$ rpki-client -vvf rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/87B023F2FF9E11E998D7BF77C4F9AE02.roa File: 87B023F2FF9E11E998D7BF77C4F9AE02.roa (raw, json) Hash identifier: wgxBqTOXaVBqDTXi3QmSfIMhu4UE3inSSK8gOm0zVzs= Subject key identifier: CF:1A:CC:E8:81:78:20:C9:CF:D4:54:E1:37:6F:64:41:24:11:DA:AA Certificate issuer: /CN=A913B489/serialNumber=BC8607BCCE7D5BD4EDB918CDE1B7345B81E6AD1D Certificate serial: 0C0F Authority key identifier: BC:86:07:BC:CE:7D:5B:D4:ED:B9:18:CD:E1:B7:34:5B:81:E6:AD:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYHvM59W9TtuRjN4bc0W4HmrR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/87B023F2FF9E11E998D7BF77C4F9AE02.roa Signing time: Thu 12 Dec 2024 18:37:15 +0000 ROA not before: Thu 12 Dec 2024 18:37:15 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 135654 IP address blocks: 103.78.52.0/22 maxlen: 24 175.41.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.crl rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYHvM59W9TtuRjN4bc0W4HmrR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:26:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3087 (0xc0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913B489 Validity Not Before: Dec 12 18:37:15 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=675b2d5b-25be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:25:02:0a:94:5c:48:d0:e7:00:1d:cc:24:10: 73:fa:90:6f:80:42:7a:a6:c3:e2:32:28:bc:8f:f0: ba:b7:0c:29:4c:69:88:24:64:f5:cf:bb:cc:7d:9c: 8c:66:ca:9e:5d:5f:cb:41:33:5a:3a:ea:42:a0:f0: a4:93:d6:b3:43:ba:bf:94:35:4f:86:22:d6:c7:90: 5f:2e:d0:cc:9d:26:0a:5c:08:c4:77:fb:d6:24:21: 85:a7:06:18:53:62:2d:86:bb:26:3b:75:cd:f0:82: a6:67:2e:4a:20:9c:6f:95:98:8c:5b:30:e6:a4:13: 59:bd:ec:46:44:27:84:fe:ac:17:bc:33:31:98:81: 46:78:68:c1:fb:b6:cb:6d:17:f2:42:76:a9:ad:42: 62:5c:aa:f9:cf:9d:46:37:0f:5c:af:49:10:b8:2d: 89:13:92:10:f2:67:59:a2:64:f6:7b:82:ae:85:11: 05:ed:82:60:4f:4b:bb:63:65:c8:c6:d1:b7:45:14: 95:47:ee:af:ae:e4:66:16:ef:06:f7:23:f0:c9:75: 4d:61:67:7f:54:1b:f9:5f:06:c0:80:30:f1:4d:24: 3e:14:f5:19:33:ca:5f:7e:65:b4:ff:36:76:1d:70: a6:a8:1c:58:f4:c4:d8:a2:24:6c:92:56:bc:e0:dd: 5e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:1A:CC:E8:81:78:20:C9:CF:D4:54:E1:37:6F:64:41:24:11:DA:AA X509v3 Authority Key Identifier: keyid:BC:86:07:BC:CE:7D:5B:D4:ED:B9:18:CD:E1:B7:34:5B:81:E6:AD:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/vIYHvM59W9TtuRjN4bc0W4HmrR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vIYHvM59W9TtuRjN4bc0W4HmrR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913B489/0B3879CAFF9C11E9B035A673C4F9AE02/87B023F2FF9E11E998D7BF77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.78.52.0/22 175.41.44.0/22 Signature Algorithm: sha256WithRSAEncryption 35:3b:bf:2a:1c:68:1e:8e:72:73:8a:e4:f1:4d:e1:33:41:dc: 6b:cd:c3:2c:63:9f:1a:58:0c:28:86:ee:27:8a:09:b0:46:9b: fd:3b:cf:5d:2a:89:37:c8:15:fa:1f:41:a4:b3:cc:a5:0e:eb: fa:3e:b1:2f:ac:5a:ef:59:1c:e4:d7:93:35:ad:88:90:3e:c9: 27:59:7e:39:9c:d7:c5:73:64:9b:8d:06:ac:e5:f8:60:9b:68: 94:b4:14:e4:61:71:8d:fa:b9:ad:ae:51:f0:6d:34:01:7e:8d: da:16:94:69:10:36:70:ab:37:26:4f:0b:5c:27:94:ac:2f:c1: 9f:38:a2:a7:16:5a:b0:92:d8:92:84:34:2d:f1:3d:09:1f:9e: e2:17:58:17:c1:6f:2f:89:da:b2:ab:df:86:00:d7:2b:a9:61: bc:5f:3a:30:27:0c:7c:74:89:30:3d:b5:25:5d:7d:35:55:bf: 32:e9:00:f3:19:37:99:52:e3:67:cd:7f:a3:c2:e9:f3:a7:4e: 62:d7:cc:4a:c9:f2:19:58:26:01:7e:43:28:1f:d2:79:fc:de: 19:8a:98:b8:8e:f9:5f:e5:63:ca:65:21:e7:8e:10:bc:51:c7: 69:2f:20:98:b6:03:00:81:d5:a5:8a:db:0a:ba:bf:2e:5f:d3: 06:39:a9:1e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0I0ODkxMTAvBgNVBAUTKEJDODYwN0JDQ0U3RDVCRDRFREI5MThDREUxQjczNDVC ODFFNkFEMUQwHhcNMjQxMjEyMTgzNzE1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzViMmQ1Yi0yNWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8iUCCpRcSNDnAB3MJBBz+pBvgEJ6psPiMii8j/C6twwpTGmIJGT1z7vMfZyM ZsqeXV/LQTNaOupCoPCkk9azQ7q/lDVPhiLWx5BfLtDMnSYKXAjEd/vWJCGFpwYY U2IthrsmO3XN8IKmZy5KIJxvlZiMWzDmpBNZvexGRCeE/qwXvDMxmIFGeGjB+7bL bRfyQnaprUJiXKr5z51GNw9cr0kQuC2JE5IQ8mdZomT2e4KuhREF7YJgT0u7Y2XI xtG3RRSVR+6vruRmFu8G9yPwyXVNYWd/VBv5XwbAgDDxTSQ+FPUZM8pffmW0/zZ2 HXCmqBxY9MTYoiRskla84N1eFwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFM8azOiB eCDJz9RU4TdvZEEkEdqqMB8GA1UdIwQYMBaAFLyGB7zOfVvU7bkYzeG3NFuB5q0d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQjQ4OS8wQjM4NzlDQUZG OUMxMUU5QjAzNUE2NzNDNEY5QUUwMi92SVlIdk01OVc5VHR1UmpONGJjMFc0SG1y UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZJWUh2TTU5VzlUdHVSak40YmMwVzRIbXJSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0I0ODkvMEIzODc5Q0FGRjlDMTFFOUIwMzVBNjczQzRGOUFFMDIvODdCMDIzRjJG RjlFMTFFOTk4RDdCRjc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnTjQDBAKvKSwwDQYJKoZIhvcNAQELBQADggEBADU7vyoc aB6OcnOK5PFN4TNB3GvNwyxjnxpYDCiG7ieKCbBGm/07z10qiTfIFfofQaSzzKUO 6/o+sS+sWu9ZHOTXkzWtiJA+ySdZfjmc18VzZJuNBqzl+GCbaJS0FORhcY36ua2u UfBtNAF+jdoWlGkQNnCrNyZPC1wnlKwvwZ84oqcWWrCS2JKENC3xPQkfnuIXWBfB by+J2rKr34YA1yupYbxfOjAnDHx0iTA9tSVdfTVVvzLpAPMZN5lS42fNf6PC6fOn TmLXzErJ8hlYJgF+Qygf0nn83hmKmLiO+V/lY8plIeeOELxRx2kvIJi2AwCB1aWK 2wq6vy5f0wY5qR4= -----END CERTIFICATE-----Generated at Sat Apr 5 23:53:34 2025 by rpki-client