$ rpki-client -vvf rpki.apnic.net/member_repository/A9152B13/DC483F301EC011EF9629427DC4F9AE02/479B58B21EC111EF9258717EC4F9AE02.roa File: 479B58B21EC111EF9258717EC4F9AE02.roa (raw, json) Hash identifier: QIMDScliq15LdkPQsPXmCzkeCzTbM6NI7el8bqF5qD8= Subject key identifier: 5C:8F:A6:10:7D:AB:08:FB:E4:FD:FB:CC:B7:14:0D:4E:39:BD:FA:BD Certificate issuer: /CN=A9152B13/serialNumber=A7CEFC1700A4E184662508C7815F7EB1D0129EBE Certificate serial: 96 Authority key identifier: A7:CE:FC:17:00:A4:E1:84:66:25:08:C7:81:5F:7E:B1:D0:12:9E:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p878FwCk4YRmJQjHgV9-sdASnr4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152B13/DC483F301EC011EF9629427DC4F9AE02/479B58B21EC111EF9258717EC4F9AE02.roa Signing time: Mon 03 Mar 2025 07:59:42 +0000 ROA not before: Mon 03 Mar 2025 07:59:41 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 4049 IP address blocks: 103.108.176.0/24 maxlen: 24 2001:df4:1300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152B13/DC483F301EC011EF9629427DC4F9AE02/p878FwCk4YRmJQjHgV9-sdASnr4.crl rsync://rpki.apnic.net/member_repository/A9152B13/DC483F301EC011EF9629427DC4F9AE02/p878FwCk4YRmJQjHgV9-sdASnr4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p878FwCk4YRmJQjHgV9-sdASnr4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 05:11:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152B13 Validity Not Before: Mar 3 07:59:41 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c5616d-60fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4c:42:b1:af:79:ab:5c:66:08:75:f7:ba:6d: 33:6f:2d:6f:f4:8f:8b:3d:fd:ad:40:e9:73:c4:53: 65:e9:27:64:f0:98:05:e7:56:75:73:95:a5:f7:db: c5:33:d2:bd:18:cf:31:91:ed:ca:ab:b4:18:fa:05: a1:52:93:a9:e9:11:7f:c3:67:92:d9:7f:c2:a6:01: fc:c7:8d:b2:09:36:61:cb:5a:95:86:8b:0d:c4:f4: 2c:ba:5d:12:b1:40:88:0e:53:14:6a:17:ca:fd:db: 38:ba:a7:7f:54:67:5c:4d:8a:cb:98:af:3c:b3:20: 66:be:50:f8:da:36:e9:74:8e:cb:d9:e2:68:a4:a4: 8d:53:db:50:38:ad:2d:9c:49:c4:ce:c6:62:54:28: 94:be:fa:a0:11:47:88:a3:19:c3:2c:ec:24:16:de: 2b:4e:11:ad:40:16:fa:ef:fc:bb:61:b4:c9:a8:be: a6:e5:fb:5a:84:cb:a7:d4:d2:2e:2b:38:ac:41:ea: 7b:45:0a:5f:11:6b:7b:b2:e5:35:a3:ee:0c:8e:d1: 29:b0:8c:2b:d1:a2:9a:7d:41:52:38:4a:b9:cc:31: dd:5e:8c:85:c4:e8:9b:94:84:f0:69:ac:af:7f:a9: f7:16:40:e5:f0:e9:66:e0:a3:be:49:15:34:5d:1f: 36:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:8F:A6:10:7D:AB:08:FB:E4:FD:FB:CC:B7:14:0D:4E:39:BD:FA:BD X509v3 Authority Key Identifier: keyid:A7:CE:FC:17:00:A4:E1:84:66:25:08:C7:81:5F:7E:B1:D0:12:9E:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152B13/DC483F301EC011EF9629427DC4F9AE02/p878FwCk4YRmJQjHgV9-sdASnr4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p878FwCk4YRmJQjHgV9-sdASnr4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152B13/DC483F301EC011EF9629427DC4F9AE02/479B58B21EC111EF9258717EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.108.176.0/24 IPv6: 2001:df4:1300::/48 Signature Algorithm: sha256WithRSAEncryption 49:ec:4d:90:b2:5c:22:9d:d9:36:62:16:b0:5d:fb:6a:9b:b1: 10:68:77:05:e5:92:01:f1:d4:db:1c:56:65:53:f6:e0:cc:dc: 8b:5b:63:b8:28:2d:9c:25:95:fc:bc:53:45:bb:87:af:47:fb: 5e:32:9a:f2:a6:ab:e7:4b:ee:bd:35:f3:97:80:6d:b5:61:9e: 4b:b6:4b:88:fb:47:de:87:33:e9:a4:53:2d:f0:aa:fd:f7:41: a8:32:51:33:8d:a2:3d:09:dc:8b:ec:13:06:0e:42:d5:65:d6: 95:ee:13:6f:ed:f1:36:21:19:e1:d5:fa:6e:e4:7a:2f:e0:e9: 06:9a:e9:b2:3d:0c:58:4e:cd:0a:64:5a:c3:b4:c7:43:29:b7: 07:6c:87:bd:c2:9c:52:77:1d:59:ae:01:5d:a9:dd:5c:85:cd: 5b:8e:c6:f2:ab:03:f7:15:a8:0b:5a:22:ff:c5:15:95:3a:d6: 6b:f6:0d:be:39:4d:e4:8e:92:9c:63:a6:f4:4c:fc:eb:6f:6d: 8a:db:b5:ec:18:ba:ff:d7:7b:bf:c3:4d:53:69:c4:fe:c2:57: 41:59:79:6d:0c:a2:e0:e8:ac:ff:8b:31:d1:43:0b:2e:53:5c: c7:82:36:6e:8a:48:1c:b3:5c:b1:cd:19:e3:ba:31:5d:c8:81: 02:71:15:8c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJCMTMxMTAvBgNVBAUTKEE3Q0VGQzE3MDBBNEUxODQ2NjI1MDhDNzgxNUY3RUIx RDAxMjlFQkUwHhcNMjUwMzAzMDc1OTQxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M1NjE2ZC02MGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtkxCsa95q1xmCHX3um0zby1v9I+LPf2tQOlzxFNl6Sdk8JgF51Z1c5Wl99vF M9K9GM8xke3Kq7QY+gWhUpOp6RF/w2eS2X/CpgH8x42yCTZhy1qVhosNxPQsul0S sUCIDlMUahfK/ds4uqd/VGdcTYrLmK88syBmvlD42jbpdI7L2eJopKSNU9tQOK0t nEnEzsZiVCiUvvqgEUeIoxnDLOwkFt4rThGtQBb67/y7YbTJqL6m5ftahMun1NIu KzisQep7RQpfEWt7suU1o+4MjtEpsIwr0aKafUFSOEq5zDHdXoyFxOiblITwaayv f6n3FkDl8Olm4KO+SRU0XR82EQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFyPphB9 qwj75P37zLcUDU45vfq9MB8GA1UdIwQYMBaAFKfO/BcApOGEZiUIx4FffrHQEp6+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkIxMy9EQzQ4M0YzMDFF QzAxMUVGOTYyOTQyN0RDNEY5QUUwMi9wODc4RndDazRZUm1KUWpIZ1Y5LXNkQVNu cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3A4NzhGd0NrNFlSbUpRakhnVjktc2RBU25yNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTJCMTMvREM0ODNGMzAxRUMwMTFFRjk2Mjk0MjdEQzRGOUFFMDIvNDc5QjU4QjIx RUMxMTFFRjkyNTg3MTdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnbLAwDwQCAAIwCQMHACABDfQTADANBgkqhkiG9w0BAQsF AAOCAQEASexNkLJcIp3ZNmIWsF37apuxEGh3BeWSAfHU2xxWZVP24Mzci1tjuCgt nCWV/LxTRbuHr0f7XjKa8qar50vuvTXzl4BttWGeS7ZLiPtH3ocz6aRTLfCq/fdB qDJRM42iPQnci+wTBg5C1WXWle4Tb+3xNiEZ4dX6buR6L+DpBprpsj0MWE7NCmRa w7THQym3B2yHvcKcUncdWa4BXandXIXNW47G8qsD9xWoC1oi/8UVlTrWa/YNvjlN 5I6SnGOm9Ez8629titu17Bi6/9d7v8NNU2nE/sJXQVl5bQyi4Ois/4sx0UMLLlNc x4I2bopIHLNcsc0Z47oxXciBAnEVjA== -----END CERTIFICATE-----Generated at Sat Apr 5 07:10:01 2025 by rpki-client