$ rpki-client -vvf rpki.apnic.net/member_repository/A913A8A4/790E610CE9C311E8A9CED648C4F9AE02/20FA35820DD811F08B2CB42FC4F9AE02.roa File: 20FA35820DD811F08B2CB42FC4F9AE02.roa (raw, json) Hash identifier: ivlmtXesZi45jYGzQTce8ZrgJvENn+C2mo88/M8f84c= Subject key identifier: 15:4C:98:38:79:5F:67:4C:4C:01:4A:A8:63:10:8F:8B:F9:1E:B6:87 Certificate issuer: /CN=A913A8A4/serialNumber=4D176A0B457A6E5695D37A7ECB8DCB3A73CB4812 Certificate serial: 120A Authority key identifier: 4D:17:6A:0B:45:7A:6E:56:95:D3:7A:7E:CB:8D:CB:3A:73:CB:48:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TRdqC0V6blaV03p-y43LOnPLSBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A8A4/790E610CE9C311E8A9CED648C4F9AE02/20FA35820DD811F08B2CB42FC4F9AE02.roa Signing time: Mon 31 Mar 2025 02:30:37 +0000 ROA not before: Mon 31 Mar 2025 02:30:37 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 63150 IP address blocks: 103.102.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A8A4/790E610CE9C311E8A9CED648C4F9AE02/TRdqC0V6blaV03p-y43LOnPLSBI.crl rsync://rpki.apnic.net/member_repository/A913A8A4/790E610CE9C311E8A9CED648C4F9AE02/TRdqC0V6blaV03p-y43LOnPLSBI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TRdqC0V6blaV03p-y43LOnPLSBI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 17:10:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4618 (0x120a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A8A4 Validity Not Before: Mar 31 02:30:37 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67e9fe4c-ec1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9d:f2:34:c1:44:02:0c:60:02:7e:61:4f:75: ab:43:d5:e6:c1:01:b3:64:26:61:cd:7f:5a:0d:b5: d4:ca:a5:ee:4c:33:1b:9a:af:fe:56:14:7e:93:8f: 6a:76:5d:8b:39:64:f6:34:b9:a6:c8:bc:60:23:f2: ad:26:da:ba:aa:e2:c7:b9:0b:5c:90:98:c1:74:10: b2:9f:9c:44:51:35:42:32:ed:0d:5d:38:50:cc:13: e3:12:de:2e:85:2c:11:5e:2b:71:40:d0:8c:14:a1: f4:ed:f8:85:58:54:32:aa:5d:8d:2f:cb:f0:76:29: c0:f9:09:75:6b:ec:e3:39:ec:b5:8d:f2:4b:b3:89: 05:37:48:c9:23:dd:6b:32:4c:e6:7c:67:99:63:78: 87:ee:26:a4:cf:d5:1c:88:0b:6f:ac:7f:73:2d:9c: 68:26:95:96:a3:33:f6:93:cc:bd:bd:88:ee:a1:9c: a9:41:56:3f:0f:c9:f1:65:ce:77:fa:d1:13:03:b5: d5:fe:ba:39:02:ff:36:3b:45:8d:27:5c:45:de:54: 46:dd:8b:6c:36:22:f2:25:e9:61:6b:e3:36:d1:0c: d4:f6:18:8e:23:15:52:52:6f:f4:97:bf:2c:dc:a0: df:17:34:72:e2:78:79:e7:f3:e7:ea:78:ee:71:dd: da:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:4C:98:38:79:5F:67:4C:4C:01:4A:A8:63:10:8F:8B:F9:1E:B6:87 X509v3 Authority Key Identifier: keyid:4D:17:6A:0B:45:7A:6E:56:95:D3:7A:7E:CB:8D:CB:3A:73:CB:48:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A8A4/790E610CE9C311E8A9CED648C4F9AE02/TRdqC0V6blaV03p-y43LOnPLSBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TRdqC0V6blaV03p-y43LOnPLSBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A8A4/790E610CE9C311E8A9CED648C4F9AE02/20FA35820DD811F08B2CB42FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.4.0/22 Signature Algorithm: sha256WithRSAEncryption 23:06:aa:fb:a0:bd:46:6b:ee:21:2f:81:ff:8c:59:08:87:58: 43:5e:8c:0c:ce:a7:e0:93:0b:6b:c4:ab:2a:eb:75:c9:35:bc: a4:a5:52:70:0d:50:1d:40:ab:dd:a9:05:c6:8e:2a:af:98:9b: bc:a1:a8:b0:c9:09:ad:e7:02:90:dd:72:0c:36:47:60:e3:47: 1a:a1:56:d0:16:7b:f2:b9:8b:6b:a3:eb:c1:b2:cb:a2:d2:c0: 81:11:d3:b4:0e:6b:39:24:77:3c:d2:e3:e9:76:68:33:10:6a: 6a:ff:1f:07:af:68:8f:b5:df:d8:14:45:df:79:7f:23:07:9d: fe:f6:39:11:c4:f5:26:0b:e6:bc:88:76:b8:47:9c:04:b8:0d: fe:6d:ec:a5:e3:da:3a:7e:ba:0b:82:93:c3:c6:ef:1d:3b:69: 6a:9e:72:c6:ef:c3:71:5d:21:63:3a:24:f7:8f:28:fb:9c:47: 43:b1:a9:51:4d:d6:5f:55:d1:ad:ad:d3:47:b9:77:b6:b3:79: f6:1b:1f:19:56:9c:f6:39:0a:07:d4:b8:46:ce:82:14:3f:5e: 5d:b2:10:6f:71:99:14:0d:05:60:f2:22:56:ff:37:a6:b6:14: e6:ec:2b:50:cb:10:b7:51:6f:0b:57:76:89:71:57:8e:d5:bb: 0c:83:12:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E4QTQxMTAvBgNVBAUTKDREMTc2QTBCNDU3QTZFNTY5NUQzN0E3RUNCOERDQjNB NzNDQjQ4MTIwHhcNMjUwMzMxMDIzMDM3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2U5ZmU0Yy1lYzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxp3yNMFEAgxgAn5hT3WrQ9XmwQGzZCZhzX9aDbXUyqXuTDMbmq/+VhR+k49q dl2LOWT2NLmmyLxgI/KtJtq6quLHuQtckJjBdBCyn5xEUTVCMu0NXThQzBPjEt4u hSwRXitxQNCMFKH07fiFWFQyql2NL8vwdinA+Ql1a+zjOey1jfJLs4kFN0jJI91r MkzmfGeZY3iH7iakz9UciAtvrH9zLZxoJpWWozP2k8y9vYjuoZypQVY/D8nxZc53 +tETA7XV/ro5Av82O0WNJ1xF3lRG3YtsNiLyJelha+M20QzU9hiOIxVSUm/0l78s 3KDfFzRy4nh55/Pn6njucd3agwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBVMmDh5 X2dMTAFKqGMQj4v5HraHMB8GA1UdIwQYMBaAFE0XagtFem5WldN6fsuNyzpzy0gS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQThBNC83OTBFNjEwQ0U5 QzMxMUU4QTlDRUQ2NDhDNEY5QUUwMi9UUmRxQzBWNmJsYVYwM3AteTQzTE9uUExT QkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RSZHFDMFY2YmxhVjAzcC15NDNMT25QTFNCSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0E4QTQvNzkwRTYxMENFOUMzMTFFOEE5Q0VENjQ4QzRGOUFFMDIvMjBGQTM1ODIw REQ4MTFGMDhCMkNCNDJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnZgQwDQYJKoZIhvcNAQELBQADggEBACMGqvugvUZr7iEv gf+MWQiHWENejAzOp+CTC2vEqyrrdck1vKSlUnANUB1Aq92pBcaOKq+Ym7yhqLDJ Ca3nApDdcgw2R2DjRxqhVtAWe/K5i2uj68Gyy6LSwIER07QOazkkdzzS4+l2aDMQ amr/HwevaI+139gURd95fyMHnf72ORHE9SYL5ryIdrhHnAS4Df5t7KXj2jp+uguC k8PG7x07aWqecsbvw3FdIWM6JPePKPucR0OxqVFN1l9V0a2t00e5d7azefYbHxlW nPY5CgfUuEbOghQ/Xl2yEG9xmRQNBWDyIlb/N6a2FObsK1DLELdRbwtXdolxV47V uwyDEuc= -----END CERTIFICATE-----Generated at Sat Apr 12 10:36:50 2025 by rpki-client