$ rpki-client -vvf rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/A3A7ADEAB19711EF8A23BC39C4F9AE02.roa File: A3A7ADEAB19711EF8A23BC39C4F9AE02.roa (raw, json) Hash identifier: Xxhg1IOUnWIosjBDDjlaAvNnXCEgOL/Rukp1auAELC4= Subject key identifier: 67:FA:AA:E4:1D:12:3A:64:CA:37:38:45:44:D5:4A:41:2F:A6:1F:05 Certificate issuer: /CN=A911636A/serialNumber=5C9CC1142A907560CD99F06E5DD02DE4E22E9445 Certificate serial: 018D Authority key identifier: 5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/A3A7ADEAB19711EF8A23BC39C4F9AE02.roa Signing time: Tue 03 Dec 2024 16:57:12 +0000 ROA not before: Tue 03 Dec 2024 16:57:12 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 150434 IP address blocks: 103.40.156.0/23 maxlen: 24 2400:c360::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:29:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911636A Validity Not Before: Dec 3 16:57:12 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=674f3867-2392 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:d0:dc:d1:d9:c9:5b:65:89:02:c3:3b:7c:2e: 5b:4f:ae:b7:e5:76:1d:99:b1:56:55:31:cc:a4:48: 21:34:9c:3c:22:e2:15:44:5f:14:e0:73:99:ac:60: 54:1c:58:65:f8:2f:5e:2f:74:2f:2c:8c:1c:8d:f1: ba:2e:b9:df:f1:35:e1:d2:cc:ca:f4:d4:4e:51:de: 07:19:ee:7c:e4:8c:48:fc:92:7f:22:d5:4a:13:45: ec:fe:54:c9:ba:d9:fd:a3:56:83:bc:3b:0b:43:c7: e7:f0:9f:ae:fe:15:54:9a:5f:0f:6b:7f:14:af:20: 87:72:b5:ee:9e:07:13:03:5c:33:2c:e3:eb:3f:3a: 14:08:6a:5f:28:d9:e8:2c:6e:48:e7:bc:af:00:4c: c0:20:96:a4:5d:06:6c:f1:ef:de:5e:d7:1d:70:26: c7:30:ce:7c:2d:24:ea:90:e0:65:55:6d:f8:d5:39: 5c:db:89:b2:f3:09:df:42:51:8a:75:1e:00:01:59: 19:0a:e0:08:f3:e3:0b:ac:37:8a:bf:2e:b6:f0:ea: c4:96:90:c3:41:13:11:a1:08:0c:cd:2c:ed:73:cd: 11:88:95:86:7d:9d:a1:1e:a2:f9:f4:69:7b:d4:fe: e6:56:4d:e9:26:9e:d6:89:dc:87:b6:a5:bd:05:04: a6:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:FA:AA:E4:1D:12:3A:64:CA:37:38:45:44:D5:4A:41:2F:A6:1F:05 X509v3 Authority Key Identifier: keyid:5C:9C:C1:14:2A:90:75:60:CD:99:F0:6E:5D:D0:2D:E4:E2:2E:94:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/XJzBFCqQdWDNmfBuXdAt5OIulEU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XJzBFCqQdWDNmfBuXdAt5OIulEU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911636A/B0F33D2A66EE11EDB3B41A5DC4F9AE02/A3A7ADEAB19711EF8A23BC39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.40.156.0/23 IPv6: 2400:c360::/32 Signature Algorithm: sha256WithRSAEncryption 38:b8:6b:04:00:70:1c:10:70:7d:f8:02:20:5c:b4:70:0d:4c: 85:04:e5:05:b0:a8:23:e4:4b:81:50:93:51:dd:d7:17:ee:18: 97:5b:ee:dd:51:b7:a1:21:2a:2d:12:24:9b:96:02:40:51:12: 81:be:f1:91:20:d9:c7:9c:cd:b6:ed:cc:22:4e:16:05:f1:82: 28:83:d3:d7:ed:46:f9:7e:37:07:76:35:6c:7d:8c:5a:b6:55: 98:55:c0:3c:e6:a9:9b:5d:f7:ba:fc:11:4a:2a:3b:1b:96:c7: da:93:92:05:d8:1b:b6:3f:98:4c:37:22:8b:c3:23:e9:e8:98: 99:2f:8d:e2:65:5a:28:32:2e:f0:7c:95:76:58:88:04:c2:d4: f5:b3:a3:ad:e0:de:50:a2:0c:b3:10:ec:4d:52:e7:92:8c:b6: 0b:62:f1:b9:b7:69:93:80:05:2c:6b:68:ac:93:d4:47:73:66: 1f:77:d6:d7:7b:91:fd:68:23:da:9c:87:3c:91:8b:15:2f:aa: 71:b4:93:a7:24:aa:df:f6:87:5f:9f:57:cb:ba:cf:e0:d8:24: f0:3a:04:ae:3e:73:86:3b:b2:24:98:5b:41:b1:2f:44:85:f7: a8:42:0d:bc:72:b1:ed:4b:5d:cf:80:6d:03:6d:b6:f0:dc:dc: 94:b3:3f:d2 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTYzNkExMTAvBgNVBAUTKDVDOUNDMTE0MkE5MDc1NjBDRDk5RjA2RTVERDAyREU0 RTIyRTk0NDUwHhcNMjQxMjAzMTY1NzEyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRmMzg2Ny0yMzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3tDc0dnJW2WJAsM7fC5bT6635XYdmbFWVTHMpEghNJw8IuIVRF8U4HOZrGBU HFhl+C9eL3QvLIwcjfG6Lrnf8TXh0szK9NROUd4HGe585IxI/JJ/ItVKE0Xs/lTJ utn9o1aDvDsLQ8fn8J+u/hVUml8Pa38UryCHcrXungcTA1wzLOPrPzoUCGpfKNno LG5I57yvAEzAIJakXQZs8e/eXtcdcCbHMM58LSTqkOBlVW341Tlc24my8wnfQlGK dR4AAVkZCuAI8+MLrDeKvy628OrElpDDQRMRoQgMzSztc80RiJWGfZ2hHqL59Gl7 1P7mVk3pJp7WidyHtqW9BQSmQQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGf6quQd Ejpkyjc4RUTVSkEvph8FMB8GA1UdIwQYMBaAFFycwRQqkHVgzZnwbl3QLeTiLpRF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjM2QS9CMEYzM0QyQTY2 RUUxMUVEQjNCNDFBNURDNEY5QUUwMi9YSnpCRkNxUWRXRE5tZkJ1WGRBdDVPSXVs RVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hKekJGQ3FRZFdETm1mQnVYZEF0NU9JdWxFVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTYzNkEvQjBGMzNEMkE2NkVFMTFFREIzQjQxQTVEQzRGOUFFMDIvQTNBN0FERUFC MTk3MTFFRjhBMjNCQzM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnKJwwDQQCAAIwBwMFACQAw2AwDQYJKoZIhvcNAQELBQAD ggEBADi4awQAcBwQcH34AiBctHANTIUE5QWwqCPkS4FQk1Hd1xfuGJdb7t1Rt6Eh Ki0SJJuWAkBREoG+8ZEg2ceczbbtzCJOFgXxgiiD09ftRvl+Nwd2NWx9jFq2VZhV wDzmqZtd97r8EUoqOxuWx9qTkgXYG7Y/mEw3IovDI+nomJkvjeJlWigyLvB8lXZY iATC1PWzo63g3lCiDLMQ7E1S55KMtgti8bm3aZOABSxraKyT1EdzZh931td7kf1o I9qchzyRixUvqnG0k6ckqt/2h1+fV8u6z+DYJPA6BK4+c4Y7siSYW0GxL0SF96hC Dbxyse1LXc+AbQNttvDc3JSzP9I= -----END CERTIFICATE-----Generated at Sun Apr 6 14:21:23 2025 by rpki-client