$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/ABD9CB4630C711ECA2491515C4F9AE02.roa File: ABD9CB4630C711ECA2491515C4F9AE02.roa (raw, json) Hash identifier: CoT7676o1FhYn/hTok256b21HFRTMynmtKsMLIXyZyA= Subject key identifier: 25:10:29:BE:E2:EE:FB:A0:CF:16:3D:4F:54:85:FA:8A:0F:48:59:64 Certificate issuer: /CN=A9171A59/serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Certificate serial: 04A3 Authority key identifier: 33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/ABD9CB4630C711ECA2491515C4F9AE02.roa Signing time: Sat 03 May 2025 00:05:52 +0000 ROA not before: Sat 03 May 2025 00:05:52 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 45753 IP address blocks: 103.91.8.0/22 maxlen: 24 123.253.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 23:45:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1187 (0x4a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A59, serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Validity Not Before: May 3 00:05:52 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68155de0-419e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:da:f2:d0:bc:40:f7:9a:50:d3:5d:4f:89:52: ce:66:f3:2b:5c:d6:e9:42:4c:14:44:b4:5d:29:77: a2:91:71:81:77:a3:cd:01:51:49:36:f4:4b:a8:68: 1a:b6:67:e7:2d:e5:da:b7:6b:5b:30:f0:93:d5:fe: 0f:51:07:d0:d2:d4:6a:aa:75:8f:07:6a:a0:5c:41: 05:3f:74:9c:4f:a2:c7:33:5e:86:1c:92:fb:34:1c: 8e:79:1f:e8:ec:ae:65:04:11:88:d2:32:cf:3a:5a: 87:76:d8:77:42:74:49:85:a2:aa:a7:fe:25:90:57: 5a:ac:3c:fa:00:1e:03:f0:37:b5:e8:c5:38:b5:ef: b3:80:69:dd:60:3a:69:e4:c1:fb:98:3b:45:ab:3d: da:0a:d6:e3:07:7b:a8:00:6c:f1:f5:b1:9e:1f:a6: 96:30:fe:8e:02:59:aa:6e:78:64:02:90:ec:8f:9e: c4:0c:0b:03:b1:2e:5a:26:c1:76:fd:b4:47:53:a9: 86:ab:48:51:62:c2:e8:1d:d1:cb:bc:b7:c3:91:09: 73:cc:d8:00:12:71:05:1f:34:f6:bc:64:22:4c:fa: d6:ed:53:a2:ad:41:7f:67:cd:ad:f8:15:12:76:cf: d7:da:c6:42:9c:48:7d:bb:24:75:ab:3c:86:57:c7: c1:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:10:29:BE:E2:EE:FB:A0:CF:16:3D:4F:54:85:FA:8A:0F:48:59:64 X509v3 Authority Key Identifier: keyid:33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/ABD9CB4630C711ECA2491515C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.8.0/22 123.253.24.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:aa:f9:5f:7d:01:b6:be:49:47:d9:b1:58:a2:4c:be:a1:66: 91:f5:45:87:8b:6d:ed:6e:9c:7b:11:0b:13:bb:bb:ed:60:35: 08:73:4e:67:78:4b:a5:a3:e6:8c:31:83:44:fd:1c:05:90:ef: 9c:5e:dd:49:6e:99:d9:ac:a9:e7:44:b5:fa:11:bf:2d:09:ab: cf:31:35:3c:19:8b:5a:68:fe:78:4b:0e:c4:87:0f:bc:14:92: 94:8b:79:0d:47:7b:88:fe:49:22:e5:df:ba:5b:a2:93:e3:0e: b7:c8:bb:0e:ae:6f:2c:24:57:b5:ec:1a:b4:c0:da:49:bb:20: b6:80:ac:3d:ca:90:c6:80:6f:c3:e3:2f:6c:77:62:9c:db:c7: 2a:a5:7a:55:b9:58:cd:0a:08:4f:ae:41:30:ae:aa:e7:4a:fe: 93:19:4d:44:01:df:2e:24:6f:fe:ec:56:5b:77:14:69:8a:af: 72:cf:30:3b:16:5a:99:56:95:1e:a6:ed:20:10:61:c9:12:9e: 51:f4:76:6f:a9:27:7d:3f:5e:44:83:ef:32:80:3c:3c:df:24: 25:e7:3a:a9:24:25:ce:09:be:7b:78:66:8f:d6:d8:b4:47:c9: 89:f7:1b:64:25:4c:d6:ab:15:81:9b:22:39:a1:40:0c:69:34: 45:b6:19:d6 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBNTkxMTAvBgNVBAUTKDMzM0VDNTAzMDE0RDA2NzRBRjE2NzQxOTk0MTBGOUIw OTFCOEZCOTQwHhcNMjUwNTAzMDAwNTUyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1NWRlMC00MTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA19ry0LxA95pQ011PiVLOZvMrXNbpQkwURLRdKXeikXGBd6PNAVFJNvRLqGga tmfnLeXat2tbMPCT1f4PUQfQ0tRqqnWPB2qgXEEFP3ScT6LHM16GHJL7NByOeR/o 7K5lBBGI0jLPOlqHdth3QnRJhaKqp/4lkFdarDz6AB4D8De16MU4te+zgGndYDpp 5MH7mDtFqz3aCtbjB3uoAGzx9bGeH6aWMP6OAlmqbnhkApDsj57EDAsDsS5aJsF2 /bRHU6mGq0hRYsLoHdHLvLfDkQlzzNgAEnEFHzT2vGQiTPrW7VOirUF/Z82t+BUS ds/X2sZCnEh9uyR1qzyGV8fBTwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCUQKb7i 7vugzxY9T1SF+ooPSFlkMB8GA1UdIwQYMBaAFDM+xQMBTQZ0rxZ0GZQQ+bCRuPuU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUE1OS84QUI5MzNFQTMw QzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJuU3ZGblFabEJENXNKRzQt NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL016N0ZBd0ZOQm5TdkZuUVpsQkQ1c0pHNC01US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFBNTkvOEFCOTMzRUEzMEM1MTFFQzhBNjdBQTdDQzRGOUFFMDIvQUJEOUNCNDYz MEM3MTFFQ0EyNDkxNTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnWwgDBAJ7/RgwDQYJKoZIhvcNAQELBQADggEBACqq+V99 Aba+SUfZsViiTL6hZpH1RYeLbe1unHsRCxO7u+1gNQhzTmd4S6Wj5owxg0T9HAWQ 75xe3UlumdmsqedEtfoRvy0Jq88xNTwZi1po/nhLDsSHD7wUkpSLeQ1He4j+SSLl 37pbopPjDrfIuw6ubywkV7XsGrTA2km7ILaArD3KkMaAb8PjL2x3YpzbxyqlelW5 WM0KCE+uQTCuqudK/pMZTUQB3y4kb/7sVlt3FGmKr3LPMDsWWplWlR6m7SAQYckS nlH0dm+pJ30/XkSD7zKAPDzfJCXnOqkkJc4Jvnt4Zo/W2LRHyYn3G2QlTNarFYGb IjmhQAxpNEW2GdY= -----END CERTIFICATE-----Generated at Wed May 14 16:16:08 2025 by rpki-client