$ rpki-client -vvf rpki.apnic.net/member_repository/A9169E68/6322A33CF25211EABB8EB40FC4F9AE02/6A23B8EAF25411EA9DE4FF2DC4F9AE02.roa File: 6A23B8EAF25411EA9DE4FF2DC4F9AE02.roa (raw, json) Hash identifier: cQ3kSdVpmJNxckwfYojLBqgPBczRQd1WG2pNa7wN9U0= Subject key identifier: D2:57:83:E9:20:AA:76:35:E7:90:49:81:07:17:2C:F6:72:1F:F7:F5 Certificate issuer: /CN=A9169E68/serialNumber=731AF7ECEB8D71AA5CAE93973EE1A6597614C244 Certificate serial: 07BC Authority key identifier: 73:1A:F7:EC:EB:8D:71:AA:5C:AE:93:97:3E:E1:A6:59:76:14:C2:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxr37OuNcapcrpOXPuGmWXYUwkQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169E68/6322A33CF25211EABB8EB40FC4F9AE02/6A23B8EAF25411EA9DE4FF2DC4F9AE02.roa Signing time: Tue 08 Apr 2025 21:01:04 +0000 ROA not before: Tue 08 Apr 2025 21:01:04 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45144 IP address blocks: 103.78.47.0/24 maxlen: 24 103.78.48.0/23 maxlen: 24 103.211.239.0/24 maxlen: 24 220.158.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169E68/6322A33CF25211EABB8EB40FC4F9AE02/cxr37OuNcapcrpOXPuGmWXYUwkQ.crl rsync://rpki.apnic.net/member_repository/A9169E68/6322A33CF25211EABB8EB40FC4F9AE02/cxr37OuNcapcrpOXPuGmWXYUwkQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxr37OuNcapcrpOXPuGmWXYUwkQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:56:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1980 (0x7bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169E68, serialNumber=731AF7ECEB8D71AA5CAE93973EE1A6597614C244 Validity Not Before: Apr 8 21:01:04 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f58e90-5971 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:68:d2:95:07:7a:6b:ff:c0:9e:29:e8:db:a6: 0d:4f:93:5e:53:f1:30:63:86:21:19:cc:e9:9a:93: 52:80:8c:b2:60:e4:be:8d:c7:cd:17:07:00:7b:ba: c5:2b:46:d3:9f:6c:0a:16:f2:5c:e3:bb:a9:22:87: ab:24:c7:93:87:95:c2:58:2d:d5:ef:64:fc:d6:d6: 80:0f:3b:10:d2:ad:81:36:21:d4:ea:03:44:20:b7: d4:e2:f7:3f:40:0b:75:6b:32:66:45:9f:77:cc:0b: 3a:d4:7e:e5:7e:88:2d:00:d6:44:a4:0b:96:02:97: 36:5b:21:14:8e:6a:6a:a5:b4:e2:e9:ad:68:9b:1c: 06:14:26:ae:c5:c7:9e:b3:8b:c8:67:8f:ee:9c:47: 65:8e:68:fb:38:0d:8a:74:44:01:0f:f6:0d:e2:11: 78:3b:f5:75:56:55:7d:98:98:ce:2a:d0:36:28:2d: 32:46:82:29:92:63:71:eb:64:48:de:43:41:48:70: 6a:04:1e:63:27:74:b8:41:ec:72:c2:49:c4:25:d4: 43:f0:96:4b:15:a0:30:fd:10:8d:af:32:0a:65:b0: a7:01:f3:61:3a:47:f9:3b:85:81:96:fa:09:b9:56: a3:a3:1e:55:43:f2:3d:5e:56:b6:45:15:fe:92:8f: 92:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:57:83:E9:20:AA:76:35:E7:90:49:81:07:17:2C:F6:72:1F:F7:F5 X509v3 Authority Key Identifier: keyid:73:1A:F7:EC:EB:8D:71:AA:5C:AE:93:97:3E:E1:A6:59:76:14:C2:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169E68/6322A33CF25211EABB8EB40FC4F9AE02/cxr37OuNcapcrpOXPuGmWXYUwkQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxr37OuNcapcrpOXPuGmWXYUwkQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169E68/6322A33CF25211EABB8EB40FC4F9AE02/6A23B8EAF25411EA9DE4FF2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.78.47.0-103.78.49.255 103.211.239.0/24 220.158.208.0/22 Signature Algorithm: sha256WithRSAEncryption 33:e6:33:bc:c5:16:5c:dc:73:b2:8b:62:ba:fb:4e:e5:52:89: c9:ad:4b:0c:f8:2b:91:a8:6e:84:15:96:5a:09:f8:7b:80:2b: f2:9a:c3:0e:c8:e9:5d:d2:b6:1c:10:e5:f6:bd:d2:13:07:10: 64:25:87:4b:71:23:8a:f5:81:3a:19:3d:dd:40:a9:64:dc:b0: 64:a9:35:16:33:1a:72:fa:98:67:33:7b:a6:96:70:65:af:a0: 2d:cc:ef:97:ba:81:1e:db:6c:74:20:68:4a:4f:ca:eb:0d:d5: ef:ce:c0:cc:7d:cb:0b:cf:3e:2f:af:ea:8b:c6:ed:9b:2c:59: ec:6a:2f:f1:1e:c5:0c:61:6c:c5:f3:3e:4f:3a:91:63:cb:3d: 54:85:f4:b0:8f:31:5f:53:d7:d4:58:6c:4c:ae:ad:7b:e0:43: 68:4c:35:4d:ed:90:f9:f7:8c:ab:62:ac:13:08:90:29:b5:8c: f4:bb:b2:d3:e1:3f:ef:be:c4:3a:32:6e:d7:d1:a3:19:ed:62: b6:8b:05:21:a5:77:a5:b1:c1:77:62:14:ff:ea:1f:ad:86:ea: f2:45:aa:00:a8:72:1c:7d:db:39:2f:96:1c:3e:49:01:26:79: 4f:13:f6:4f:3b:b4:36:d1:06:81:ff:6e:66:48:84:f6:01:4b: d7:09:d8:f0 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICB7wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlFNjgxMTAvBgNVBAUTKDczMUFGN0VDRUI4RDcxQUE1Q0FFOTM5NzNFRTFBNjU5 NzYxNEMyNDQwHhcNMjUwNDA4MjEwMTA0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1OGU5MC01OTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmjSlQd6a//Anino26YNT5NeU/EwY4YhGczpmpNSgIyyYOS+jcfNFwcAe7rF K0bTn2wKFvJc47upIoerJMeTh5XCWC3V72T81taADzsQ0q2BNiHU6gNEILfU4vc/ QAt1azJmRZ93zAs61H7lfogtANZEpAuWApc2WyEUjmpqpbTi6a1omxwGFCauxcee s4vIZ4/unEdljmj7OA2KdEQBD/YN4hF4O/V1VlV9mJjOKtA2KC0yRoIpkmNx62RI 3kNBSHBqBB5jJ3S4QexywknEJdRD8JZLFaAw/RCNrzIKZbCnAfNhOkf5O4WBlvoJ uVajox5VQ/I9Xla2RRX+ko+SuwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFNJXg+kg qnY155BJgQcXLPZyH/f1MB8GA1UdIwQYMBaAFHMa9+zrjXGqXK6Tlz7hpll2FMJE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUU2OC82MzIyQTMzQ0Yy NTIxMUVBQkI4RUI0MEZDNEY5QUUwMi9jeHIzN091TmNhcGNycE9YUHVHbVdYWVV3 a1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4cjM3T3VOY2FwY3JwT1hQdUdtV1hZVXdrUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjlFNjgvNjMyMkEzM0NGMjUyMTFFQUJCOEVCNDBGQzRGOUFFMDIvNkEyM0I4RUFG MjU0MTFFQTlERTRGRjJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEAGdOLwMEAWdOMAMEAGfT7wMEAtye0DANBgkqhkiG9w0B AQsFAAOCAQEAM+YzvMUWXNxzsotiuvtO5VKJya1LDPgrkahuhBWWWgn4e4Ar8prD DsjpXdK2HBDl9r3SEwcQZCWHS3EjivWBOhk93UCpZNywZKk1FjMacvqYZzN7ppZw Za+gLczvl7qBHttsdCBoSk/K6w3V787AzH3LC88+L6/qi8btmyxZ7Gov8R7FDGFs xfM+TzqRY8s9VIX0sI8xX1PX1FhsTK6te+BDaEw1Te2Q+feMq2KsEwiQKbWM9Luy 0+E/777EOjJu19GjGe1itosFIaV3pbHBd2IU/+ofrYbq8kWqAKhyHH3bOS+WHD5J ASZ5TxP2Tzu0NtEGgf9uZkiE9gFL1wnY8A== -----END CERTIFICATE-----Generated at Sat Apr 26 09:31:58 2025 by rpki-client