$ rpki-client -vvf rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/36A82D708CAA11EB9ED48C70C4F9AE02.roa File: 36A82D708CAA11EB9ED48C70C4F9AE02.roa (raw, json) Hash identifier: LYI+Uxituq3xp6IH8KDfFMmbgDovt1mhBIYkZG0TTig= Subject key identifier: 4A:7B:37:64:9E:A6:0F:E2:C0:36:6C:F3:93:2C:53:31:64:1D:76:6A Certificate issuer: /CN=A912542C/serialNumber=DB7CE523E840B77FC9E196F58F14976ACE4154BE Certificate serial: 0628 Authority key identifier: DB:7C:E5:23:E8:40:B7:7F:C9:E1:96:F5:8F:14:97:6A:CE:41:54:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/36A82D708CAA11EB9ED48C70C4F9AE02.roa Signing time: Sat 04 Jan 2025 22:11:44 +0000 ROA not before: Sat 04 Jan 2025 22:11:44 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 141381 IP address blocks: 103.157.244.0/23 maxlen: 23 103.157.244.0/24 maxlen: 24 103.157.245.0/24 maxlen: 24 2001:df2:33c0::/48 maxlen: 48 2001:df5:3680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.crl rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:47:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1576 (0x628) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912542C Validity Not Before: Jan 4 22:11:44 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6779b220-2b0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:46:b4:b1:a0:cd:57:38:51:a6:48:cd:78:51: 3c:2b:a2:05:ff:b9:ac:d8:ee:ac:f0:15:f2:a5:2b: 0c:f4:63:b2:77:0d:a4:9c:c9:55:d6:9f:62:74:e9: a5:ca:4c:87:1e:99:6c:d6:04:b6:83:1d:dc:2d:30: b3:c3:75:47:7c:cb:45:cb:b1:a7:67:42:26:67:cb: 71:ef:ef:5f:9f:5f:ce:a5:cd:d4:32:64:d1:3a:9d: 4c:3e:a7:5d:29:b4:0f:d2:4b:0c:0d:9d:65:d9:45: 48:f9:50:a9:87:2f:6a:91:32:bb:c2:5d:d6:b6:f1: 7b:9d:ba:03:6a:7b:b2:24:7f:c3:61:55:c4:1a:b7: 41:f2:40:a8:09:15:07:74:2a:23:d9:b3:ad:49:2d: e2:90:15:1f:ee:21:a2:e0:24:02:52:a0:c3:e7:c7: c6:fa:72:21:30:b9:a5:67:9b:b6:db:b2:d9:25:19: 72:7b:77:20:88:9d:19:fe:a1:30:35:6a:08:d6:52: 92:d0:86:31:5e:fd:8e:58:13:41:ac:d9:1d:3e:53: 8b:35:98:fa:dd:b0:12:6b:6a:55:c3:c3:f9:3d:a8: 92:59:81:9c:4b:62:52:b7:32:39:32:b7:01:2b:14: f2:0e:f4:86:2c:c2:2e:cf:e3:35:6c:44:a3:59:8f: 0f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:7B:37:64:9E:A6:0F:E2:C0:36:6C:F3:93:2C:53:31:64:1D:76:6A X509v3 Authority Key Identifier: keyid:DB:7C:E5:23:E8:40:B7:7F:C9:E1:96:F5:8F:14:97:6A:CE:41:54:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/36A82D708CAA11EB9ED48C70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.157.244.0/23 IPv6: 2001:df2:33c0::/48 2001:df5:3680::/48 Signature Algorithm: sha256WithRSAEncryption 08:c4:8f:68:c2:b2:17:3a:5a:c9:f6:e6:7d:a5:e5:37:83:08: 92:7b:ae:45:a3:e9:44:af:88:d3:ce:82:c5:67:a4:b0:ba:82: 82:9d:f9:29:fd:1f:43:84:c8:4c:cf:c4:39:fd:b5:79:fe:c7: 53:b1:ad:27:72:c8:70:b0:c8:d1:62:56:33:58:f4:d9:c3:d5: e7:9e:55:82:3a:00:bb:38:46:e6:4e:74:77:ae:73:48:2e:23: 0a:38:e5:e3:bd:2d:34:12:a6:cc:eb:24:ed:00:b4:4b:f3:fb: 9b:e7:96:6a:e5:da:a3:47:eb:9e:a5:93:01:e9:8d:5c:91:a2: 4e:ff:a6:03:f3:e3:7d:50:89:91:22:8a:e0:a6:8d:5c:fa:98: 33:93:75:4e:29:39:af:76:b7:53:a6:d9:2f:9a:84:e7:50:d7: 50:8d:32:00:bc:39:45:4a:31:de:d8:ac:37:66:10:9a:a3:2c: 87:5b:4d:0c:ff:d7:14:d9:47:25:70:2c:4e:fd:9f:aa:89:16: 3b:1e:cc:26:bc:f0:28:b3:aa:6e:ce:65:2a:cf:b9:47:b6:38: 52:0c:59:58:55:ed:ad:52:69:43:06:ab:b0:a6:e3:c2:14:a7: 0b:a3:cb:3f:d9:8b:9e:f1:3b:cc:3b:56:fe:25:1d:ad:ec:ce: 7b:ee:30:b8 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICBigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0MkMxMTAvBgNVBAUTKERCN0NFNTIzRTg0MEI3N0ZDOUUxOTZGNThGMTQ5NzZB Q0U0MTU0QkUwHhcNMjUwMTA0MjIxMTQ0WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc5YjIyMC0yYjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA50a0saDNVzhRpkjNeFE8K6IF/7ms2O6s8BXypSsM9GOydw2knMlV1p9idOml ykyHHpls1gS2gx3cLTCzw3VHfMtFy7GnZ0ImZ8tx7+9fn1/Opc3UMmTROp1MPqdd KbQP0ksMDZ1l2UVI+VCphy9qkTK7wl3WtvF7nboDanuyJH/DYVXEGrdB8kCoCRUH dCoj2bOtSS3ikBUf7iGi4CQCUqDD58fG+nIhMLmlZ5u227LZJRlye3cgiJ0Z/qEw NWoI1lKS0IYxXv2OWBNBrNkdPlOLNZj63bASa2pVw8P5PaiSWYGcS2JStzI5MrcB KxTyDvSGLMIuz+M1bESjWY8PhwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFEp7N2Se pg/iwDZs85MsUzFkHXZqMB8GA1UdIwQYMBaAFNt85SPoQLd/yeGW9Y8Ul2rOQVS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQyQy8xQjYzNDY2RThD QTgxMUVCQTJCRDBBNkJDNEY5QUUwMi8yM3psSS1oQXQzX0o0WmIxanhTWGFzNUJW TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzIzemxJLWhBdDNfSjRaYjFqeFNYYXM1QlZMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0MkMvMUI2MzQ2NkU4Q0E4MTFFQkEyQkQwQTZCQzRGOUFFMDIvMzZBODJENzA4 Q0FBMTFFQjlFRDQ4QzcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAFnnfQwGAQCAAIwEgMHACABDfIzwAMHACABDfU2gDANBgkq hkiG9w0BAQsFAAOCAQEACMSPaMKyFzpayfbmfaXlN4MIknuuRaPpRK+I086CxWek sLqCgp35Kf0fQ4TITM/EOf21ef7HU7GtJ3LIcLDI0WJWM1j02cPV555VgjoAuzhG 5k50d65zSC4jCjjl470tNBKmzOsk7QC0S/P7m+eWauXao0frnqWTAemNXJGiTv+m A/PjfVCJkSKK4KaNXPqYM5N1Tik5r3a3U6bZL5qE51DXUI0yALw5RUox3tisN2YQ mqMsh1tNDP/XFNlHJXAsTv2fqokWOx7MJrzwKLOqbs5lKs+5R7Y4UgxZWFXtrVJp QwarsKbjwhSnC6PLP9mLnvE7zDtW/iUdrezOe+4wuA== -----END CERTIFICATE-----Generated at Sun Apr 6 01:44:14 2025 by rpki-client