$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/907B9B20E8AD11EBAA895D0AC4F9AE02.roa File: 907B9B20E8AD11EBAA895D0AC4F9AE02.roa (raw, json) Hash identifier: Yy12wxP/cM0LLNtHiB2aLkhSaVEMx94WCa7jMCYf9WM= Subject key identifier: E1:2D:02:D7:A8:7B:2C:91:B1:F7:F1:92:5A:1A:39:F0:DC:95:D0:F9 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1D03 Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/907B9B20E8AD11EBAA895D0AC4F9AE02.roa Signing time: Tue 18 Feb 2025 16:43:46 +0000 ROA not before: Tue 18 Feb 2025 16:43:46 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 45102 IP address blocks: 103.81.186.0/23 maxlen: 23 202.144.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:11:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7427 (0x1d03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2, serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Validity Not Before: Feb 18 16:43:46 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67b4b8c1-21d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:04:1c:18:28:eb:d2:23:07:94:2d:c0:83:3b: 89:ff:75:e7:dc:44:7b:d8:6b:5b:1f:92:48:4f:1b: 8a:72:bb:60:fd:6b:9e:f1:31:7d:1d:70:a7:bf:8e: ef:08:95:13:cb:9b:6a:04:db:fc:9d:a4:aa:de:03: 61:3b:54:1f:61:d9:9f:13:07:d0:fe:d3:c2:f9:cd: 43:5d:e3:8e:2a:0f:ff:25:5d:7a:96:b5:43:cf:3a: 76:bd:a1:69:51:2c:e8:5d:57:cf:ec:df:7f:68:b0: 79:33:51:e1:1e:09:9b:96:cc:f4:c7:c1:f5:8f:05: 67:fc:bd:b4:5c:1d:34:f0:09:24:ff:a8:aa:4a:0d: 69:20:0e:0d:96:eb:c2:3f:7a:41:35:f6:f0:9e:5a: 92:be:70:39:5b:4e:7c:5b:ac:a0:d7:a2:90:60:20: d7:ee:cd:b9:9c:0c:f5:3d:08:ac:68:b9:6b:0b:86: a9:f4:54:97:9f:fc:5b:9d:04:b8:fe:44:fd:74:b5: 79:cd:07:d5:6e:60:f6:5d:53:81:a2:2a:6b:68:7f: 28:40:cd:ee:17:6e:f5:ba:cc:02:ce:3e:f8:6b:54: d5:af:68:a9:97:70:e8:92:d0:1f:ed:37:34:33:b3: 14:3b:27:8b:47:2d:03:15:ce:89:66:e7:16:9d:8d: 08:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:2D:02:D7:A8:7B:2C:91:B1:F7:F1:92:5A:1A:39:F0:DC:95:D0:F9 X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/907B9B20E8AD11EBAA895D0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.81.186.0/23 202.144.199.0/24 Signature Algorithm: sha256WithRSAEncryption 27:35:5e:fb:93:6e:ad:46:3c:00:c5:13:2d:dd:eb:f9:9f:25: 86:db:79:cf:1e:3a:8d:a9:18:dd:06:8d:fa:c9:c5:49:b4:af: d1:d7:ce:c3:db:c9:43:46:e9:e1:ce:31:74:29:fa:e8:c8:da: 57:da:45:10:1f:c9:8e:9b:6d:ca:dd:e2:6a:17:f8:96:66:58: c7:5c:ff:8e:12:bc:8a:8b:4e:1f:a7:76:67:be:98:5d:82:f2: fa:c9:d2:0d:00:e6:ac:11:ee:53:28:e5:e1:c5:a6:ef:ba:7c: 2b:a0:a5:1e:0e:70:d4:b7:2c:c1:a4:2a:36:36:ca:81:09:a4: 1b:8a:4c:16:16:27:00:55:10:65:29:40:c4:bd:18:84:01:0f: 96:35:1c:23:3d:47:36:ca:26:eb:22:a4:9e:5e:f9:c4:9b:e3: 34:5f:a6:1f:80:ca:15:8d:49:de:c3:6b:9c:f8:e0:c5:e1:02: 42:8b:38:7e:87:d3:80:e3:84:c0:d9:e9:3f:93:a3:ca:6d:70: b0:17:d7:4c:40:e1:e8:c6:81:d9:66:23:16:59:b5:05:a1:0e: 78:4b:f6:48:d4:dd:69:8c:45:df:40:ad:1b:a9:62:12:5a:fe: f3:5c:91:52:5a:99:2f:c9:05:31:e0:14:cb:b8:40:ee:fc:db: d3:b9:64:ba -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICHQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjUwMjE4MTY0MzQ2WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I0YjhjMS0yMWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2wQcGCjr0iMHlC3AgzuJ/3Xn3ER72GtbH5JITxuKcrtg/Wue8TF9HXCnv47v CJUTy5tqBNv8naSq3gNhO1QfYdmfEwfQ/tPC+c1DXeOOKg//JV16lrVDzzp2vaFp USzoXVfP7N9/aLB5M1HhHgmblsz0x8H1jwVn/L20XB008Akk/6iqSg1pIA4NluvC P3pBNfbwnlqSvnA5W058W6yg16KQYCDX7s25nAz1PQisaLlrC4ap9FSXn/xbnQS4 /kT9dLV5zQfVbmD2XVOBoipraH8oQM3uF271uswCzj74a1TVr2ipl3DoktAf7Tc0 M7MUOyeLRy0DFc6JZucWnY0IhwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOEtAteo eyyRsffxkloaOfDcldD5MB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RCRjIvRTM0NDUwMTZDMkY4MTFFNjk5N0FFQjZCQzRGOUFFMDIvOTA3QjlCMjBF OEFEMTFFQkFBODk1RDBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnUboDBADKkMcwDQYJKoZIhvcNAQELBQADggEBACc1XvuT bq1GPADFEy3d6/mfJYbbec8eOo2pGN0GjfrJxUm0r9HXzsPbyUNG6eHOMXQp+ujI 2lfaRRAfyY6bbcrd4moX+JZmWMdc/44SvIqLTh+ndme+mF2C8vrJ0g0A5qwR7lMo 5eHFpu+6fCugpR4OcNS3LMGkKjY2yoEJpBuKTBYWJwBVEGUpQMS9GIQBD5Y1HCM9 RzbKJusipJ5e+cSb4zRfph+AyhWNSd7Da5z44MXhAkKLOH6H04DjhMDZ6T+To8pt cLAX10xA4ejGgdlmIxZZtQWhDnhL9kjU3WmMRd9ArRupYhJa/vNckVJamS/JBTHg FMu4QO7829O5ZLo= -----END CERTIFICATE-----Generated at Sat Apr 26 05:51:47 2025 by rpki-client