$ rpki-client -vvf rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/45835FFCA91511ED9E2AC948C4F9AE02.roa File: 45835FFCA91511ED9E2AC948C4F9AE02.roa (raw, json) Hash identifier: ec1O1GTZ4dz+0/pZQ1zL6I07kP1Ns22R8lDvYSkImuM= Subject key identifier: BA:A3:C0:39:0A:95:4A:D4:4A:51:49:86:46:1C:94:91:2B:90:3F:41 Certificate issuer: /CN=A913C40D/serialNumber=8C3814723FC755E9A9BA1BC335664A519BBC1CEE Certificate serial: 044B Authority key identifier: 8C:38:14:72:3F:C7:55:E9:A9:BA:1B:C3:35:66:4A:51:9B:BC:1C:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDgUcj_HVempuhvDNWZKUZu8HO4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/45835FFCA91511ED9E2AC948C4F9AE02.roa Signing time: Thu 05 Dec 2024 00:03:18 +0000 ROA not before: Thu 05 Dec 2024 00:03:18 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 140224 IP address blocks: 43.251.224.0/22 maxlen: 24 103.43.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/jDgUcj_HVempuhvDNWZKUZu8HO4.crl rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/jDgUcj_HVempuhvDNWZKUZu8HO4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDgUcj_HVempuhvDNWZKUZu8HO4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:11:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1099 (0x44b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C40D Validity Not Before: Dec 5 00:03:18 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6750edc6-7b64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:06:fc:ad:86:bb:dc:26:b0:a8:06:fb:3e:33: 86:0c:bc:51:4c:0c:fd:08:10:2b:5d:17:43:24:3d: 5d:ca:88:88:5f:ac:b0:49:8e:95:58:ca:50:df:db: 64:0b:60:3e:be:0f:de:4e:78:05:a6:49:b2:bf:96: 18:0e:5c:28:78:43:ce:9e:f8:38:67:7c:ef:e9:93: 93:3a:17:a8:a7:b3:65:f7:64:2d:ba:dc:44:5a:1e: 0d:59:2e:77:36:85:ce:32:1f:fc:da:66:72:fd:52: e8:26:a3:da:49:08:1b:53:3d:9a:c0:7e:4c:71:2f: dd:06:8a:79:45:7d:4e:d1:a9:7d:09:71:fd:2b:93: 5b:ea:5a:a0:87:47:2c:b2:3f:27:82:01:94:0b:71: 90:af:88:a2:c0:f4:98:9e:b0:64:a4:48:62:3f:ca: b8:f1:be:10:b1:ee:5f:e7:a4:7e:44:7c:00:93:71: e0:b3:76:c0:5f:7a:aa:62:8f:e1:00:69:a7:97:09: b0:f7:42:19:82:d4:13:ee:1e:28:f4:47:c1:c0:d1: 78:b6:c1:a1:b2:9a:5b:33:37:bf:dc:b2:f0:92:81: 99:c5:ef:96:55:6f:7d:35:1f:4e:c7:7f:33:3b:4f: 86:3b:37:0a:1f:1b:80:76:70:d8:29:e7:e3:fd:88: 8e:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:A3:C0:39:0A:95:4A:D4:4A:51:49:86:46:1C:94:91:2B:90:3F:41 X509v3 Authority Key Identifier: keyid:8C:38:14:72:3F:C7:55:E9:A9:BA:1B:C3:35:66:4A:51:9B:BC:1C:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/jDgUcj_HVempuhvDNWZKUZu8HO4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jDgUcj_HVempuhvDNWZKUZu8HO4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C40D/50F775A63BCC11ECA791F25DC4F9AE02/45835FFCA91511ED9E2AC948C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.251.224.0/22 103.43.8.0/22 Signature Algorithm: sha256WithRSAEncryption ae:9e:be:07:98:92:8d:3d:35:b9:5e:e1:eb:a5:22:f1:05:28: 7e:ca:0e:37:e2:f2:d2:1f:95:a2:58:36:9d:32:62:6a:37:52: 90:5f:38:00:53:6a:99:1d:8e:3c:7a:eb:e0:a7:4e:77:07:2c: af:25:19:c8:18:36:dc:c9:d8:cb:e8:9c:d9:4e:c9:c0:8c:2f: 49:31:a3:cb:7e:ec:0c:2d:53:ad:7c:ef:3e:27:75:ad:7f:91: 0a:b7:00:1f:f1:a1:84:8b:54:a2:5c:ce:71:f0:38:66:16:1a: f0:0a:ac:6b:d6:33:74:75:1e:71:4f:fd:91:67:b4:6b:0a:1b: 17:a7:4b:71:52:ec:2c:be:66:ba:f0:6a:d0:64:92:68:93:19: 43:c7:b0:70:28:75:3e:12:d6:b2:d7:61:b3:9e:f3:d5:5a:c1: a5:5e:ed:0e:fb:01:a2:c9:aa:bf:18:73:71:7b:25:0a:a7:54: c0:db:55:86:7e:ae:d1:56:2e:f7:6b:c6:4e:1b:1a:9f:62:83: c9:52:9a:2b:bf:14:52:e8:a9:90:c9:af:61:16:8c:01:8e:94: 97:db:39:08:2b:f6:ea:cd:b8:d7:86:40:0b:51:67:62:7c:54: 81:35:d7:9f:e9:6c:75:7d:36:e1:74:57:66:ea:43:c6:15:53: e8:1f:bd:45 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M0MEQxMTAvBgNVBAUTKDhDMzgxNDcyM0ZDNzU1RTlBOUJBMUJDMzM1NjY0QTUx OUJCQzFDRUUwHhcNMjQxMjA1MDAwMzE4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUwZWRjNi03YjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Qb8rYa73CawqAb7PjOGDLxRTAz9CBArXRdDJD1dyoiIX6ywSY6VWMpQ39tk C2A+vg/eTngFpkmyv5YYDlwoeEPOnvg4Z3zv6ZOTOheop7Nl92QtutxEWh4NWS53 NoXOMh/82mZy/VLoJqPaSQgbUz2awH5McS/dBop5RX1O0al9CXH9K5Nb6lqgh0cs sj8nggGUC3GQr4iiwPSYnrBkpEhiP8q48b4Qse5f56R+RHwAk3Hgs3bAX3qqYo/h AGmnlwmw90IZgtQT7h4o9EfBwNF4tsGhsppbMze/3LLwkoGZxe+WVW99NR9Ox38z O0+GOzcKHxuAdnDYKefj/YiOxQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLqjwDkK lUrUSlFJhkYclJErkD9BMB8GA1UdIwQYMBaAFIw4FHI/x1XpqbobwzVmSlGbvBzu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzQwRC81MEY3NzVBNjNC Q0MxMUVDQTc5MUYyNURDNEY5QUUwMi9qRGdVY2pfSFZlbXB1aHZETldaS1VadThI TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pEZ1Vjal9IVmVtcHVodkROV1pLVVp1OEhPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0M0MEQvNTBGNzc1QTYzQkNDMTFFQ0E3OTFGMjVEQzRGOUFFMDIvNDU4MzVGRkNB OTE1MTFFRDlFMkFDOTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr++ADBAJnKwgwDQYJKoZIhvcNAQELBQADggEBAK6evgeY ko09Nble4eulIvEFKH7KDjfi8tIflaJYNp0yYmo3UpBfOABTapkdjjx66+CnTncH LK8lGcgYNtzJ2MvonNlOycCML0kxo8t+7AwtU6187z4nda1/kQq3AB/xoYSLVKJc znHwOGYWGvAKrGvWM3R1HnFP/ZFntGsKGxenS3FS7Cy+ZrrwatBkkmiTGUPHsHAo dT4S1rLXYbOe89VawaVe7Q77AaLJqr8Yc3F7JQqnVMDbVYZ+rtFWLvdrxk4bGp9i g8lSmiu/FFLoqZDJr2EWjAGOlJfbOQgr9urNuNeGQAtRZ2J8VIE115/pbHV9NuF0 V2bqQ8YVU+gfvUU= -----END CERTIFICATE-----Generated at Sat Apr 5 02:17:56 2025 by rpki-client