$ rpki-client -vvf rpki.apnic.net/member_repository/A913DC32/7B750BFEFCFD11EFADB86115C4F9AE02/44DD1EC8FD0811EF85ADED79C4F9AE02.roa File: 44DD1EC8FD0811EF85ADED79C4F9AE02.roa (raw, json) Hash identifier: EEymYq2MPlhS1CPPbjK14QgDBG2c9Lrs55XflLqPr84= Subject key identifier: 5D:FF:55:71:EE:CB:81:16:96:76:18:4E:2C:3C:34:E3:AE:FB:87:EC Certificate issuer: /CN=A913DC32/serialNumber=7907242670A3B89D348D5A841DAC8D182EB6607E Certificate serial: 0D Authority key identifier: 79:07:24:26:70:A3:B8:9D:34:8D:5A:84:1D:AC:8D:18:2E:B6:60:7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/eQckJnCjuJ00jVqEHayNGC62YH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DC32/7B750BFEFCFD11EFADB86115C4F9AE02/44DD1EC8FD0811EF85ADED79C4F9AE02.roa Signing time: Wed 26 Mar 2025 09:26:56 +0000 ROA not before: Wed 26 Mar 2025 09:26:56 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 4848 IP address blocks: 152.103.0.0/16 maxlen: 16 152.103.0.0/24 maxlen: 24 152.103.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DC32/7B750BFEFCFD11EFADB86115C4F9AE02/eQckJnCjuJ00jVqEHayNGC62YH4.crl rsync://rpki.apnic.net/member_repository/A913DC32/7B750BFEFCFD11EFADB86115C4F9AE02/eQckJnCjuJ00jVqEHayNGC62YH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/eQckJnCjuJ00jVqEHayNGC62YH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:21:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DC32 Validity Not Before: Mar 26 09:26:56 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67e3c860-e712 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4e:94:9a:c0:5c:0d:0e:bc:3d:41:56:fb:d9: f8:a4:3a:36:95:ce:71:23:75:04:de:c6:4b:f8:66: 7f:62:6c:4a:4d:2a:50:d2:72:7b:24:11:87:bb:95: 69:be:6d:32:ed:2a:56:68:6b:40:03:34:61:e6:9e: 97:af:76:9a:41:eb:b0:30:e2:c2:a5:75:45:f5:8b: d6:bc:9f:54:51:0b:e3:8a:74:6a:a9:29:84:90:4d: 8a:dc:f2:0d:ea:cc:59:cc:71:13:e9:84:ed:73:df: 38:cb:9d:35:f4:db:9d:75:99:05:5d:42:c3:e7:9c: 40:d9:72:14:13:c2:5b:0a:cb:e9:b6:1f:93:a6:1c: c8:32:32:2b:cb:61:88:68:10:03:1b:16:62:75:ca: 00:80:71:9b:38:92:bc:d6:7e:6f:9b:17:18:40:8c: f7:63:33:32:90:65:b0:f5:a7:f1:c7:5f:c5:a6:c0: 10:cd:e4:85:a9:9a:79:44:54:82:c4:77:75:25:12: 74:51:b9:c4:8d:53:26:88:71:70:d6:39:4c:fe:95: a7:b7:be:80:14:dd:b4:02:58:8b:84:21:ca:74:0e: 3b:99:56:30:b5:94:21:65:cf:81:ae:54:c4:1d:49: 2f:a4:95:07:fa:cd:2e:52:c0:55:7a:8d:fc:11:88: 19:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:FF:55:71:EE:CB:81:16:96:76:18:4E:2C:3C:34:E3:AE:FB:87:EC X509v3 Authority Key Identifier: keyid:79:07:24:26:70:A3:B8:9D:34:8D:5A:84:1D:AC:8D:18:2E:B6:60:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DC32/7B750BFEFCFD11EFADB86115C4F9AE02/eQckJnCjuJ00jVqEHayNGC62YH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/eQckJnCjuJ00jVqEHayNGC62YH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DC32/7B750BFEFCFD11EFADB86115C4F9AE02/44DD1EC8FD0811EF85ADED79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.103.0.0/16 Signature Algorithm: sha256WithRSAEncryption ca:56:2f:14:99:b8:d5:7e:90:ea:46:9f:ce:8b:a1:90:fa:83: fb:77:7e:90:70:25:d0:9b:3d:f8:ec:b9:96:5d:5b:7e:9b:a0: 23:18:c4:27:a0:06:08:08:83:a5:65:39:c1:47:88:43:c4:1e: 65:f7:2c:57:2e:74:71:d4:2b:fa:e0:2f:17:0e:cc:c6:8c:77: 2a:cf:d4:e4:71:70:68:a1:a6:c2:ad:19:a8:6c:cb:46:0a:36: 8d:8d:5f:a7:38:d2:26:11:c6:eb:d1:c6:31:33:3f:5e:e6:ab: 86:06:a4:18:c8:39:63:b2:cf:0d:33:3e:76:87:9b:1b:87:62: d7:3f:9f:94:bf:8a:70:12:6e:af:88:24:34:0e:cb:35:56:bc: 91:74:2f:e5:7f:31:9b:92:44:75:69:1b:7b:a7:93:d0:ee:43: 54:40:0c:10:a7:26:82:c0:61:20:ae:ab:91:0c:c6:82:d0:23: 20:53:56:a4:e9:50:b4:dc:0a:fe:db:81:78:43:b2:cd:8c:01: 3d:4e:0e:d8:96:df:1b:1d:3f:32:5a:e0:9e:70:df:44:f1:f3: c8:40:e5:2e:d5:6a:52:42:48:4f:02:e4:67:7d:fc:1c:66:f6: e7:ae:13:ac:5a:6f:f7:9b:02:5e:dc:0e:ba:bc:be:0b:4d:1a: 7c:7d:de:78 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz REMzMjExMC8GA1UEBRMoNzkwNzI0MjY3MEEzQjg5RDM0OEQ1QTg0MURBQzhEMTgy RUI2NjA3RTAeFw0yNTAzMjYwOTI2NTZaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZTNjODYwLWU3MTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPTpSawFwNDrw9QVb72fikOjaVznEjdQTexkv4Zn9ibEpNKlDScnskEYe7lWm+ bTLtKlZoa0ADNGHmnpevdppB67Aw4sKldUX1i9a8n1RRC+OKdGqpKYSQTYrc8g3q zFnMcRPphO1z3zjLnTX02511mQVdQsPnnEDZchQTwlsKy+m2H5OmHMgyMivLYYho EAMbFmJ1ygCAcZs4krzWfm+bFxhAjPdjMzKQZbD1p/HHX8WmwBDN5IWpmnlEVILE d3UlEnRRucSNUyaIcXDWOUz+lae3voAU3bQCWIuEIcp0DjuZVjC1lCFlz4GuVMQd SS+klQf6zS5SwFV6jfwRiBl3AgMBAAGjggKUMIICkDAdBgNVHQ4EFgQUXf9Vce7L gRaWdhhOLDw04677h+wwHwYDVR0jBBgwFoAUeQckJnCjuJ00jVqEHayNGC62YH4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNEQzMyLzdCNzUwQkZFRkNG RDExRUZBREI4NjExNUM0RjlBRTAyL2VRY2tKbkNqdUowMGpWcUVIYXlOR0M2MllI NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZVFja0puQ2p1SjAwalZxRUhheU5HQzYyWUg0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz REMzMi83Qjc1MEJGRUZDRkQxMUVGQURCODYxMTVDNEY5QUUwMi80NEREMUVDOEZE MDgxMUVGODVBREVENzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAeBggrBgEFBQcBBwEB/wQP MA0wCwQCAAEwBQMDAJhnMA0GCSqGSIb3DQEBCwUAA4IBAQDKVi8UmbjVfpDqRp/O i6GQ+oP7d36QcCXQmz347LmWXVt+m6AjGMQnoAYICIOlZTnBR4hDxB5l9yxXLnRx 1Cv64C8XDszGjHcqz9TkcXBooabCrRmobMtGCjaNjV+nONImEcbr0cYxMz9e5quG BqQYyDljss8NMz52h5sbh2LXP5+Uv4pwEm6viCQ0Dss1VryRdC/lfzGbkkR1aRt7 p5PQ7kNUQAwQpyaCwGEgrquRDMaC0CMgU1ak6VC03Ar+24F4Q7LNjAE9Tg7Ylt8b HT8yWuCecN9E8fPIQOUu1WpSQkhPAuRnffwcZvbnrhOsWm/3mwJe3A66vL4LTRp8 fd54 -----END CERTIFICATE-----Generated at Mon Apr 7 08:45:03 2025 by rpki-client