$ rpki-client -vvf rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/E458D4E0F4A011E98C19332EC4F9AE02.roa File: E458D4E0F4A011E98C19332EC4F9AE02.roa (raw, json) Hash identifier: Kuacwrd9xmPbCRcHxM/w7AGXBwpLtTpK06rVdfJjAc4= Subject key identifier: 35:A8:DC:99:B5:B9:9E:BC:6A:D3:D3:36:21:48:0E:2A:07:DA:74:B6 Certificate issuer: /CN=A913DA50/serialNumber=B5748475ABF59077818951CC1FE6ED8BD2F31213 Certificate serial: 0C60 Authority key identifier: B5:74:84:75:AB:F5:90:77:81:89:51:CC:1F:E6:ED:8B:D2:F3:12:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tXSEdav1kHeBiVHMH-bti9LzEhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/E458D4E0F4A011E98C19332EC4F9AE02.roa Signing time: Fri 24 Jan 2025 18:36:50 +0000 ROA not before: Fri 24 Jan 2025 18:36:50 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 138587 IP address blocks: 103.133.252.0/22 maxlen: 24 2404:57c0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.crl rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tXSEdav1kHeBiVHMH-bti9LzEhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 18:06:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3168 (0xc60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DA50, serialNumber=B5748475ABF59077818951CC1FE6ED8BD2F31213 Validity Not Before: Jan 24 18:36:50 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6793ddc2-977d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a6:6e:fb:43:f8:37:44:a9:60:72:63:89:c7: b6:b7:f7:dc:54:6c:49:05:cd:68:8a:8b:5c:2a:59: e2:1e:86:a9:aa:e0:96:b5:b7:da:9e:4f:e0:2b:dd: 0b:84:b0:0c:1e:a8:e3:4d:04:a9:a8:39:14:d8:3b: 24:ef:3e:2d:ba:ef:20:81:f1:77:65:d6:3d:b7:a1: d1:1d:ab:ef:42:48:9b:39:b4:55:8b:e3:2d:9e:f5: 2e:fd:55:15:9f:e6:bd:0b:bd:57:0e:ed:c1:d8:2a: c2:c3:44:3e:dd:86:87:12:99:a3:27:74:a1:59:79: a5:19:34:a7:88:09:c7:99:ff:f8:86:68:a9:98:1c: 64:9e:f2:e2:5e:d8:5c:b6:cb:9d:45:90:52:17:5c: ab:d0:1d:3f:00:e1:04:c0:7b:af:ae:b8:10:08:a9: e7:bb:a0:ad:55:72:33:ca:34:1e:ca:8a:ea:89:ad: f8:2a:49:ff:69:11:91:26:fe:14:a4:01:99:0e:9e: 40:65:99:4d:42:26:d4:b2:cb:ae:57:8c:2f:b3:a3: 2f:dc:69:39:84:c3:c6:c1:0f:f4:e4:d2:24:a1:93: 61:8e:41:e1:d0:69:ed:3e:f7:3c:bb:2a:a8:3f:d4: 3d:8a:20:98:52:6f:cf:d2:66:48:67:b1:b1:b1:c8: 2f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:A8:DC:99:B5:B9:9E:BC:6A:D3:D3:36:21:48:0E:2A:07:DA:74:B6 X509v3 Authority Key Identifier: keyid:B5:74:84:75:AB:F5:90:77:81:89:51:CC:1F:E6:ED:8B:D2:F3:12:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/tXSEdav1kHeBiVHMH-bti9LzEhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tXSEdav1kHeBiVHMH-bti9LzEhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DA50/D49BD210F49F11E98BFFF82CC4F9AE02/E458D4E0F4A011E98C19332EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.252.0/22 IPv6: 2404:57c0::/32 Signature Algorithm: sha256WithRSAEncryption 02:26:e2:28:8f:a9:26:1f:9f:d3:d9:bb:f4:9b:2a:55:79:48: a1:f0:d3:0b:9a:c8:a4:b5:bc:48:ff:f7:cf:31:28:d2:00:52: e3:88:17:14:3f:d3:60:3c:52:17:dc:6d:bb:ef:91:3a:6e:43: 77:53:25:fe:20:88:39:a4:39:aa:e8:95:89:92:58:65:d3:46: e4:33:11:94:47:ba:a5:db:80:18:5c:56:e3:34:fb:31:fe:ce: 05:3c:1e:be:e9:90:cb:f8:d4:f1:c7:70:59:d1:c3:5d:8b:c8: f7:3e:99:67:90:e7:3d:eb:ce:74:94:08:b0:0f:d5:a8:ca:f8: af:54:0b:a5:5b:71:75:d1:26:d4:48:dd:04:08:6a:e6:74:17: e2:84:f6:3e:9e:bf:8a:c5:e8:65:2d:d2:54:72:73:73:79:41: ea:60:b2:44:d0:76:e8:e0:f0:15:1c:79:39:2a:53:47:6e:b6: dc:e7:03:a4:54:bd:5e:5c:fc:e9:e9:22:fe:1b:f3:36:6d:9f: 14:af:e6:bd:44:b0:a6:51:f0:16:27:9f:7c:a1:ba:c1:a3:e7: 5b:aa:d7:84:e9:2c:37:f0:19:ed:72:00:ef:2e:bc:ec:ac:a2: 85:a2:59:c8:37:82:5a:db:03:63:c3:03:eb:ee:37:9c:e1:0f: e6:d6:2f:ef -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDGAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0RBNTAxMTAvBgNVBAUTKEI1NzQ4NDc1QUJGNTkwNzc4MTg5NTFDQzFGRTZFRDhC RDJGMzEyMTMwHhcNMjUwMTI0MTgzNjUwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkzZGRjMi05NzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmqZu+0P4N0SpYHJjice2t/fcVGxJBc1oiotcKlniHoapquCWtbfank/gK90L hLAMHqjjTQSpqDkU2Dsk7z4tuu8ggfF3ZdY9t6HRHavvQkibObRVi+MtnvUu/VUV n+a9C71XDu3B2CrCw0Q+3YaHEpmjJ3ShWXmlGTSniAnHmf/4hmipmBxknvLiXthc tsudRZBSF1yr0B0/AOEEwHuvrrgQCKnnu6CtVXIzyjQeyorqia34Kkn/aRGRJv4U pAGZDp5AZZlNQibUssuuV4wvs6Mv3Gk5hMPGwQ/05NIkoZNhjkHh0GntPvc8uyqo P9Q9iiCYUm/P0mZIZ7GxscgvTwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDWo3Jm1 uZ68atPTNiFIDioH2nS2MB8GA1UdIwQYMBaAFLV0hHWr9ZB3gYlRzB/m7YvS8xIT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREE1MC9ENDlCRDIxMEY0 OUYxMUU5OEJGRkY4MkNDNEY5QUUwMi90WFNFZGF2MWtIZUJpVkhNSC1idGk5THpF aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RYU0VkYXYxa0hlQmlWSE1ILWJ0aTlMekVoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0RBNTAvRDQ5QkQyMTBGNDlGMTFFOThCRkZGODJDQzRGOUFFMDIvRTQ1OEQ0RTBG NEEwMTFFOThDMTkzMzJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnhfwwDQQCAAIwBwMFACQEV8AwDQYJKoZIhvcNAQELBQAD ggEBAAIm4iiPqSYfn9PZu/SbKlV5SKHw0wuayKS1vEj/988xKNIAUuOIFxQ/02A8 UhfcbbvvkTpuQ3dTJf4giDmkOarolYmSWGXTRuQzEZRHuqXbgBhcVuM0+zH+zgU8 Hr7pkMv41PHHcFnRw12LyPc+mWeQ5z3rznSUCLAP1ajK+K9UC6VbcXXRJtRI3QQI auZ0F+KE9j6ev4rF6GUt0lRyc3N5QepgskTQdujg8BUceTkqU0duttznA6RUvV5c /OnpIv4b8zZtnxSv5r1EsKZR8BYnn3yhusGj51uq14TpLDfwGe1yAO8uvOysooWi Wcg3glrbA2PDA+vuN5zhD+bWL+8= -----END CERTIFICATE-----Generated at Tue Apr 22 20:12:21 2025 by rpki-client