$ rpki-client -vvf rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/4EE9B36406C711EA84978821C4F9AE02.roa File: 4EE9B36406C711EA84978821C4F9AE02.roa (raw, json) Hash identifier: jepyyGmhyczAJbapeZ5nuaRxeukad7rFEbIHfvNySKQ= Subject key identifier: D9:BE:4B:4A:FD:BF:83:C0:9F:3A:B6:4F:DD:F9:21:C5:6F:CC:44:FF Certificate issuer: /CN=A914CB9F/serialNumber=5D62DF1921DE1B598BAFB857D49D236D2E15F2B6 Certificate serial: 0BF3 Authority key identifier: 5D:62:DF:19:21:DE:1B:59:8B:AF:B8:57:D4:9D:23:6D:2E:15:F2:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XWLfGSHeG1mLr7hX1J0jbS4V8rY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/4EE9B36406C711EA84978821C4F9AE02.roa Signing time: Mon 30 Dec 2024 18:47:06 +0000 ROA not before: Mon 30 Dec 2024 18:47:06 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139757 IP address blocks: 103.144.198.0/23 maxlen: 23 103.144.198.0/24 maxlen: 24 103.144.199.0/24 maxlen: 24 2001:df1:d980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/XWLfGSHeG1mLr7hX1J0jbS4V8rY.crl rsync://rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/XWLfGSHeG1mLr7hX1J0jbS4V8rY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XWLfGSHeG1mLr7hX1J0jbS4V8rY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:39:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3059 (0xbf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CB9F Validity Not Before: Dec 30 18:47:06 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6772eaaa-8007 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a8:84:6a:47:08:58:78:5e:3c:89:6a:8a:f1: 23:69:c1:33:be:5e:08:e5:20:ef:c2:39:9d:0d:3c: d2:bd:11:6e:6c:58:aa:1a:5b:9a:4c:f6:f9:c5:14: 3b:b3:06:ac:cf:97:29:c4:20:5b:4a:f2:34:bc:11: 41:a2:20:f0:c0:83:1d:e1:60:a3:17:0c:a3:cd:94: d1:ba:b1:12:8f:96:eb:ba:78:a4:8c:43:51:61:f3: 51:18:b5:9e:82:c3:87:1b:24:d8:20:f8:eb:67:19: c2:f1:42:4b:e4:90:f4:1b:91:8d:14:ab:64:b9:94: a2:ee:60:6e:dd:58:3e:2e:4c:27:57:9e:bb:cb:95: a1:9b:2a:78:79:b6:97:38:9c:52:8f:b4:b4:8f:85: ec:c5:45:ea:04:17:03:7c:a0:c5:c3:b9:2c:6f:53: 45:17:d2:7c:33:1d:14:6b:77:b8:1b:fe:5b:80:cd: 90:f1:63:3c:c5:68:ab:c6:be:3d:5f:08:86:fc:85: b7:25:ea:ee:7c:63:bc:2b:e5:ca:0b:90:5c:1e:9d: c9:44:e4:1b:31:e8:87:fe:08:23:60:9e:1e:98:2b: b6:ef:03:47:cc:7a:2e:49:da:72:a1:ac:11:6b:36: e7:92:35:ab:8a:22:2b:34:81:5f:7f:97:01:71:4c: 47:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:BE:4B:4A:FD:BF:83:C0:9F:3A:B6:4F:DD:F9:21:C5:6F:CC:44:FF X509v3 Authority Key Identifier: keyid:5D:62:DF:19:21:DE:1B:59:8B:AF:B8:57:D4:9D:23:6D:2E:15:F2:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/XWLfGSHeG1mLr7hX1J0jbS4V8rY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XWLfGSHeG1mLr7hX1J0jbS4V8rY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/4EE9B36406C711EA84978821C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.198.0/23 IPv6: 2001:df1:d980::/48 Signature Algorithm: sha256WithRSAEncryption 97:c5:01:86:77:ed:7f:49:4a:b4:ac:28:b3:a8:7d:03:42:a9: 02:9f:b1:07:4a:e7:9d:14:e1:42:60:7e:30:cc:02:56:86:30: e3:88:ee:4f:4d:9c:20:a5:49:7a:77:f2:2d:9b:65:2c:ce:40: 0b:22:ee:f2:da:ea:14:5b:aa:cd:1c:6b:44:54:e4:4a:07:f0: 3c:aa:1c:13:44:68:a4:1e:48:fc:3c:a5:67:26:33:9c:fa:65: ec:cf:5a:51:54:f4:ef:36:ee:85:2a:ff:48:c2:31:2a:a8:c4: c2:5f:10:a9:bc:a3:ae:f2:03:75:b1:45:bd:7a:d3:e0:12:ef: bb:3c:c3:9e:a9:4d:b6:c5:54:34:e4:19:6f:0a:f4:79:a8:49: 4f:b3:cc:43:4c:aa:56:37:26:9a:bc:b8:0c:0a:9e:23:6e:24: 7c:75:39:c3:a6:67:ca:83:92:01:c5:bf:8c:ce:4a:fd:23:c9: 9e:cb:00:5f:d8:c6:32:d1:8e:f1:c1:b6:9e:01:8a:82:71:6e: e6:42:ed:ac:5f:57:0a:ef:65:87:c3:c7:09:ff:0e:0f:d2:b2: d6:30:62:08:cd:f5:86:24:17:8d:68:83:1c:4e:97:eb:f0:3e: 8a:10:c3:26:27:fa:03:f2:8d:84:33:83:95:1f:a1:1a:0b:34: 4c:ef:dc:9b -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICC/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCOUYxMTAvBgNVBAUTKDVENjJERjE5MjFERTFCNTk4QkFGQjg1N0Q0OUQyMzZE MkUxNUYyQjYwHhcNMjQxMjMwMTg0NzA2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzcyZWFhYS04MDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3qiEakcIWHhePIlqivEjacEzvl4I5SDvwjmdDTzSvRFubFiqGluaTPb5xRQ7 swasz5cpxCBbSvI0vBFBoiDwwIMd4WCjFwyjzZTRurESj5brunikjENRYfNRGLWe gsOHGyTYIPjrZxnC8UJL5JD0G5GNFKtkuZSi7mBu3Vg+LkwnV567y5Whmyp4ebaX OJxSj7S0j4XsxUXqBBcDfKDFw7ksb1NFF9J8Mx0Ua3e4G/5bgM2Q8WM8xWirxr49 XwiG/IW3JerufGO8K+XKC5BcHp3JROQbMeiH/ggjYJ4emCu27wNHzHouSdpyoawR azbnkjWriiIrNIFff5cBcUxHawIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNm+S0r9 v4PAnzq2T935IcVvzET/MB8GA1UdIwQYMBaAFF1i3xkh3htZi6+4V9SdI20uFfK2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0I5Ri8xMTU3MzlGQTA2 QzYxMUVBQUQyRDYwMUNDNEY5QUUwMi9YV0xmR1NIZUcxbUxyN2hYMUowamJTNFY4 clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hXTGZHU0hlRzFtTHI3aFgxSjBqYlM0VjhyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NENCOUYvMTE1NzM5RkEwNkM2MTFFQUFEMkQ2MDFDQzRGOUFFMDIvNEVFOUIzNjQw NkM3MTFFQTg0OTc4ODIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnkMYwDwQCAAIwCQMHACABDfHZgDANBgkqhkiG9w0BAQsF AAOCAQEAl8UBhnftf0lKtKwos6h9A0KpAp+xB0rnnRThQmB+MMwCVoYw44juT02c IKVJenfyLZtlLM5ACyLu8trqFFuqzRxrRFTkSgfwPKocE0RopB5I/DylZyYznPpl 7M9aUVT07zbuhSr/SMIxKqjEwl8QqbyjrvIDdbFFvXrT4BLvuzzDnqlNtsVUNOQZ bwr0eahJT7PMQ0yqVjcmmry4DAqeI24kfHU5w6ZnyoOSAcW/jM5K/SPJnssAX9jG MtGO8cG2ngGKgnFu5kLtrF9XCu9lh8PHCf8OD9Ky1jBiCM31hiQXjWiDHE6X6/A+ ihDDJif6A/KNhDODlR+hGgs0TO/cmw== -----END CERTIFICATE-----Generated at Sat Apr 5 07:18:33 2025 by rpki-client