$ rpki-client -vvf rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/846935702CD911ECA528B744C4F9AE02.roa File: 846935702CD911ECA528B744C4F9AE02.roa (raw, json) Hash identifier: W1EZe814Szf15WwX2ObaPNFong/hjvqkU7/N1EMoShM= Subject key identifier: 00:E6:9C:73:E2:18:62:17:81:FD:72:80:EE:13:F1:E2:F8:BE:2E:78 Certificate issuer: /CN=A9160DF1/serialNumber=5A08431060E5CB4A73413843A6C2F004BEFC32BF Certificate serial: 04AC Authority key identifier: 5A:08:43:10:60:E5:CB:4A:73:41:38:43:A6:C2:F0:04:BE:FC:32:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WghDEGDly0pzQThDpsLwBL78Mr8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/846935702CD911ECA528B744C4F9AE02.roa Signing time: Tue 29 Apr 2025 00:35:52 +0000 ROA not before: Tue 29 Apr 2025 00:35:52 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135059 IP address blocks: 103.112.191.0/24 maxlen: 24 103.145.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.crl rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WghDEGDly0pzQThDpsLwBL78Mr8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1196 (0x4ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160DF1, serialNumber=5A08431060E5CB4A73413843A6C2F004BEFC32BF Validity Not Before: Apr 29 00:35:52 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68101ee8-c398 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:75:9c:0e:38:00:8f:01:27:4f:a9:64:cb:2c: 5b:45:b8:59:e9:ff:7c:95:a7:a5:10:f4:ce:1f:a4: fd:51:3d:c9:b5:8c:b0:e9:8e:83:bf:bc:b0:4f:b7: 8b:52:ff:2d:1d:8c:34:d6:e2:dd:42:7b:0a:71:20: 69:06:ce:2e:7d:32:e6:c7:bb:cd:e6:8c:82:07:2a: 48:f8:01:7d:77:1b:05:b1:7e:3d:8c:f0:39:fd:3c: 23:38:33:21:6f:7f:0b:66:77:a6:9a:6f:43:18:06: ca:c0:53:68:ad:1d:78:5a:32:ac:55:99:be:f7:4c: ec:06:d0:58:03:18:ae:92:58:4a:f2:90:27:40:93: 71:44:74:ba:24:d5:ee:f7:53:20:4b:1a:4d:b8:2d: d6:9c:9e:2e:5f:a2:9d:2a:44:6e:7e:12:b7:06:7f: 89:8f:c3:fe:7f:ac:ef:8e:33:4d:0c:bb:2c:e3:09: 49:49:97:c8:2b:45:bc:36:bc:43:95:0b:fc:68:c3: ad:04:21:6a:f7:5c:e2:fe:b4:63:01:81:dd:ef:7d: 09:a9:83:b9:25:08:53:db:18:c2:2c:82:9d:f2:eb: ae:51:2f:6f:2b:42:cb:33:61:93:91:8c:aa:42:0a: 68:53:c8:94:64:20:10:79:91:f7:7a:41:8c:e6:2a: 3d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:E6:9C:73:E2:18:62:17:81:FD:72:80:EE:13:F1:E2:F8:BE:2E:78 X509v3 Authority Key Identifier: keyid:5A:08:43:10:60:E5:CB:4A:73:41:38:43:A6:C2:F0:04:BE:FC:32:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/WghDEGDly0pzQThDpsLwBL78Mr8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WghDEGDly0pzQThDpsLwBL78Mr8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160DF1/E379D5A02CD511ECBB6C412BC4F9AE02/846935702CD911ECA528B744C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.191.0/24 103.145.48.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:90:b5:f6:b4:0f:49:2f:38:64:14:fe:87:b2:6a:3e:9f:56: 15:f3:10:ad:bb:09:51:1f:41:cf:ee:bc:32:e0:20:b7:90:82: 9d:ca:ae:ec:f7:40:0f:5e:51:a3:b2:01:bb:8b:63:cb:71:36: ee:64:d2:ac:41:7a:9d:26:76:74:7f:a4:1d:57:d3:0d:a3:77: 77:33:1f:28:e7:46:6a:56:92:64:7e:37:6f:7e:19:8d:17:d5: 03:ed:56:a3:0a:d6:c5:8d:5e:7d:94:c6:92:c9:42:65:2e:f9: ed:49:ed:0d:05:42:e4:32:af:bd:9d:ae:83:3e:76:5f:79:be: 60:71:73:41:a9:71:ca:49:aa:49:bc:7c:3c:c7:67:80:c0:12: c7:11:4e:a8:9a:46:95:7f:8c:75:8d:c0:59:9d:41:57:41:3d: 7f:f7:26:e9:72:46:7c:86:44:64:52:8a:6d:d7:5d:7e:8c:52: 8e:ad:6f:42:3d:d7:bb:a2:23:c6:f5:84:35:02:0b:89:10:fa: 46:2a:f9:be:55:62:9c:26:05:54:fe:bf:ee:25:ec:c2:9d:13: f4:89:c8:db:0f:e3:d9:89:6d:b1:fa:ad:47:00:d3:d9:35:9a: 04:98:61:ed:ff:a4:5c:5b:98:d2:4b:f7:6e:0c:77:2c:99:60: 5c:aa:66:74 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBERjExMTAvBgNVBAUTKDVBMDg0MzEwNjBFNUNCNEE3MzQxMzg0M0E2QzJGMDA0 QkVGQzMyQkYwHhcNMjUwNDI5MDAzNTUyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwMWVlOC1jMzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnWcDjgAjwEnT6lkyyxbRbhZ6f98laelEPTOH6T9UT3JtYyw6Y6Dv7ywT7eL Uv8tHYw01uLdQnsKcSBpBs4ufTLmx7vN5oyCBypI+AF9dxsFsX49jPA5/TwjODMh b38LZnemmm9DGAbKwFNorR14WjKsVZm+90zsBtBYAxiuklhK8pAnQJNxRHS6JNXu 91MgSxpNuC3WnJ4uX6KdKkRufhK3Bn+Jj8P+f6zvjjNNDLss4wlJSZfIK0W8NrxD lQv8aMOtBCFq91zi/rRjAYHd730JqYO5JQhT2xjCLIKd8uuuUS9vK0LLM2GTkYyq QgpoU8iUZCAQeZH3ekGM5io9TQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFADmnHPi GGIXgf1ygO4T8eL4vi54MB8GA1UdIwQYMBaAFFoIQxBg5ctKc0E4Q6bC8AS+/DK/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MERGMS9FMzc5RDVBMDJD RDUxMUVDQkI2QzQxMkJDNEY5QUUwMi9XZ2hERUdEbHkwcHpRVGhEcHNMd0JMNzhN cjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dnaERFR0RseTBwelFUaERwc0x3Qkw3OE1yOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjBERjEvRTM3OUQ1QTAyQ0Q1MTFFQ0JCNkM0MTJCQzRGOUFFMDIvODQ2OTM1NzAy Q0Q5MTFFQ0E1MjhCNzQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABncL8DBABnkTAwDQYJKoZIhvcNAQELBQADggEBAG+Qtfa0 D0kvOGQU/oeyaj6fVhXzEK27CVEfQc/uvDLgILeQgp3Kruz3QA9eUaOyAbuLY8tx Nu5k0qxBep0mdnR/pB1X0w2jd3czHyjnRmpWkmR+N29+GY0X1QPtVqMK1sWNXn2U xpLJQmUu+e1J7Q0FQuQyr72droM+dl95vmBxc0GpccpJqkm8fDzHZ4DAEscRTqia RpV/jHWNwFmdQVdBPX/3JulyRnyGRGRSim3XXX6MUo6tb0I917uiI8b1hDUCC4kQ +kYq+b5VYpwmBVT+v+4l7MKdE/SJyNsP49mJbbH6rUcA09k1mgSYYe3/pFxbmNJL 924MdyyZYFyqZnQ= -----END CERTIFICATE-----Generated at Sun May 11 10:42:07 2025 by rpki-client