$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C08/AFFC0DE4117C11F0B234CD78C4F9AE02/ED917A58117D11F08E2E217CC4F9AE02.roa File: ED917A58117D11F08E2E217CC4F9AE02.roa (raw, json) Hash identifier: nWJb2TOdNfidjE1SHRuynXCmHmrpn3hOAOJLdCekIoY= Subject key identifier: 08:43:ED:08:FA:FD:E4:CF:9B:8C:A7:BB:FE:F7:61:4F:DB:C0:09:DD Certificate issuer: /CN=A9173C08/serialNumber=321EEFB80851FF82FEB7CB6C08A94F5DD2D9270D Certificate serial: 02 Authority key identifier: 32:1E:EF:B8:08:51:FF:82:FE:B7:CB:6C:08:A9:4F:5D:D2:D9:27:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh7vuAhR_4L-t8tsCKlPXdLZJw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C08/AFFC0DE4117C11F0B234CD78C4F9AE02/ED917A58117D11F08E2E217CC4F9AE02.roa Signing time: Fri 04 Apr 2025 17:55:00 +0000 ROA not before: Fri 04 Apr 2025 17:55:00 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 1821 IP address blocks: 103.212.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C08/AFFC0DE4117C11F0B234CD78C4F9AE02/Mh7vuAhR_4L-t8tsCKlPXdLZJw0.crl rsync://rpki.apnic.net/member_repository/A9173C08/AFFC0DE4117C11F0B234CD78C4F9AE02/Mh7vuAhR_4L-t8tsCKlPXdLZJw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh7vuAhR_4L-t8tsCKlPXdLZJw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:06:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C08, serialNumber=321EEFB80851FF82FEB7CB6C08A94F5DD2D9270D Validity Not Before: Apr 4 17:55:00 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67f01cf4-b48a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:28:8b:0b:cd:ca:f0:d6:ae:b0:95:39:5f:3d: 36:43:22:d6:77:b0:02:04:66:c0:82:51:a8:ef:c1: d2:a0:01:15:01:77:c4:7d:bd:09:ae:e2:72:01:b6: 66:eb:f0:cb:fb:a6:05:2e:c7:df:d6:a4:36:90:9b: 35:d3:f7:b3:d3:bd:91:cc:6d:85:d0:c0:70:3e:61: ca:b1:d1:95:31:af:7a:e4:88:fb:8c:b3:fc:da:05: ff:54:2c:12:51:de:aa:ed:70:ee:4e:8c:80:cd:26: b2:56:6f:7d:a5:a3:9f:20:5f:25:48:fe:39:17:59: 67:a3:b8:18:d0:a9:d2:81:67:a2:ce:0e:d1:6b:47: a0:fd:62:62:5e:a3:c5:1b:1f:e5:1a:db:df:0e:28: 41:35:a8:74:3f:d5:a7:88:68:16:0a:db:09:7e:a7: e4:a4:56:16:c0:f7:02:7e:67:31:22:a4:4d:12:0f: f2:86:53:47:e7:70:04:4b:38:5d:3f:e2:4b:41:a9: 31:54:1e:eb:7b:bb:9e:3a:70:ab:e3:0e:73:2d:a2: 8c:fe:01:ea:83:33:b9:30:96:58:27:b5:dd:66:18: fb:ed:19:03:20:b1:92:26:3e:cd:54:e8:86:35:60: 64:10:40:db:36:ee:89:1b:48:77:3e:78:b5:bb:c7: 6a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:43:ED:08:FA:FD:E4:CF:9B:8C:A7:BB:FE:F7:61:4F:DB:C0:09:DD X509v3 Authority Key Identifier: keyid:32:1E:EF:B8:08:51:FF:82:FE:B7:CB:6C:08:A9:4F:5D:D2:D9:27:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C08/AFFC0DE4117C11F0B234CD78C4F9AE02/Mh7vuAhR_4L-t8tsCKlPXdLZJw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh7vuAhR_4L-t8tsCKlPXdLZJw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C08/AFFC0DE4117C11F0B234CD78C4F9AE02/ED917A58117D11F08E2E217CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.115.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:c0:e5:4a:13:1a:61:19:c0:bf:61:ee:6c:33:f4:bb:3d:ac: 04:5b:b2:9e:c6:dd:eb:4b:b3:1d:17:37:3b:f5:9b:55:39:57: fb:e4:7f:64:44:d8:08:14:0f:a7:86:53:1f:1c:e2:79:32:c3: 8a:68:51:51:a4:4e:14:29:65:f7:72:86:01:e0:34:c5:61:b4: 86:35:73:ad:8b:48:2b:a9:bc:5d:62:88:20:7e:e7:46:4d:da: e3:cf:60:d8:af:84:50:68:a3:f8:49:94:5f:8a:a8:d3:b0:fa: 1f:fe:7e:8c:fe:29:68:8d:ea:fe:ef:8f:14:2d:07:7a:c6:c9: df:00:61:02:ee:09:29:80:01:5b:8d:f1:c7:c6:a3:ed:88:75: e3:67:4b:63:07:07:05:db:6a:4a:b0:0d:ba:e7:63:ae:aa:22: 06:c9:c6:37:45:cb:d5:c8:46:b4:9e:1d:cd:60:52:63:dd:75: d4:36:b9:78:2f:d8:20:49:d3:6a:a7:eb:5c:89:7c:cc:41:d0: 13:e8:74:4e:07:07:9d:33:fa:47:a3:31:60:15:ab:68:3e:37: 96:80:c9:ac:c0:e0:48:e6:67:78:94:dc:6b:7b:ee:4c:b0:2b: 22:97:12:16:ea:09:af:1a:dd:01:f1:d3:8d:8f:56:bb:4e:ca: d5:d2:10:5b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0MwODExMC8GA1UEBRMoMzIxRUVGQjgwODUxRkY4MkZFQjdDQjZDMDhBOTRGNURE MkQ5MjcwRDAeFw0yNTA0MDQxNzU1MDBaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZjAxY2Y0LWI0OGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOKIsLzcrw1q6wlTlfPTZDItZ3sAIEZsCCUajvwdKgARUBd8R9vQmu4nIBtmbr 8Mv7pgUux9/WpDaQmzXT97PTvZHMbYXQwHA+Ycqx0ZUxr3rkiPuMs/zaBf9ULBJR 3qrtcO5OjIDNJrJWb32lo58gXyVI/jkXWWejuBjQqdKBZ6LODtFrR6D9YmJeo8Ub H+Ua298OKEE1qHQ/1aeIaBYK2wl+p+SkVhbA9wJ+ZzEipE0SD/KGU0fncARLOF0/ 4ktBqTFUHut7u546cKvjDnMtooz+AeqDM7kwllgntd1mGPvtGQMgsZImPs1U6IY1 YGQQQNs27okbSHc+eLW7x2qlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUCEPtCPr9 5M+bjKe7/vdhT9vACd0wHwYDVR0jBBgwFoAUMh7vuAhR/4L+t8tsCKlPXdLZJw0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczQzA4L0FGRkMwREU0MTE3 QzExRjBCMjM0Q0Q3OEM0RjlBRTAyL01oN3Z1QWhSXzRMLXQ4dHNDS2xQWGRMWkp3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTWg3dnVBaFJfNEwtdDh0c0NLbFBYZExaSncwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0MwOC9BRkZDMERFNDExN0MxMUYwQjIzNENENzhDNEY5QUUwMi9FRDkxN0E1ODEx N0QxMUYwOEUyRTIxN0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGfUczANBgkqhkiG9w0BAQsFAAOCAQEAS8DlShMaYRnAv2Hu bDP0uz2sBFuynsbd60uzHRc3O/WbVTlX++R/ZETYCBQPp4ZTHxzieTLDimhRUaRO FCll93KGAeA0xWG0hjVzrYtIK6m8XWKIIH7nRk3a489g2K+EUGij+EmUX4qo07D6 H/5+jP4paI3q/u+PFC0HesbJ3wBhAu4JKYABW43xx8aj7Yh142dLYwcHBdtqSrAN uudjrqoiBsnGN0XL1chGtJ4dzWBSY9111Da5eC/YIEnTaqfrXIl8zEHQE+h0TgcH nTP6R6MxYBWraD43loDJrMDgSOZneJTca3vuTLArIpcSFuoJrxrdAfHTjY9Wu07K 1dIQWw== -----END CERTIFICATE-----Generated at Sat Apr 26 09:19:42 2025 by rpki-client