$ rpki-client -vvf rpki.apnic.net/member_repository/A9198D6B/81E83F62D64A11EAB6A66410C4F9AE02/0446C8B2945911EB83AC5363C4F9AE02.roa File: 0446C8B2945911EB83AC5363C4F9AE02.roa (raw, json) Hash identifier: l0ICGLwuaPDJO60DuHwg4w9v81ASlnFGPH6s06O+ZdY= Subject key identifier: 22:B9:A9:77:C3:6B:E8:6A:7F:42:CE:CB:1B:32:E1:28:6F:32:7E:31 Certificate issuer: /CN=A9198D6B/serialNumber=A9020B626F504648E4DBF6A42076E89973C4ABC0 Certificate serial: 07F4 Authority key identifier: A9:02:0B:62:6F:50:46:48:E4:DB:F6:A4:20:76:E8:99:73:C4:AB:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qQILYm9QRkjk2_akIHbomXPEq8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198D6B/81E83F62D64A11EAB6A66410C4F9AE02/0446C8B2945911EB83AC5363C4F9AE02.roa Signing time: Fri 14 Feb 2025 21:59:19 +0000 ROA not before: Fri 14 Feb 2025 21:59:19 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 63961 IP address blocks: 103.147.242.0/23 maxlen: 23 103.147.242.0/24 maxlen: 24 103.147.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198D6B/81E83F62D64A11EAB6A66410C4F9AE02/qQILYm9QRkjk2_akIHbomXPEq8A.crl rsync://rpki.apnic.net/member_repository/A9198D6B/81E83F62D64A11EAB6A66410C4F9AE02/qQILYm9QRkjk2_akIHbomXPEq8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qQILYm9QRkjk2_akIHbomXPEq8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:42:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2036 (0x7f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198D6B, serialNumber=A9020B626F504648E4DBF6A42076E89973C4ABC0 Validity Not Before: Feb 14 21:59:19 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67afbcb7-c321 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:aa:3d:24:0b:eb:13:58:a4:55:cd:38:7e:70: 18:79:6b:99:92:89:a7:c7:d6:07:0a:ad:2d:f7:e7: 31:aa:22:b8:31:80:97:98:f1:bd:2e:35:c9:9d:40: 40:55:bd:5f:ab:84:a7:3b:ae:ae:ce:7f:ea:ec:34: ff:1a:a3:05:3b:73:6b:dc:81:8b:9f:ab:fc:3a:17: 62:1d:51:80:00:68:7b:c1:77:02:e5:d2:6a:d2:d1: d6:b2:6f:4c:72:52:04:70:71:21:06:e2:09:30:b7: 28:1f:53:b8:63:5c:b3:48:4b:33:14:99:3a:3b:97: d7:7e:75:04:30:7a:2f:90:db:5d:2d:00:45:f7:9c: 1f:bf:f0:92:0e:45:17:a1:e0:a5:60:1a:b9:84:b3: bd:cf:64:0e:05:06:da:24:53:ca:aa:7c:6b:bb:54: 86:14:1a:16:9d:62:d0:ea:f9:f2:f3:06:99:84:4a: 21:74:a1:04:fc:c1:c5:e0:cb:25:ac:82:0e:47:ee: 74:20:af:7e:4f:36:5a:31:45:7c:0f:7c:80:d5:cc: f5:94:4f:57:9a:68:56:aa:62:1e:34:84:5f:e7:51: ad:7d:14:01:82:94:b1:ee:53:81:98:7e:a6:0b:81: a0:6a:f5:84:2f:bb:3c:7e:47:66:1e:7d:9c:d2:84: dc:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:B9:A9:77:C3:6B:E8:6A:7F:42:CE:CB:1B:32:E1:28:6F:32:7E:31 X509v3 Authority Key Identifier: keyid:A9:02:0B:62:6F:50:46:48:E4:DB:F6:A4:20:76:E8:99:73:C4:AB:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198D6B/81E83F62D64A11EAB6A66410C4F9AE02/qQILYm9QRkjk2_akIHbomXPEq8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qQILYm9QRkjk2_akIHbomXPEq8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198D6B/81E83F62D64A11EAB6A66410C4F9AE02/0446C8B2945911EB83AC5363C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.242.0/23 Signature Algorithm: sha256WithRSAEncryption b7:82:f0:50:b7:39:5b:88:93:64:98:94:c3:8b:20:4c:c8:dd: e6:6f:2d:90:ee:c1:13:b2:8a:bb:b1:44:cf:3c:b1:79:91:9e: 43:7a:3c:b6:a2:76:cd:e0:99:51:54:61:a8:ce:80:33:f3:49: 5d:62:a9:5c:f1:23:39:4a:c0:d1:59:e2:3c:d3:12:ea:9e:0a: 89:c2:21:3e:a2:07:83:e6:ff:f0:cc:a7:c5:b1:d6:68:f3:2d: 89:3f:24:72:d6:83:5c:3a:6f:68:5f:12:58:61:5a:84:25:2d: cc:b0:fe:5d:04:3c:6b:dd:63:5b:2d:9f:8e:2a:f2:d4:5a:b9: 1e:7c:dd:b2:cd:82:79:93:8f:14:45:cf:6b:28:4c:4e:42:03: 31:19:19:ed:bd:46:5a:b8:c1:59:a3:ae:f0:81:7c:b6:f3:31: 04:aa:1a:e8:ff:b6:7a:20:c6:b2:63:7e:54:f7:4e:0a:da:de: 1b:c1:88:2b:ce:fb:0b:a9:61:08:8d:0f:a8:dd:ee:a8:aa:39: 03:1f:28:35:05:b6:bd:9b:e5:e6:18:6f:6d:81:d5:9a:d9:ec: aa:10:1d:58:42:b7:d9:04:60:23:ea:03:cd:63:4f:1d:aa:dd: 1e:b8:cc:82:20:72:81:01:ed:ce:00:91:e7:7c:fc:65:96:1b: a5:20:8b:3a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OThENkIxMTAvBgNVBAUTKEE5MDIwQjYyNkY1MDQ2NDhFNERCRjZBNDIwNzZFODk5 NzNDNEFCQzAwHhcNMjUwMjE0MjE1OTE5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FmYmNiNy1jMzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvao9JAvrE1ikVc04fnAYeWuZkomnx9YHCq0t9+cxqiK4MYCXmPG9LjXJnUBA Vb1fq4SnO66uzn/q7DT/GqMFO3Nr3IGLn6v8OhdiHVGAAGh7wXcC5dJq0tHWsm9M clIEcHEhBuIJMLcoH1O4Y1yzSEszFJk6O5fXfnUEMHovkNtdLQBF95wfv/CSDkUX oeClYBq5hLO9z2QOBQbaJFPKqnxru1SGFBoWnWLQ6vny8waZhEohdKEE/MHF4Msl rIIOR+50IK9+TzZaMUV8D3yA1cz1lE9XmmhWqmIeNIRf51GtfRQBgpSx7lOBmH6m C4GgavWEL7s8fkdmHn2c0oTcuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCK5qXfD a+hqf0LOyxsy4ShvMn4xMB8GA1UdIwQYMBaAFKkCC2JvUEZI5Nv2pCB26JlzxKvA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OEQ2Qi84MUU4M0Y2MkQ2 NEExMUVBQjZBNjY0MTBDNEY5QUUwMi9xUUlMWW05UVJramsyX2FrSUhib21YUEVx OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FRSUxZbTlRUmtqazJfYWtJSGJvbVhQRXE4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OThENkIvODFFODNGNjJENjRBMTFFQUI2QTY2NDEwQzRGOUFFMDIvMDQ0NkM4QjI5 NDU5MTFFQjgzQUM1MzYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnk/IwDQYJKoZIhvcNAQELBQADggEBALeC8FC3OVuIk2SY lMOLIEzI3eZvLZDuwROyiruxRM88sXmRnkN6PLaids3gmVFUYajOgDPzSV1iqVzx IzlKwNFZ4jzTEuqeConCIT6iB4Pm//DMp8Wx1mjzLYk/JHLWg1w6b2hfElhhWoQl Lcyw/l0EPGvdY1stn44q8tRauR583bLNgnmTjxRFz2soTE5CAzEZGe29Rlq4wVmj rvCBfLbzMQSqGuj/tnogxrJjflT3Tgra3hvBiCvO+wupYQiND6jd7qiqOQMfKDUF tr2b5eYYb22B1ZrZ7KoQHVhCt9kEYCPqA81jTx2q3R64zIIgcoEB7c4Aked8/GWW G6Ugizo= -----END CERTIFICATE-----Generated at Sat Apr 26 15:06:34 2025 by rpki-client