$ rpki-client -vvf rpki.apnic.net/member_repository/A911DEBE/79433FCAA91711EA9481866FC4F9AE02/A4955B14A91B11EA924D2D7BC4F9AE02.roa File: A4955B14A91B11EA924D2D7BC4F9AE02.roa (raw, json) Hash identifier: 7uNxm88C6q373c2vK42wFuybMIcnq4cd4JiVYvjrIkY= Subject key identifier: 32:1B:6A:EE:A0:CD:73:90:50:D2:8D:C4:EF:14:84:CC:A4:9C:92:B2 Certificate issuer: /CN=A911DEBE/serialNumber=0C015C06D1CD237842B67057C1D54A20EF272D47 Certificate serial: 08B1 Authority key identifier: 0C:01:5C:06:D1:CD:23:78:42:B6:70:57:C1:D5:4A:20:EF:27:2D:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAFcBtHNI3hCtnBXwdVKIO8nLUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DEBE/79433FCAA91711EA9481866FC4F9AE02/A4955B14A91B11EA924D2D7BC4F9AE02.roa Signing time: Wed 18 Dec 2024 20:39:42 +0000 ROA not before: Wed 18 Dec 2024 20:39:42 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 140598 IP address blocks: 103.150.213.0/24 maxlen: 24 103.159.82.0/24 maxlen: 24 2001:df3:9080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DEBE/79433FCAA91711EA9481866FC4F9AE02/DAFcBtHNI3hCtnBXwdVKIO8nLUc.crl rsync://rpki.apnic.net/member_repository/A911DEBE/79433FCAA91711EA9481866FC4F9AE02/DAFcBtHNI3hCtnBXwdVKIO8nLUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAFcBtHNI3hCtnBXwdVKIO8nLUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:34:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2225 (0x8b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DEBE Validity Not Before: Dec 18 20:39:42 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6763330e-ef0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:fc:44:df:7a:b5:0e:b2:65:a2:ea:94:e9:d8: ef:85:28:c3:32:ed:f3:16:2d:d0:a4:b4:e3:9f:9a: ba:9f:0a:39:2b:49:3e:2f:16:ac:0d:4e:b4:53:55: b9:5d:8e:87:bd:9d:cb:63:a2:35:84:73:1a:77:0c: 24:5c:c9:ea:b8:58:4a:ce:7f:29:6b:33:7a:6e:53: c0:9a:48:49:66:29:0a:f9:bb:a4:0f:c5:26:de:f5: 9e:95:26:7c:2b:9d:58:60:48:49:66:79:70:6e:8f: 3b:b5:fc:07:c0:f1:61:bd:9e:64:a4:55:bd:15:02: a8:35:d6:f0:aa:36:b3:f7:f4:3a:1c:6b:ad:94:2f: e8:31:6b:fa:68:30:af:e6:cb:f7:c0:2e:d3:77:a4: 73:67:51:86:e7:fc:de:d9:99:2b:fd:0e:b9:19:d5: fd:e4:a7:c0:8f:f5:3c:66:26:b8:fa:47:6c:1a:dc: d5:6e:81:3e:e6:0b:96:3a:7e:ec:95:a5:8b:c0:c3: 3b:2c:69:2f:f1:94:6f:a4:7f:b3:c5:67:2d:b2:b4: 67:b2:2c:e6:64:42:bf:75:31:b5:22:23:f3:d0:ad: cd:30:ab:e4:44:8b:00:72:30:21:10:d9:9d:ce:ff: 65:f5:ea:ae:a3:9d:5f:74:e2:3d:f1:6d:ef:81:01: 6a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:1B:6A:EE:A0:CD:73:90:50:D2:8D:C4:EF:14:84:CC:A4:9C:92:B2 X509v3 Authority Key Identifier: keyid:0C:01:5C:06:D1:CD:23:78:42:B6:70:57:C1:D5:4A:20:EF:27:2D:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DEBE/79433FCAA91711EA9481866FC4F9AE02/DAFcBtHNI3hCtnBXwdVKIO8nLUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAFcBtHNI3hCtnBXwdVKIO8nLUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DEBE/79433FCAA91711EA9481866FC4F9AE02/A4955B14A91B11EA924D2D7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.213.0/24 103.159.82.0/24 IPv6: 2001:df3:9080::/48 Signature Algorithm: sha256WithRSAEncryption c5:e6:f9:0c:cf:86:43:c0:bc:33:c4:87:50:d9:96:d3:f4:cc: 7b:34:05:6a:5c:eb:0c:82:69:dd:0a:0a:20:6e:b6:d6:f2:4a: 80:4f:f7:3c:e8:b6:27:aa:ab:d5:f8:76:16:33:03:7a:37:56: 1c:ca:93:88:2d:1d:ff:09:4d:07:87:fe:d9:c1:fb:8d:e5:9c: 8d:9e:9c:be:6c:10:32:0f:21:98:44:ef:19:0a:55:68:6f:5d: 6f:4c:37:7d:1c:4f:8e:bc:1c:3d:ef:d3:67:32:f6:24:97:a0: bb:fc:fd:27:8b:64:18:02:b3:cd:bc:c9:4c:20:77:48:51:3e: fc:52:ee:35:2b:22:7d:c1:d3:08:88:73:51:21:ef:7d:e3:c5: 9f:56:24:6c:45:95:89:b7:96:98:c9:ac:80:a7:6e:b0:b2:d5: 2f:3a:5b:29:9a:5a:f3:96:79:a6:06:ba:12:46:f2:9a:d3:82: 6b:b1:03:1b:86:65:49:7d:82:d9:8b:40:13:13:cc:af:f3:d0: e0:ee:5c:0c:fb:f2:e7:5e:72:9e:f9:c5:24:17:87:f0:b6:d4: a8:db:49:3e:59:fb:d1:33:9f:ef:38:59:b7:2c:36:fc:d1:0e: b0:c7:5f:ea:58:ce:bc:e3:4b:43:28:a8:41:ad:6b:a1:86:52: ee:e8:95:28 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURFQkUxMTAvBgNVBAUTKDBDMDE1QzA2RDFDRDIzNzg0MkI2NzA1N0MxRDU0QTIw RUYyNzJENDcwHhcNMjQxMjE4MjAzOTQyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYzMzMwZS1lZjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwvxE33q1DrJlouqU6djvhSjDMu3zFi3QpLTjn5q6nwo5K0k+LxasDU60U1W5 XY6HvZ3LY6I1hHMadwwkXMnquFhKzn8pazN6blPAmkhJZikK+bukD8Um3vWelSZ8 K51YYEhJZnlwbo87tfwHwPFhvZ5kpFW9FQKoNdbwqjaz9/Q6HGutlC/oMWv6aDCv 5sv3wC7Td6RzZ1GG5/ze2Zkr/Q65GdX95KfAj/U8Zia4+kdsGtzVboE+5guWOn7s laWLwMM7LGkv8ZRvpH+zxWctsrRnsizmZEK/dTG1IiPz0K3NMKvkRIsAcjAhENmd zv9l9equo51fdOI98W3vgQFqGwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFDIbau6g zXOQUNKNxO8UhMyknJKyMB8GA1UdIwQYMBaAFAwBXAbRzSN4QrZwV8HVSiDvJy1H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREVCRS83OTQzM0ZDQUE5 MTcxMUVBOTQ4MTg2NkZDNEY5QUUwMi9EQUZjQnRITkkzaEN0bkJYd2RWS0lPOG5M VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RBRmNCdEhOSTNoQ3RuQlh3ZFZLSU84bkxVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURFQkUvNzk0MzNGQ0FBOTE3MTFFQTk0ODE4NjZGQzRGOUFFMDIvQTQ5NTVCMTRB OTFCMTFFQTkyNEQyRDdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnltUDBABnn1IwDwQCAAIwCQMHACABDfOQgDANBgkqhkiG 9w0BAQsFAAOCAQEAxeb5DM+GQ8C8M8SHUNmW0/TMezQFalzrDIJp3QoKIG621vJK gE/3POi2J6qr1fh2FjMDejdWHMqTiC0d/wlNB4f+2cH7jeWcjZ6cvmwQMg8hmETv GQpVaG9db0w3fRxPjrwcPe/TZzL2JJegu/z9J4tkGAKzzbzJTCB3SFE+/FLuNSsi fcHTCIhzUSHvfePFn1YkbEWVibeWmMmsgKdusLLVLzpbKZpa85Z5pga6EkbymtOC a7EDG4ZlSX2C2YtAExPMr/PQ4O5cDPvy515ynvnFJBeH8LbUqNtJPln70TOf7zhZ tyw2/NEOsMdf6ljOvONLQyioQa1roYZS7uiVKA== -----END CERTIFICATE-----Generated at Sun Apr 6 01:44:15 2025 by rpki-client