$ rpki-client -vvf rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/1D790596F25D11EF8C5D7036C4F9AE02.roa File: 1D790596F25D11EF8C5D7036C4F9AE02.roa (raw, json) Hash identifier: 0c5mooek/SI4tHJlanxjMJ+LPip9Hy2VF66plGlTaFA= Subject key identifier: F6:87:F6:6C:D0:7D:21:EC:46:85:0C:9B:B7:58:EF:D7:FB:AC:3D:CC Certificate issuer: /CN=A913E03C/serialNumber=D08C36E26F24FB9D514F3B40A8E37A9A04B58025 Certificate serial: 3452 Authority key identifier: D0:8C:36:E2:6F:24:FB:9D:51:4F:3B:40:A8:E3:7A:9A:04:B5:80:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Iw24m8k-51RTztAqON6mgS1gCU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/1D790596F25D11EF8C5D7036C4F9AE02.roa Signing time: Mon 24 Feb 2025 03:12:01 +0000 ROA not before: Mon 24 Feb 2025 03:12:01 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 45500 IP address blocks: 203.89.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.crl rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Iw24m8k-51RTztAqON6mgS1gCU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:57:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13394 (0x3452) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E03C Validity Not Before: Feb 24 03:12:01 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67bbe381-3531 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:94:7d:6a:34:62:65:45:41:6b:59:a8:7c:76: fa:65:ce:58:d4:22:7e:12:bb:39:3d:4a:43:e5:e7: a5:c4:11:d0:8e:d8:49:f1:06:d4:17:a9:c6:a3:a9: da:54:47:58:c2:33:64:e5:ed:b8:6c:78:e7:cb:a2: 04:d5:7a:80:a3:74:09:41:8e:51:eb:8f:ab:aa:48: 56:67:ca:bd:e1:7b:d8:f9:01:6f:73:47:a2:9d:ec: b0:d1:64:c8:d7:9e:2a:73:9d:bc:96:ec:21:ef:15: 6b:c5:5c:3c:b1:1b:28:0e:e5:1a:df:6c:b1:5a:67: 65:47:c5:a4:c6:fe:30:25:41:54:16:7f:35:4e:1f: 61:d7:90:26:49:c8:ce:40:a1:bc:bf:8f:e9:5e:d7: 3f:3b:af:79:e3:58:28:6c:bf:32:26:81:3d:a8:4b: d4:c7:ea:6e:cf:b0:34:f5:31:c7:03:ef:a2:61:7a: e0:05:36:96:62:30:bf:36:32:98:3e:ad:03:c6:ad: 94:dc:3c:47:ce:37:84:4e:38:32:6e:dc:3d:5c:3f: 8a:16:f2:2c:2f:f0:92:f9:fa:d9:ad:ea:ff:d9:3c: 0a:73:15:ab:5c:0a:68:f1:a2:0d:df:85:09:cf:e8: 2e:fd:78:08:27:7f:1a:7d:c6:a5:78:58:96:01:f0: a1:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:87:F6:6C:D0:7D:21:EC:46:85:0C:9B:B7:58:EF:D7:FB:AC:3D:CC X509v3 Authority Key Identifier: keyid:D0:8C:36:E2:6F:24:FB:9D:51:4F:3B:40:A8:E3:7A:9A:04:B5:80:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/0Iw24m8k-51RTztAqON6mgS1gCU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Iw24m8k-51RTztAqON6mgS1gCU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E03C/B6E0F4AA1D9A11E28921298808B02CD2/1D790596F25D11EF8C5D7036C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.89.159.0/24 Signature Algorithm: sha256WithRSAEncryption 28:64:4d:23:79:f2:6c:b5:0d:ba:e7:26:4e:af:5b:01:a4:46: 89:71:2e:1a:c4:c8:a8:bd:d2:07:63:c4:7c:c2:0e:e0:42:ca: 10:65:d2:3b:c0:95:bd:20:61:5b:f0:d5:0a:fe:ef:ff:4d:62: 75:c0:f2:69:53:97:de:b8:15:b2:90:6a:16:d2:ca:d6:b2:d3: 00:30:df:e0:c1:f1:e4:56:05:5f:d4:be:c8:6d:83:14:e9:43: 72:eb:65:4a:e2:7d:a2:6e:85:ad:cf:2c:ba:c2:83:2c:54:52: 1a:36:cb:0d:65:f5:eb:3a:90:b3:9d:9d:08:41:40:f1:cb:76: 3f:fd:23:8b:73:f3:d6:66:46:3f:c1:5d:41:7b:8e:62:2e:7f: 85:84:3a:8f:f5:45:05:05:6e:54:eb:36:9e:9a:69:20:1b:4f: 5d:82:07:6c:5f:b1:b5:66:4d:db:f7:7e:ab:77:b5:ce:8a:a7: 05:82:3a:47:e7:5e:4b:e8:88:bb:82:d3:a6:8d:30:62:79:76: 63:9a:98:61:41:bf:ce:8e:a4:7a:53:6e:d4:14:97:90:f7:3b: af:a6:5e:34:19:d4:a2:17:9a:e9:a6:e1:2c:f3:88:40:59:ce: 26:c0:39:5c:78:76:70:d5:a1:e8:da:ad:09:bb:28:93:3a:33: 75:47:47:06 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UwM0MxMTAvBgNVBAUTKEQwOEMzNkUyNkYyNEZCOUQ1MTRGM0I0MEE4RTM3QTlB MDRCNTgwMjUwHhcNMjUwMjI0MDMxMjAxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JiZTM4MS0zNTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJR9ajRiZUVBa1mofHb6Zc5Y1CJ+Ers5PUpD5eelxBHQjthJ8QbUF6nGo6na VEdYwjNk5e24bHjny6IE1XqAo3QJQY5R64+rqkhWZ8q94XvY+QFvc0eineyw0WTI 154qc528luwh7xVrxVw8sRsoDuUa32yxWmdlR8Wkxv4wJUFUFn81Th9h15AmScjO QKG8v4/pXtc/O69541gobL8yJoE9qEvUx+puz7A09THHA++iYXrgBTaWYjC/NjKY Pq0Dxq2U3DxHzjeETjgybtw9XD+KFvIsL/CS+frZrer/2TwKcxWrXApo8aIN34UJ z+gu/XgIJ38afcaleFiWAfCh3QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPaH9mzQ fSHsRoUMm7dY79f7rD3MMB8GA1UdIwQYMBaAFNCMNuJvJPudUU87QKjjepoEtYAl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTAzQy9CNkUwRjRBQTFE OUExMUUyODkyMTI5ODgwOEIwMkNEMi8wSXcyNG04ay01MVJUenRBcU9ONm1nUzFn Q1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBJdzI0bThrLTUxUlR6dEFxT042bWdTMWdDVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0UwM0MvQjZFMEY0QUExRDlBMTFFMjg5MjEyOTg4MDhCMDJDRDIvMUQ3OTA1OTZG MjVEMTFFRjhDNUQ3MDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLWZ8wDQYJKoZIhvcNAQELBQADggEBAChkTSN58my1Dbrn Jk6vWwGkRolxLhrEyKi90gdjxHzCDuBCyhBl0jvAlb0gYVvw1Qr+7/9NYnXA8mlT l964FbKQahbSytay0wAw3+DB8eRWBV/UvshtgxTpQ3LrZUrifaJuha3PLLrCgyxU Uho2yw1l9es6kLOdnQhBQPHLdj/9I4tz89ZmRj/BXUF7jmIuf4WEOo/1RQUFblTr Np6aaSAbT12CB2xfsbVmTdv3fqt3tc6KpwWCOkfnXkvoiLuC06aNMGJ5dmOamGFB v86OpHpTbtQUl5D3O6+mXjQZ1KIXmumm4SzziEBZzibAOVx4dnDVoejarQm7KJM6 M3VHRwY= -----END CERTIFICATE-----Generated at Sat Apr 5 05:55:14 2025 by rpki-client