$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/1801797EB79211E986129837C4F9AE02.roa File: 1801797EB79211E986129837C4F9AE02.roa (raw, json) Hash identifier: I7CEbkBg9Av7yOv0PNqj77FDrgxZjjIl1US16C5a7sQ= Subject key identifier: B3:61:B5:05:F2:5A:A0:DE:7D:CB:81:15:A9:40:35:B1:A5:A1:33:52 Certificate issuer: /CN=A914C4D7/serialNumber=E6F885B8C1E634AE399ECAB8173A03DB8E4C1294 Certificate serial: 0DA3 Authority key identifier: E6:F8:85:B8:C1:E6:34:AE:39:9E:CA:B8:17:3A:03:DB:8E:4C:12:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5viFuMHmNK45nsq4FzoD245MEpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/1801797EB79211E986129837C4F9AE02.roa Signing time: Thu 20 Feb 2025 18:56:25 +0000 ROA not before: Thu 20 Feb 2025 18:56:25 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 133936 IP address blocks: 103.49.24.0/24 maxlen: 24 103.49.25.0/24 maxlen: 24 103.49.26.0/24 maxlen: 24 103.49.27.0/24 maxlen: 24 2401:f880::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.crl rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5viFuMHmNK45nsq4FzoD245MEpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3491 (0xda3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4D7 Validity Not Before: Feb 20 18:56:25 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67b77ad9-3e36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b9:d2:99:4a:59:67:c3:bd:8c:b2:b8:16:af: 36:41:c8:51:0c:8f:8e:c2:67:7e:48:1e:a0:69:90: c8:55:97:60:54:30:90:40:fd:32:88:f7:90:b8:71: 0f:83:29:01:3b:c2:db:48:0d:7b:c0:4c:16:f8:67: b8:bf:59:2f:18:e2:6a:ba:b4:24:3d:91:e2:cc:13: a7:80:de:5e:0c:db:1a:3e:0c:bf:06:1a:8f:b1:ae: 8d:12:c9:89:27:2f:cf:55:bf:ca:c8:b4:3d:73:3e: 4e:19:85:a2:36:08:de:69:01:09:77:06:3d:6d:1c: 3e:4b:90:5f:86:79:97:89:cb:42:a3:07:eb:dc:ca: ab:c3:51:8b:03:02:bc:82:3a:f2:23:e1:21:3c:a5: 6d:fd:01:ee:44:c4:9f:85:29:ab:d0:ac:d3:c0:07: 3c:3b:49:d1:7f:2f:02:42:93:cc:bc:5e:8e:4f:15: 47:8d:a4:72:33:b1:ff:bb:3d:0a:a5:38:89:e3:92: 0d:10:7c:45:04:eb:f6:5c:81:c0:dd:22:e8:48:d8: 00:5c:42:f2:1c:14:ff:2d:15:82:12:26:12:b5:d6: 42:ab:e8:03:5a:93:c5:54:bf:3f:53:12:8f:99:76: 3d:9f:bb:d0:f7:e0:9c:46:7f:5d:66:66:9f:cd:ac: 78:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:61:B5:05:F2:5A:A0:DE:7D:CB:81:15:A9:40:35:B1:A5:A1:33:52 X509v3 Authority Key Identifier: keyid:E6:F8:85:B8:C1:E6:34:AE:39:9E:CA:B8:17:3A:03:DB:8E:4C:12:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/5viFuMHmNK45nsq4FzoD245MEpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5viFuMHmNK45nsq4FzoD245MEpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4D7/99D9153AB79011E9BEE8DD34C4F9AE02/1801797EB79211E986129837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.49.24.0/22 IPv6: 2401:f880::/32 Signature Algorithm: sha256WithRSAEncryption c1:8c:8d:21:bd:20:b4:64:4b:46:16:22:74:94:42:e1:a6:88: 76:41:70:e7:fc:15:26:9d:5e:0a:dd:a9:8a:dc:06:e1:1f:c6: 08:b9:a3:8d:24:25:75:d2:de:11:fb:58:6f:2c:2e:8a:03:38: 6c:6d:67:6d:3a:d3:de:90:fd:c0:18:84:d9:df:fa:cb:51:81: e2:db:e8:ac:d5:26:7f:d0:4c:95:d9:a2:92:13:a0:55:16:6b: 2c:d3:d3:8d:19:1b:13:b2:27:ba:6f:a2:45:40:32:41:63:36: 24:1f:b4:80:d7:f7:12:c9:f3:c9:48:77:d3:ee:fb:9b:ec:e2: 78:fd:67:2c:ab:0c:af:b4:77:d6:a5:34:1c:07:5b:0f:2d:b4: 1c:e0:86:59:50:42:82:ba:8e:17:4e:c1:11:ab:b8:be:1b:92: 34:3c:17:fd:7f:89:f6:ac:7a:28:41:ad:45:2e:f6:9d:89:9d: 3a:ea:19:d2:91:aa:29:f7:c4:08:e5:f4:32:51:74:ce:fc:f0: 37:44:f9:5b:a0:c1:fa:9e:82:59:06:92:9a:8a:f5:c0:87:51: 27:9f:69:ba:2c:02:c6:76:3b:bf:28:fe:af:d1:ef:c8:75:a4: 25:c8:55:73:af:3f:f9:91:d1:89:da:1b:55:4d:60:4a:81:8f: 66:ab:d3:bd -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RDcxMTAvBgNVBAUTKEU2Rjg4NUI4QzFFNjM0QUUzOTlFQ0FCODE3M0EwM0RC OEU0QzEyOTQwHhcNMjUwMjIwMTg1NjI1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I3N2FkOS0zZTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4rnSmUpZZ8O9jLK4Fq82QchRDI+Owmd+SB6gaZDIVZdgVDCQQP0yiPeQuHEP gykBO8LbSA17wEwW+Ge4v1kvGOJqurQkPZHizBOngN5eDNsaPgy/BhqPsa6NEsmJ Jy/PVb/KyLQ9cz5OGYWiNgjeaQEJdwY9bRw+S5BfhnmXictCowfr3Mqrw1GLAwK8 gjryI+EhPKVt/QHuRMSfhSmr0KzTwAc8O0nRfy8CQpPMvF6OTxVHjaRyM7H/uz0K pTiJ45INEHxFBOv2XIHA3SLoSNgAXELyHBT/LRWCEiYStdZCq+gDWpPFVL8/UxKP mXY9n7vQ9+CcRn9dZmafzax4twIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLNhtQXy WqDefcuBFalANbGloTNSMB8GA1UdIwQYMBaAFOb4hbjB5jSuOZ7KuBc6A9uOTBKU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRENy85OUQ5MTUzQUI3 OTAxMUU5QkVFOEREMzRDNEY5QUUwMi81dmlGdU1IbU5LNDVuc3E0RnpvRDI0NU1F cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2aUZ1TUhtTks0NW5zcTRGem9EMjQ1TUVwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEM0RDcvOTlEOTE1M0FCNzkwMTFFOUJFRThERDM0QzRGOUFFMDIvMTgwMTc5N0VC NzkyMTFFOTg2MTI5ODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnMRgwDQQCAAIwBwMFACQB+IAwDQYJKoZIhvcNAQELBQAD ggEBAMGMjSG9ILRkS0YWInSUQuGmiHZBcOf8FSadXgrdqYrcBuEfxgi5o40kJXXS 3hH7WG8sLooDOGxtZ206096Q/cAYhNnf+stRgeLb6KzVJn/QTJXZopIToFUWayzT 040ZGxOyJ7pvokVAMkFjNiQftIDX9xLJ88lId9Pu+5vs4nj9ZyyrDK+0d9alNBwH Ww8ttBzghllQQoK6jhdOwRGruL4bkjQ8F/1/ifaseihBrUUu9p2JnTrqGdKRqin3 xAjl9DJRdM788DdE+VugwfqeglkGkpqK9cCHUSefabosAsZ2O78o/q/R78h1pCXI VXOvP/mR0YnaG1VNYEqBj2ar070= -----END CERTIFICATE-----Generated at Sat Apr 5 04:13:56 2025 by rpki-client