$ rpki-client -vvf rpki.apnic.net/member_repository/A9126C60/BF6323E6894B11E387C49E675911EA32/4A66F4B0C52F11E59EE2C868C4F9AE02.roa File: 4A66F4B0C52F11E59EE2C868C4F9AE02.roa (raw, json) Hash identifier: H0Aul5FoePWmdJ4ws06EeBfgwjOLxYt9oVPG8uQPMlc= Subject key identifier: A8:20:CE:04:C4:32:CD:F5:7A:74:11:18:8F:00:0E:C0:5C:66:5A:F9 Certificate issuer: /CN=A9126C60/serialNumber=439F5A9A40E199679A7BC09BE207FD1F60A04857 Certificate serial: 2D26 Authority key identifier: 43:9F:5A:9A:40:E1:99:67:9A:7B:C0:9B:E2:07:FD:1F:60:A0:48:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q59amkDhmWeae8Cb4gf9H2CgSFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126C60/BF6323E6894B11E387C49E675911EA32/4A66F4B0C52F11E59EE2C868C4F9AE02.roa Signing time: Fri 06 Dec 2024 15:32:15 +0000 ROA not before: Fri 06 Dec 2024 15:32:15 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 45950 IP address blocks: 103.8.80.0/24 maxlen: 24 103.8.81.0/24 maxlen: 24 103.8.82.0/24 maxlen: 24 103.8.83.0/24 maxlen: 24 202.134.48.0/24 maxlen: 24 2406:1d00::/32 maxlen: 32 2406:1d00:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126C60/BF6323E6894B11E387C49E675911EA32/Q59amkDhmWeae8Cb4gf9H2CgSFc.crl rsync://rpki.apnic.net/member_repository/A9126C60/BF6323E6894B11E387C49E675911EA32/Q59amkDhmWeae8Cb4gf9H2CgSFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q59amkDhmWeae8Cb4gf9H2CgSFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 15:31:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11558 (0x2d26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126C60 Validity Not Before: Dec 6 15:32:15 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=675318ff-3001 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c3:fd:88:6a:8c:f0:49:b1:44:3b:21:74:2d: 9f:b5:7c:e1:b2:6f:4a:05:8a:04:72:1e:bc:c9:cd: bb:7e:aa:b0:9b:ee:ec:f3:d8:86:02:42:9c:f0:e8: 10:3a:7c:72:92:c3:d2:6b:74:f7:84:5e:b2:a8:bc: 3b:b2:5d:fe:74:6a:64:da:c1:30:a0:e5:f1:02:f5: f8:7f:9d:29:b6:0b:77:45:03:9a:51:40:59:32:5a: 16:87:4a:90:3e:cf:6c:2b:7d:95:f9:e5:c7:b5:b4: ce:3f:81:1f:85:a3:83:17:8e:56:6d:59:a1:c1:2e: 33:77:ec:c4:e1:e1:23:9e:47:68:82:69:7e:92:5f: fd:1c:2f:25:7e:ab:e5:2c:dc:9a:01:5d:38:65:3a: a0:6f:84:40:e1:4f:39:9e:99:56:97:4e:ed:44:3f: ac:15:57:4d:93:78:d9:77:3c:f2:ea:76:14:f1:7d: fc:50:7c:ae:f7:dc:31:f5:93:b0:66:7b:07:d6:6b: 6d:40:61:a2:ae:99:09:4f:0d:49:fd:c3:35:ff:7c: bc:9c:b4:99:12:c0:89:8c:7f:40:fd:16:05:99:2a: 47:5f:1f:da:8d:bf:90:e9:00:f4:b7:16:d0:9e:83: c3:6e:c6:f5:0a:74:b6:59:c7:e9:53:ca:e2:03:7f: 35:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:20:CE:04:C4:32:CD:F5:7A:74:11:18:8F:00:0E:C0:5C:66:5A:F9 X509v3 Authority Key Identifier: keyid:43:9F:5A:9A:40:E1:99:67:9A:7B:C0:9B:E2:07:FD:1F:60:A0:48:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126C60/BF6323E6894B11E387C49E675911EA32/Q59amkDhmWeae8Cb4gf9H2CgSFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q59amkDhmWeae8Cb4gf9H2CgSFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126C60/BF6323E6894B11E387C49E675911EA32/4A66F4B0C52F11E59EE2C868C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.8.80.0/22 202.134.48.0/24 IPv6: 2406:1d00::/32 Signature Algorithm: sha256WithRSAEncryption 47:92:a8:fa:8f:b4:d0:e5:ac:bf:76:86:a0:02:f1:18:a1:7f: 1d:58:36:6f:bb:c7:cf:b1:bf:57:a7:3d:1f:6c:89:ea:48:86: 48:db:89:12:b0:3a:7c:d2:58:6a:21:ff:16:aa:56:f5:24:8b: 59:7d:fb:bf:00:46:43:0c:14:19:f4:df:31:5f:e4:f4:39:b5: 50:21:84:bb:37:bc:43:57:86:10:b1:62:df:61:cd:3d:2e:a0: 43:da:10:8f:3a:84:e1:ca:99:d2:ff:da:76:10:ef:16:a3:2b: ab:f8:e6:a0:60:5c:62:23:2b:97:81:07:bf:0b:84:1a:83:21: 3a:79:ca:5d:3e:41:f1:4b:f0:79:1e:8e:9c:95:96:e7:5e:51: ac:4a:77:19:33:da:21:df:be:fa:a2:5c:6b:d6:dd:b7:fb:fb: 46:21:ab:74:46:9f:59:4a:bd:82:0d:b4:b5:c2:cb:63:cc:72: 63:2a:54:d8:bb:8b:2e:44:8b:1f:2f:25:c3:41:ad:53:5d:b7: c1:9d:20:a7:0a:ac:ff:97:55:8a:89:dd:5c:a8:58:5d:dd:dd: 04:c9:2e:c2:98:9b:99:ad:ce:ed:29:56:e8:37:62:19:be:ae: 1c:61:de:0d:bd:40:c6:63:85:8f:29:42:fd:08:87:c2:3d:0f: 68:80:ea:80 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICLSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZDNjAxMTAvBgNVBAUTKDQzOUY1QTlBNDBFMTk5Njc5QTdCQzA5QkUyMDdGRDFG NjBBMDQ4NTcwHhcNMjQxMjA2MTUzMjE1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUzMThmZi0zMDAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8P9iGqM8EmxRDshdC2ftXzhsm9KBYoEch68yc27fqqwm+7s89iGAkKc8OgQ OnxyksPSa3T3hF6yqLw7sl3+dGpk2sEwoOXxAvX4f50ptgt3RQOaUUBZMloWh0qQ Ps9sK32V+eXHtbTOP4EfhaODF45WbVmhwS4zd+zE4eEjnkdogml+kl/9HC8lfqvl LNyaAV04ZTqgb4RA4U85nplWl07tRD+sFVdNk3jZdzzy6nYU8X38UHyu99wx9ZOw ZnsH1mttQGGirpkJTw1J/cM1/3y8nLSZEsCJjH9A/RYFmSpHXx/ajb+Q6QD0txbQ noPDbsb1CnS2WcfpU8riA381DQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFKggzgTE Ms31enQRGI8ADsBcZlr5MB8GA1UdIwQYMBaAFEOfWppA4ZlnmnvAm+IH/R9goEhX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkM2MC9CRjYzMjNFNjg5 NEIxMUUzODdDNDlFNjc1OTExRUEzMi9RNTlhbWtEaG1XZWFlOENiNGdmOUgyQ2dT RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E1OWFta0RobVdlYWU4Q2I0Z2Y5SDJDZ1NGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjZDNjAvQkY2MzIzRTY4OTRCMTFFMzg3QzQ5RTY3NTkxMUVBMzIvNEE2NkY0QjBD NTJGMTFFNTlFRTJDODY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnCFADBADKhjAwDQQCAAIwBwMFACQGHQAwDQYJKoZIhvcN AQELBQADggEBAEeSqPqPtNDlrL92hqAC8Rihfx1YNm+7x8+xv1enPR9siepIhkjb iRKwOnzSWGoh/xaqVvUki1l9+78ARkMMFBn03zFf5PQ5tVAhhLs3vENXhhCxYt9h zT0uoEPaEI86hOHKmdL/2nYQ7xajK6v45qBgXGIjK5eBB78LhBqDITp5yl0+QfFL 8HkejpyVludeUaxKdxkz2iHfvvqiXGvW3bf7+0Yhq3RGn1lKvYINtLXCy2PMcmMq VNi7iy5Eix8vJcNBrVNdt8GdIKcKrP+XVYqJ3VyoWF3d3QTJLsKYm5mtzu0pVug3 Yhm+rhxh3g29QMZjhY8pQv0Ih8I9D2iA6oA= -----END CERTIFICATE-----Generated at Sat Apr 12 10:38:49 2025 by rpki-client