$ rpki-client -vvf rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/0589A4B8DF9511EDAAA7E22AC4F9AE02.roa File: 0589A4B8DF9511EDAAA7E22AC4F9AE02.roa (raw, json) Hash identifier: PCa5nWLR+HuKgmwdVX9BOmG2ZZvLJrtIyJd8CbPbXng= Subject key identifier: 67:11:5F:BB:DC:C2:44:30:BC:AB:81:C9:7B:47:50:12:CA:F2:3C:E1 Certificate issuer: /CN=A912DA1D/serialNumber=E42142E3E5845762D0E8D68B02FB10E875BC6BF2 Certificate serial: 0338 Authority key identifier: E4:21:42:E3:E5:84:57:62:D0:E8:D6:8B:02:FB:10:E8:75:BC:6B:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/0589A4B8DF9511EDAAA7E22AC4F9AE02.roa Signing time: Tue 11 Mar 2025 01:17:39 +0000 ROA not before: Tue 11 Mar 2025 01:17:39 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 135341 IP address blocks: 103.179.59.0/24 maxlen: 24 2400:d1a0:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.crl rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 01:02:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 824 (0x338) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DA1D, serialNumber=E42142E3E5845762D0E8D68B02FB10E875BC6BF2 Validity Not Before: Mar 11 01:17:39 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67cf8f33-0541 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:93:2d:44:31:65:2d:78:d4:66:12:ca:fa:78: 52:2a:b3:92:e2:ee:05:80:45:16:a6:26:b4:07:27: a8:a5:08:02:28:34:13:61:98:ee:c7:26:ec:ee:18: 86:f8:7f:25:56:f1:a0:42:4b:ff:c3:77:56:9a:18: b9:f8:4e:c7:75:fe:a1:b0:4c:e7:89:59:e0:2c:65: 63:5b:57:3b:93:ec:b6:16:05:db:db:68:b5:35:3a: f7:f9:61:e0:a0:20:2a:8e:6a:86:b1:11:35:6e:ff: 43:b4:73:06:37:88:8c:23:5b:89:1a:fb:55:d9:f8: 87:7d:17:83:4f:d2:2d:6d:c8:a1:ce:2c:74:a2:fd: 81:ad:e2:b2:91:ca:72:b9:2b:18:db:6e:a3:9c:68: 83:d4:3e:78:8f:0f:a2:5e:1f:3f:d5:4d:e0:72:21: 50:b3:cd:15:2b:7a:84:6b:e7:b7:fc:96:61:7a:aa: 47:3c:53:c5:d5:c6:07:b3:48:5b:27:ca:09:4e:9c: cd:0c:88:b5:b3:4e:43:7a:a7:a5:35:c2:15:29:58: 77:f5:c8:18:1a:9a:e9:ad:4d:40:84:a8:e3:59:83: 23:0a:69:df:1d:0f:87:19:dc:a3:f8:8b:dc:15:e2: 18:75:4a:72:29:81:75:24:62:27:e4:a9:79:b6:b7: 2c:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:11:5F:BB:DC:C2:44:30:BC:AB:81:C9:7B:47:50:12:CA:F2:3C:E1 X509v3 Authority Key Identifier: keyid:E4:21:42:E3:E5:84:57:62:D0:E8:D6:8B:02:FB:10:E8:75:BC:6B:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5CFC4-WEV2LQ6NaLAvsQ6HW8a_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DA1D/B46E42DABB1B11ECB0AC0F14C4F9AE02/0589A4B8DF9511EDAAA7E22AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.59.0/24 IPv6: 2400:d1a0:f000::/36 Signature Algorithm: sha256WithRSAEncryption 4c:9b:e0:ff:76:87:2b:32:3e:5d:fb:ec:c5:6c:ee:e4:10:04: e9:25:01:30:ca:40:ea:b4:4f:8b:d4:96:d4:23:53:90:47:fc: 65:de:c2:3b:a0:5c:f4:86:bf:ec:5c:d5:2b:fe:52:80:b6:39: ac:ce:19:b8:78:3a:20:a1:25:a0:35:1f:01:ce:3c:e4:be:d2: 94:43:5d:96:af:c3:ff:38:a6:0e:6a:bc:a1:f7:5e:f7:d7:66: 6d:1c:c8:ce:4f:1e:06:b9:e1:bf:15:c1:5f:f0:59:eb:67:5e: bc:23:c1:a3:f0:23:a3:bb:12:71:96:57:32:4a:2a:16:13:a8: 4e:5b:fa:41:25:68:8d:ab:85:ad:3d:2a:fd:7f:ca:2b:11:da: 5e:db:b2:e2:eb:5c:c5:b2:08:54:df:9b:a7:6b:dd:fd:97:c0: e5:45:1f:98:45:9f:01:d1:63:b5:1c:f0:86:fc:d1:a9:2a:78: be:d5:9c:d6:22:fe:d6:8e:6a:3b:16:43:94:db:ff:e4:ba:65: 60:48:9c:2e:ab:ad:1c:66:c1:f3:ee:32:29:d2:f8:41:31:c6: 05:c0:d8:23:70:39:18:bd:19:ea:19:ec:f0:93:bf:16:96:3f: ea:3e:29:eb:02:59:d9:34:f5:96:02:3f:00:bb:bc:62:b9:bb: fe:6a:79:75 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICAzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRBMUQxMTAvBgNVBAUTKEU0MjE0MkUzRTU4NDU3NjJEMEU4RDY4QjAyRkIxMEU4 NzVCQzZCRjIwHhcNMjUwMzExMDExNzM5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NmOGYzMy0wNTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupMtRDFlLXjUZhLK+nhSKrOS4u4FgEUWpia0ByeopQgCKDQTYZjuxybs7hiG +H8lVvGgQkv/w3dWmhi5+E7Hdf6hsEzniVngLGVjW1c7k+y2FgXb22i1NTr3+WHg oCAqjmqGsRE1bv9DtHMGN4iMI1uJGvtV2fiHfReDT9Itbcihzix0ov2BreKykcpy uSsY226jnGiD1D54jw+iXh8/1U3gciFQs80VK3qEa+e3/JZheqpHPFPF1cYHs0hb J8oJTpzNDIi1s05DeqelNcIVKVh39cgYGprprU1AhKjjWYMjCmnfHQ+HGdyj+Ivc FeIYdUpyKYF1JGIn5Kl5trcsvwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFGcRX7vc wkQwvKuByXtHUBLK8jzhMB8GA1UdIwQYMBaAFOQhQuPlhFdi0OjWiwL7EOh1vGvy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREExRC9CNDZFNDJEQUJC MUIxMUVDQjBBQzBGMTRDNEY5QUUwMi81Q0ZDNC1XRVYyTFE2TmFMQXZzUTZIVzhh X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVDRkM0LVdFVjJMUTZOYUxBdnNRNkhXOGFfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkRBMUQvQjQ2RTQyREFCQjFCMTFFQ0IwQUMwRjE0QzRGOUFFMDIvMDU4OUE0QjhE Rjk1MTFFREFBQTdFMjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBABnszswDgQCAAIwCAMGBCQA0aDwMA0GCSqGSIb3DQEBCwUA A4IBAQBMm+D/docrMj5d++zFbO7kEATpJQEwykDqtE+L1JbUI1OQR/xl3sI7oFz0 hr/sXNUr/lKAtjmszhm4eDogoSWgNR8BzjzkvtKUQ12Wr8P/OKYOaryh917312Zt HMjOTx4GueG/FcFf8FnrZ168I8Gj8COjuxJxllcySioWE6hOW/pBJWiNq4WtPSr9 f8orEdpe27Li61zFsghU35una939l8DlRR+YRZ8B0WO1HPCG/NGpKni+1ZzWIv7W jmo7FkOU2//kumVgSJwuq60cZsHz7jIp0vhBMcYFwNgjcDkYvRnqGezwk78Wlj/q PinrAlnZNPWWAj8Au7xiubv+anl1 -----END CERTIFICATE-----Generated at Sun Apr 13 01:53:23 2025 by rpki-client