$ rpki-client -vvf rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/FD4E307AFEA711EDBC673B4BC4F9AE02.roa File: FD4E307AFEA711EDBC673B4BC4F9AE02.roa (raw, json) Hash identifier: /gcnA3lv0gvYzo5Yy1H0Ai0POjgkW7UZBEUoiqUQvoQ= Subject key identifier: C4:59:B7:F6:7B:7E:E7:B2:11:DE:9A:C6:70:9B:0E:AE:94:1A:CD:9D Certificate issuer: /CN=A912B983/serialNumber=9F8ED1C53EE90D3CAC84A6470C4B7594C5575D85 Certificate serial: 012F Authority key identifier: 9F:8E:D1:C5:3E:E9:0D:3C:AC:84:A6:47:0C:4B:75:94:C5:57:5D:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n47RxT7pDTyshKZHDEt1lMVXXYU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/FD4E307AFEA711EDBC673B4BC4F9AE02.roa Signing time: Wed 11 Dec 2024 03:17:21 +0000 ROA not before: Wed 11 Dec 2024 03:17:21 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 140869 IP address blocks: 103.42.6.0/24 maxlen: 24 103.42.7.0/24 maxlen: 24 103.141.0.0/24 maxlen: 24 103.141.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/n47RxT7pDTyshKZHDEt1lMVXXYU.crl rsync://rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/n47RxT7pDTyshKZHDEt1lMVXXYU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n47RxT7pDTyshKZHDEt1lMVXXYU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 03:33:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B983 Validity Not Before: Dec 11 03:17:21 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67590441-e761 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c3:ea:8b:bc:49:61:69:92:ca:90:dc:22:eb: 55:67:0f:42:88:d2:04:56:d9:44:af:2f:17:3a:e2: be:98:7c:bf:49:33:a3:ae:04:d5:00:b0:67:c1:f5: e3:9e:6c:1d:d4:5b:cd:54:7d:59:30:3a:24:16:99: b9:15:d8:34:b9:b4:86:67:b7:cf:0a:a0:94:7a:c2: a1:4e:69:c5:4c:bf:04:de:ae:f2:0f:c4:ae:20:2d: 56:ad:56:5a:73:47:1a:de:d7:30:69:63:4c:e4:e8: 08:41:9b:01:2b:b0:99:2a:1c:2c:17:a8:b5:ae:e0: a7:7b:e6:9f:df:64:3f:21:1c:8c:ba:6d:ab:7c:c4: 96:67:13:43:86:3a:84:cc:ae:cd:ca:0d:62:aa:18: 96:bd:9e:d8:ef:56:4d:d7:51:c3:64:a9:c2:4c:53: 0c:73:f5:52:11:9e:78:d2:fc:16:d4:b7:ba:bd:35: cc:0a:e3:dc:54:78:84:b8:cf:f9:b4:b6:69:47:e8: a7:d5:ee:72:78:47:4b:df:a3:06:bc:6d:b6:cd:20: fa:90:76:89:c2:04:0a:c1:87:d2:5b:25:3c:b2:53: 71:a9:0f:83:42:f5:f9:2b:25:7b:7d:f3:0e:cc:55: 7f:d5:65:81:62:ed:d0:eb:53:6f:c6:bf:fc:0b:3c: 1a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:59:B7:F6:7B:7E:E7:B2:11:DE:9A:C6:70:9B:0E:AE:94:1A:CD:9D X509v3 Authority Key Identifier: keyid:9F:8E:D1:C5:3E:E9:0D:3C:AC:84:A6:47:0C:4B:75:94:C5:57:5D:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/n47RxT7pDTyshKZHDEt1lMVXXYU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n47RxT7pDTyshKZHDEt1lMVXXYU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B983/E6A8ACECFEA211EDAEF29047C4F9AE02/FD4E307AFEA711EDBC673B4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.6.0/23 103.141.0.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:8a:0f:51:67:81:cc:1f:8e:ea:05:07:5f:44:1c:24:96:e9: 97:29:dd:7a:2e:79:f1:20:a3:59:a5:b2:aa:a9:bc:15:ac:0d: d9:8d:54:cc:86:8c:fb:85:bd:27:8b:26:1f:8c:ac:27:0c:d7: e4:c4:3f:9d:00:5f:a3:ba:9d:09:47:b5:b3:50:cd:67:fb:15: 59:eb:39:ab:fa:ef:85:6e:09:e9:0b:0e:08:7a:78:10:94:53: 6d:de:f5:d8:1e:7b:a8:87:bf:47:0b:93:69:25:92:cc:d2:73: 9d:86:5e:e3:4d:24:1e:ff:54:2c:f6:27:46:11:07:c1:8c:c2: df:8f:1d:1d:47:12:dd:19:26:48:2a:a7:23:51:b8:74:66:1e: de:2f:be:4e:61:3f:5f:98:f2:97:d8:5c:1d:bf:7a:f3:b5:49: 19:7b:4b:fc:87:e5:5e:04:bf:a9:f6:35:fd:bd:b3:0e:c9:0d: a1:76:8d:f0:87:0f:ae:6a:b2:c2:72:45:9d:81:74:dd:6c:90: 6b:a4:b9:95:80:fb:fc:bd:6f:6a:f0:21:1d:15:17:68:b7:7c: 6d:aa:ec:be:fb:ce:d8:85:cf:bd:10:30:09:cd:1c:d5:36:6e: 73:64:4f:1d:6a:18:71:95:d0:87:fe:ae:57:49:52:01:55:f6: 71:ae:26:0a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI5ODMxMTAvBgNVBAUTKDlGOEVEMUM1M0VFOTBEM0NBQzg0QTY0NzBDNEI3NTk0 QzU1NzVEODUwHhcNMjQxMjExMDMxNzIxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU5MDQ0MS1lNzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8Pqi7xJYWmSypDcIutVZw9CiNIEVtlEry8XOuK+mHy/STOjrgTVALBnwfXj nmwd1FvNVH1ZMDokFpm5Fdg0ubSGZ7fPCqCUesKhTmnFTL8E3q7yD8SuIC1WrVZa c0ca3tcwaWNM5OgIQZsBK7CZKhwsF6i1ruCne+af32Q/IRyMum2rfMSWZxNDhjqE zK7Nyg1iqhiWvZ7Y71ZN11HDZKnCTFMMc/VSEZ540vwW1Le6vTXMCuPcVHiEuM/5 tLZpR+in1e5yeEdL36MGvG22zSD6kHaJwgQKwYfSWyU8slNxqQ+DQvX5KyV7ffMO zFV/1WWBYu3Q61Nvxr/8CzwajwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMRZt/Z7 fueyEd6axnCbDq6UGs2dMB8GA1UdIwQYMBaAFJ+O0cU+6Q08rISmRwxLdZTFV12F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjk4My9FNkE4QUNFQ0ZF QTIxMUVEQUVGMjkwNDdDNEY5QUUwMi9uNDdSeFQ3cERUeXNoS1pIREV0MWxNVlhY WVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL240N1J4VDdwRFR5c2hLWkhERXQxbE1WWFhZVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkI5ODMvRTZBOEFDRUNGRUEyMTFFREFFRjI5MDQ3QzRGOUFFMDIvRkQ0RTMwN0FG RUE3MTFFREJDNjczQjRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnKgYDBAFnjQAwDQYJKoZIhvcNAQELBQADggEBADyKD1Fn gcwfjuoFB19EHCSW6Zcp3XouefEgo1mlsqqpvBWsDdmNVMyGjPuFvSeLJh+MrCcM 1+TEP50AX6O6nQlHtbNQzWf7FVnrOav674VuCekLDgh6eBCUU23e9dgee6iHv0cL k2klkszSc52GXuNNJB7/VCz2J0YRB8GMwt+PHR1HEt0ZJkgqpyNRuHRmHt4vvk5h P1+Y8pfYXB2/evO1SRl7S/yH5V4Ev6n2Nf29sw7JDaF2jfCHD65qssJyRZ2BdN1s kGukuZWA+/y9b2rwIR0VF2i3fG2q7L77ztiFz70QMAnNHNU2bnNkTx1qGHGV0If+ rldJUgFV9nGuJgo= -----END CERTIFICATE-----Generated at Sat Apr 5 01:38:07 2025 by rpki-client