$ rpki-client -vvf rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/399AB6DA4ED511ED84336740C4F9AE02.roa File: 399AB6DA4ED511ED84336740C4F9AE02.roa (raw, json) Hash identifier: xH17spaHhMO4029wjNj4ZW6FqoA9g6CON6QQbD7o3j0= Subject key identifier: 16:F9:A3:A8:4D:76:98:0B:CC:DD:4D:6C:98:B1:AB:95:61:75:31:69 Certificate issuer: /CN=A913E2B3/serialNumber=52868B0901F55B4078B91A73451CA6D22312C8AB Certificate serial: 0BE1 Authority key identifier: 52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/399AB6DA4ED511ED84336740C4F9AE02.roa Signing time: Tue 04 Mar 2025 19:37:00 +0000 ROA not before: Tue 04 Mar 2025 19:37:00 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 59796 IP address blocks: 103.134.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:53:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3041 (0xbe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E2B3 Validity Not Before: Mar 4 19:37:00 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c7565c-7ded Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:15:d8:97:4e:27:19:d6:78:fc:00:86:b5:eb: c9:3d:f0:69:9f:84:1e:d4:3e:f8:e6:26:90:d6:cc: 9d:c5:7c:8f:d5:0a:ac:24:06:95:b5:ea:1b:8a:0d: 35:0a:5d:6a:eb:cd:cb:a7:da:7d:c8:34:2f:a1:70: 23:ed:5d:b9:1c:fa:24:0b:d4:2e:70:1c:0b:7a:dd: f3:0b:c5:5f:e9:e4:02:2d:5f:19:9e:a7:31:e0:6d: 92:e0:6d:12:4d:67:b2:9f:bd:65:96:26:15:4e:e6: 21:a9:29:ee:62:89:5b:ed:75:f1:95:9e:89:61:54: bd:e9:5c:93:8e:c1:6c:26:a0:55:af:a7:9c:a5:3d: e8:15:20:3d:39:0e:8f:6c:eb:c4:ce:4d:70:7b:12: c0:6a:c4:b0:d9:39:b4:48:ed:56:2c:44:a8:48:30: 45:fa:f8:8b:4a:bf:21:4e:70:db:2c:81:5a:9f:28: dc:f6:f6:8f:32:2a:71:27:40:e4:25:99:4b:36:f6: 26:59:ff:f2:7f:51:de:a6:fb:90:c3:6f:5d:e5:44: fe:68:53:83:31:b1:3c:7e:2f:c1:18:32:09:5b:80: 93:8a:e7:ce:52:f2:8e:c4:55:56:2e:c9:3f:18:87: 3c:c1:35:c4:6e:29:7f:dc:c3:7b:b8:96:a4:c2:ef: ec:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:F9:A3:A8:4D:76:98:0B:CC:DD:4D:6C:98:B1:AB:95:61:75:31:69 X509v3 Authority Key Identifier: keyid:52:86:8B:09:01:F5:5B:40:78:B9:1A:73:45:1C:A6:D2:23:12:C8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/UoaLCQH1W0B4uRpzRRym0iMSyKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UoaLCQH1W0B4uRpzRRym0iMSyKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E2B3/20E67DD812F411EA89420430C4F9AE02/399AB6DA4ED511ED84336740C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.134.155.0/24 Signature Algorithm: sha256WithRSAEncryption 24:be:dd:92:70:42:83:6c:d0:f9:a2:d8:76:41:d2:45:e2:83: e5:85:30:77:5f:ae:d1:d5:48:38:3f:3e:71:05:99:cf:f1:18: e8:43:b9:66:7e:df:2b:4a:23:28:64:d8:c6:e9:ac:19:51:61: ef:01:d5:88:48:c2:49:0f:ba:19:96:c6:8e:98:74:23:21:10: 23:00:29:61:14:83:dd:58:a4:d3:de:d7:ee:42:99:1e:f9:68: d3:0f:d7:b2:84:9e:ac:45:03:80:be:58:1c:5d:2c:e5:63:dd: 5a:ee:32:93:b3:02:b0:f4:00:4a:72:15:8c:f7:55:98:0a:71: 00:80:5e:29:b4:c9:e8:27:da:69:20:c8:29:b0:47:b6:b4:79: 29:34:b0:d6:b6:1d:aa:c6:8a:aa:3c:7d:ba:3f:84:cc:5e:d6: d5:30:60:b8:f1:50:7b:57:00:6f:e9:59:34:fe:17:1b:2b:19: 91:d0:e9:a1:02:52:19:81:e5:b2:d2:88:7a:73:6b:a8:2b:b5: b5:f9:18:91:3f:29:cd:f6:6c:45:74:82:b9:fc:94:64:dc:a2: de:24:a2:8a:5a:45:d4:66:09:85:2b:be:1d:41:73:3f:76:8a: 2d:58:61:9a:18:5f:d6:22:18:e1:d7:33:26:3c:9c:7a:2c:74: 2a:93:41:f6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UyQjMxMTAvBgNVBAUTKDUyODY4QjA5MDFGNTVCNDA3OEI5MUE3MzQ1MUNBNkQy MjMxMkM4QUIwHhcNMjUwMzA0MTkzNzAwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2M3NTY1Yy03ZGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxBXYl04nGdZ4/ACGtevJPfBpn4Qe1D745iaQ1sydxXyP1QqsJAaVteobig01 Cl1q683Lp9p9yDQvoXAj7V25HPokC9QucBwLet3zC8Vf6eQCLV8Znqcx4G2S4G0S TWeyn71lliYVTuYhqSnuYolb7XXxlZ6JYVS96VyTjsFsJqBVr6ecpT3oFSA9OQ6P bOvEzk1wexLAasSw2Tm0SO1WLESoSDBF+viLSr8hTnDbLIFanyjc9vaPMipxJ0Dk JZlLNvYmWf/yf1HepvuQw29d5UT+aFODMbE8fi/BGDIJW4CTiufOUvKOxFVWLsk/ GIc8wTXEbil/3MN7uJakwu/sVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBb5o6hN dpgLzN1NbJixq5VhdTFpMB8GA1UdIwQYMBaAFFKGiwkB9VtAeLkac0UcptIjEsir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTJCMy8yMEU2N0REODEy RjQxMUVBODk0MjA0MzBDNEY5QUUwMi9Vb2FMQ1FIMVcwQjR1UnB6UlJ5bTBpTVN5 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VvYUxDUUgxVzBCNHVScHpSUnltMGlNU3lLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0UyQjMvMjBFNjdERDgxMkY0MTFFQTg5NDIwNDMwQzRGOUFFMDIvMzk5QUI2REE0 RUQ1MTFFRDg0MzM2NzQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnhpswDQYJKoZIhvcNAQELBQADggEBACS+3ZJwQoNs0Pmi 2HZB0kXig+WFMHdfrtHVSDg/PnEFmc/xGOhDuWZ+3ytKIyhk2MbprBlRYe8B1YhI wkkPuhmWxo6YdCMhECMAKWEUg91YpNPe1+5CmR75aNMP17KEnqxFA4C+WBxdLOVj 3VruMpOzArD0AEpyFYz3VZgKcQCAXim0yegn2mkgyCmwR7a0eSk0sNa2HarGiqo8 fbo/hMxe1tUwYLjxUHtXAG/pWTT+FxsrGZHQ6aECUhmB5bLSiHpza6grtbX5GJE/ Kc32bEV0grn8lGTcot4koopaRdRmCYUrvh1Bcz92ii1YYZoYX9YiGOHXMyY8nHos dCqTQfY= -----END CERTIFICATE-----Generated at Sat Apr 5 22:16:41 2025 by rpki-client