gbLwZcUbiRN/93qR7j33M5sVbyTLSvFRNGOJI08L4MfPufK46G TxYi5Xw/lwW+LNp28cJz4GbEcwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFPuphPYd 5AIK8dXiu19L1SGf3kguMB8GA1UdIwQYMBaAFMebvqpmJB7s8BwwM12xjvKz9WAm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODEzMS85ODJBQjZFNjQ4 QjExMUVBOTZBMDZDN0VDNEY5QUUwMi94NXUtcW1Za0h1endIREF6WGJHTzhyUDFZ Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g1dS1xbVlrSHV6d0hEQXpYYkdPOHJQMVlDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTgxMzEvOTgyQUI2RTY0OEIxMTFFQTk2QTA2QzdFQzRGOUFFMDIvMkU0QkJFNEVC NEI1MTFFRjhBMjQ4MjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnI6gwDQQCAAIwBwMFACQDLUAwDQYJKoZIhvcNAQELBQAD ggEBAC8zBP+0nTq2+0tM7zdkRc+HvlJtPFwyvPScZXdqxLHLYBE4QeupDCZes+S0 a8wLeGXaN2kFa8aH35497P9SgLcOXr8B6Ylzc1IZMTf2jl0zJP+YrS8rnGnDjTlW iuH46SlCeMSaAIPuHnT2I23tWNYxBYiGUDDeAYCaduI5V4k5tQUrX1e16Zo7wWZo Jljlj58jk9cbc0gaqBurbyTNxnPQqEZ5tlsSwkpoe129QxjMIfXGKOxFwTxEx1Ju Z2rC2ZfSOsyslnZJec4lKRUZ2dySQDC4zNjdSebWSHllQYUS5Fr/GYwjC5O7Scow 2dWyOONQs3BQ0hHvCxTBJ7ZQ6Bo= -----END CERTIFICATE-----Generated at Sat Apr 26 17:02:14 2025 by rpki-client