$ rpki-client -vvf rpki.apnic.net/member_repository/A913FA48/F73713F697D111EDB1A25441C4F9AE02/56D1860A97D411ED801D7E41C4F9AE02.roa File: 56D1860A97D411ED801D7E41C4F9AE02.roa (raw, json) Hash identifier: C5xmuiW1qdvlYmxgBJhQt0Eam4dFMifTqr76aJr0Pzo= Subject key identifier: 8C:B6:32:25:C1:B7:7F:F6:82:60:DE:03:12:F6:5D:6F:32:EB:DD:48 Certificate issuer: /CN=A913FA48/serialNumber=F5FD274AF27CE95F692DB80BE8EF67C324602B48 Certificate serial: 01A4 Authority key identifier: F5:FD:27:4A:F2:7C:E9:5F:69:2D:B8:0B:E8:EF:67:C3:24:60:2B:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9f0nSvJ86V9pLbgL6O9nwyRgK0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FA48/F73713F697D111EDB1A25441C4F9AE02/56D1860A97D411ED801D7E41C4F9AE02.roa Signing time: Fri 21 Mar 2025 07:49:38 +0000 ROA not before: Fri 21 Mar 2025 07:49:38 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 56231 IP address blocks: 45.121.20.0/22 maxlen: 22 103.179.70.0/24 maxlen: 24 103.232.219.0/24 maxlen: 24 117.18.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FA48/F73713F697D111EDB1A25441C4F9AE02/9f0nSvJ86V9pLbgL6O9nwyRgK0g.crl rsync://rpki.apnic.net/member_repository/A913FA48/F73713F697D111EDB1A25441C4F9AE02/9f0nSvJ86V9pLbgL6O9nwyRgK0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9f0nSvJ86V9pLbgL6O9nwyRgK0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:49:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FA48 Validity Not Before: Mar 21 07:49:38 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67dd1a12-4afb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:13:ab:2a:dd:19:61:3a:39:f1:2d:0f:58:41: 42:8e:2d:31:84:04:01:57:a8:ec:e6:f0:1b:55:d9: de:bb:13:5a:fe:8b:40:d7:e5:1c:a2:6e:5c:77:84: 36:a4:fb:0e:11:da:2d:d5:b8:6c:1c:48:1d:f6:16: e8:0e:85:1d:4a:cc:1b:98:44:46:3c:65:a5:ec:7e: e6:e0:11:64:05:3e:c9:fb:78:03:7f:a4:a1:66:37: 42:1a:11:38:6c:23:72:9d:09:13:a9:ae:56:be:fb: 0c:20:27:7d:31:8b:dc:4a:30:92:ab:49:b3:00:fe: ea:e0:26:15:d3:78:c6:c8:3d:9e:19:d7:4f:f1:0e: fb:4c:c7:e9:80:5e:1d:36:a7:53:2a:9c:6a:e6:6f: 9c:bb:b8:fa:23:ba:30:76:f0:3d:c3:be:f8:c5:ba: 6f:7c:58:76:f6:98:64:be:71:02:90:f7:b3:e1:e5: 37:b6:19:79:0f:20:82:29:7f:64:72:3d:65:34:d8: 27:d7:e5:af:90:8f:7a:9f:90:2b:78:c9:91:11:c4: fc:d1:a9:e3:0b:f0:ab:1b:d7:1e:13:ef:48:55:3d: 7a:45:80:4d:38:79:79:96:f6:41:fa:37:ce:42:9d: 7e:98:0d:ba:66:86:87:2b:b9:95:b4:04:c1:41:16: dd:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:B6:32:25:C1:B7:7F:F6:82:60:DE:03:12:F6:5D:6F:32:EB:DD:48 X509v3 Authority Key Identifier: keyid:F5:FD:27:4A:F2:7C:E9:5F:69:2D:B8:0B:E8:EF:67:C3:24:60:2B:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FA48/F73713F697D111EDB1A25441C4F9AE02/9f0nSvJ86V9pLbgL6O9nwyRgK0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9f0nSvJ86V9pLbgL6O9nwyRgK0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FA48/F73713F697D111EDB1A25441C4F9AE02/56D1860A97D411ED801D7E41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.121.20.0/22 103.179.70.0/24 103.232.219.0/24 117.18.99.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:94:00:1c:99:90:74:81:d7:43:81:17:30:a5:c2:a1:04:14: 04:9d:3d:2e:c1:4d:de:f9:80:41:96:09:9f:e9:cf:69:5e:a4: 1b:13:d5:c9:ec:33:df:19:f9:ac:ff:c1:51:4c:81:c9:c2:ea: 3f:c4:fb:15:74:f8:11:2e:3a:e4:b4:49:f1:6f:3d:d0:e8:5e: d6:ce:79:ac:ba:a4:74:e4:77:28:ed:eb:b1:33:b3:54:42:70: fd:c6:e8:2b:65:af:98:e0:0b:0e:62:2c:67:04:68:e6:be:39: 27:e4:15:8f:5c:ff:34:87:9f:0e:8e:cc:5a:56:09:98:a0:20: 8c:b5:5c:59:79:c7:0d:38:29:e1:84:9f:b9:c5:18:47:b1:9f: 7d:05:9c:cb:c3:e8:d4:82:a6:05:76:9d:d6:70:83:5e:b2:c7: a4:0a:22:5f:ef:06:02:1d:6c:1a:48:32:43:4d:a2:e5:1d:73: 20:85:43:96:de:c5:dc:ba:08:93:26:82:e7:a3:59:da:59:84: de:8a:48:26:0e:df:23:d8:30:16:92:19:7b:9f:d8:53:1d:66: 8f:c6:d2:5c:cc:04:0f:25:bc:de:eb:3d:43:84:aa:6b:3a:01: 67:12:1d:c4:69:7e:12:a6:53:04:19:a6:55:d8:8d:9a:1e:3f: a4:c5:91:81 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZBNDgxMTAvBgNVBAUTKEY1RkQyNzRBRjI3Q0U5NUY2OTJEQjgwQkU4RUY2N0Mz MjQ2MDJCNDgwHhcNMjUwMzIxMDc0OTM4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RkMWExMi00YWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5BOrKt0ZYTo58S0PWEFCji0xhAQBV6js5vAbVdneuxNa/otA1+Ucom5cd4Q2 pPsOEdot1bhsHEgd9hboDoUdSswbmERGPGWl7H7m4BFkBT7J+3gDf6ShZjdCGhE4 bCNynQkTqa5WvvsMICd9MYvcSjCSq0mzAP7q4CYV03jGyD2eGddP8Q77TMfpgF4d NqdTKpxq5m+cu7j6I7owdvA9w774xbpvfFh29phkvnECkPez4eU3thl5DyCCKX9k cj1lNNgn1+WvkI96n5AreMmREcT80anjC/CrG9ceE+9IVT16RYBNOHl5lvZB+jfO Qp1+mA26ZoaHK7mVtATBQRbdDQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFIy2MiXB t3/2gmDeAxL2XW8y691IMB8GA1UdIwQYMBaAFPX9J0ryfOlfaS24C+jvZ8MkYCtI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkE0OC9GNzM3MTNGNjk3 RDExMUVEQjFBMjU0NDFDNEY5QUUwMi85ZjBuU3ZKODZWOXBMYmdMNk85bnd5UmdL MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlmMG5Tdko4NlY5cExiZ0w2Tzlud3lSZ0swZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0ZBNDgvRjczNzEzRjY5N0QxMTFFREIxQTI1NDQxQzRGOUFFMDIvNTZEMTg2MEE5 N0Q0MTFFRDgwMUQ3RTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAIteRQDBABns0YDBABn6NsDBAB1EmMwDQYJKoZIhvcNAQEL BQADggEBAEqUAByZkHSB10OBFzClwqEEFASdPS7BTd75gEGWCZ/pz2lepBsT1cns M98Z+az/wVFMgcnC6j/E+xV0+BEuOuS0SfFvPdDoXtbOeay6pHTkdyjt67Ezs1RC cP3G6Ctlr5jgCw5iLGcEaOa+OSfkFY9c/zSHnw6OzFpWCZigIIy1XFl5xw04KeGE n7nFGEexn30FnMvD6NSCpgV2ndZwg16yx6QKIl/vBgIdbBpIMkNNouUdcyCFQ5be xdy6CJMmguejWdpZhN6KSCYO3yPYMBaSGXuf2FMdZo/G0lzMBA8lvN7rPUOEqms6 AWcSHcRpfhKmUwQZplXYjZoeP6TFkYE= -----END CERTIFICATE-----Generated at Sat Apr 5 06:09:53 2025 by rpki-client