$ rpki-client -vvf rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/A212A64854F611E79DF7E643C4F9AE02.roa File: A212A64854F611E79DF7E643C4F9AE02.roa (raw, json) Hash identifier: Tkmf4L8GEt+Ymff0VMzuLeDCbIi7tjYtfIPQH26ZWWs= Subject key identifier: 4F:CF:57:C4:52:F6:0A:31:1A:AA:B1:51:7C:9F:2D:12:AC:E5:2E:32 Certificate issuer: /CN=A91E01A9/serialNumber=4A575F2BF3312462F856461AE9DDD0A3844ABD2F Certificate serial: 1F6D Authority key identifier: 4A:57:5F:2B:F3:31:24:62:F8:56:46:1A:E9:DD:D0:A3:84:4A:BD:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SldfK_MxJGL4VkYa6d3Qo4RKvS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/A212A64854F611E79DF7E643C4F9AE02.roa Signing time: Sat 30 Nov 2024 16:13:25 +0000 ROA not before: Sat 30 Nov 2024 16:13:25 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 134787 IP address blocks: 103.9.20.0/23 maxlen: 25 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/SldfK_MxJGL4VkYa6d3Qo4RKvS8.crl rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/SldfK_MxJGL4VkYa6d3Qo4RKvS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SldfK_MxJGL4VkYa6d3Qo4RKvS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8045 (0x1f6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E01A9, serialNumber=4A575F2BF3312462F856461AE9DDD0A3844ABD2F Validity Not Before: Nov 30 16:13:25 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674b39a4-6715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ed:7a:dd:6c:b1:f0:20:bd:9f:28:49:67:7a: f1:70:ea:97:e8:e8:61:ad:43:46:f4:f0:7b:c3:d4: 31:82:e3:41:43:24:48:2f:b1:0b:8a:dc:0d:68:2f: 87:4b:0e:eb:69:bd:4a:42:5b:8a:18:0f:46:60:39: 1e:8d:79:02:e2:7e:2e:73:f2:0f:87:b4:19:b0:5f: 29:11:42:5b:5b:6b:d4:b6:ad:18:9c:e3:c5:c7:57: e8:9a:fa:97:cb:02:be:5f:7f:21:0e:68:8b:37:41: 0f:19:88:18:c7:3f:14:18:50:b9:3b:c5:4b:f8:ad: d8:12:fb:13:ad:2f:24:7a:7e:2d:45:13:06:92:af: 09:29:f5:6f:ed:d7:ae:94:68:b8:93:e6:56:01:8e: 6f:ec:73:b3:20:f2:42:df:58:a4:07:38:c1:4d:01: 90:3a:47:e4:76:c5:05:d4:21:05:a6:cb:1b:fe:bb: 5d:e0:b6:87:e8:4f:89:ed:fe:2f:b0:e8:a9:e9:80: 6e:68:45:6c:d8:5d:ac:0a:55:b4:61:f7:af:ed:80: f1:e5:4f:73:df:93:bd:2d:2d:ed:16:4e:b5:d3:e6: a2:a2:ca:d6:67:1d:e2:d7:ee:d5:9c:08:61:bb:83: 90:a3:df:5c:21:94:5d:5c:39:20:72:3b:ae:9b:b8: 5d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:CF:57:C4:52:F6:0A:31:1A:AA:B1:51:7C:9F:2D:12:AC:E5:2E:32 X509v3 Authority Key Identifier: keyid:4A:57:5F:2B:F3:31:24:62:F8:56:46:1A:E9:DD:D0:A3:84:4A:BD:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/SldfK_MxJGL4VkYa6d3Qo4RKvS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SldfK_MxJGL4VkYa6d3Qo4RKvS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E01A9/83C31108335C11E6A8000F4DC4F9AE02/A212A64854F611E79DF7E643C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.20.0/23 Signature Algorithm: sha256WithRSAEncryption b2:fa:72:c4:a8:27:01:12:da:99:9e:6f:ad:ae:48:82:b5:37: 80:4a:be:7c:70:3e:52:1d:25:ef:5b:d9:7c:61:2e:53:c0:db: d5:98:f4:65:22:92:3f:6c:7d:32:e5:a7:d4:7e:ab:d9:a9:99: 07:c2:b8:21:65:a2:ae:eb:1c:f7:7d:b2:22:29:01:47:58:e5: af:14:08:39:fa:15:fc:07:24:f8:c7:cb:8d:1a:a6:a9:8b:e9: 2a:7f:a3:f8:b7:5a:21:be:f7:0c:8f:d6:30:27:b1:b5:1d:3c: 84:a7:69:a6:0a:1d:95:77:89:3b:ca:64:29:b4:bc:1e:b5:83: bd:a5:c5:1f:9c:82:98:14:19:5b:c3:ab:9e:47:fe:bb:59:48: 4e:98:7a:b4:68:68:c5:86:f7:29:a5:4e:fa:b2:3f:70:32:24: 2c:b1:49:18:ba:e3:35:3d:e0:57:d3:5a:b8:ca:bb:e0:fa:76: 39:6a:fe:05:af:1d:23:7d:6d:95:a4:f4:63:c8:80:d4:cd:57: 50:5b:52:91:99:cd:71:a6:fa:72:3e:79:8d:30:1f:c7:c1:87: 1d:27:39:38:5d:23:d5:e4:9e:b5:2f:cb:d6:3f:6d:30:a9:33: 93:2f:61:21:10:f2:12:ee:d1:3f:f4:69:31:90:b8:c8:ba:cc: 12:f4:a6:be -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICH20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTAxQTkxMTAvBgNVBAUTKDRBNTc1RjJCRjMzMTI0NjJGODU2NDYxQUU5REREMEEz ODQ0QUJEMkYwHhcNMjQxMTMwMTYxMzI1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRiMzlhNC02NzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4O163Wyx8CC9nyhJZ3rxcOqX6OhhrUNG9PB7w9QxguNBQyRIL7ELitwNaC+H Sw7rab1KQluKGA9GYDkejXkC4n4uc/IPh7QZsF8pEUJbW2vUtq0YnOPFx1fomvqX ywK+X38hDmiLN0EPGYgYxz8UGFC5O8VL+K3YEvsTrS8ken4tRRMGkq8JKfVv7deu lGi4k+ZWAY5v7HOzIPJC31ikBzjBTQGQOkfkdsUF1CEFpssb/rtd4LaH6E+J7f4v sOip6YBuaEVs2F2sClW0Yfev7YDx5U9z35O9LS3tFk610+aiosrWZx3i1+7VnAhh u4OQo99cIZRdXDkgcjuum7hdHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFE/PV8RS 9goxGqqxUXyfLRKs5S4yMB8GA1UdIwQYMBaAFEpXXyvzMSRi+FZGGund0KOESr0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDFBOS84M0MzMTEwODMz NUMxMUU2QTgwMDBGNERDNEY5QUUwMi9TbGRmS19NeEpHTDRWa1lhNmQzUW80Ukt2 UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NsZGZLX014SkdMNFZrWWE2ZDNRbzRSS3ZTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTAxQTkvODNDMzExMDgzMzVDMTFFNkE4MDAwRjREQzRGOUFFMDIvQTIxMkE2NDg1 NEY2MTFFNzlERjdFNjQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnCRQwDQYJKoZIhvcNAQELBQADggEBALL6csSoJwES2pme b62uSIK1N4BKvnxwPlIdJe9b2XxhLlPA29WY9GUikj9sfTLlp9R+q9mpmQfCuCFl oq7rHPd9siIpAUdY5a8UCDn6FfwHJPjHy40apqmL6Sp/o/i3WiG+9wyP1jAnsbUd PISnaaYKHZV3iTvKZCm0vB61g72lxR+cgpgUGVvDq55H/rtZSE6YerRoaMWG9yml TvqyP3AyJCyxSRi64zU94FfTWrjKu+D6djlq/gWvHSN9bZWk9GPIgNTNV1BbUpGZ zXGm+nI+eY0wH8fBhx0nOThdI9XknrUvy9Y/bTCpM5MvYSEQ8hLu0T/0aTGQuMi6 zBL0pr4= -----END CERTIFICATE-----Generated at Sat Apr 26 08:19:59 2025 by rpki-client