$ rpki-client -vvf rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/1D3CD16AB67A11ECB02F1D5FC4F9AE02.roa File: 1D3CD16AB67A11ECB02F1D5FC4F9AE02.roa (raw, json) Hash identifier: 3vF76S8iWJW8vHG1MAht+7FYZNQsdje1uuqCEx57cyI= Subject key identifier: 72:C0:C3:E9:B0:34:05:85:BD:82:37:5F:CB:ED:A9:41:DF:4A:06:BC Certificate issuer: /CN=A914C1AE/serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Certificate serial: 031E Authority key identifier: E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/1D3CD16AB67A11ECB02F1D5FC4F9AE02.roa Signing time: Fri 31 Jan 2025 01:15:27 +0000 ROA not before: Fri 31 Jan 2025 01:15:27 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 149524 IP address blocks: 103.182.148.0/23 maxlen: 24 2001:df0:7cc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 00:45:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 798 (0x31e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C1AE Validity Not Before: Jan 31 01:15:27 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=679c242f-a55f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b0:d0:c5:31:aa:26:f8:34:f4:9f:24:2f:df: ca:24:2b:c0:18:29:7b:a2:39:4e:af:e2:ea:8a:26: 54:c4:e1:3a:6e:97:88:42:d6:e1:81:d2:ac:41:c5: a0:66:d0:36:b2:3b:65:f2:d8:d5:c2:b6:dd:71:ec: bc:5e:a9:8c:f6:9e:bc:95:df:f4:7b:f2:ad:9d:ad: 32:a4:25:bc:59:fb:f8:69:ea:19:7b:60:3c:b8:61: fa:c7:64:09:7c:3b:2d:73:7e:38:5b:44:f2:aa:7a: f5:83:18:53:82:ba:fb:43:d9:cb:44:8a:d0:58:62: b6:27:e1:27:eb:c2:e3:34:f4:7e:53:0c:a7:05:e6: a3:cd:22:db:5e:2f:46:2c:f1:66:81:6c:f3:52:6b: f5:12:b8:e5:5f:46:21:e1:2a:49:b8:da:70:dd:5b: 39:68:7e:cb:1b:fa:03:88:38:85:df:9f:57:62:6d: 1d:17:b5:d6:a5:f7:d5:df:95:01:f6:75:e6:25:9f: 91:e8:15:3a:bb:85:22:f9:cb:9e:0e:7c:4c:87:ae: 52:e7:46:b0:e5:74:fe:1e:b6:7a:d5:40:08:29:39: e0:47:9c:45:20:ee:00:e8:58:cd:b4:a6:0b:93:5b: 9d:cf:0a:63:0f:6a:c7:95:71:a2:fe:a2:12:52:a1: 58:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:C0:C3:E9:B0:34:05:85:BD:82:37:5F:CB:ED:A9:41:DF:4A:06:BC X509v3 Authority Key Identifier: keyid:E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/1D3CD16AB67A11ECB02F1D5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.182.148.0/23 IPv6: 2001:df0:7cc0::/48 Signature Algorithm: sha256WithRSAEncryption 09:08:f4:56:e5:ff:29:dc:39:5b:8d:70:18:96:99:89:8b:f9: bf:1a:27:eb:9a:fb:df:22:0b:b6:d7:cb:31:89:14:f6:a4:2a: fe:50:bc:1f:76:f5:ea:db:dc:cc:00:eb:a9:6d:d9:78:44:fb: 59:38:5b:04:e5:1b:a4:00:d0:56:a4:3e:42:ed:78:d3:d1:d2: 4a:70:25:bf:4e:83:cc:26:6e:bc:43:1e:6c:9f:0e:e8:86:10: 61:a9:41:53:33:3b:41:74:c2:c2:de:ff:b5:2e:68:e0:53:ce: 3c:82:58:a8:09:38:e3:58:55:9e:6d:5b:cb:b3:e0:26:cc:f0: 2d:04:e9:11:81:05:eb:a5:f8:e7:d9:89:32:4b:95:ce:96:48: bd:78:13:3e:a0:71:c0:cc:14:78:8c:0e:5e:ab:01:b0:e6:f9: cb:af:91:a0:82:98:a8:2b:7b:08:ac:42:59:2d:c6:df:c2:b3: 0b:e0:eb:9d:57:e1:11:bb:e3:8e:d1:04:2d:4a:80:80:0c:3c: 2d:8c:b2:df:3f:ba:b3:ee:7f:5f:9c:fd:20:23:dc:24:4a:fc: 21:bc:be:6e:d2:c1:2f:46:46:86:ca:1c:e5:c2:10:48:cb:85: 13:d7:a4:7a:f9:7b:97:3a:32:c5:62:ac:2e:ee:9d:cc:64:fb: df:32:aa:32 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMxQUUxMTAvBgNVBAUTKEU3NjhGQ0M4Qjk2N0Q2RjFDODgxRTBENDlBMEM0MjA4 REYwN0ZCMzcwHhcNMjUwMTMxMDExNTI3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzljMjQyZi1hNTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbDQxTGqJvg09J8kL9/KJCvAGCl7ojlOr+LqiiZUxOE6bpeIQtbhgdKsQcWg ZtA2sjtl8tjVwrbdcey8XqmM9p68ld/0e/Ktna0ypCW8Wfv4aeoZe2A8uGH6x2QJ fDstc344W0Tyqnr1gxhTgrr7Q9nLRIrQWGK2J+En68LjNPR+UwynBeajzSLbXi9G LPFmgWzzUmv1ErjlX0Yh4SpJuNpw3Vs5aH7LG/oDiDiF359XYm0dF7XWpffV35UB 9nXmJZ+R6BU6u4Ui+cueDnxMh65S50aw5XT+HrZ61UAIKTngR5xFIO4A6FjNtKYL k1udzwpjD2rHlXGi/qISUqFYYQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHLAw+mw NAWFvYI3X8vtqUHfSga8MB8GA1UdIwQYMBaAFOdo/Mi5Z9bxyIHg1JoMQgjfB/s3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzFBRS81OEQ5OTJERUI2 NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2SElnZURVbWd4Q0NOOEgt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyajh5TGxuMXZISWdlRFVtZ3hDQ044SC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEMxQUUvNThEOTkyREVCNjc2MTFFQzhGNTM3ODQ3QzRGOUFFMDIvMUQzQ0QxNkFC NjdBMTFFQ0IwMkYxRDVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFntpQwDwQCAAIwCQMHACABDfB8wDANBgkqhkiG9w0BAQsF AAOCAQEACQj0VuX/Kdw5W41wGJaZiYv5vxon65r73yILttfLMYkU9qQq/lC8H3b1 6tvczADrqW3ZeET7WThbBOUbpADQVqQ+Qu1409HSSnAlv06DzCZuvEMebJ8O6IYQ YalBUzM7QXTCwt7/tS5o4FPOPIJYqAk441hVnm1by7PgJszwLQTpEYEF66X459mJ MkuVzpZIvXgTPqBxwMwUeIwOXqsBsOb5y6+RoIKYqCt7CKxCWS3G38KzC+DrnVfh EbvjjtEELUqAgAw8LYyy3z+6s+5/X5z9ICPcJEr8Iby+btLBL0ZGhsoc5cIQSMuF E9ekevl7lzoyxWKsLu6dzGT73zKqMg== -----END CERTIFICATE-----Generated at Wed Apr 9 05:00:27 2025 by rpki-client