$ rpki-client -vvf rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/085B4576C35711EC9F5ADC3DC4F9AE02.roa File: 085B4576C35711EC9F5ADC3DC4F9AE02.roa (raw, json) Hash identifier: 8mq0TUcgdgyOArIdFl1Mn7GOTMSpOYLbH39QuqlMzQM= Subject key identifier: B2:D1:1C:D6:E4:F3:A5:7C:2B:4B:B5:87:EC:9D:D2:FF:E6:97:A9:FE Certificate issuer: /CN=A91717D1/serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Certificate serial: 0E3A Authority key identifier: DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/085B4576C35711EC9F5ADC3DC4F9AE02.roa Signing time: Sun 30 Jun 2024 18:58:54 +0000 ROA not before: Sun 30 Jun 2024 18:58:54 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 58689 IP address blocks: 103.139.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:39:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3642 (0xe3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91717D1, serialNumber=DC187FC8416CE5B347BAF221A3613A3B47828E88 Validity Not Before: Jun 30 18:58:54 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6681aaed-2eed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d0:33:a2:a1:63:f2:c9:fc:d4:91:1e:fc:1d: 27:65:f0:48:12:a5:58:52:f3:ae:39:60:ef:68:3e: b5:b5:d4:16:49:29:33:4e:2d:cb:b8:47:d3:11:be: 57:f0:15:0d:43:fb:e9:2b:d2:ea:b6:7e:1d:ab:a9: ee:d8:28:c6:fb:d8:da:94:7d:67:0d:98:4a:71:53: cd:0a:f3:fb:d4:4b:fa:f0:a2:5c:24:95:22:e0:2a: 04:34:f4:58:8f:d0:ea:de:d0:49:f4:93:4e:a6:e7: 82:84:47:46:71:7c:58:d7:dd:71:93:b3:c3:ca:03: 61:ca:3e:fd:ef:e4:ca:df:03:d0:ac:50:7e:e1:79: cd:53:5c:61:27:40:5f:9f:f0:c0:3d:77:77:b0:35: 81:ff:cf:c4:ca:fe:dd:b9:05:64:93:78:1f:af:49: dc:44:2f:9e:bc:da:f2:9b:9c:1e:f5:ff:9d:08:41: 54:00:84:43:4a:ca:4a:77:28:34:7c:42:36:d0:31: 49:97:11:fe:d5:f5:32:a5:cc:06:62:98:10:32:ce: 29:61:6a:f2:50:0f:37:a2:bd:03:6e:0c:03:0a:b3: 67:d7:53:1e:58:21:ed:d5:29:a7:2b:27:3f:2b:d5: dd:bb:7d:46:fd:e0:4c:f7:01:f1:e4:36:46:11:80: da:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:D1:1C:D6:E4:F3:A5:7C:2B:4B:B5:87:EC:9D:D2:FF:E6:97:A9:FE X509v3 Authority Key Identifier: keyid:DC:18:7F:C8:41:6C:E5:B3:47:BA:F2:21:A3:61:3A:3B:47:82:8E:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/3Bh_yEFs5bNHuvIho2E6O0eCjog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Bh_yEFs5bNHuvIho2E6O0eCjog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91717D1/9A9B48A282A311E99E582384C4F9AE02/085B4576C35711EC9F5ADC3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.9.0/24 Signature Algorithm: sha256WithRSAEncryption 68:e0:5b:4f:40:48:b2:01:ef:db:6c:9d:1a:22:6d:8d:2f:cd: 92:c8:23:2b:fd:08:0d:31:fd:df:8f:2d:dd:66:23:7c:ba:83: 74:06:68:55:ca:ce:2d:8e:d3:f6:ea:84:c5:a5:ad:58:e2:c4: 7b:a5:17:c3:ed:44:5e:cc:c7:78:38:67:f5:c7:39:a6:52:7a: 4b:ab:5b:b4:a0:01:22:8a:09:7a:12:f0:54:d4:23:f3:e0:ce: 42:96:be:1f:90:0c:4a:cb:72:eb:61:6e:dd:9c:e6:12:8c:83: 33:d5:46:d6:ae:f7:57:6a:03:0f:3c:e0:86:ff:b5:4f:c0:a9: 98:25:01:e3:1c:ea:33:f7:95:b4:d1:5f:98:34:9b:61:0f:c8: 50:6b:d8:c7:87:7a:ad:53:62:19:12:a2:b1:67:df:3d:94:0b: 71:cc:08:59:8d:11:bb:ec:4d:0c:46:19:67:b7:9e:f6:97:05: ec:44:f8:4d:dd:75:e4:20:a7:81:04:67:c0:a9:53:76:c2:f0: c4:2d:17:58:b0:2d:1d:3a:a7:f2:bc:94:48:32:29:6a:6b:58: 36:8c:ce:a5:0f:42:0b:81:1e:d2:41:cd:cd:8f:d5:8c:19:2e: b6:23:f5:0e:f1:cc:4d:30:e9:d8:b8:71:82:3d:a7:ca:a5:56: f7:63:c9:99 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE3RDExMTAvBgNVBAUTKERDMTg3RkM4NDE2Q0U1QjM0N0JBRjIyMUEzNjEzQTNC NDc4MjhFODgwHhcNMjQwNjMwMTg1ODU0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjgxYWFlZC0yZWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudAzoqFj8sn81JEe/B0nZfBIEqVYUvOuOWDvaD61tdQWSSkzTi3LuEfTEb5X 8BUNQ/vpK9Lqtn4dq6nu2CjG+9jalH1nDZhKcVPNCvP71Ev68KJcJJUi4CoENPRY j9Dq3tBJ9JNOpueChEdGcXxY191xk7PDygNhyj797+TK3wPQrFB+4XnNU1xhJ0Bf n/DAPXd3sDWB/8/Eyv7duQVkk3gfr0ncRC+evNrym5we9f+dCEFUAIRDSspKdyg0 fEI20DFJlxH+1fUypcwGYpgQMs4pYWryUA83or0DbgwDCrNn11MeWCHt1SmnKyc/ K9Xdu31G/eBM9wHx5DZGEYDaqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLLRHNbk 86V8K0u1h+yd0v/ml6n+MB8GA1UdIwQYMBaAFNwYf8hBbOWzR7ryIaNhOjtHgo6I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTdEMS85QTlCNDhBMjgy QTMxMUU5OUU1ODIzODRDNEY5QUUwMi8zQmhfeUVGczViTkh1dklobzJFNk8wZUNq b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNCaF95RUZzNWJOSHV2SWhvMkU2TzBlQ2pvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE3RDEvOUE5QjQ4QTI4MkEzMTFFOTlFNTgyMzg0QzRGOUFFMDIvMDg1QjQ1NzZD MzU3MTFFQzlGNUFEQzNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniwkwDQYJKoZIhvcNAQELBQADggEBAGjgW09ASLIB79ts nRoibY0vzZLIIyv9CA0x/d+PLd1mI3y6g3QGaFXKzi2O0/bqhMWlrVjixHulF8Pt RF7Mx3g4Z/XHOaZSekurW7SgASKKCXoS8FTUI/PgzkKWvh+QDErLcuthbt2c5hKM gzPVRtau91dqAw884Ib/tU/AqZglAeMc6jP3lbTRX5g0m2EPyFBr2MeHeq1TYhkS orFn3z2UC3HMCFmNEbvsTQxGGWe3nvaXBexE+E3ddeQgp4EEZ8CpU3bC8MQtF1iw LR06p/K8lEgyKWprWDaMzqUPQguBHtJBzc2P1YwZLrYj9Q7xzE0w6di4cYI9p8ql VvdjyZk= -----END CERTIFICATE-----Generated at Sat Apr 26 13:06:24 2025 by rpki-client