$ rpki-client -vvf rpki.apnic.net/member_repository/A911A739/C95D397C9F5111EF9B63CC55C4F9AE02/41121A8C9F5211EFA8F8A056C4F9AE02.roa File: 41121A8C9F5211EFA8F8A056C4F9AE02.roa (raw, json) Hash identifier: gOxPsMK6qt78bQigJet/lS4chqy9h8TzqNHqZP/sKyk= Subject key identifier: 5B:3C:76:5C:C6:81:83:80:5B:FE:5A:EF:E7:41:77:2C:54:38:B3:83 Certificate issuer: /CN=A911A739/serialNumber=0C1BCE024B43FDDA87F39615D994BA3706246C50 Certificate serial: 2F Authority key identifier: 0C:1B:CE:02:4B:43:FD:DA:87:F3:96:15:D9:94:BA:37:06:24:6C:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DBvOAktD_dqH85YV2ZS6NwYkbFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A739/C95D397C9F5111EF9B63CC55C4F9AE02/41121A8C9F5211EFA8F8A056C4F9AE02.roa Signing time: Sun 02 Feb 2025 05:09:27 +0000 ROA not before: Sun 02 Feb 2025 05:09:27 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 139230 IP address blocks: 103.140.94.0/23 maxlen: 24 2001:df0:b780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A739/C95D397C9F5111EF9B63CC55C4F9AE02/DBvOAktD_dqH85YV2ZS6NwYkbFA.crl rsync://rpki.apnic.net/member_repository/A911A739/C95D397C9F5111EF9B63CC55C4F9AE02/DBvOAktD_dqH85YV2ZS6NwYkbFA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DBvOAktD_dqH85YV2ZS6NwYkbFA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:34:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A739 Validity Not Before: Feb 2 05:09:27 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=679efe07-6460 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:46:d3:0e:a4:78:ae:c6:f5:7d:2c:9c:67:de: 99:71:a2:d9:3f:41:e4:7a:9b:fd:ff:8a:c8:82:3c: 5d:0b:e9:19:f3:3c:76:13:b1:bf:a7:ef:7b:33:7c: 1a:15:de:f8:dc:80:0b:7e:8f:39:92:62:02:77:5f: 56:fe:97:8c:82:b9:7f:7b:14:4d:05:94:38:0e:17: 06:f6:43:ee:89:69:56:20:61:0f:b5:64:fa:a7:b4: a7:ad:29:f6:b7:35:49:d3:08:10:30:8f:64:9e:48: 5e:c5:09:b1:8d:87:4d:26:9a:cb:17:e7:aa:cb:68: 9e:e5:0d:da:aa:94:1d:a8:59:4f:e3:a6:8d:a4:f2: 7c:83:18:54:ee:dc:61:1e:5a:8a:40:19:07:81:0b: 2f:85:74:6e:c7:ff:1f:b5:3c:6f:99:21:2a:9b:dd: f4:05:2b:36:00:d0:5c:8c:f7:cf:af:ac:d2:12:30: 1b:15:8e:20:2e:0c:63:9e:44:5d:2a:b1:9c:00:47: a2:eb:4a:3c:bb:65:1b:7b:02:28:78:e2:7c:b8:d0: 15:8b:bf:f9:7e:dc:e3:d3:d0:a7:ff:98:46:7d:11: 32:7c:6d:e7:6f:3e:03:89:38:77:76:cd:2b:0a:59: f9:22:e2:b2:87:ce:2a:8c:15:a1:77:aa:d7:d6:e3: 68:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:3C:76:5C:C6:81:83:80:5B:FE:5A:EF:E7:41:77:2C:54:38:B3:83 X509v3 Authority Key Identifier: keyid:0C:1B:CE:02:4B:43:FD:DA:87:F3:96:15:D9:94:BA:37:06:24:6C:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A739/C95D397C9F5111EF9B63CC55C4F9AE02/DBvOAktD_dqH85YV2ZS6NwYkbFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DBvOAktD_dqH85YV2ZS6NwYkbFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A739/C95D397C9F5111EF9B63CC55C4F9AE02/41121A8C9F5211EFA8F8A056C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.94.0/23 IPv6: 2001:df0:b780::/48 Signature Algorithm: sha256WithRSAEncryption 31:a8:21:27:18:90:04:2e:8e:d1:bf:0d:35:31:7f:27:4a:c2: 89:ab:a5:64:8c:48:57:73:f7:74:58:72:6d:92:bc:2e:a9:80: 39:47:ad:85:8f:76:50:6e:a8:bd:d1:01:e6:e2:a8:bb:ae:9b: 0e:5a:10:8e:3b:1b:a0:0c:01:63:57:30:fd:84:86:1a:7b:10: 7f:ef:1e:15:6d:bc:ce:92:2e:e7:47:b5:9b:3b:76:12:a4:d3: f4:98:25:cb:1c:88:05:fe:c2:41:b4:71:8d:5f:ea:81:86:65: a6:01:2f:b3:c0:43:d9:ad:42:fe:90:6a:f6:1f:06:3e:b9:38: b8:26:b4:e3:fc:fc:10:a1:14:ad:4e:38:f2:f4:d1:d1:b8:d8: 2f:57:d1:86:d9:b0:23:7e:81:17:b6:53:3c:9e:2f:d4:b5:ac: 1b:86:9e:0c:c2:0c:27:0e:b2:d4:c7:1a:c3:c8:06:8a:20:06: f5:ac:90:54:7e:2c:fb:05:23:65:5a:aa:ee:94:ab:e8:b5:a5: 49:81:2c:7f:02:5e:d0:f2:a9:5e:d5:b1:8c:0b:0f:ce:25:46: e9:49:f2:d1:1c:32:2d:50:05:35:dc:64:68:16:c6:f4:88:84: da:bf:ab:d5:15:59:05:fd:b1:30:84:4b:15:fc:e4:28:78:d9: 13:5f:1c:24 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QTczOTExMC8GA1UEBRMoMEMxQkNFMDI0QjQzRkREQTg3RjM5NjE1RDk5NEJBMzcw NjI0NkM1MDAeFw0yNTAyMDIwNTA5MjdaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3OWVmZTA3LTY0NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDURtMOpHiuxvV9LJxn3plxotk/QeR6m/3/isiCPF0L6RnzPHYTsb+n73szfBoV 3vjcgAt+jzmSYgJ3X1b+l4yCuX97FE0FlDgOFwb2Q+6JaVYgYQ+1ZPqntKetKfa3 NUnTCBAwj2SeSF7FCbGNh00mmssX56rLaJ7lDdqqlB2oWU/jpo2k8nyDGFTu3GEe WopAGQeBCy+FdG7H/x+1PG+ZISqb3fQFKzYA0FyM98+vrNISMBsVjiAuDGOeRF0q sZwAR6LrSjy7ZRt7Aih44ny40BWLv/l+3OPT0Kf/mEZ9ETJ8bedvPgOJOHd2zSsK Wfki4rKHziqMFaF3qtfW42h5AgMBAAGjggKmMIICojAdBgNVHQ4EFgQUWzx2XMaB g4Bb/lrv50F3LFQ4s4MwHwYDVR0jBBgwFoAUDBvOAktD/dqH85YV2ZS6NwYkbFAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBNzM5L0M5NUQzOTdDOUY1 MTExRUY5QjYzQ0M1NUM0RjlBRTAyL0RCdk9Ba3REX2RxSDg1WVYyWlM2TndZa2JG QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvREJ2T0FrdERfZHFIODVZVjJaUzZOd1lrYkZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTczOS9DOTVEMzk3QzlGNTExMUVGOUI2M0NDNTVDNEY5QUUwMi80MTEyMUE4QzlG NTIxMUVGQThGOEEwNTZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWeMXjAPBAIAAjAJAwcAIAEN8LeAMA0GCSqGSIb3DQEBCwUA A4IBAQAxqCEnGJAELo7Rvw01MX8nSsKJq6VkjEhXc/d0WHJtkrwuqYA5R62Fj3ZQ bqi90QHm4qi7rpsOWhCOOxugDAFjVzD9hIYaexB/7x4VbbzOki7nR7WbO3YSpNP0 mCXLHIgF/sJBtHGNX+qBhmWmAS+zwEPZrUL+kGr2HwY+uTi4JrTj/PwQoRStTjjy 9NHRuNgvV9GG2bAjfoEXtlM8ni/Utawbhp4MwgwnDrLUxxrDyAaKIAb1rJBUfiz7 BSNlWqrulKvotaVJgSx/Al7Q8qle1bGMCw/OJUbpSfLRHDItUAU13GRoFsb0iITa v6vVFVkF/bEwhEsV/OQoeNkTXxwk -----END CERTIFICATE-----Generated at Sun Apr 6 08:51:56 2025 by rpki-client