$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/4C7A779CF6C411EF9D53AC86C4F9AE02.roa File: 4C7A779CF6C411EF9D53AC86C4F9AE02.roa (raw, json) Hash identifier: wIdFY6Y3oGDiK7xgN04QOEkVpOzd49HiQeg0onL4Kd0= Subject key identifier: 5D:20:84:F5:7B:41:52:2F:61:0D:5E:45:E5:5F:11:25:4C:E6:C2:3B Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 0C9E Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/4C7A779CF6C411EF9D53AC86C4F9AE02.roa Signing time: Sat 01 Mar 2025 17:40:43 +0000 ROA not before: Sat 01 Mar 2025 17:40:43 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 208485 IP address blocks: 14.192.138.0/24 maxlen: 24 14.192.158.0/24 maxlen: 24 103.20.135.0/24 maxlen: 24 111.92.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 20:17:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3230 (0xc9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD Validity Not Before: Mar 1 17:40:43 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67c3469b-5fc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d7:6c:cb:45:08:c7:4a:b9:b4:8e:be:05:13: 77:1f:22:4a:18:53:d8:1d:e6:21:46:56:22:d2:9f: e6:39:d1:b8:f3:f4:d5:f4:50:6e:23:20:0c:4f:c7: 79:10:22:04:c3:38:a7:71:db:04:81:71:9c:27:e8: 19:68:83:0f:7f:ec:e9:84:1d:cb:7c:90:f9:28:4a: f8:d3:6b:02:9b:9c:84:32:a0:5f:9d:b1:d4:74:dd: 67:60:0a:77:29:2b:73:b4:05:78:f5:cf:be:7c:1a: 91:30:35:a7:39:13:0a:76:92:ca:7f:3f:40:7f:6b: d3:4e:b7:50:f4:20:b4:34:de:fa:ac:b6:f5:16:b8: 73:b3:65:ec:ac:80:e0:4d:25:e1:f6:5e:33:a0:50: 7c:8a:eb:42:9d:8c:e8:14:a6:b8:e4:14:8b:88:40: d3:f2:e5:06:61:25:0c:78:22:e4:bc:57:92:ef:ec: 4a:8c:7c:3b:7c:f1:10:c0:47:77:af:13:48:68:a8: e3:ad:e6:0a:1c:cf:8d:56:a4:ce:ef:fe:f1:9a:69: 4b:44:26:96:d7:89:c1:71:9c:b2:3c:04:52:28:10: 6c:6b:80:58:6d:3d:64:33:d6:80:d0:a9:ec:a5:0d: 85:00:4e:6f:76:9b:fc:be:6e:de:d3:e3:67:05:ed: d4:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:20:84:F5:7B:41:52:2F:61:0D:5E:45:E5:5F:11:25:4C:E6:C2:3B X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/4C7A779CF6C411EF9D53AC86C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.138.0/24 14.192.158.0/24 103.20.135.0/24 111.92.157.0/24 Signature Algorithm: sha256WithRSAEncryption 56:4e:75:5c:90:10:8d:aa:6e:fe:54:cc:81:12:a9:8e:d4:29: 0e:d1:97:c9:4e:e2:c8:07:64:f6:7d:32:18:cf:2b:50:c6:f2: 08:9c:b8:cd:fe:fe:9d:9b:43:93:6f:35:53:83:11:91:e7:94: e3:01:b1:85:6e:5f:b1:5f:5b:7d:18:ea:32:60:42:7f:25:0e: 11:5d:45:ef:9f:8d:a7:74:1a:04:de:50:ba:04:1b:ba:64:84: cb:89:bb:3b:8b:4b:33:59:93:54:ed:b0:a4:ae:c9:8d:1b:da: 04:2c:8b:fd:42:53:80:fa:bf:c3:39:3e:1a:04:e9:a3:05:a3: 7b:90:f3:80:2b:db:63:72:85:bf:f2:33:90:d3:66:99:7e:1c: d3:33:0a:98:b2:7c:e2:66:00:d9:2c:b0:82:af:fa:47:39:7d: b2:72:c9:fa:f9:4a:4b:24:ee:cc:e5:04:ea:6a:f8:64:21:20: 2e:0b:65:64:17:e3:c6:f1:f4:f2:da:d0:88:32:50:8c:dc:ae: f9:09:03:22:db:b0:d6:d8:81:52:4c:bc:56:c1:d6:67:8a:2c: 34:17:85:f4:97:9b:0f:01:30:cb:4c:e4:6a:fe:0f:6c:f5:4c: 6a:e4:e5:79:60:7b:06:00:a1:d1:f8:43:79:e6:d0:27:be:1d: e9:b4:3a:a3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICDJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjUwMzAxMTc0MDQzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MzNDY5Yi01ZmM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApNdsy0UIx0q5tI6+BRN3HyJKGFPYHeYhRlYi0p/mOdG48/TV9FBuIyAMT8d5 ECIEwzincdsEgXGcJ+gZaIMPf+zphB3LfJD5KEr402sCm5yEMqBfnbHUdN1nYAp3 KStztAV49c++fBqRMDWnORMKdpLKfz9Af2vTTrdQ9CC0NN76rLb1Frhzs2XsrIDg TSXh9l4zoFB8iutCnYzoFKa45BSLiEDT8uUGYSUMeCLkvFeS7+xKjHw7fPEQwEd3 rxNIaKjjreYKHM+NVqTO7/7xmmlLRCaW14nBcZyyPARSKBBsa4BYbT1kM9aA0Kns pQ2FAE5vdpv8vm7e0+NnBe3UrwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFF0ghPV7 QVIvYQ1eReVfESVM5sI7MB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvNEM3QTc3OUNG NkM0MTFFRjlENTNBQzg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAOwIoDBAAOwJ4DBABnFIcDBABvXJ0wDQYJKoZIhvcNAQEL BQADggEBAFZOdVyQEI2qbv5UzIESqY7UKQ7Rl8lO4sgHZPZ9MhjPK1DG8gicuM3+ /p2bQ5NvNVODEZHnlOMBsYVuX7FfW30Y6jJgQn8lDhFdRe+fjad0GgTeULoEG7pk hMuJuzuLSzNZk1TtsKSuyY0b2gQsi/1CU4D6v8M5PhoE6aMFo3uQ84Ar22Nyhb/y M5DTZpl+HNMzCpiyfOJmANkssIKv+kc5fbJyyfr5Sksk7szlBOpq+GQhIC4LZWQX 48bx9PLa0IgyUIzcrvkJAyLbsNbYgVJMvFbB1meKLDQXhfSXmw8BMMtM5Gr+D2z1 TGrk5XlgewYAodH4Q3nm0Ce+Hem0OqM= -----END CERTIFICATE-----Generated at Sun Apr 6 18:37:07 2025 by rpki-client