$ rpki-client -vvf rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/436B3BEC822D11EBB19C1844C4F9AE02.roa File: 436B3BEC822D11EBB19C1844C4F9AE02.roa (raw, json) Hash identifier: aR8xqbFUFjm+ccG/d5FkPfm2CRqS0a29lHr1SXFGeCU= Subject key identifier: 45:6B:EC:65:8A:ED:EE:AA:5A:11:92:4E:66:F8:34:EA:08:5B:44:B8 Certificate issuer: /CN=A914E215/serialNumber=D20E52D09CEBE6B57050358CA2930D8939772911 Certificate serial: 0642 Authority key identifier: D2:0E:52:D0:9C:EB:E6:B5:70:50:35:8C:A2:93:0D:89:39:77:29:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0g5S0Jzr5rVwUDWMopMNiTl3KRE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/436B3BEC822D11EBB19C1844C4F9AE02.roa Signing time: Thu 20 Mar 2025 22:33:48 +0000 ROA not before: Thu 20 Mar 2025 22:33:48 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 137967 IP address blocks: 103.163.168.0/23 maxlen: 23 103.163.168.0/24 maxlen: 24 103.163.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.crl rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0g5S0Jzr5rVwUDWMopMNiTl3KRE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:39:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1602 (0x642) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E215 Validity Not Before: Mar 20 22:33:48 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67dc97cb-8c71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e6:3e:25:b5:e8:86:9a:2e:3a:51:71:50:56: 3d:f4:cb:0e:b2:6f:e7:3d:48:24:dd:cc:ff:3f:f6: 8f:17:28:d4:a0:26:cb:36:63:5c:15:e1:4b:2f:00: 6b:9d:15:50:10:91:91:95:c6:f5:6a:32:e2:5e:fa: 4f:d9:75:a2:c4:98:38:9b:d6:d8:af:08:fa:62:03: 40:53:b5:90:e4:17:c7:c9:99:c0:fe:ed:4d:6e:e4: bf:97:4b:bd:49:da:96:44:4f:43:65:fc:ec:a0:bb: 8a:82:7c:ec:48:3d:7f:b8:f1:05:e7:ea:ba:3d:77: c3:e4:6f:28:db:0b:98:b2:3e:e4:49:38:e2:48:b5: e5:07:56:95:7a:27:bd:dc:4f:bf:b7:e0:16:fd:5d: 8e:2f:67:c5:72:41:bd:9a:fb:f1:bd:12:d3:77:dd: 94:ad:c6:b9:e2:b6:f3:10:e8:ba:b4:0d:f7:02:40: 0d:c1:9e:c2:e3:f0:f9:d9:a1:81:37:03:da:2d:35: f3:04:61:3c:5b:66:26:f6:7e:c4:0c:16:a5:99:73: f8:0c:8b:4e:c1:0e:71:61:b9:f4:58:69:f8:40:f0: 1a:bf:c3:59:5d:c7:43:8c:42:80:f4:be:4d:d1:08: f0:cc:4b:10:d0:80:05:45:fe:cc:bc:6f:3f:6d:0e: 73:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:6B:EC:65:8A:ED:EE:AA:5A:11:92:4E:66:F8:34:EA:08:5B:44:B8 X509v3 Authority Key Identifier: keyid:D2:0E:52:D0:9C:EB:E6:B5:70:50:35:8C:A2:93:0D:89:39:77:29:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/0g5S0Jzr5rVwUDWMopMNiTl3KRE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0g5S0Jzr5rVwUDWMopMNiTl3KRE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E215/922DBB94822B11EBBBC75E42C4F9AE02/436B3BEC822D11EBB19C1844C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.168.0/23 Signature Algorithm: sha256WithRSAEncryption 24:18:c6:13:f6:f3:3c:a9:a5:aa:ca:d1:1a:05:c6:e9:c9:2d: 57:e4:47:a1:e3:d9:38:57:5a:f4:40:95:c7:c1:c9:60:ba:53: 39:4a:5d:21:c0:f8:48:e0:14:4a:b4:91:c3:a9:cc:40:33:2f: 0a:6e:b6:b7:a9:f4:c3:a1:5d:c7:cd:58:5e:af:d0:27:64:da: 25:66:32:03:1a:53:fe:54:4e:c7:f2:a2:db:bc:ed:4c:42:36: 9a:cc:08:59:2e:10:f1:dc:c1:3f:1d:93:fd:27:1f:55:e6:f7: 99:b9:f9:ea:04:c2:b7:30:86:0b:4d:a2:a9:d6:73:d5:18:b1: 00:d4:ff:64:bf:85:89:75:df:66:8a:8f:68:39:85:a2:17:b1: 96:8d:3c:22:b9:5d:dd:48:6c:dc:c4:37:29:dc:56:4d:c6:54: 58:3e:a1:29:02:c4:ea:8b:00:43:0d:38:95:37:ca:75:3d:87: ec:9d:79:8e:83:7d:d6:9c:b2:bf:ee:8f:f9:24:02:60:ae:6a: 2d:28:3f:a2:ce:b5:e0:a8:4f:de:d6:ec:14:87:13:8d:47:d2: 5b:7b:22:0d:9b:8d:2c:8c:74:8f:a5:93:07:bb:0c:7c:ec:72: e2:86:c3:67:b0:ab:c8:a8:6d:ee:a3:cb:81:27:a6:33:68:1f: 10:85:68:95 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUyMTUxMTAvBgNVBAUTKEQyMEU1MkQwOUNFQkU2QjU3MDUwMzU4Q0EyOTMwRDg5 Mzk3NzI5MTEwHhcNMjUwMzIwMjIzMzQ4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RjOTdjYi04YzcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1uY+JbXohpouOlFxUFY99MsOsm/nPUgk3cz/P/aPFyjUoCbLNmNcFeFLLwBr nRVQEJGRlcb1ajLiXvpP2XWixJg4m9bYrwj6YgNAU7WQ5BfHyZnA/u1NbuS/l0u9 SdqWRE9DZfzsoLuKgnzsSD1/uPEF5+q6PXfD5G8o2wuYsj7kSTjiSLXlB1aVeie9 3E+/t+AW/V2OL2fFckG9mvvxvRLTd92Urca54rbzEOi6tA33AkANwZ7C4/D52aGB NwPaLTXzBGE8W2Ym9n7EDBalmXP4DItOwQ5xYbn0WGn4QPAav8NZXcdDjEKA9L5N 0QjwzEsQ0IAFRf7MvG8/bQ5zCQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEVr7GWK 7e6qWhGSTmb4NOoIW0S4MB8GA1UdIwQYMBaAFNIOUtCc6+a1cFA1jKKTDYk5dykR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTIxNS85MjJEQkI5NDgy MkIxMUVCQkJDNzVFNDJDNEY5QUUwMi8wZzVTMEp6cjVyVndVRFdNb3BNTmlUbDNL UkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBnNVMwSnpyNXJWd1VEV01vcE1OaVRsM0tSRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEUyMTUvOTIyREJCOTQ4MjJCMTFFQkJCQzc1RTQyQzRGOUFFMDIvNDM2QjNCRUM4 MjJEMTFFQkIxOUMxODQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFno6gwDQYJKoZIhvcNAQELBQADggEBACQYxhP28zypparK 0RoFxunJLVfkR6Hj2ThXWvRAlcfByWC6UzlKXSHA+EjgFEq0kcOpzEAzLwputrep 9MOhXcfNWF6v0Cdk2iVmMgMaU/5UTsfyotu87UxCNprMCFkuEPHcwT8dk/0nH1Xm 95m5+eoEwrcwhgtNoqnWc9UYsQDU/2S/hYl132aKj2g5haIXsZaNPCK5Xd1IbNzE NyncVk3GVFg+oSkCxOqLAEMNOJU3ynU9h+ydeY6Dfdacsr/uj/kkAmCuai0oP6LO teCoT97W7BSHE41H0lt7Ig2bjSyMdI+lkwe7DHzscuKGw2ewq8iobe6jy4EnpjNo HxCFaJU= -----END CERTIFICATE-----Generated at Sat Apr 5 03:34:17 2025 by rpki-client