$ rpki-client -vvf rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/4A6D188450EA11EC8FF55B24C4F9AE02.roa File: 4A6D188450EA11EC8FF55B24C4F9AE02.roa (raw, json) Hash identifier: d2hFjD7xeVN3cyOnjASfx1gXiQEjM5kCyEH2NHogTpU= Subject key identifier: B8:9D:0F:C0:8D:62:1B:EC:BF:B2:14:C4:84:EA:04:89:13:15:49:44 Certificate issuer: /CN=A9178EB0/serialNumber=AAA62DB47F012B26DD8698E2CC35DE8F29437761 Certificate serial: 07D0 Authority key identifier: AA:A6:2D:B4:7F:01:2B:26:DD:86:98:E2:CC:35:DE:8F:29:43:77:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qqYttH8BKybdhpjizDXejylDd2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/4A6D188450EA11EC8FF55B24C4F9AE02.roa Signing time: Tue 10 Dec 2024 21:20:13 +0000 ROA not before: Tue 10 Dec 2024 21:20:13 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 9744 IP address blocks: 103.1.224.0/22 maxlen: 24 103.199.104.0/22 maxlen: 24 112.121.160.0/19 maxlen: 24 137.59.20.0/22 maxlen: 24 180.178.32.0/19 maxlen: 24 182.16.0.0/17 maxlen: 24 2406:8680::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/qqYttH8BKybdhpjizDXejylDd2E.crl rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/qqYttH8BKybdhpjizDXejylDd2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qqYttH8BKybdhpjizDXejylDd2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:44:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2000 (0x7d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178EB0, serialNumber=AAA62DB47F012B26DD8698E2CC35DE8F29437761 Validity Not Before: Dec 10 21:20:13 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6758b08d-5893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:41:75:9f:bd:50:b0:6f:1c:33:c6:ee:3f:bf: 31:5b:30:4f:21:05:31:4e:59:26:aa:36:29:7b:7b: 46:8f:1b:61:2f:2d:99:2d:bc:e9:24:84:d1:70:51: cb:ee:a1:03:45:0c:51:6d:6a:ba:50:f4:43:9a:0d: 5d:3b:ce:35:66:48:b8:46:12:72:20:b5:6b:27:9a: 61:73:47:50:41:7f:f9:60:75:3f:64:ff:11:79:f8: a5:8e:b0:41:36:99:82:85:24:db:70:21:91:16:ca: 1d:d4:e4:30:4d:97:12:67:7a:aa:b1:ed:1c:93:4a: 41:6e:02:e4:a9:9c:de:73:ca:b5:d5:27:64:e1:e9: b1:40:a9:d1:39:9a:0d:60:d2:19:e3:65:91:62:e6: 45:1c:3a:4d:a6:fe:0a:51:91:f3:c4:ba:03:b6:bd: 30:e8:63:de:01:e4:d2:5c:9c:c4:01:af:15:82:17: 2a:8d:4d:58:3c:c8:27:02:57:77:11:5f:81:c9:3a: 1b:fb:81:e6:da:b5:01:8b:15:1c:51:16:b6:f7:32: 6a:e8:87:ea:1d:4e:1d:d5:5a:5e:12:21:87:83:3b: 12:7f:79:93:ce:6f:1d:f3:4b:cf:59:59:77:2d:a2: 88:51:3b:73:54:e3:41:f7:53:2b:4b:d9:79:2f:7a: 93:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:9D:0F:C0:8D:62:1B:EC:BF:B2:14:C4:84:EA:04:89:13:15:49:44 X509v3 Authority Key Identifier: keyid:AA:A6:2D:B4:7F:01:2B:26:DD:86:98:E2:CC:35:DE:8F:29:43:77:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/qqYttH8BKybdhpjizDXejylDd2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qqYttH8BKybdhpjizDXejylDd2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178EB0/65D1DB2CDAEA11EA958EB35BC4F9AE02/4A6D188450EA11EC8FF55B24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.1.224.0/22 103.199.104.0/22 112.121.160.0/19 137.59.20.0/22 180.178.32.0/19 182.16.0.0/17 IPv6: 2406:8680::/32 Signature Algorithm: sha256WithRSAEncryption 61:0e:24:b4:1b:fd:37:34:a4:28:5f:56:1e:dd:08:eb:06:e7: 04:4e:06:42:db:b5:62:50:4c:b7:13:b8:50:ab:1d:35:8e:b2: ad:31:2b:bc:0e:d5:60:c8:de:0b:a4:30:05:bd:67:19:16:60: 2e:ed:59:70:5f:ef:2e:43:9d:8b:78:92:b0:d8:b9:8a:6c:9e: b3:ba:c6:94:aa:d5:ff:fc:80:09:18:88:90:9e:e2:ab:d4:cd: 32:20:f2:6d:50:94:50:93:91:e7:c2:07:fa:32:9e:55:b4:85: 8d:28:2d:d8:90:4d:9c:74:78:44:ef:d9:5a:f9:04:76:fb:a6: 04:de:58:e2:57:46:53:13:e2:ab:ae:ce:de:e9:eb:33:48:9c: f6:6b:6f:9a:bc:5f:84:f7:d6:bb:cc:a7:89:8e:67:23:78:8b: 39:f4:43:57:93:65:c1:9c:e4:64:f6:19:ec:c1:d6:4e:56:2b: d1:79:b2:ab:ea:1a:71:04:30:a1:47:2e:98:ff:0c:08:d4:05: c2:ad:dc:e4:71:f2:cc:bb:34:2f:dd:5b:47:22:3a:26:49:da: d5:8f:fc:2e:13:01:40:7b:8e:c2:b6:75:3b:77:a2:47:fd:42: a0:fa:44:cf:8c:e0:c7:b4:a1:83:2a:70:9c:2d:92:ce:71:c6: 5d:ff:c8:f3 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICB9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhFQjAxMTAvBgNVBAUTKEFBQTYyREI0N0YwMTJCMjZERDg2OThFMkNDMzVERThG Mjk0Mzc3NjEwHhcNMjQxMjEwMjEyMDEzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU4YjA4ZC01ODkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUF1n71QsG8cM8buP78xWzBPIQUxTlkmqjYpe3tGjxthLy2ZLbzpJITRcFHL 7qEDRQxRbWq6UPRDmg1dO841Zki4RhJyILVrJ5phc0dQQX/5YHU/ZP8RefiljrBB NpmChSTbcCGRFsod1OQwTZcSZ3qqse0ck0pBbgLkqZzec8q11Sdk4emxQKnROZoN YNIZ42WRYuZFHDpNpv4KUZHzxLoDtr0w6GPeAeTSXJzEAa8VghcqjU1YPMgnAld3 EV+ByTob+4Hm2rUBixUcURa29zJq6IfqHU4d1VpeEiGHgzsSf3mTzm8d80vPWVl3 LaKIUTtzVONB91MrS9l5L3qT1wIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFLidD8CN Yhvsv7IUxITqBIkTFUlEMB8GA1UdIwQYMBaAFKqmLbR/ASsm3YaY4sw13o8pQ3dh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEVCMC82NUQxREIyQ0RB RUExMUVBOTU4RUIzNUJDNEY5QUUwMi9xcVl0dEg4Qkt5YmRocGppekRYZWp5bERk MkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FxWXR0SDhCS3liZGhwaml6RFhlanlsRGQyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhFQjAvNjVEMURCMkNEQUVBMTFFQTk1OEVCMzVCQzRGOUFFMDIvNEE2RDE4ODQ1 MEVBMTFFQzhGRjU1QjI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAJnAeADBAJnx2gDBAVweaADBAKJOxQDBAW0siADBAe2EAAw DQQCAAIwBwMFACQGhoAwDQYJKoZIhvcNAQELBQADggEBAGEOJLQb/Tc0pChfVh7d COsG5wROBkLbtWJQTLcTuFCrHTWOsq0xK7wO1WDI3gukMAW9ZxkWYC7tWXBf7y5D nYt4krDYuYpsnrO6xpSq1f/8gAkYiJCe4qvUzTIg8m1QlFCTkefCB/oynlW0hY0o LdiQTZx0eETv2Vr5BHb7pgTeWOJXRlMT4quuzt7p6zNInPZrb5q8X4T31rvMp4mO ZyN4izn0Q1eTZcGc5GT2GezB1k5WK9F5sqvqGnEEMKFHLpj/DAjUBcKt3ORx8sy7 NC/dW0ciOiZJ2tWP/C4TAUB7jsK2dTt3okf9QqD6RM+M4Me0oYMqcJwtks5xxl3/ yPM= -----END CERTIFICATE-----Generated at Sat Apr 26 14:21:06 2025 by rpki-client