$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C08/AFFC0DE4117C11F0B234CD78C4F9AE02/ED917A58117D11F08E2E217CC4F9AE02.roa File: ED917A58117D11F08E2E217CC4F9AE02.roa (raw, json) Hash identifier: wOxc2mRdKwnrkxXakYEXBYgQ1Llp1nvGe0GOb+4AM30= Subject key identifier: C6:B4:E4:32:8C:38:3B:16:F4:DF:A4:29:90:FE:DB:2C:BC:B4:2C:EB Certificate issuer: /CN=A9173C08/serialNumber=321EEFB80851FF82FEB7CB6C08A94F5DD2D9270D Certificate serial: 12 Authority key identifier: 32:1E:EF:B8:08:51:FF:82:FE:B7:CB:6C:08:A9:4F:5D:D2:D9:27:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh7vuAhR_4L-t8tsCKlPXdLZJw0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C08/AFFC0DE4117C11F0B234CD78C4F9AE02/ED917A58117D11F08E2E217CC4F9AE02.roa Signing time: Thu 01 May 2025 07:14:25 +0000 ROA not before: Thu 01 May 2025 07:14:25 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 1821 IP address blocks: 103.212.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C08/AFFC0DE4117C11F0B234CD78C4F9AE02/Mh7vuAhR_4L-t8tsCKlPXdLZJw0.crl rsync://rpki.apnic.net/member_repository/A9173C08/AFFC0DE4117C11F0B234CD78C4F9AE02/Mh7vuAhR_4L-t8tsCKlPXdLZJw0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh7vuAhR_4L-t8tsCKlPXdLZJw0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 07:14:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C08, serialNumber=321EEFB80851FF82FEB7CB6C08A94F5DD2D9270D Validity Not Before: May 1 07:14:25 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68131f51-296e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0e:74:64:c1:af:1c:5b:65:a7:a0:9b:b4:a7: 85:f9:5f:6b:05:26:de:c2:0b:c0:fc:a8:88:41:b0: 91:3a:06:c1:6c:f1:dd:40:e3:7b:a6:b6:f9:a1:f1: 60:83:d7:56:d7:f3:a5:89:0d:67:cb:98:a4:30:13: 16:3e:0a:1d:bb:a6:a4:0b:a3:9b:59:16:f4:33:ec: e2:7f:05:12:d2:14:22:a6:9f:52:09:36:31:b6:6e: d0:f9:7b:6a:6f:2d:21:9f:2c:c6:bf:95:dc:b8:e5: 65:0d:d4:15:c4:08:1d:31:6d:96:15:d3:1a:c7:19: 84:7f:83:22:9a:34:e6:9e:5f:65:07:d4:52:ac:4f: bc:c2:ab:b5:ac:d7:d0:cf:58:db:cc:fe:6e:ae:cc: 10:68:81:c9:2a:68:05:2b:ce:66:67:55:50:31:bd: da:91:3f:57:6e:dd:ac:cc:66:18:fb:66:af:c9:ad: 67:22:bb:44:83:0a:d8:46:13:1e:0d:bc:06:00:90: d6:4f:5c:5b:06:1a:b6:94:4e:bd:35:c1:67:fa:6f: ec:9b:f3:06:80:0a:c6:6f:31:9a:79:7d:b8:9b:74: d0:c8:23:b9:f8:d4:a8:67:a7:a4:84:5f:61:66:75: 5b:dc:4b:68:da:7f:30:38:7c:50:95:cd:75:14:71: 65:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:B4:E4:32:8C:38:3B:16:F4:DF:A4:29:90:FE:DB:2C:BC:B4:2C:EB X509v3 Authority Key Identifier: keyid:32:1E:EF:B8:08:51:FF:82:FE:B7:CB:6C:08:A9:4F:5D:D2:D9:27:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C08/AFFC0DE4117C11F0B234CD78C4F9AE02/Mh7vuAhR_4L-t8tsCKlPXdLZJw0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mh7vuAhR_4L-t8tsCKlPXdLZJw0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C08/AFFC0DE4117C11F0B234CD78C4F9AE02/ED917A58117D11F08E2E217CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.115.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:c8:76:23:51:b8:c0:5a:8b:38:2f:e1:6c:1a:9b:c7:c6:97: 9c:22:1a:77:d8:60:51:d6:be:a7:5e:e7:a6:d6:85:c7:33:b9: f5:df:20:7d:c0:6f:f7:2a:4d:31:42:6c:a0:78:42:c2:b0:7d: ed:34:4a:d7:0e:45:26:ba:97:71:73:2e:a0:80:1a:7f:4b:f6: 9f:dc:20:fd:f3:1a:e6:ae:41:55:b4:d7:cf:8b:99:e0:23:9d: fb:26:79:4a:5e:0d:47:d3:c7:b9:72:97:55:65:37:6e:7d:65: 83:25:e3:f9:79:e4:5f:1a:49:33:bc:cd:62:97:e4:7e:d1:32: e7:b3:7e:1d:f1:a0:72:9c:22:fd:ed:42:38:29:5f:38:29:0c: 90:89:b7:40:b8:61:20:2b:18:be:dc:e0:b1:b9:54:65:fa:30: 52:b3:50:91:c6:19:41:a0:62:04:f5:63:bd:c2:72:dd:ad:d9: 3d:de:3d:91:50:e3:db:be:3b:cc:ae:8b:2f:d4:79:40:69:f7: 58:74:08:b0:25:99:5e:14:b7:94:c1:6f:ca:04:53:7e:5c:4f: a3:62:1d:f3:20:00:05:f2:b1:e7:c8:d4:47:93:68:e2:ff:e2: 3c:38:0f:2b:91:70:f3:07:dc:97:7c:d7:c0:ca:ee:3c:7e:bf: f6:4b:ef:a5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0MwODExMC8GA1UEBRMoMzIxRUVGQjgwODUxRkY4MkZFQjdDQjZDMDhBOTRGNURE MkQ5MjcwRDAeFw0yNTA1MDEwNzE0MjVaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTMxZjUxLTI5NmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLDnRkwa8cW2WnoJu0p4X5X2sFJt7CC8D8qIhBsJE6BsFs8d1A43umtvmh8WCD 11bX86WJDWfLmKQwExY+Ch27pqQLo5tZFvQz7OJ/BRLSFCKmn1IJNjG2btD5e2pv LSGfLMa/ldy45WUN1BXECB0xbZYV0xrHGYR/gyKaNOaeX2UH1FKsT7zCq7Ws19DP WNvM/m6uzBBogckqaAUrzmZnVVAxvdqRP1du3azMZhj7Zq/JrWciu0SDCthGEx4N vAYAkNZPXFsGGraUTr01wWf6b+yb8waACsZvMZp5fbibdNDII7n41Khnp6SEX2Fm dVvcS2jafzA4fFCVzXUUcWVVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUxrTkMow4 Oxb036QpkP7bLLy0LOswHwYDVR0jBBgwFoAUMh7vuAhR/4L+t8tsCKlPXdLZJw0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczQzA4L0FGRkMwREU0MTE3 QzExRjBCMjM0Q0Q3OEM0RjlBRTAyL01oN3Z1QWhSXzRMLXQ4dHNDS2xQWGRMWkp3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTWg3dnVBaFJfNEwtdDh0c0NLbFBYZExaSncwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0MwOC9BRkZDMERFNDExN0MxMUYwQjIzNENENzhDNEY5QUUwMi9FRDkxN0E1ODEx N0QxMUYwOEUyRTIxN0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGfUczANBgkqhkiG9w0BAQsFAAOCAQEATch2I1G4wFqLOC/h bBqbx8aXnCIad9hgUda+p17nptaFxzO59d8gfcBv9ypNMUJsoHhCwrB97TRK1w5F JrqXcXMuoIAaf0v2n9wg/fMa5q5BVbTXz4uZ4COd+yZ5Sl4NR9PHuXKXVWU3bn1l gyXj+XnkXxpJM7zNYpfkftEy57N+HfGgcpwi/e1COClfOCkMkIm3QLhhICsYvtzg sblUZfowUrNQkcYZQaBiBPVjvcJy3a3ZPd49kVDj2747zK6LL9R5QGn3WHQIsCWZ XhS3lMFvygRTflxPo2Id8yAABfKx58jUR5No4v/iPDgPK5Fw8wfcl3zXwMruPH6/ 9kvvpQ== -----END CERTIFICATE-----Generated at Wed May 14 19:30:25 2025 by rpki-client