$ rpki-client -vvf rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/A3E98D0E22A911EB96014E82C4F9AE02.roa File: A3E98D0E22A911EB96014E82C4F9AE02.roa (raw, json) Hash identifier: 4z79+Ejq1kli2iEB0MzmMtVOKS0J1xYaAwfN6Hko8PY= Subject key identifier: 81:D0:13:9A:B2:E9:1D:8A:89:6F:43:D4:49:63:27:9B:FF:07:A4:A4 Certificate issuer: /CN=A9195FCB/serialNumber=E951371DE4DCB10025484D2F14FDCDA2C6455B91 Certificate serial: 0702 Authority key identifier: E9:51:37:1D:E4:DC:B1:00:25:48:4D:2F:14:FD:CD:A2:C6:45:5B:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6VE3HeTcsQAlSE0vFP3NosZFW5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/A3E98D0E22A911EB96014E82C4F9AE02.roa Signing time: Sat 30 Nov 2024 21:40:54 +0000 ROA not before: Sat 30 Nov 2024 21:40:54 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 141398 IP address blocks: 103.158.62.0/23 maxlen: 23 103.158.62.0/24 maxlen: 24 103.158.63.0/24 maxlen: 24 2406:b240::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/6VE3HeTcsQAlSE0vFP3NosZFW5E.crl rsync://rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/6VE3HeTcsQAlSE0vFP3NosZFW5E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6VE3HeTcsQAlSE0vFP3NosZFW5E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:29:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1794 (0x702) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195FCB, serialNumber=E951371DE4DCB10025484D2F14FDCDA2C6455B91 Validity Not Before: Nov 30 21:40:54 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674b8666-dc71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:0c:3b:b4:cc:74:6c:3b:db:47:e1:be:7c:4c: b6:2c:e3:74:e7:44:10:6c:bb:f9:e7:1d:8a:c8:13: 4c:04:61:d4:05:ed:27:44:8c:39:d0:31:cd:2b:cb: c2:55:61:fb:72:f9:c5:e1:e2:8e:0b:64:a9:34:97: cf:a3:3f:ea:19:bf:fd:5f:8f:e5:57:39:47:5c:5a: b5:22:1d:e6:ce:d2:cb:fd:8c:ab:80:5b:41:a0:60: e0:a1:ca:2f:aa:b4:93:7f:a3:a2:e0:9a:cc:5c:c8: 46:0a:c3:5b:57:ed:63:73:c0:64:ff:0f:02:14:68: 68:79:c6:bd:d9:3d:b8:a9:5e:14:7b:c9:0b:86:0e: d1:cb:e2:49:5a:c5:85:fa:7c:7f:e0:e2:02:fc:c3: b7:a5:7f:0b:79:75:69:03:c7:65:47:29:9b:bd:18: 1d:77:c7:ae:80:fb:40:1f:ac:2b:71:04:72:10:8d: b4:46:77:04:b9:1a:c9:ec:77:9a:fe:1b:a5:24:bc: 82:99:85:c0:7a:ee:bb:78:ee:4b:6d:70:4a:d1:39: a7:a7:f0:ca:3f:48:85:01:ea:65:92:96:17:51:cb: ab:6c:56:cc:70:9c:7f:2c:9e:1b:42:58:48:42:ed: 7e:ae:73:1a:ca:b8:d9:03:22:44:25:87:0d:f5:3c: 51:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:D0:13:9A:B2:E9:1D:8A:89:6F:43:D4:49:63:27:9B:FF:07:A4:A4 X509v3 Authority Key Identifier: keyid:E9:51:37:1D:E4:DC:B1:00:25:48:4D:2F:14:FD:CD:A2:C6:45:5B:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/6VE3HeTcsQAlSE0vFP3NosZFW5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6VE3HeTcsQAlSE0vFP3NosZFW5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195FCB/880E634022A711EBB406CE7CC4F9AE02/A3E98D0E22A911EB96014E82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.62.0/23 IPv6: 2406:b240::/32 Signature Algorithm: sha256WithRSAEncryption 92:bf:16:48:5e:de:a8:d0:f2:f7:26:dd:00:f1:ec:f9:80:45: e6:a1:27:53:f6:ad:af:9b:78:b2:60:47:15:81:de:a7:cb:71: 2d:06:22:c8:09:9f:2c:29:c7:2e:86:1d:b6:ac:04:06:25:d0: ef:7a:31:78:41:db:ed:3b:5a:7d:a6:f6:fc:bc:6a:5b:34:20: 97:49:ab:3d:18:66:dd:5d:a4:43:97:39:8c:be:92:84:04:9e: 7c:dd:09:6c:67:79:97:85:aa:c1:5d:77:05:b2:57:91:40:ec: bd:01:0b:c6:2d:60:f9:fd:0d:c5:11:50:f7:31:90:11:ea:12: 36:50:63:6c:23:bb:a2:24:61:72:4a:45:fb:4e:95:15:86:80: 4d:cb:3b:3d:a3:98:c3:8a:92:87:d8:f5:b5:dc:57:af:fb:b1: 5e:52:de:ac:cc:f9:0b:b0:4a:78:8e:ab:60:c9:f0:69:9c:ac: 9a:91:93:2c:e6:cb:ff:17:af:82:c1:c3:cc:ea:2e:9a:91:7b: fb:cb:6b:56:d4:53:15:88:27:ec:5c:bc:f1:c1:a0:ef:a0:55: 55:eb:06:49:be:ab:c5:d7:21:8f:f1:28:e6:10:be:73:9b:fb: 6e:27:d4:09:a0:70:bc:07:fc:ad:8b:0a:0d:b1:97:8c:58:8b: 0d:b2:be:4a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVGQ0IxMTAvBgNVBAUTKEU5NTEzNzFERTREQ0IxMDAyNTQ4NEQyRjE0RkRDREEy QzY0NTVCOTEwHhcNMjQxMTMwMjE0MDU0WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRiODY2Ni1kYzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+gw7tMx0bDvbR+G+fEy2LON050QQbLv55x2KyBNMBGHUBe0nRIw50DHNK8vC VWH7cvnF4eKOC2SpNJfPoz/qGb/9X4/lVzlHXFq1Ih3mztLL/YyrgFtBoGDgocov qrSTf6Oi4JrMXMhGCsNbV+1jc8Bk/w8CFGhoeca92T24qV4Ue8kLhg7Ry+JJWsWF +nx/4OIC/MO3pX8LeXVpA8dlRymbvRgdd8eugPtAH6wrcQRyEI20RncEuRrJ7Hea /hulJLyCmYXAeu67eO5LbXBK0Tmnp/DKP0iFAeplkpYXUcurbFbMcJx/LJ4bQlhI Qu1+rnMayrjZAyJEJYcN9TxR9QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIHQE5qy 6R2KiW9D1EljJ5v/B6SkMB8GA1UdIwQYMBaAFOlRNx3k3LEAJUhNLxT9zaLGRVuR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUZDQi84ODBFNjM0MDIy QTcxMUVCQjQwNkNFN0NDNEY5QUUwMi82VkUzSGVUY3NRQWxTRTB2RlAzTm9zWkZX NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZWRTNIZVRjc1FBbFNFMHZGUDNOb3NaRlc1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVGQ0IvODgwRTYzNDAyMkE3MTFFQkI0MDZDRTdDQzRGOUFFMDIvQTNFOThEMEUy MkE5MTFFQjk2MDE0RTgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnnj4wDQQCAAIwBwMFACQGskAwDQYJKoZIhvcNAQELBQAD ggEBAJK/Fkhe3qjQ8vcm3QDx7PmAReahJ1P2ra+beLJgRxWB3qfLcS0GIsgJnywp xy6GHbasBAYl0O96MXhB2+07Wn2m9vy8als0IJdJqz0YZt1dpEOXOYy+koQEnnzd CWxneZeFqsFddwWyV5FA7L0BC8YtYPn9DcURUPcxkBHqEjZQY2wju6IkYXJKRftO lRWGgE3LOz2jmMOKkofY9bXcV6/7sV5S3qzM+QuwSniOq2DJ8GmcrJqRkyzmy/8X r4LBw8zqLpqRe/vLa1bUUxWIJ+xcvPHBoO+gVVXrBkm+q8XXIY/xKOYQvnOb+24n 1AmgcLwH/K2LCg2xl4xYiw2yvko= -----END CERTIFICATE-----Generated at Sat Apr 26 17:09:04 2025 by rpki-client