$ rpki-client -vvf rpki.apnic.net/member_repository/A911057B/A917E754260511EAB464E155C4F9AE02/DAFD055806F811EC9558C827C4F9AE02.roa File: DAFD055806F811EC9558C827C4F9AE02.roa (raw, json) Hash identifier: re/IaJHi711uC7kt/qe355ZQkGdlvPCAcW6M1Vv6a/M= Subject key identifier: 03:81:2B:88:05:F6:D4:A0:E5:AE:89:3A:3A:3A:69:4E:3C:45:58:E5 Certificate issuer: /CN=A911057B/serialNumber=0769576133586E5AB4F9BF4DA52B6D5CA16D9CD5 Certificate serial: 0B76 Authority key identifier: 07:69:57:61:33:58:6E:5A:B4:F9:BF:4D:A5:2B:6D:5C:A1:6D:9C:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2lXYTNYblq0-b9NpSttXKFtnNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911057B/A917E754260511EAB464E155C4F9AE02/DAFD055806F811EC9558C827C4F9AE02.roa Signing time: Sun 22 Dec 2024 19:17:17 +0000 ROA not before: Sun 22 Dec 2024 19:17:17 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 4826 IP address blocks: 103.143.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911057B/A917E754260511EAB464E155C4F9AE02/B2lXYTNYblq0-b9NpSttXKFtnNU.crl rsync://rpki.apnic.net/member_repository/A911057B/A917E754260511EAB464E155C4F9AE02/B2lXYTNYblq0-b9NpSttXKFtnNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2lXYTNYblq0-b9NpSttXKFtnNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:08:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2934 (0xb76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911057B Validity Not Before: Dec 22 19:17:17 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676865bc-e3cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:26:14:06:4b:04:12:1f:14:5f:8b:87:86:d3: 41:28:d6:dc:74:5c:41:ca:ba:34:af:19:49:ba:70: 29:09:7c:5b:e2:eb:33:2d:87:29:6e:f4:0b:4f:d2: 99:93:91:78:a7:65:c9:92:68:c9:4d:bd:3b:75:8a: b3:02:40:bb:40:62:69:db:2d:36:f2:cd:13:b8:93: c0:af:f9:27:5a:43:97:e6:3f:a6:46:3f:39:99:e8: d2:63:88:56:e6:66:2b:9f:2e:33:b5:ac:c7:18:21: cb:55:b7:f9:33:69:db:7f:cb:03:a2:49:58:2f:d8: f0:ff:68:85:de:67:97:54:8f:05:a1:d4:3e:59:90: 7a:f1:19:4c:07:c5:0e:3d:1a:3a:dd:f0:27:d8:8f: c2:5f:bf:fc:ad:a4:6d:b8:bd:21:51:d9:cb:a9:ea: 51:bc:a4:46:bb:bf:40:bf:70:65:45:1b:a5:65:23: a8:b9:be:43:0b:15:c6:83:7e:0f:37:80:ae:7a:cd: cb:10:78:fe:90:ed:de:8c:66:5e:e8:f0:a0:bb:ec: 4e:20:b6:b0:89:3e:b4:9a:e5:94:99:52:43:f1:f1: f4:ce:c4:3a:b4:ff:f7:fb:b0:6e:5c:ed:cd:59:64: a1:82:1e:a2:3e:aa:49:fe:4f:c7:e9:82:3e:8d:8b: 1b:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:81:2B:88:05:F6:D4:A0:E5:AE:89:3A:3A:3A:69:4E:3C:45:58:E5 X509v3 Authority Key Identifier: keyid:07:69:57:61:33:58:6E:5A:B4:F9:BF:4D:A5:2B:6D:5C:A1:6D:9C:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911057B/A917E754260511EAB464E155C4F9AE02/B2lXYTNYblq0-b9NpSttXKFtnNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2lXYTNYblq0-b9NpSttXKFtnNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911057B/A917E754260511EAB464E155C4F9AE02/DAFD055806F811EC9558C827C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.172.0/24 Signature Algorithm: sha256WithRSAEncryption 34:42:c3:7a:f9:f2:4c:d0:01:20:c8:04:ca:52:d1:79:e2:bd: aa:76:ee:1a:76:91:0e:ef:6e:34:26:ce:5b:b5:43:fa:e1:4b: 60:3c:d5:4a:29:60:08:ce:d0:95:6a:cd:ca:f5:8a:17:d6:21: 29:9a:ee:18:d8:2d:a6:28:9e:1a:09:a3:02:e3:a9:89:7c:70: 36:4a:0b:f1:3f:98:ea:2d:8e:96:3e:80:b6:3a:e8:08:7d:f2: 8e:d1:b1:10:7b:44:6c:46:42:8f:33:73:d4:da:44:76:c5:12: 68:52:5d:72:c2:d4:d2:b9:46:8e:e3:a2:3d:1e:e7:70:9a:1b: 1e:d1:d7:91:75:39:e7:2a:26:ae:60:00:0d:d9:13:7d:65:2c: 95:cd:c3:25:bd:aa:2d:e8:c4:66:58:df:a5:19:ac:29:13:30: 1b:b1:f8:ea:c7:8c:90:59:0a:82:90:3d:84:e1:51:e8:89:0c: 7f:47:0e:92:68:86:d7:da:51:83:73:95:14:47:39:69:75:31: 0b:6a:03:20:c5:1a:c2:67:8e:ca:ce:9b:69:c7:8f:ed:6c:de: ec:33:ca:40:ee:fe:04:ae:81:b8:21:f8:cb:df:28:97:da:55: da:34:14:f2:4e:58:17:b6:de:c1:c9:98:ba:c9:5d:3b:7a:d4: a5:64:ac:7b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA1N0IxMTAvBgNVBAUTKDA3Njk1NzYxMzM1ODZFNUFCNEY5QkY0REE1MkI2RDVD QTE2RDlDRDUwHhcNMjQxMjIyMTkxNzE3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY4NjViYy1lM2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxiYUBksEEh8UX4uHhtNBKNbcdFxByro0rxlJunApCXxb4uszLYcpbvQLT9KZ k5F4p2XJkmjJTb07dYqzAkC7QGJp2y028s0TuJPAr/knWkOX5j+mRj85mejSY4hW 5mYrny4ztazHGCHLVbf5M2nbf8sDoklYL9jw/2iF3meXVI8FodQ+WZB68RlMB8UO PRo63fAn2I/CX7/8raRtuL0hUdnLqepRvKRGu79Av3BlRRulZSOoub5DCxXGg34P N4Cues3LEHj+kO3ejGZe6PCgu+xOILawiT60muWUmVJD8fH0zsQ6tP/3+7BuXO3N WWShgh6iPqpJ/k/H6YI+jYsbBwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAOBK4gF 9tSg5a6JOjo6aU48RVjlMB8GA1UdIwQYMBaAFAdpV2EzWG5atPm/TaUrbVyhbZzV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDU3Qi9BOTE3RTc1NDI2 MDUxMUVBQjQ2NEUxNTVDNEY5QUUwMi9CMmxYWVROWWJscTAtYjlOcFN0dFhLRnRu TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0IybFhZVE5ZYmxxMC1iOU5wU3R0WEtGdG5OVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTA1N0IvQTkxN0U3NTQyNjA1MTFFQUI0NjRFMTU1QzRGOUFFMDIvREFGRDA1NTgw NkY4MTFFQzk1NThDODI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnj6wwDQYJKoZIhvcNAQELBQADggEBADRCw3r58kzQASDI BMpS0Xnivap27hp2kQ7vbjQmzlu1Q/rhS2A81UopYAjO0JVqzcr1ihfWISma7hjY LaYonhoJowLjqYl8cDZKC/E/mOotjpY+gLY66Ah98o7RsRB7RGxGQo8zc9TaRHbF EmhSXXLC1NK5Ro7joj0e53CaGx7R15F1OecqJq5gAA3ZE31lLJXNwyW9qi3oxGZY 36UZrCkTMBux+OrHjJBZCoKQPYThUeiJDH9HDpJohtfaUYNzlRRHOWl1MQtqAyDF GsJnjsrOm2nHj+1s3uwzykDu/gSugbgh+MvfKJfaVdo0FPJOWBe23sHJmLrJXTt6 1KVkrHs= -----END CERTIFICATE-----Generated at Sat Apr 5 05:59:51 2025 by rpki-client