$ rpki-client -vvf rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/444375E25B9C11EFA181A044C4F9AE02.roa File: 444375E25B9C11EFA181A044C4F9AE02.roa (raw, json) Hash identifier: Yhh6V+gIv+Ld1DK0VM67Fxc3c5mvFHS895j33+/A8nE= Subject key identifier: 39:BB:C8:34:B3:6B:7B:79:58:57:96:4F:65:2D:97:D7:9B:9C:16:06 Certificate issuer: /CN=A9114D4F/serialNumber=687741DE15CD883C10DDBC4FC3A2DCF5485E7DF3 Certificate serial: 55 Authority key identifier: 68:77:41:DE:15:CD:88:3C:10:DD:BC:4F:C3:A2:DC:F5:48:5E:7D:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHdB3hXNiDwQ3bxPw6Lc9UheffM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/444375E25B9C11EFA181A044C4F9AE02.roa Signing time: Sun 19 Jan 2025 05:28:20 +0000 ROA not before: Sun 19 Jan 2025 05:28:20 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 26658 IP address blocks: 103.205.0.0/22 maxlen: 22 203.76.236.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.crl rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHdB3hXNiDwQ3bxPw6Lc9UheffM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 05:58:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114D4F Validity Not Before: Jan 19 05:28:20 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=678c8d74-f558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:eb:0c:50:97:6e:07:81:62:89:74:10:f4:93: 5a:71:8d:38:60:36:20:7f:70:7c:6e:2f:04:69:0c: cd:15:22:ea:ae:6a:fe:dc:a6:5c:64:88:f6:53:34: 2a:7a:39:7b:95:72:f8:43:44:80:00:2b:d1:01:ec: e1:96:56:fa:8e:6c:73:41:6b:5d:43:eb:af:80:d9: d5:d0:ba:c4:af:e6:87:e9:97:6b:bc:0a:f2:3d:82: 31:90:8d:29:30:94:ac:e6:cd:bb:2b:c5:a3:a2:34: a6:4e:1c:c5:0c:71:c6:88:92:2c:98:21:5f:c7:78: 6a:c6:0c:26:48:68:8a:7b:3f:f7:18:c3:8e:45:0f: 3e:b4:a3:fd:71:39:11:7b:6c:1e:47:06:05:e5:d9: 8d:a1:66:65:75:22:51:c0:ff:43:e4:ae:1c:9b:14: db:9b:c4:02:27:e6:69:8d:66:3d:82:1c:db:8f:99: 26:40:e0:82:2f:12:e8:9c:95:67:13:f3:0e:09:3d: ef:01:c5:2a:96:33:e0:ac:aa:37:07:74:de:7d:41: 73:b5:7c:ec:89:a9:c3:70:ec:0e:13:55:93:a1:82: d7:28:eb:f3:95:58:36:53:1f:ae:c6:f0:81:c3:51: 0b:f5:f3:2c:bb:0a:1d:f0:6b:ae:3f:74:aa:3c:44: 55:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:BB:C8:34:B3:6B:7B:79:58:57:96:4F:65:2D:97:D7:9B:9C:16:06 X509v3 Authority Key Identifier: keyid:68:77:41:DE:15:CD:88:3C:10:DD:BC:4F:C3:A2:DC:F5:48:5E:7D:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/aHdB3hXNiDwQ3bxPw6Lc9UheffM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHdB3hXNiDwQ3bxPw6Lc9UheffM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114D4F/0E3ACCFC5B9C11EF9B154944C4F9AE02/444375E25B9C11EFA181A044C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.205.0.0/22 203.76.236.0/22 Signature Algorithm: sha256WithRSAEncryption 88:65:1a:44:8c:60:b4:c8:fc:a7:9b:c8:19:9d:d5:27:ad:c0: 5d:ed:28:27:8d:c4:78:c5:6d:03:f3:cb:6e:9a:c2:5b:a3:2e: 8a:c2:26:31:47:58:f0:33:d1:fc:b0:a4:e9:8f:c2:39:c5:0c: ac:50:53:07:1e:ad:c8:5c:74:af:e0:51:fb:63:44:32:46:67: 75:75:0a:ca:45:52:84:c4:5d:a6:cb:2d:1f:ec:52:ee:a8:3c: f6:44:b6:df:44:0c:0a:58:93:ab:e7:a1:81:f7:47:50:bb:87: 29:fc:0e:28:30:ec:d3:73:8f:ec:8b:ba:37:5e:b4:2d:a3:a5: 9f:0a:95:30:7f:e8:5d:8e:df:47:56:07:e3:6a:04:10:a7:11: 1e:ad:c4:92:48:02:c3:d3:6f:47:8e:a2:e2:f6:08:46:df:fc: f4:34:49:27:ad:08:bd:f9:db:c3:ee:88:d1:38:c6:49:32:ca: aa:ae:6e:c9:93:07:97:51:8a:60:36:0c:1d:f4:a9:0a:af:ce: a3:21:90:3a:ad:fc:d6:fa:98:55:2a:fd:3f:f3:04:b4:0b:ec: ac:24:7e:a7:3e:0f:3d:72:74:4e:c1:68:f0:ef:f7:0c:9e:34: 3d:9f:e1:ac:52:1a:0b:a3:dd:30:d1:44:21:c6:d1:31:91:c8: bf:33:64:9a -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NEQ0RjExMC8GA1UEBRMoNjg3NzQxREUxNUNEODgzQzEwRERCQzRGQzNBMkRDRjU0 ODVFN0RGMzAeFw0yNTAxMTkwNTI4MjBaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3OGM4ZDc0LWY1NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC76wxQl24HgWKJdBD0k1pxjThgNiB/cHxuLwRpDM0VIuquav7cplxkiPZTNCp6 OXuVcvhDRIAAK9EB7OGWVvqObHNBa11D66+A2dXQusSv5ofpl2u8CvI9gjGQjSkw lKzmzbsrxaOiNKZOHMUMccaIkiyYIV/HeGrGDCZIaIp7P/cYw45FDz60o/1xORF7 bB5HBgXl2Y2hZmV1IlHA/0PkrhybFNubxAIn5mmNZj2CHNuPmSZA4IIvEuiclWcT 8w4JPe8BxSqWM+CsqjcHdN59QXO1fOyJqcNw7A4TVZOhgtco6/OVWDZTH67G8IHD UQv18yy7Ch3wa64/dKo8RFW5AgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUObvINLNr e3lYV5ZPZS2X15ucFgYwHwYDVR0jBBgwFoAUaHdB3hXNiDwQ3bxPw6Lc9UheffMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0RDRGLzBFM0FDQ0ZDNUI5 QzExRUY5QjE1NDk0NEM0RjlBRTAyL2FIZEIzaFhOaUR3UTNieFB3NkxjOVVoZWZm TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYUhkQjNoWE5pRHdRM2J4UHc2TGM5VWhlZmZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NEQ0Ri8wRTNBQ0NGQzVCOUMxMUVGOUIxNTQ5NDRDNEY5QUUwMi80NDQzNzVFMjVC OUMxMUVGQTE4MUEwNDRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmfNAAMEAstM7DANBgkqhkiG9w0BAQsFAAOCAQEAiGUaRIxg tMj8p5vIGZ3VJ63AXe0oJ43EeMVtA/PLbprCW6MuisImMUdY8DPR/LCk6Y/COcUM rFBTBx6tyFx0r+BR+2NEMkZndXUKykVShMRdpsstH+xS7qg89kS230QMCliTq+eh gfdHULuHKfwOKDDs03OP7Iu6N160LaOlnwqVMH/oXY7fR1YH42oEEKcRHq3EkkgC w9NvR46i4vYIRt/89DRJJ60Ivfnbw+6I0TjGSTLKqq5uyZMHl1GKYDYMHfSpCq/O oyGQOq381vqYVSr9P/MEtAvsrCR+pz4PPXJ0TsFo8O/3DJ40PZ/hrFIaC6PdMNFE IcbRMZHIvzNkmg== -----END CERTIFICATE-----Generated at Sat Apr 5 07:13:53 2025 by rpki-client