$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/9BE6554CB72411EF98F7D577C4F9AE02.roa File: 9BE6554CB72411EF98F7D577C4F9AE02.roa (raw, json) Hash identifier: yrSI/VPF/gmdws9LHJgb8tXVegj+jybX3Fb+sP5IwCo= Subject key identifier: DE:6D:55:52:E5:76:D1:98:2B:61:E3:6B:ED:6E:EE:6C:A2:A8:5F:80 Certificate issuer: /CN=A9173C63/serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Certificate serial: 0143 Authority key identifier: 90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/9BE6554CB72411EF98F7D577C4F9AE02.roa Signing time: Tue 10 Dec 2024 19:44:34 +0000 ROA not before: Tue 10 Dec 2024 19:44:34 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 138640 IP address blocks: 103.131.100.0/23 maxlen: 23 103.131.100.0/24 maxlen: 24 103.131.101.0/24 maxlen: 24 2001:df2:4340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:49:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 323 (0x143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C63, serialNumber=908A180F94949607ADC0113149BE882AEAA8E88F Validity Not Before: Dec 10 19:44:34 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67589a22-9f20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5b:1d:92:8c:72:0b:9b:5f:c5:54:88:1d:c4: a1:f9:da:c7:f6:21:bd:4b:93:c5:79:6f:f3:cc:b4: e3:ba:47:54:08:9a:e5:e4:88:fe:a2:8a:26:32:cd: 90:0d:c4:ee:a5:56:c1:7d:2f:8c:1a:a0:55:00:4c: 39:63:96:0b:a0:a6:d6:c3:38:d7:c4:b4:5a:1b:86: ad:9c:35:ea:2f:12:1f:ae:9a:29:55:c7:8b:31:20: 85:5a:37:c2:b9:84:da:d8:04:d3:64:0f:42:4b:d8: 00:6c:90:98:b4:ae:9b:3c:72:39:40:3c:7c:3b:bc: d4:37:c2:cd:9d:98:91:04:53:82:6a:9d:d1:67:65: 96:c2:e6:3e:38:d8:30:a3:e0:28:c3:20:a5:d0:c0: 95:13:2b:b7:a9:d6:a3:b5:07:a2:92:12:39:6e:3c: e6:b2:e7:fb:22:f0:80:76:f0:cf:4b:c5:ae:7e:45: 3e:66:51:0f:d0:50:43:25:78:c1:60:78:ea:a8:2f: 8e:06:4d:df:22:3b:58:40:a7:08:6d:ef:e7:dd:14: df:57:4e:a2:12:35:cf:cc:08:d9:e6:22:f4:36:78: ff:de:41:22:fd:97:31:ec:d7:50:a7:b6:a6:bd:17: 32:c3:68:a7:e5:b6:40:4b:4b:61:cd:e1:ac:88:f0: 1f:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:6D:55:52:E5:76:D1:98:2B:61:E3:6B:ED:6E:EE:6C:A2:A8:5F:80 X509v3 Authority Key Identifier: keyid:90:8A:18:0F:94:94:96:07:AD:C0:11:31:49:BE:88:2A:EA:A8:E8:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/kIoYD5SUlgetwBExSb6IKuqo6I8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIoYD5SUlgetwBExSb6IKuqo6I8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C63/4D11319CD85C11ED8181A22FC4F9AE02/9BE6554CB72411EF98F7D577C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.131.100.0/23 IPv6: 2001:df2:4340::/48 Signature Algorithm: sha256WithRSAEncryption 11:c0:6c:fe:f7:b8:54:70:16:22:1d:c0:27:32:83:04:0f:c3: 5a:43:0c:d1:92:8d:8f:72:dd:4f:5b:9f:53:f6:ad:bb:07:4d: aa:b8:37:6f:eb:87:19:1e:0d:57:17:2d:d1:03:89:d3:85:85: b7:4e:67:63:0c:03:e9:1c:41:ff:a3:f7:d2:bb:c0:e9:97:33: cb:e0:aa:02:24:bc:f6:f7:72:fc:7e:8e:36:6c:5e:49:95:5a: 8d:fe:f8:71:43:37:19:10:1a:18:6b:b5:db:2b:ec:90:54:34: 3b:83:dc:06:21:bd:ee:ea:2f:eb:1e:b1:df:5f:a9:10:89:9d: d7:f9:80:38:e9:fa:78:0a:82:67:3a:ff:0d:af:12:3e:93:9f: 94:ff:5f:ef:9a:22:99:19:b7:f1:ee:47:60:fc:da:7f:e4:64: 45:69:88:bf:ed:ca:38:d4:e7:fb:23:a1:bf:6f:64:c5:d6:3e: 7b:c8:ec:4c:bf:22:b4:fd:9f:88:a5:ea:9b:af:89:10:b7:9a: 32:17:fe:6d:ed:61:f9:fb:ef:76:d1:e6:59:d8:d0:0f:bf:bd: 7c:4e:94:ce:bf:b8:3e:4a:ec:3f:b9:7a:81:10:4c:31:72:62: fd:b9:ef:b4:d6:ad:4e:9c:4d:21:bf:f8:08:6d:5a:20:fa:a2: 43:82:a6:a2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDNjMxMTAvBgNVBAUTKDkwOEExODBGOTQ5NDk2MDdBREMwMTEzMTQ5QkU4ODJB RUFBOEU4OEYwHhcNMjQxMjEwMTk0NDM0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU4OWEyMi05ZjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVsdkoxyC5tfxVSIHcSh+drH9iG9S5PFeW/zzLTjukdUCJrl5Ij+ooomMs2Q DcTupVbBfS+MGqBVAEw5Y5YLoKbWwzjXxLRaG4atnDXqLxIfrpopVceLMSCFWjfC uYTa2ATTZA9CS9gAbJCYtK6bPHI5QDx8O7zUN8LNnZiRBFOCap3RZ2WWwuY+ONgw o+AowyCl0MCVEyu3qdajtQeikhI5bjzmsuf7IvCAdvDPS8WufkU+ZlEP0FBDJXjB YHjqqC+OBk3fIjtYQKcIbe/n3RTfV06iEjXPzAjZ5iL0Nnj/3kEi/Zcx7NdQp7am vRcyw2in5bZAS0thzeGsiPAfZwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFN5tVVLl dtGYK2Hja+1u7myiqF+AMB8GA1UdIwQYMBaAFJCKGA+UlJYHrcARMUm+iCrqqOiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M2My80RDExMzE5Q0Q4 NUMxMUVEODE4MUEyMkZDNEY5QUUwMi9rSW9ZRDVTVWxnZXR3QkV4U2I2SUt1cW82 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJb1lENVNVbGdldHdCRXhTYjZJS3VxbzZJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNDNjMvNEQxMTMxOUNEODVDMTFFRDgxODFBMjJGQzRGOUFFMDIvOUJFNjU1NENC NzI0MTFFRjk4RjdENTc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFng2QwDwQCAAIwCQMHACABDfJDQDANBgkqhkiG9w0BAQsF AAOCAQEAEcBs/ve4VHAWIh3AJzKDBA/DWkMM0ZKNj3LdT1ufU/atuwdNqrg3b+uH GR4NVxct0QOJ04WFt05nYwwD6RxB/6P30rvA6Zczy+CqAiS89vdy/H6ONmxeSZVa jf74cUM3GRAaGGu12yvskFQ0O4PcBiG97uov6x6x31+pEImd1/mAOOn6eAqCZzr/ Da8SPpOflP9f75oimRm38e5HYPzaf+RkRWmIv+3KONTn+yOhv29kxdY+e8jsTL8i tP2fiKXqm6+JELeaMhf+be1h+fvvdtHmWdjQD7+9fE6Uzr+4PkrsP7l6gRBMMXJi /bnvtNatTpxNIb/4CG1aIPqiQ4Kmog== -----END CERTIFICATE-----Generated at Sat Apr 26 08:15:15 2025 by rpki-client