$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/DCEA0362C17C11ED92AD7D85C4F9AE02.roa File: DCEA0362C17C11ED92AD7D85C4F9AE02.roa (raw, json) Hash identifier: iJgF3xLl/F7BTTiuttHhI1X4PDcUoYj6A2s1rvrmJk0= Subject key identifier: 24:A0:B1:F8:6D:0F:D0:03:FD:FB:70:EC:1A:A1:99:8C:27:0C:9C:83 Certificate issuer: /CN=A9167FF5/serialNumber=BFAF2363757729EE05AB21B71D205AB418E1B834 Certificate serial: 0165 Authority key identifier: BF:AF:23:63:75:77:29:EE:05:AB:21:B7:1D:20:5A:B4:18:E1:B8:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v68jY3V3Ke4FqyG3HSBatBjhuDQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/DCEA0362C17C11ED92AD7D85C4F9AE02.roa Signing time: Fri 31 Jan 2025 03:19:58 +0000 ROA not before: Fri 31 Jan 2025 03:19:58 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 140210 IP address blocks: 103.148.154.0/23 maxlen: 23 103.148.154.0/24 maxlen: 24 103.148.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.crl rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v68jY3V3Ke4FqyG3HSBatBjhuDQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:39:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 357 (0x165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FF5, serialNumber=BFAF2363757729EE05AB21B71D205AB418E1B834 Validity Not Before: Jan 31 03:19:58 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=679c415e-d195 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7b:0d:56:6b:99:fc:f8:eb:76:45:01:b9:f0: 86:23:61:0c:f3:2f:82:30:24:59:13:56:76:36:a4: 6d:67:84:1d:e4:7c:36:26:28:cd:cc:ae:b1:50:a8: 58:06:d5:2d:87:4c:ff:55:ec:3a:21:35:bb:38:44: af:e6:04:c8:69:43:a0:8f:40:58:59:94:3f:f1:8d: 39:89:f3:10:73:ed:3d:16:f7:82:26:2d:d3:c2:60: 81:cb:ef:34:94:09:d1:7d:cd:6a:56:9d:ba:9e:a8: 01:cc:81:49:dc:54:fc:b5:2c:10:ff:42:91:93:45: a7:b9:9f:83:ab:c3:7b:ff:13:c4:39:2f:16:7f:12: e7:de:0f:91:d9:29:03:97:68:a0:2c:a2:91:65:c5: 1a:ef:ea:d2:df:4b:2e:43:27:6a:37:e4:12:60:a9: 62:7b:3b:64:e9:69:9a:8b:38:6b:ef:4f:2f:7f:2c: 27:fa:d5:97:26:05:b2:55:dd:5b:cd:c0:88:1e:5c: 9d:ac:0a:a0:d8:c8:b7:ad:bd:14:1a:5c:51:55:a0: 21:3a:41:30:77:fc:6e:5e:f4:6c:5a:10:e8:bf:15: 92:ae:5a:5f:48:24:97:1a:7d:c0:cd:31:2c:e0:64: 94:5c:72:76:fd:5c:a5:2a:7f:bf:e9:43:2b:3a:cc: b8:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:A0:B1:F8:6D:0F:D0:03:FD:FB:70:EC:1A:A1:99:8C:27:0C:9C:83 X509v3 Authority Key Identifier: keyid:BF:AF:23:63:75:77:29:EE:05:AB:21:B7:1D:20:5A:B4:18:E1:B8:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/v68jY3V3Ke4FqyG3HSBatBjhuDQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v68jY3V3Ke4FqyG3HSBatBjhuDQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FF5/27204392C17811EDAF54A95FC4F9AE02/DCEA0362C17C11ED92AD7D85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.154.0/23 Signature Algorithm: sha256WithRSAEncryption 38:14:97:53:13:03:4a:6c:d5:07:b2:3c:87:0e:91:84:15:96: ec:dd:9a:8f:29:46:ea:e2:fe:a9:b6:2f:84:74:87:22:c5:9e: f6:ed:a1:34:d4:3f:7e:61:4f:90:3a:71:17:45:7c:a9:e2:c6: 24:6b:c3:50:dc:b4:ce:eb:51:f1:fc:03:53:6f:9b:fa:79:bf: 42:31:3d:e7:61:06:d7:57:6d:ae:6c:0c:2b:da:93:1b:aa:9f: b3:c1:1f:bc:59:28:9d:27:74:fd:b7:b7:12:36:c3:f8:49:ed: 81:4a:e9:13:88:b2:f9:39:f9:7f:a7:5d:f3:4a:c7:13:52:bf: 9f:3b:a9:0e:3c:a9:71:4a:60:02:f2:50:43:93:4a:f2:b3:49: 50:6d:2d:d6:c6:6d:d2:d2:2b:ae:d7:dd:22:bb:b1:9f:4a:35: 6e:d8:cd:9b:13:62:1c:c2:85:30:1b:12:1d:fc:30:b9:26:0f: a7:7e:64:d8:1e:df:66:55:54:b9:55:58:14:66:94:0c:ca:bb: 01:4d:f0:92:d0:ec:23:9e:84:8d:01:2a:64:cc:c3:c1:84:d8: 35:81:d1:df:b3:a9:1e:53:0c:2f:8c:b7:57:56:e1:e9:a2:c5: 82:f9:90:67:36:d6:33:a8:0f:2a:fc:6b:e8:6b:34:e2:8f:97: 82:75:21:5b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdGRjUxMTAvBgNVBAUTKEJGQUYyMzYzNzU3NzI5RUUwNUFCMjFCNzFEMjA1QUI0 MThFMUI4MzQwHhcNMjUwMTMxMDMxOTU4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzljNDE1ZS1kMTk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXsNVmuZ/PjrdkUBufCGI2EM8y+CMCRZE1Z2NqRtZ4Qd5Hw2JijNzK6xUKhY BtUth0z/Vew6ITW7OESv5gTIaUOgj0BYWZQ/8Y05ifMQc+09FveCJi3TwmCBy+80 lAnRfc1qVp26nqgBzIFJ3FT8tSwQ/0KRk0WnuZ+Dq8N7/xPEOS8WfxLn3g+R2SkD l2igLKKRZcUa7+rS30suQydqN+QSYKlieztk6Wmaizhr708vfywn+tWXJgWyVd1b zcCIHlydrAqg2Mi3rb0UGlxRVaAhOkEwd/xuXvRsWhDovxWSrlpfSCSXGn3AzTEs 4GSUXHJ2/VylKn+/6UMrOsy4QwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCSgsfht D9AD/ftw7BqhmYwnDJyDMB8GA1UdIwQYMBaAFL+vI2N1dynuBashtx0gWrQY4bg0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0ZGNS8yNzIwNDM5MkMx NzgxMUVEQUY1NEE5NUZDNEY5QUUwMi92NjhqWTNWM0tlNEZxeUczSFNCYXRCamh1 RFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Y2OGpZM1YzS2U0RnF5RzNIU0JhdEJqaHVEUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdGRjUvMjcyMDQzOTJDMTc4MTFFREFGNTRBOTVGQzRGOUFFMDIvRENFQTAzNjJD MTdDMTFFRDkyQUQ3RDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlJowDQYJKoZIhvcNAQELBQADggEBADgUl1MTA0ps1Qey PIcOkYQVluzdmo8pRuri/qm2L4R0hyLFnvbtoTTUP35hT5A6cRdFfKnixiRrw1Dc tM7rUfH8A1Nvm/p5v0IxPedhBtdXba5sDCvakxuqn7PBH7xZKJ0ndP23txI2w/hJ 7YFK6ROIsvk5+X+nXfNKxxNSv587qQ48qXFKYALyUEOTSvKzSVBtLdbGbdLSK67X 3SK7sZ9KNW7YzZsTYhzChTAbEh38MLkmD6d+ZNge32ZVVLlVWBRmlAzKuwFN8JLQ 7COehI0BKmTMw8GE2DWB0d+zqR5TDC+Mt1dW4emixYL5kGc21jOoDyr8a+hrNOKP l4J1IVs= -----END CERTIFICATE-----Generated at Sat Apr 26 12:59:40 2025 by rpki-client