$ rpki-client -vvf rpki.apnic.net/member_repository/A915216F/11B2C80AA39E11EE9DC71C60C4F9AE02/038457CEA3A011EEBE44947FC4F9AE02.roa File: 038457CEA3A011EEBE44947FC4F9AE02.roa (raw, json) Hash identifier: PgCUtYUopFfJUcc6oCyLffXra/44Q+4sS+exi8w3QBc= Subject key identifier: E9:09:ED:CA:DF:FE:4C:D4:62:C0:25:CB:3B:66:09:E6:E9:60:01:D2 Certificate issuer: /CN=A915216F/serialNumber=6D41943E515F53F992619C87F02393811253DE67 Certificate serial: CC Authority key identifier: 6D:41:94:3E:51:5F:53:F9:92:61:9C:87:F0:23:93:81:12:53:DE:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bUGUPlFfU_mSYZyH8COTgRJT3mc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915216F/11B2C80AA39E11EE9DC71C60C4F9AE02/038457CEA3A011EEBE44947FC4F9AE02.roa Signing time: Fri 03 Jan 2025 04:07:39 +0000 ROA not before: Fri 03 Jan 2025 04:07:39 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 56094 IP address blocks: 45.127.168.0/22 maxlen: 24 103.196.112.0/22 maxlen: 24 182.54.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915216F/11B2C80AA39E11EE9DC71C60C4F9AE02/bUGUPlFfU_mSYZyH8COTgRJT3mc.crl rsync://rpki.apnic.net/member_repository/A915216F/11B2C80AA39E11EE9DC71C60C4F9AE02/bUGUPlFfU_mSYZyH8COTgRJT3mc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bUGUPlFfU_mSYZyH8COTgRJT3mc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 04:11:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915216F Validity Not Before: Jan 3 04:07:39 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6777628b-cba9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e6:4b:3a:eb:f2:80:02:b6:e2:59:6c:3e:6a: bf:87:67:0b:bd:e1:8e:fa:c8:27:2e:a7:c9:7e:1c: 92:83:1b:ab:63:61:30:14:50:ec:8e:b4:39:2c:bc: 9b:5e:9a:7c:47:3b:ca:ed:5c:7f:60:1b:97:ea:4b: 00:7b:6c:c2:09:2e:03:13:a3:09:f7:71:97:be:2f: bc:07:37:5f:24:a3:fb:38:8c:aa:7b:fb:b9:e0:e5: cc:39:5f:35:6f:37:19:42:60:0d:64:3e:6b:9a:52: a8:93:72:ab:d0:62:ef:94:de:da:a7:2f:80:a9:d0: 04:50:18:c7:bc:c3:3a:b7:7b:1f:b5:b3:41:3c:b6: 25:b5:96:f6:d0:3d:37:de:75:24:61:4d:05:9d:b3: e4:43:d4:75:54:30:12:83:f0:64:cb:7f:94:65:e5: 8f:e1:82:1e:ae:be:2a:32:7e:b6:3f:ef:53:76:21: c9:ab:36:8e:6e:03:a6:3e:d0:a3:1f:17:93:4a:61: ab:ba:e9:3c:1c:f8:d9:c4:68:c1:b3:4c:c9:10:02: db:74:05:a4:6a:ab:13:73:43:bc:c3:5e:cd:a9:5a: 56:f1:15:64:e1:8b:43:97:b8:8c:56:3a:49:8c:81: 93:9f:20:09:ea:7c:5d:51:20:0a:43:19:9c:14:c2: f8:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:09:ED:CA:DF:FE:4C:D4:62:C0:25:CB:3B:66:09:E6:E9:60:01:D2 X509v3 Authority Key Identifier: keyid:6D:41:94:3E:51:5F:53:F9:92:61:9C:87:F0:23:93:81:12:53:DE:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915216F/11B2C80AA39E11EE9DC71C60C4F9AE02/bUGUPlFfU_mSYZyH8COTgRJT3mc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bUGUPlFfU_mSYZyH8COTgRJT3mc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915216F/11B2C80AA39E11EE9DC71C60C4F9AE02/038457CEA3A011EEBE44947FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.127.168.0/22 103.196.112.0/22 182.54.228.0/22 Signature Algorithm: sha256WithRSAEncryption 6b:69:25:70:e7:ab:2e:b5:02:66:e7:84:c0:fc:2b:8e:7d:33: 4b:87:53:ff:37:d4:c4:21:d5:71:0f:79:e4:b0:43:65:ce:d9: 73:53:a6:40:4e:78:cf:be:94:cf:5d:89:8c:08:4f:38:2b:e1: af:99:c5:15:6e:10:9d:28:eb:50:24:72:64:22:fc:24:73:bc: 5c:68:65:a3:a2:08:9e:2b:35:5d:55:5b:03:44:48:f1:b8:e1: 0c:b4:78:f9:1e:ba:33:38:1d:f3:25:3b:b1:d6:cb:7e:f1:b9: 1f:14:fe:fd:cd:8e:b6:60:54:89:1f:44:ab:d3:51:ef:9a:9b: 94:ee:74:65:51:3d:0c:a1:9a:06:e9:9c:a9:7f:fd:4d:a7:0e: 98:d4:ea:1d:72:87:fb:bc:a5:24:73:28:a9:bf:52:e8:de:34: c0:53:e0:ce:08:aa:31:c8:7e:33:9b:86:5b:b6:1d:2e:14:8a: bc:7b:7c:98:d7:8f:2b:03:ec:a5:f7:6b:3d:3a:c6:cf:74:b1: 63:0d:a7:c3:ca:1d:40:e1:e2:15:48:e6:11:e3:ec:61:87:10: 64:af:dd:e9:73:5e:4f:c6:e5:31:07:cc:6b:92:f5:ec:84:9a: 3f:93:e6:53:71:70:37:5e:3d:8d:df:eb:a3:3d:27:9c:bb:88: 2d:fd:00:9a -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIxNkYxMTAvBgNVBAUTKDZENDE5NDNFNTE1RjUzRjk5MjYxOUM4N0YwMjM5Mzgx MTI1M0RFNjcwHhcNMjUwMTAzMDQwNzM5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc3NjI4Yi1jYmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOZLOuvygAK24llsPmq/h2cLveGO+sgnLqfJfhySgxurY2EwFFDsjrQ5LLyb Xpp8RzvK7Vx/YBuX6ksAe2zCCS4DE6MJ93GXvi+8BzdfJKP7OIyqe/u54OXMOV81 bzcZQmANZD5rmlKok3Kr0GLvlN7apy+AqdAEUBjHvMM6t3sftbNBPLYltZb20D03 3nUkYU0FnbPkQ9R1VDASg/Bky3+UZeWP4YIerr4qMn62P+9TdiHJqzaObgOmPtCj HxeTSmGruuk8HPjZxGjBs0zJEALbdAWkaqsTc0O8w17NqVpW8RVk4YtDl7iMVjpJ jIGTnyAJ6nxdUSAKQxmcFML4iwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOkJ7crf /kzUYsAlyztmCebpYAHSMB8GA1UdIwQYMBaAFG1BlD5RX1P5kmGch/Ajk4ESU95n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjE2Ri8xMUIyQzgwQUEz OUUxMUVFOURDNzFDNjBDNEY5QUUwMi9iVUdVUGxGZlVfbVNZWnlIOENPVGdSSlQz bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JVR1VQbEZmVV9tU1laeUg4Q09UZ1JKVDNtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTIxNkYvMTFCMkM4MEFBMzlFMTFFRTlEQzcxQzYwQzRGOUFFMDIvMDM4NDU3Q0VB M0EwMTFFRUJFNDQ5NDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAItf6gDBAJnxHADBAK2NuQwDQYJKoZIhvcNAQELBQADggEB AGtpJXDnqy61AmbnhMD8K459M0uHU/831MQh1XEPeeSwQ2XO2XNTpkBOeM++lM9d iYwITzgr4a+ZxRVuEJ0o61AkcmQi/CRzvFxoZaOiCJ4rNV1VWwNESPG44Qy0ePke ujM4HfMlO7HWy37xuR8U/v3NjrZgVIkfRKvTUe+am5TudGVRPQyhmgbpnKl//U2n DpjU6h1yh/u8pSRzKKm/UujeNMBT4M4IqjHIfjObhlu2HS4Uirx7fJjXjysD7KX3 az06xs90sWMNp8PKHUDh4hVI5hHj7GGHEGSv3elzXk/G5TEHzGuS9eyEmj+T5lNx cDdePY3f66M9J5y7iC39AJo= -----END CERTIFICATE-----Generated at Mon Apr 7 20:37:04 2025 by rpki-client