$ rpki-client -vvf rpki.apnic.net/member_repository/A9185673/803ACD2C329211EE986F141FC4F9AE02/C4D5BB009B5411EFBBEFF384C4F9AE02.roa File: C4D5BB009B5411EFBBEFF384C4F9AE02.roa (raw, json) Hash identifier: eIIjFxp+ef05O83W47GAbRwK3AECc7ulokZsYTSnHpc= Subject key identifier: 58:32:90:43:87:E8:75:E6:D5:19:17:8C:1D:51:69:2F:93:90:7A:61 Certificate issuer: /CN=A9185673/serialNumber=ACB2C54EF0B64DC2100A486A7B8F59324BAD7B49 Certificate serial: 0148 Authority key identifier: AC:B2:C5:4E:F0:B6:4D:C2:10:0A:48:6A:7B:8F:59:32:4B:AD:7B:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLLFTvC2TcIQCkhqe49ZMkute0k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185673/803ACD2C329211EE986F141FC4F9AE02/C4D5BB009B5411EFBBEFF384C4F9AE02.roa Signing time: Thu 24 Apr 2025 09:40:02 +0000 ROA not before: Thu 24 Apr 2025 09:40:02 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 24413 IP address blocks: 103.166.174.0/24 maxlen: 24 103.166.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185673/803ACD2C329211EE986F141FC4F9AE02/rLLFTvC2TcIQCkhqe49ZMkute0k.crl rsync://rpki.apnic.net/member_repository/A9185673/803ACD2C329211EE986F141FC4F9AE02/rLLFTvC2TcIQCkhqe49ZMkute0k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLLFTvC2TcIQCkhqe49ZMkute0k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185673, serialNumber=ACB2C54EF0B64DC2100A486A7B8F59324BAD7B49 Validity Not Before: Apr 24 09:40:02 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=680a06f2-f330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8f:02:3b:4a:4c:10:72:74:93:15:ba:4c:ba: 2f:2a:b5:d6:f0:8c:93:16:26:64:fa:32:28:c1:22: 11:f3:d9:da:c5:6a:b6:62:e4:10:c8:3b:0d:a3:43: ba:39:98:db:a7:8c:77:2d:c1:21:c1:78:50:25:93: b4:aa:4b:a8:29:1d:54:e9:bd:e8:2d:3f:35:42:f0: d6:2e:cb:21:dd:90:9a:0d:4a:93:f9:08:d0:b1:2c: f9:0e:cd:0f:a5:9d:18:cc:86:c0:4b:6a:d3:60:4f: f9:5a:47:3a:5e:a1:03:a2:0d:3e:c5:2d:ab:a3:e0: 89:fd:3a:c7:d1:69:d5:b9:d1:9a:ba:ba:ad:e4:e8: 70:68:81:d6:72:94:35:36:ce:14:5a:f2:67:ee:bd: 8e:2f:0a:24:ae:37:63:4c:9a:63:fe:db:50:39:e3: 75:79:20:e0:5b:4a:7f:ef:f2:53:a6:22:14:21:07: c4:3b:63:56:3a:d9:45:12:ba:d4:f8:35:3a:d8:8d: 8d:82:46:f0:55:8f:71:12:5e:2d:7f:ed:be:1e:2a: 3d:fb:21:4c:8a:6a:22:4d:0b:a1:43:f5:8e:62:49: 0f:e1:6f:c8:11:7d:ab:cf:47:23:e5:c6:f4:c3:10: ae:e9:f9:34:2f:6d:4e:46:37:f4:a5:c5:89:ed:c1: ea:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:32:90:43:87:E8:75:E6:D5:19:17:8C:1D:51:69:2F:93:90:7A:61 X509v3 Authority Key Identifier: keyid:AC:B2:C5:4E:F0:B6:4D:C2:10:0A:48:6A:7B:8F:59:32:4B:AD:7B:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185673/803ACD2C329211EE986F141FC4F9AE02/rLLFTvC2TcIQCkhqe49ZMkute0k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLLFTvC2TcIQCkhqe49ZMkute0k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185673/803ACD2C329211EE986F141FC4F9AE02/C4D5BB009B5411EFBBEFF384C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.174.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:13:00:16:1a:0b:54:1a:03:47:eb:c7:98:70:61:15:61:d8: 38:24:27:c8:98:80:36:b2:10:17:29:25:19:e7:de:ab:8b:c7: a3:4a:44:30:96:01:1f:e1:86:85:6a:67:4b:11:56:f2:39:20: 41:23:79:5e:99:4c:ac:96:13:d9:da:ce:93:89:1e:fc:3d:25: cd:cb:3e:e4:d3:63:0a:5f:4a:b9:28:d5:e0:d5:1a:5c:41:f9: 56:66:17:af:05:f5:f0:8d:64:65:9d:71:27:63:54:e1:6e:99: ca:66:23:53:cb:a6:18:cc:86:4c:8e:c5:e0:79:ce:73:47:f3: 19:40:90:91:1d:1a:e7:67:17:1a:70:98:a5:ad:09:ba:ad:6f: 7f:10:2b:d8:fd:b3:3d:70:06:d2:36:3d:30:5c:49:29:d1:cf: 22:55:62:52:f6:be:46:65:ba:b5:98:3a:85:12:bd:74:23:22: 1f:55:96:3c:19:33:88:31:e2:86:48:ff:83:5b:8e:4d:1a:cb: d9:0a:b6:1e:82:60:46:e7:aa:97:79:1b:38:d0:dd:13:34:0e: 1b:9d:17:80:bb:72:c6:83:7c:26:14:d2:7c:ad:a3:5b:2a:56: 35:84:a0:8d:5d:25:83:d3:b6:34:66:2c:92:e2:32:aa:dd:1a: e0:29:84:28 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU2NzMxMTAvBgNVBAUTKEFDQjJDNTRFRjBCNjREQzIxMDBBNDg2QTdCOEY1OTMy NEJBRDdCNDkwHhcNMjUwNDI0MDk0MDAyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBhMDZmMi1mMzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxI8CO0pMEHJ0kxW6TLovKrXW8IyTFiZk+jIowSIR89naxWq2YuQQyDsNo0O6 OZjbp4x3LcEhwXhQJZO0qkuoKR1U6b3oLT81QvDWLssh3ZCaDUqT+QjQsSz5Ds0P pZ0YzIbAS2rTYE/5Wkc6XqEDog0+xS2ro+CJ/TrH0WnVudGaurqt5OhwaIHWcpQ1 Ns4UWvJn7r2OLwokrjdjTJpj/ttQOeN1eSDgW0p/7/JTpiIUIQfEO2NWOtlFErrU +DU62I2NgkbwVY9xEl4tf+2+Hio9+yFMimoiTQuhQ/WOYkkP4W/IEX2rz0cj5cb0 wxCu6fk0L21ORjf0pcWJ7cHqZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFgykEOH 6HXm1RkXjB1RaS+TkHphMB8GA1UdIwQYMBaAFKyyxU7wtk3CEApIanuPWTJLrXtJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTY3My84MDNBQ0QyQzMy OTIxMUVFOTg2RjE0MUZDNEY5QUUwMi9yTExGVHZDMlRjSVFDa2hxZTQ5Wk1rdXRl MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JMTEZUdkMyVGNJUUNraHFlNDlaTWt1dGUway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU2NzMvODAzQUNEMkMzMjkyMTFFRTk4NkYxNDFGQzRGOUFFMDIvQzRENUJCMDA5 QjU0MTFFRkJCRUZGMzg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnpq4wDQYJKoZIhvcNAQELBQADggEBAH8TABYaC1QaA0fr x5hwYRVh2DgkJ8iYgDayEBcpJRnn3quLx6NKRDCWAR/hhoVqZ0sRVvI5IEEjeV6Z TKyWE9nazpOJHvw9Jc3LPuTTYwpfSrko1eDVGlxB+VZmF68F9fCNZGWdcSdjVOFu mcpmI1PLphjMhkyOxeB5znNH8xlAkJEdGudnFxpwmKWtCbqtb38QK9j9sz1wBtI2 PTBcSSnRzyJVYlL2vkZlurWYOoUSvXQjIh9VljwZM4gx4oZI/4Nbjk0ay9kKth6C YEbnqpd5GzjQ3RM0DhudF4C7csaDfCYU0nyto1sqVjWEoI1dJYPTtjRmLJLiMqrd GuAphCg= -----END CERTIFICATE-----Generated at Sat Apr 26 09:30:36 2025 by rpki-client