$ rpki-client -vvf rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/49DEAEDC12A711F099020A73C4F9AE02.roa File: 49DEAEDC12A711F099020A73C4F9AE02.roa (raw, json) Hash identifier: ZDuunhoBLIFxkgffUJp6fhz6W2Ysr7yM0HyGKDGLaSU= Subject key identifier: 7E:C6:83:E7:F0:37:FC:B4:ED:E5:0A:28:32:A3:D1:BD:73:C4:7B:19 Certificate issuer: /CN=A9161F3E/serialNumber=9CE917DC3AE0C5BA2E77CB775A3AD99C685C406B Certificate serial: 04 Authority key identifier: 9C:E9:17:DC:3A:E0:C5:BA:2E:77:CB:77:5A:3A:D9:9C:68:5C:40:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/49DEAEDC12A711F099020A73C4F9AE02.roa Signing time: Sun 06 Apr 2025 05:23:35 +0000 ROA not before: Sun 06 Apr 2025 05:23:35 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 134090 IP address blocks: 103.148.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.crl rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:05:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161F3E, serialNumber=9CE917DC3AE0C5BA2E77CB775A3AD99C685C406B Validity Not Before: Apr 6 05:23:35 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67f20fd7-f837 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:bf:0a:60:96:0d:96:d8:0c:85:b2:8f:dc:e9: 61:cf:5c:0a:01:19:63:0a:dd:8e:f7:b0:02:cc:d4: ff:12:79:44:d6:7a:55:d4:3e:67:5f:83:04:88:d7: 53:44:0e:03:15:be:f5:05:73:88:e5:be:e5:e7:ef: 1e:33:87:4b:73:cf:56:75:00:27:21:e7:b0:85:eb: 54:4a:bc:ba:59:b3:47:a7:d3:06:32:27:39:c1:16: 44:ff:f0:04:e5:11:7c:08:b2:13:cb:f3:3a:9b:c7: c7:b1:8e:59:66:a5:50:70:fb:21:86:95:3e:65:76: 69:95:ed:02:6a:c3:3a:27:80:c2:d1:9e:ba:cd:c9: 45:b4:cb:41:c2:a7:69:ea:5a:db:e7:1c:2a:dc:ff: 15:3e:da:30:17:29:ae:c5:f3:61:ea:30:a3:59:25: f2:89:d2:fe:a2:54:37:cf:75:61:75:9b:03:9c:3a: 7a:85:19:e2:d1:54:d4:ea:90:e2:ce:58:f8:e4:fe: f8:73:9e:a6:78:ce:3a:94:ba:b6:6f:74:b1:8f:12: 49:f0:ee:eb:a9:ea:a3:e8:87:6d:8b:a6:a6:af:15: d4:7c:bf:28:37:59:8d:51:10:5f:e4:41:54:71:e6: 80:b9:57:e8:40:67:21:e9:6b:ff:68:f2:27:fe:15: 0d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:C6:83:E7:F0:37:FC:B4:ED:E5:0A:28:32:A3:D1:BD:73:C4:7B:19 X509v3 Authority Key Identifier: keyid:9C:E9:17:DC:3A:E0:C5:BA:2E:77:CB:77:5A:3A:D9:9C:68:5C:40:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/nOkX3Drgxboud8t3WjrZnGhcQGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nOkX3Drgxboud8t3WjrZnGhcQGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161F3E/339EDE6810E411F0B75B8166C4F9AE02/49DEAEDC12A711F099020A73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.35.0/24 Signature Algorithm: sha256WithRSAEncryption af:53:9e:8c:df:ff:9f:1e:e1:08:10:ac:95:a8:a3:7c:62:d6: 50:ef:3a:51:d1:89:af:21:36:d4:97:e3:75:47:0a:9b:b2:88: 6f:82:ac:12:37:26:c1:e6:61:24:91:2b:93:c6:85:f0:1e:21: c0:7f:6f:5f:fb:05:a3:60:87:5f:71:e1:d4:21:20:20:19:88: ad:1d:c7:10:0a:b4:3f:f1:c2:a2:c3:a9:25:a6:ac:27:90:f0: 33:48:ff:7d:35:b9:95:46:5a:dc:af:b2:a8:36:ef:d9:ec:e8: b3:16:da:00:1c:ed:3d:e2:b1:d4:be:b1:f5:a1:50:4c:5f:ba: e5:8f:f1:b1:26:60:78:2f:d2:e8:c4:69:50:a1:f9:d9:99:51: 50:da:f3:59:91:95:d3:8f:23:24:64:4d:7d:fe:c2:48:eb:25: d8:01:a1:97:84:cb:ee:29:14:3f:7d:cf:18:b9:ba:20:a5:18: 08:c2:88:06:34:a9:a1:ef:f0:14:b6:22:b3:1c:2d:26:37:fc: b4:41:91:07:da:c4:55:cd:11:26:70:71:8a:ed:29:64:f8:a2: 10:af:dc:e5:2c:55:4b:70:0f:c3:ce:b3:8b:72:ec:0f:d3:71: d3:92:63:cb:7a:8f:f8:12:71:f2:47:cd:1e:da:e5:ca:4a:7a: 33:e6:17:55 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MUYzRTExMC8GA1UEBRMoOUNFOTE3REMzQUUwQzVCQTJFNzdDQjc3NUEzQUQ5OUM2 ODVDNDA2QjAeFw0yNTA0MDYwNTIzMzVaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZjIwZmQ3LWY4MzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpvwpglg2W2AyFso/c6WHPXAoBGWMK3Y73sALM1P8SeUTWelXUPmdfgwSI11NE DgMVvvUFc4jlvuXn7x4zh0tzz1Z1ACch57CF61RKvLpZs0en0wYyJznBFkT/8ATl EXwIshPL8zqbx8exjllmpVBw+yGGlT5ldmmV7QJqwzongMLRnrrNyUW0y0HCp2nq WtvnHCrc/xU+2jAXKa7F82HqMKNZJfKJ0v6iVDfPdWF1mwOcOnqFGeLRVNTqkOLO WPjk/vhznqZ4zjqUurZvdLGPEknw7uup6qPoh22LpqavFdR8vyg3WY1REF/kQVRx 5oC5V+hAZyHpa/9o8if+FQ0XAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUfsaD5/A3 /LTt5QooMqPRvXPEexkwHwYDVR0jBBgwFoAUnOkX3Drgxboud8t3WjrZnGhcQGsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxRjNFLzMzOUVERTY4MTBF NDExRjBCNzVCODE2NkM0RjlBRTAyL25Pa1gzRHJneGJvdWQ4dDNXanJabkdoY1FH cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbk9rWDNEcmd4Ym91ZDh0M1dqclpuR2hjUUdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MUYzRS8zMzlFREU2ODEwRTQxMUYwQjc1QjgxNjZDNEY5QUUwMi80OURFQUVEQzEy QTcxMUYwOTkwMjBBNzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeUIzANBgkqhkiG9w0BAQsFAAOCAQEAr1OejN//nx7hCBCs laijfGLWUO86UdGJryE21JfjdUcKm7KIb4KsEjcmweZhJJErk8aF8B4hwH9vX/sF o2CHX3Hh1CEgIBmIrR3HEAq0P/HCosOpJaasJ5DwM0j/fTW5lUZa3K+yqDbv2ezo sxbaABztPeKx1L6x9aFQTF+65Y/xsSZgeC/S6MRpUKH52ZlRUNrzWZGV048jJGRN ff7CSOsl2AGhl4TL7ikUP33PGLm6IKUYCMKIBjSpoe/wFLYisxwtJjf8tEGRB9rE Vc0RJnBxiu0pZPiiEK/c5SxVS3APw86zi3LsD9Nx05Jjy3qP+BJx8kfNHtrlykp6 M+YXVQ== -----END CERTIFICATE-----Generated at Sat Apr 26 17:11:07 2025 by rpki-client