$ rpki-client -vvf rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/4FE459C8B97211EFA7B7E47DC4F9AE02.roa File: 4FE459C8B97211EFA7B7E47DC4F9AE02.roa (raw, json) Hash identifier: m7WV1VKI7ClZpgbpWthM6Ip2WNf7bXuqABVjburQENc= Subject key identifier: 9E:20:AF:19:0B:42:E7:8F:BC:35:20:10:D5:EC:4B:BF:9E:6E:CA:29 Certificate issuer: /CN=A91513B0/serialNumber=01983111FD6F0B27E240463B68A7A19845C7BB0A Certificate serial: 04BF Authority key identifier: 01:98:31:11:FD:6F:0B:27:E2:40:46:3B:68:A7:A1:98:45:C7:BB:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZgxEf1vCyfiQEY7aKehmEXHuwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/4FE459C8B97211EFA7B7E47DC4F9AE02.roa Signing time: Mon 06 Jan 2025 23:42:57 +0000 ROA not before: Mon 06 Jan 2025 23:42:57 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 138461 IP address blocks: 103.125.115.0/24 maxlen: 24 103.147.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.crl rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZgxEf1vCyfiQEY7aKehmEXHuwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 23:43:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1215 (0x4bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91513B0, serialNumber=01983111FD6F0B27E240463B68A7A19845C7BB0A Validity Not Before: Jan 6 23:42:57 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=677c6a81-f657 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:05:d6:75:c9:df:83:b1:cd:f0:7e:9e:9f:56: bd:fc:49:92:75:df:2f:44:59:79:47:ae:d6:6e:da: 2a:88:f2:ea:28:f8:77:59:a6:11:f4:4a:00:40:e2: d4:03:74:e9:9f:1d:40:52:15:69:b9:8f:65:35:dd: ef:15:74:36:69:3c:d1:42:54:3b:1a:1e:6d:bc:d8: a3:13:c5:9b:ad:f6:c1:b2:32:e7:d2:2a:84:68:19: 83:b1:3a:c9:49:aa:08:f0:57:09:64:42:f1:5f:fc: 0d:fd:fa:87:37:81:e2:01:47:46:d5:c7:89:fd:0e: 49:8a:3d:2f:f4:d7:77:00:ab:3b:06:b2:48:a4:c5: f9:9a:e4:db:ee:1e:2e:10:74:58:70:39:55:b0:97: d0:a6:6c:dd:fd:c4:fa:89:7c:0b:c9:19:d3:d2:7f: 80:45:86:bc:69:05:3c:cc:33:d6:7c:6d:ac:fc:9c: 57:78:7f:21:6b:ce:24:31:3e:1b:f3:71:97:a1:3a: 13:ce:cf:ad:fc:93:a0:56:64:b9:e8:1c:10:ff:5e: be:b7:8e:c3:b0:3a:08:de:bc:1d:42:d3:02:45:eb: 3b:44:db:49:e0:3f:70:0f:bc:de:62:e6:f8:6e:5c: f9:5c:58:15:89:8f:25:11:61:33:19:c5:3d:6e:e9: c5:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:20:AF:19:0B:42:E7:8F:BC:35:20:10:D5:EC:4B:BF:9E:6E:CA:29 X509v3 Authority Key Identifier: keyid:01:98:31:11:FD:6F:0B:27:E2:40:46:3B:68:A7:A1:98:45:C7:BB:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/AZgxEf1vCyfiQEY7aKehmEXHuwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AZgxEf1vCyfiQEY7aKehmEXHuwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91513B0/138E1430144F11EC8917D00CC4F9AE02/4FE459C8B97211EFA7B7E47DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.115.0/24 103.147.172.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:86:75:c9:32:dd:db:be:3b:85:b7:04:38:78:c1:c5:f0:47: 33:9b:81:61:53:77:cc:a7:84:33:0f:74:18:d8:df:87:a9:ca: ca:80:b2:36:49:f3:b4:2e:2c:75:1b:ad:8f:f9:09:07:68:bf: c9:e0:12:1d:b3:35:7f:ec:dc:c9:9f:0e:2e:a8:34:f9:08:da: 2d:58:88:26:5e:22:7f:07:fd:ce:16:40:bf:8e:06:40:c4:cf: db:e3:17:1a:1f:b7:4c:76:6e:e6:83:99:37:62:aa:11:67:9a: 71:b1:0b:2d:eb:93:11:93:c1:78:4b:40:c9:22:74:cb:54:eb: ac:3d:c0:de:7f:fe:6d:6e:7c:f6:ae:fd:9f:62:32:f9:da:03: 87:71:70:5a:08:25:50:b6:6a:b1:20:50:03:c6:2a:ee:24:5b: ab:18:b8:8e:4c:cb:f9:9d:b7:7b:0b:7c:aa:f5:36:44:2c:6d: d0:20:be:0c:5e:cb:24:03:1d:41:2d:63:58:71:46:a1:7a:b8: f2:52:0c:22:98:29:f7:23:cb:ae:3a:af:e6:c2:9d:22:35:ed: e1:d5:b9:ad:01:c6:18:af:c2:2a:3a:ba:ac:41:d3:07:92:19: 57:6e:cf:2d:93:35:a1:b4:cd:c3:43:f9:fe:d9:db:11:be:e7: bf:59:11:1a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEzQjAxMTAvBgNVBAUTKDAxOTgzMTExRkQ2RjBCMjdFMjQwNDYzQjY4QTdBMTk4 NDVDN0JCMEEwHhcNMjUwMTA2MjM0MjU3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdjNmE4MS1mNjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wXWdcnfg7HN8H6en1a9/EmSdd8vRFl5R67WbtoqiPLqKPh3WaYR9EoAQOLU A3Tpnx1AUhVpuY9lNd3vFXQ2aTzRQlQ7Gh5tvNijE8WbrfbBsjLn0iqEaBmDsTrJ SaoI8FcJZELxX/wN/fqHN4HiAUdG1ceJ/Q5Jij0v9Nd3AKs7BrJIpMX5muTb7h4u EHRYcDlVsJfQpmzd/cT6iXwLyRnT0n+ARYa8aQU8zDPWfG2s/JxXeH8ha84kMT4b 83GXoToTzs+t/JOgVmS56BwQ/16+t47DsDoI3rwdQtMCRes7RNtJ4D9wD7zeYub4 blz5XFgViY8lEWEzGcU9bunF0wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJ4grxkL QuePvDUgENXsS7+ebsopMB8GA1UdIwQYMBaAFAGYMRH9bwsn4kBGO2inoZhFx7sK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTNCMC8xMzhFMTQzMDE0 NEYxMUVDODkxN0QwMENDNEY5QUUwMi9BWmd4RWYxdkN5ZmlRRVk3YUtlaG1FWEh1 d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FaZ3hFZjF2Q3lmaVFFWTdhS2VobUVYSHV3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTEzQjAvMTM4RTE0MzAxNDRGMTFFQzg5MTdEMDBDQzRGOUFFMDIvNEZFNDU5QzhC OTcyMTFFRkE3QjdFNDdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnfXMDBABnk6wwDQYJKoZIhvcNAQELBQADggEBADyGdcky 3du+O4W3BDh4wcXwRzObgWFTd8ynhDMPdBjY34epysqAsjZJ87QuLHUbrY/5CQdo v8ngEh2zNX/s3MmfDi6oNPkI2i1YiCZeIn8H/c4WQL+OBkDEz9vjFxoft0x2buaD mTdiqhFnmnGxCy3rkxGTwXhLQMkidMtU66w9wN5//m1ufPau/Z9iMvnaA4dxcFoI JVC2arEgUAPGKu4kW6sYuI5My/mdt3sLfKr1NkQsbdAgvgxeyyQDHUEtY1hxRqF6 uPJSDCKYKfcjy646r+bCnSI17eHVua0Bxhivwio6uqxB0weSGVduzy2TNaG0zcND +f7Z2xG+579ZERo= -----END CERTIFICATE-----Generated at Sat Apr 12 22:26:43 2025 by rpki-client