$ rpki-client -vvf rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/F68834A47B9811EC94EE077EC4F9AE02.roa File: F68834A47B9811EC94EE077EC4F9AE02.roa (raw, json) Hash identifier: OONv2D6RWPurGG09FFRuE2GGRS9SUWjqXoDwbtFmxSw= Subject key identifier: A2:72:A4:42:D2:9F:66:77:72:21:01:92:8C:7F:0A:E6:45:BE:0D:DA Certificate issuer: /CN=A912DC44/serialNumber=A6421FE13D8C93A7BDDFF8B53719B5808748D0DF Certificate serial: 0D03 Authority key identifier: A6:42:1F:E1:3D:8C:93:A7:BD:DF:F8:B5:37:19:B5:80:87:48:D0:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/F68834A47B9811EC94EE077EC4F9AE02.roa Signing time: Thu 26 Dec 2024 18:16:31 +0000 ROA not before: Thu 26 Dec 2024 18:16:31 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 59239 IP address blocks: 103.200.37.0/24 maxlen: 24 103.200.38.0/24 maxlen: 24 123.253.66.0/24 maxlen: 24 123.253.67.0/24 maxlen: 24 2401:1040::/48 maxlen: 48 2401:1040:2::/48 maxlen: 48 2401:1040:102::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.crl rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:15:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3331 (0xd03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DC44 Validity Not Before: Dec 26 18:16:31 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676d9d7f-1d73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:41:58:0d:92:51:b2:b9:ce:37:74:8c:d9:b9: 96:0d:83:48:7f:de:31:de:bc:50:63:63:c3:bb:16: 7e:b3:f1:65:41:ad:da:60:a9:b7:e0:4b:b8:ee:57: 64:4c:bf:f3:b7:b6:8c:e0:d2:52:2c:fc:f1:9d:fd: 9d:b2:09:20:da:25:ba:11:13:e9:47:f3:8f:a7:a4: b7:17:27:c0:2d:4a:f9:2c:f0:a9:17:63:10:ce:e5: 45:3f:3e:7e:01:ee:f0:9b:bb:97:a2:51:6e:36:69: dd:d9:d4:22:f2:3e:db:90:36:25:2b:05:5f:64:24: 53:66:a8:2a:68:b8:7c:a8:3e:0b:62:4f:33:d9:cc: 8f:a9:49:46:03:eb:15:52:07:f8:78:f9:96:c0:8f: bb:52:60:c1:09:c1:c9:ad:59:ae:e2:bf:28:a3:58: 27:69:74:d5:86:aa:f2:39:2c:4d:14:5f:60:c2:eb: 97:94:2d:6d:77:c7:de:40:ae:2a:07:c1:46:4d:fa: 18:03:70:25:42:7e:00:4c:e4:35:e8:a6:21:a0:e8: 41:2b:fa:f2:30:1f:e0:62:67:b3:e9:a1:c8:85:1f: 62:be:be:9c:05:9b:92:db:a8:bb:a7:e3:03:48:4c: b5:66:4d:3d:0b:19:8b:fc:b1:41:f2:92:8b:28:d5: 91:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:72:A4:42:D2:9F:66:77:72:21:01:92:8C:7F:0A:E6:45:BE:0D:DA X509v3 Authority Key Identifier: keyid:A6:42:1F:E1:3D:8C:93:A7:BD:DF:F8:B5:37:19:B5:80:87:48:D0:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/F68834A47B9811EC94EE077EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.200.37.0-103.200.38.255 123.253.66.0/23 IPv6: 2401:1040::/48 2401:1040:2::/48 2401:1040:102::/48 Signature Algorithm: sha256WithRSAEncryption 84:ac:ad:f7:05:71:7c:db:f9:03:ee:d0:47:f8:8b:58:14:97: 83:83:3a:69:52:e8:6d:73:f5:bd:e0:a0:0f:f8:f2:9d:51:f3: dc:34:8f:b6:a5:ae:c5:8c:ff:ae:21:c7:f6:0f:1b:70:52:cc: 52:c6:72:aa:05:f6:d6:63:f4:b1:b1:c7:10:81:58:2c:27:31: fb:08:b3:b6:61:72:e7:06:77:3c:76:b3:45:ba:d8:72:3a:87: 3b:8d:fb:d3:c9:42:20:08:4a:ad:5f:3e:81:e6:7b:05:1c:1e: 79:b0:f2:7b:56:b9:38:45:8a:21:0b:3e:6c:bb:b0:59:d4:d1: ae:53:75:80:97:f1:ec:d5:e1:5d:21:7b:df:dd:9f:1c:59:76: 57:3e:fc:68:fc:28:97:c7:6a:1a:42:f5:a7:b5:1b:a8:eb:4b: aa:a9:e2:5f:fb:f5:5d:28:79:2a:6d:00:ac:ab:7a:81:ea:1b: 3b:7d:ec:b8:96:ed:7d:1a:c9:8d:1c:f1:ef:e7:44:39:fe:75: d1:07:fa:05:04:5c:6c:ba:c9:2d:32:cb:08:94:86:52:7a:9b: 77:ba:9a:0c:22:0d:3b:f8:dd:b8:f1:1d:71:6c:ac:39:10:40: 3e:ec:1e:99:b8:5b:3e:9e:25:97:84:41:dd:54:bb:a4:88:29: 22:88:48:18 -----BEGIN CERTIFICATE----- MIIFojCCBIqgAwIBAgICDQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRDNDQxMTAvBgNVBAUTKEE2NDIxRkUxM0Q4QzkzQTdCRERGRjhCNTM3MTlCNTgw ODc0OEQwREYwHhcNMjQxMjI2MTgxNjMxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzZkOWQ3Zi0xZDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApEFYDZJRsrnON3SM2bmWDYNIf94x3rxQY2PDuxZ+s/FlQa3aYKm34Eu47ldk TL/zt7aM4NJSLPzxnf2dsgkg2iW6ERPpR/OPp6S3FyfALUr5LPCpF2MQzuVFPz5+ Ae7wm7uXolFuNmnd2dQi8j7bkDYlKwVfZCRTZqgqaLh8qD4LYk8z2cyPqUlGA+sV Ugf4ePmWwI+7UmDBCcHJrVmu4r8oo1gnaXTVhqryOSxNFF9gwuuXlC1td8feQK4q B8FGTfoYA3AlQn4ATOQ16KYhoOhBK/ryMB/gYmez6aHIhR9ivr6cBZuS26i7p+MD SEy1Zk09CxmL/LFB8pKLKNWRHQIDAQABo4ICxjCCAsIwHQYDVR0OBBYEFKJypELS n2Z3ciEBkox/CuZFvg3aMB8GA1UdIwQYMBaAFKZCH+E9jJOnvd/4tTcZtYCHSNDf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREM0NC8yOUI2QkVEQUU0 RkMxMUU5QjEzQjQ4NjBDNEY5QUUwMi9wa0lmNFQyTWs2ZTkzX2kxTnhtMWdJZEkw TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BrSWY0VDJNazZlOTNfaTFOeG0xZ0lkSTBOOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkRDNDQvMjlCNkJFREFFNEZDMTFFOUIxM0I0ODYwQzRGOUFFMDIvRjY4ODM0QTQ3 Qjk4MTFFQzk0RUUwNzdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUAYIKwYBBQUHAQcBAf8E QTA/MBoEAgABMBQwDAMEAGfIJQMEAGfIJgMEAXv9QjAhBAIAAjAbAwcAJAEQQAAA AwcAJAEQQAACAwcAJAEQQAECMA0GCSqGSIb3DQEBCwUAA4IBAQCErK33BXF82/kD 7tBH+ItYFJeDgzppUuhtc/W94KAP+PKdUfPcNI+2pa7FjP+uIcf2DxtwUsxSxnKq BfbWY/SxsccQgVgsJzH7CLO2YXLnBnc8drNFuthyOoc7jfvTyUIgCEqtXz6B5nsF HB55sPJ7Vrk4RYohCz5su7BZ1NGuU3WAl/Hs1eFdIXvf3Z8cWXZXPvxo/CiXx2oa QvWntRuo60uqqeJf+/VdKHkqbQCsq3qB6hs7fey4lu19GsmNHPHv50Q5/nXRB/oF BFxsusktMssIlIZSept3upoMIg07+N248R1xbKw5EEA+7B6ZuFs+niWXhEHdVLuk iCkiiEgY -----END CERTIFICATE-----Generated at Sat Apr 5 05:53:55 2025 by rpki-client