$ rpki-client -vvf rpki.apnic.net/member_repository/A917DDD6/E5347B1CAD2011E8BA9D951AC4F9AE02/B9629D3258D611ED86C99945C4F9AE02.roa File: B9629D3258D611ED86C99945C4F9AE02.roa (raw, json) Hash identifier: t9IbQoMRsiWsCorQ3w0qnfUpx5CDVs1SA9baB681Ybk= Subject key identifier: 0D:35:C0:34:AE:C7:13:8D:3C:12:61:64:41:4C:89:AC:B4:97:6D:34 Certificate issuer: /CN=A917DDD6/serialNumber=B0557173A008D6F78C6E5E6B40F8DC079A8DF65F Certificate serial: 12D9 Authority key identifier: B0:55:71:73:A0:08:D6:F7:8C:6E:5E:6B:40:F8:DC:07:9A:8D:F6:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sFVxc6AI1veMbl5rQPjcB5qN9l8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DDD6/E5347B1CAD2011E8BA9D951AC4F9AE02/B9629D3258D611ED86C99945C4F9AE02.roa Signing time: Thu 02 Jan 2025 17:14:46 +0000 ROA not before: Thu 02 Jan 2025 17:14:46 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 136001 IP address blocks: 103.79.124.0/22 maxlen: 24 202.179.132.0/22 maxlen: 24 2401:1840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DDD6/E5347B1CAD2011E8BA9D951AC4F9AE02/sFVxc6AI1veMbl5rQPjcB5qN9l8.crl rsync://rpki.apnic.net/member_repository/A917DDD6/E5347B1CAD2011E8BA9D951AC4F9AE02/sFVxc6AI1veMbl5rQPjcB5qN9l8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sFVxc6AI1veMbl5rQPjcB5qN9l8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:03:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4825 (0x12d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DDD6, serialNumber=B0557173A008D6F78C6E5E6B40F8DC079A8DF65F Validity Not Before: Jan 2 17:14:46 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6776c985-6c0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a3:08:07:75:5f:f2:28:0f:04:5f:0a:37:12: 87:01:af:be:20:39:67:2e:cb:d4:54:20:ca:13:a9: 61:b9:28:f7:79:ad:38:aa:99:f7:6a:25:9a:95:e0: a4:f7:62:98:b5:4b:07:88:ef:e7:44:3b:b8:79:6c: df:7d:3f:a0:0e:3a:29:8d:d6:e2:f3:34:07:ff:ad: e7:0d:c1:c0:a3:6f:fa:12:a4:fa:a4:b3:05:8d:c1: fc:88:18:6f:1f:4b:a1:6c:b0:e2:69:85:a3:9c:57: 70:b8:77:6f:58:80:27:0b:88:ee:37:45:fe:f4:ac: 09:ea:93:af:09:59:6b:df:bc:1d:cf:ee:04:d4:f5: ba:db:6c:4b:24:d8:81:8b:0e:9a:1a:0f:b5:80:ec: bc:51:d0:25:a9:6a:9b:e7:a8:92:e4:49:95:16:70: f6:aa:9d:c4:45:ce:7e:fa:ae:e1:6c:d4:7c:d6:1d: 5f:4a:57:e1:84:9f:f7:ea:7f:9a:88:4c:50:0c:5b: a7:56:61:a6:4e:cf:f4:22:f1:a7:28:72:48:99:33: 43:df:99:77:51:57:25:5e:83:b7:5d:f8:7a:00:a9: de:7d:62:27:05:e6:bf:9b:b3:50:0d:f3:c2:59:03: 3c:f9:da:e9:3c:c7:6e:bf:16:92:8f:21:91:3d:6b: 00:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:35:C0:34:AE:C7:13:8D:3C:12:61:64:41:4C:89:AC:B4:97:6D:34 X509v3 Authority Key Identifier: keyid:B0:55:71:73:A0:08:D6:F7:8C:6E:5E:6B:40:F8:DC:07:9A:8D:F6:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DDD6/E5347B1CAD2011E8BA9D951AC4F9AE02/sFVxc6AI1veMbl5rQPjcB5qN9l8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sFVxc6AI1veMbl5rQPjcB5qN9l8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DDD6/E5347B1CAD2011E8BA9D951AC4F9AE02/B9629D3258D611ED86C99945C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.124.0/22 202.179.132.0/22 IPv6: 2401:1840::/32 Signature Algorithm: sha256WithRSAEncryption d1:c8:41:8e:9b:71:07:18:68:5f:e4:ce:e8:b5:7a:ac:78:c5: 2a:4f:52:e2:ea:d1:a0:58:78:cd:ef:5f:3c:49:c7:81:e2:39: f5:2b:ed:b6:fc:54:44:dd:46:90:3e:d5:29:fd:c4:ec:45:dd: 23:68:7b:56:2f:0d:61:92:92:08:1f:03:c4:17:bd:8b:02:4a: cc:dd:8d:37:6d:09:45:68:af:50:52:ca:3a:03:1e:31:3b:a5: df:1c:96:e2:a1:6d:1f:e0:23:a6:e6:5a:85:69:d3:9d:54:62: 79:1d:b0:42:c6:02:b7:e2:67:c1:32:93:e4:f8:73:8a:e5:e9: 31:ab:1a:57:60:f8:08:b3:8a:da:3b:74:b3:8c:c6:29:fd:e4: 4a:6c:82:70:57:50:d1:1a:71:e2:a3:6a:fd:29:4b:b8:d3:72: f1:58:21:67:25:79:3f:1c:1a:cc:a8:1a:82:e8:a0:29:d7:e1: 8d:bd:5c:01:9c:ff:29:ba:e6:ef:94:c3:61:3d:a8:28:da:3d: 96:4e:6b:3e:8c:20:3a:64:8a:9c:26:3f:09:98:ad:da:92:99: 16:2d:99:8d:bb:50:2c:2e:c5:1c:c6:42:e1:1e:9f:36:ea:55: 24:6f:d8:8a:1b:6a:43:6a:7b:4c:5e:4b:de:b0:b9:ca:a7:db: c7:47:6d:ed -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICEtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RERDYxMTAvBgNVBAUTKEIwNTU3MTczQTAwOEQ2Rjc4QzZFNUU2QjQwRjhEQzA3 OUE4REY2NUYwHhcNMjUwMTAyMTcxNDQ2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc2Yzk4NS02YzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6MIB3Vf8igPBF8KNxKHAa++IDlnLsvUVCDKE6lhuSj3ea04qpn3aiWaleCk 92KYtUsHiO/nRDu4eWzffT+gDjopjdbi8zQH/63nDcHAo2/6EqT6pLMFjcH8iBhv H0uhbLDiaYWjnFdwuHdvWIAnC4juN0X+9KwJ6pOvCVlr37wdz+4E1PW622xLJNiB iw6aGg+1gOy8UdAlqWqb56iS5EmVFnD2qp3ERc5++q7hbNR81h1fSlfhhJ/36n+a iExQDFunVmGmTs/0IvGnKHJImTND35l3UVclXoO3Xfh6AKnefWInBea/m7NQDfPC WQM8+drpPMduvxaSjyGRPWsA8wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFA01wDSu xxONPBJhZEFMiay0l200MB8GA1UdIwQYMBaAFLBVcXOgCNb3jG5ea0D43AeajfZf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RERENi9FNTM0N0IxQ0FE MjAxMUU4QkE5RDk1MUFDNEY5QUUwMi9zRlZ4YzZBSTF2ZU1ibDVyUVBqY0I1cU45 bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NGVnhjNkFJMXZlTWJsNXJRUGpjQjVxTjlsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RERDYvRTUzNDdCMUNBRDIwMTFFOEJBOUQ5NTFBQzRGOUFFMDIvQjk2MjlEMzI1 OEQ2MTFFRDg2Qzk5OTQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnT3wDBALKs4QwDQQCAAIwBwMFACQBGEAwDQYJKoZIhvcN AQELBQADggEBANHIQY6bcQcYaF/kzui1eqx4xSpPUuLq0aBYeM3vXzxJx4HiOfUr 7bb8VETdRpA+1Sn9xOxF3SNoe1YvDWGSkggfA8QXvYsCSszdjTdtCUVor1BSyjoD HjE7pd8cluKhbR/gI6bmWoVp051UYnkdsELGArfiZ8Eyk+T4c4rl6TGrGldg+Aiz ito7dLOMxin95EpsgnBXUNEaceKjav0pS7jTcvFYIWcleT8cGsyoGoLooCnX4Y29 XAGc/ym65u+Uw2E9qCjaPZZOaz6MIDpkipwmPwmYrdqSmRYtmY27UCwuxRzGQuEe nzbqVSRv2IobakNqe0xeS96wucqn28dHbe0= -----END CERTIFICATE-----Generated at Sat Apr 26 14:02:09 2025 by rpki-client