$ rpki-client -vvf rpki.apnic.net/member_repository/A9191DE0/59CA666E8F6311EAAF078558C4F9AE02/F898AEBC8F6411EA96126E5DC4F9AE02.roa File: F898AEBC8F6411EA96126E5DC4F9AE02.roa (raw, json) Hash identifier: onBNfM/Pn1GMIqfcUmL/COXE+dl4lbaBIGgghkrv3qQ= Subject key identifier: DD:83:28:0F:CC:36:7D:CA:A2:2B:7C:83:66:78:D9:2E:4D:71:D1:ED Certificate issuer: /CN=A9191DE0/serialNumber=7FC2458C86E25C9345A0852CB27EB17277FB81A3 Certificate serial: 0927 Authority key identifier: 7F:C2:45:8C:86:E2:5C:93:45:A0:85:2C:B2:7E:B1:72:77:FB:81:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f8JFjIbiXJNFoIUssn6xcnf7gaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191DE0/59CA666E8F6311EAAF078558C4F9AE02/F898AEBC8F6411EA96126E5DC4F9AE02.roa Signing time: Thu 28 Nov 2024 20:10:26 +0000 ROA not before: Thu 28 Nov 2024 20:10:26 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 138424 IP address blocks: 103.125.60.0/24 maxlen: 24 2001:df7:2500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191DE0/59CA666E8F6311EAAF078558C4F9AE02/f8JFjIbiXJNFoIUssn6xcnf7gaM.crl rsync://rpki.apnic.net/member_repository/A9191DE0/59CA666E8F6311EAAF078558C4F9AE02/f8JFjIbiXJNFoIUssn6xcnf7gaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f8JFjIbiXJNFoIUssn6xcnf7gaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:03:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2343 (0x927) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191DE0, serialNumber=7FC2458C86E25C9345A0852CB27EB17277FB81A3 Validity Not Before: Nov 28 20:10:26 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6748ce32-65a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7a:39:a3:c9:81:a8:44:7b:64:02:e2:f0:e3: 25:96:c1:09:da:79:8e:14:ad:5b:14:16:ad:af:7d: 2a:e8:d6:8d:61:cc:fe:d7:94:e5:e8:f2:86:6f:db: 9c:10:ce:05:22:f8:be:b7:cf:c7:73:00:83:ca:fa: 1b:90:06:a0:a0:82:29:91:12:13:a6:6c:2a:02:6c: 29:6d:dd:5b:74:d4:98:81:54:b6:3d:8f:b7:db:3f: 48:90:e5:74:39:28:04:75:88:a7:0d:71:0c:2b:c1: 02:a0:ad:8d:38:63:da:cf:9e:a4:db:41:14:7c:9f: 67:c0:01:c8:bf:3e:11:2c:5b:64:e4:74:ca:71:5b: f2:84:23:21:d0:10:b7:ac:40:eb:c8:24:cd:e5:7c: 83:c1:87:59:8c:f3:d1:68:59:e8:62:32:a9:6a:d8: 66:ee:14:ee:8e:a9:1b:16:1e:cd:58:97:9c:68:d9: fd:e0:6e:b3:af:bd:cd:24:b8:ed:66:4d:c8:ef:7f: 45:97:87:9c:60:49:bc:50:39:f5:6e:cd:a0:b8:ad: f0:c0:8f:ac:c4:20:59:d1:35:6e:5d:af:68:00:6e: 03:92:c5:7e:7d:cc:37:1c:d9:3e:df:b3:a6:5f:60: 86:f1:b8:40:05:0f:53:0d:aa:08:0d:c4:7c:99:bc: 6b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:83:28:0F:CC:36:7D:CA:A2:2B:7C:83:66:78:D9:2E:4D:71:D1:ED X509v3 Authority Key Identifier: keyid:7F:C2:45:8C:86:E2:5C:93:45:A0:85:2C:B2:7E:B1:72:77:FB:81:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191DE0/59CA666E8F6311EAAF078558C4F9AE02/f8JFjIbiXJNFoIUssn6xcnf7gaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f8JFjIbiXJNFoIUssn6xcnf7gaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191DE0/59CA666E8F6311EAAF078558C4F9AE02/F898AEBC8F6411EA96126E5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.60.0/24 IPv6: 2001:df7:2500::/48 Signature Algorithm: sha256WithRSAEncryption 3f:31:f1:25:ad:0e:f4:f0:a0:d4:f5:6f:84:ec:52:3d:72:e7: c9:ce:37:bc:8d:91:bb:0f:7a:df:b7:d9:a0:9a:ef:e1:dc:ab: 9c:db:b0:9d:e8:27:00:99:91:ee:6c:92:49:a3:f9:0d:bb:a8: 79:ae:4a:b4:4e:9e:37:f9:73:3a:8a:17:7b:ef:36:3d:ec:54: eb:5f:8c:5b:af:f2:4e:bc:25:cc:48:69:9c:a7:de:b4:ef:42: 98:d1:e9:9d:7a:b9:5b:59:ac:1c:c0:d7:e1:7b:b4:48:70:72: e3:45:33:13:48:9d:4f:47:de:3d:6b:c0:41:79:77:ac:d5:65: 6f:f4:98:b3:0a:a2:64:ff:ec:c3:ce:09:65:69:23:52:41:35: 08:74:dd:9b:5b:da:6f:b6:00:9a:59:af:29:05:ae:85:51:89: 87:96:89:1e:44:27:63:4a:d7:19:8b:c8:0f:f2:ec:b9:98:58: 67:c6:1e:c1:6b:4c:d2:d2:52:93:63:56:e2:b6:68:92:2c:46: 02:fa:67:7b:8c:14:98:5f:01:f6:88:91:f5:14:42:7e:9e:15: 8d:14:d0:8c:79:64:dd:f6:b9:fd:63:db:83:74:d1:a1:08:32: 5a:5b:13:19:17:90:0e:b4:0a:e8:58:e6:c3:c5:ae:4b:b1:cb: 1a:89:4c:6e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFERTAxMTAvBgNVBAUTKDdGQzI0NThDODZFMjVDOTM0NUEwODUyQ0IyN0VCMTcy NzdGQjgxQTMwHhcNMjQxMTI4MjAxMDI2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ4Y2UzMi02NWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXo5o8mBqER7ZALi8OMllsEJ2nmOFK1bFBatr30q6NaNYcz+15Tl6PKGb9uc EM4FIvi+t8/HcwCDyvobkAagoIIpkRITpmwqAmwpbd1bdNSYgVS2PY+32z9IkOV0 OSgEdYinDXEMK8ECoK2NOGPaz56k20EUfJ9nwAHIvz4RLFtk5HTKcVvyhCMh0BC3 rEDryCTN5XyDwYdZjPPRaFnoYjKpathm7hTujqkbFh7NWJecaNn94G6zr73NJLjt Zk3I739Fl4ecYEm8UDn1bs2guK3wwI+sxCBZ0TVuXa9oAG4DksV+fcw3HNk+37Om X2CG8bhABQ9TDaoIDcR8mbxrDwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFN2DKA/M Nn3Koit8g2Z42S5NcdHtMB8GA1UdIwQYMBaAFH/CRYyG4lyTRaCFLLJ+sXJ3+4Gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MURFMC81OUNBNjY2RThG NjMxMUVBQUYwNzg1NThDNEY5QUUwMi9mOEpGakliaVhKTkZvSVVzc242eGNuZjdn YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y4SkZqSWJpWEpORm9JVXNzbjZ4Y25mN2dhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFERTAvNTlDQTY2NkU4RjYzMTFFQUFGMDc4NTU4QzRGOUFFMDIvRjg5OEFFQkM4 RjY0MTFFQTk2MTI2RTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnfTwwDwQCAAIwCQMHACABDfclADANBgkqhkiG9w0BAQsF AAOCAQEAPzHxJa0O9PCg1PVvhOxSPXLnyc43vI2Ruw9637fZoJrv4dyrnNuwnegn AJmR7mySSaP5Dbuoea5KtE6eN/lzOooXe+82PexU61+MW6/yTrwlzEhpnKfetO9C mNHpnXq5W1msHMDX4Xu0SHBy40UzE0idT0fePWvAQXl3rNVlb/SYswqiZP/sw84J ZWkjUkE1CHTdm1vab7YAmlmvKQWuhVGJh5aJHkQnY0rXGYvID/LsuZhYZ8YewWtM 0tJSk2NW4rZokixGAvpne4wUmF8B9oiR9RRCfp4VjRTQjHlk3fa5/WPbg3TRoQgy WlsTGReQDrQK6Fjmw8WuS7HLGolMbg== -----END CERTIFICATE-----Generated at Sat Apr 26 19:41:59 2025 by rpki-client