$ rpki-client -vvf rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/052E6FBAF9F511EDB2CAA636C4F9AE02.roa File: 052E6FBAF9F511EDB2CAA636C4F9AE02.roa (raw, json) Hash identifier: LDgnrMv06w2uH/2SaOTlpFRL0ITCYwRDAQrZfxJgOVo= Subject key identifier: A6:F5:5E:49:83:85:85:68:75:82:9A:A0:E7:6D:6E:5E:D7:83:DF:C3 Certificate issuer: /CN=A915A533/serialNumber=3AA5ACA55C7B35E3F922BBB8DAAB1D7D8870E373 Certificate serial: 0127 Authority key identifier: 3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/052E6FBAF9F511EDB2CAA636C4F9AE02.roa Signing time: Sun 01 Dec 2024 03:26:13 +0000 ROA not before: Sun 01 Dec 2024 03:26:13 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 56309 IP address blocks: 43.229.132.0/22 maxlen: 24 103.253.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:23:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A533 Validity Not Before: Dec 1 03:26:13 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=674bd755-c2cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bc:21:29:b4:3b:29:16:6e:8a:41:18:c5:8b: 38:74:8f:aa:df:e5:37:c5:c0:15:75:4d:09:18:68: 9f:68:02:fe:a6:81:e0:e8:25:45:7d:e3:88:19:f5: e8:4f:49:23:d8:90:4c:59:d9:23:c5:3a:27:02:47: 34:a1:06:61:c6:17:4b:56:6b:dd:e9:d7:bd:70:84: 03:e6:dc:13:ce:c6:30:34:6c:60:64:f5:90:5d:d0: b8:84:7e:c1:99:6c:0d:92:3c:90:29:7b:87:b3:46: a5:c8:e4:59:f0:53:b2:3c:94:7e:bc:d1:88:6b:5c: f1:e0:8c:16:38:88:ad:97:fd:c5:6e:bb:b6:79:0d: 72:a3:1a:3b:d8:1a:ac:59:c3:d5:6c:4c:53:95:89: 7f:84:f1:ea:4c:5c:af:6f:e1:22:04:89:b3:94:f7: 13:6d:eb:f8:51:16:9a:53:6a:57:79:95:57:3f:d0: a8:d9:b2:3f:b6:4c:a8:06:8f:a4:6f:a9:b3:de:ab: 2a:b1:e0:2b:d8:86:0c:34:4a:6a:a7:51:1f:cd:2b: ac:eb:4f:2b:a7:8c:14:62:aa:7f:ed:57:ef:6a:ab: 77:9c:48:3a:cf:97:10:ff:3c:9d:ca:d6:92:e7:e2: ed:9b:7e:4d:88:36:bc:d8:a7:8f:75:d1:14:49:02: c5:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:F5:5E:49:83:85:85:68:75:82:9A:A0:E7:6D:6E:5E:D7:83:DF:C3 X509v3 Authority Key Identifier: keyid:3A:A5:AC:A5:5C:7B:35:E3:F9:22:BB:B8:DA:AB:1D:7D:88:70:E3:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/OqWspVx7NeP5Iru42qsdfYhw43M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OqWspVx7NeP5Iru42qsdfYhw43M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A533/4029978AF87D11ED94F17C57C4F9AE02/052E6FBAF9F511EDB2CAA636C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.229.132.0/22 103.253.72.0/22 Signature Algorithm: sha256WithRSAEncryption ad:97:ba:0f:13:41:1c:2e:11:18:f9:cb:ba:a2:b4:de:2f:ee: ad:f1:78:4b:b5:c9:0e:a2:3b:cf:7b:a1:ce:c1:a2:9c:fc:e9: e0:c1:2e:d8:0a:23:c0:39:ae:d7:bb:6f:13:86:22:2a:74:c6: 00:2c:22:67:76:69:5f:06:5f:79:c0:8d:30:cd:8d:65:f4:45: 1b:d2:46:b8:3e:3a:ac:c9:fe:de:7e:7c:17:d1:87:79:33:66: 81:fc:82:36:0a:42:1e:75:af:73:e8:d0:a7:74:61:ef:27:ff: e3:a1:13:e2:2d:b8:43:f6:37:71:f2:9a:7b:4a:23:a6:6c:fa: aa:d8:52:e6:a9:d7:37:26:44:d7:af:83:75:e7:b4:89:88:a1: 13:43:ef:e5:eb:6c:8d:86:d2:22:6b:a4:0a:f0:40:0e:25:0a: 40:34:ee:68:e9:cb:0d:49:c5:8d:52:86:00:4d:65:7c:1b:e7: 24:b8:d3:58:05:3e:34:36:d6:c9:90:e8:c8:af:ae:98:d7:28: 9b:6f:78:55:01:fe:e7:04:68:3d:77:f6:04:e0:30:87:ae:8a: be:61:3e:7c:0c:83:bb:b6:7f:85:ca:94:4e:54:47:4d:52:01: 94:25:0f:50:b3:8d:39:d5:eb:a0:34:18:ca:21:17:f0:ec:60: ed:3b:ac:d8 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE1MzMxMTAvBgNVBAUTKDNBQTVBQ0E1NUM3QjM1RTNGOTIyQkJCOERBQUIxRDdE ODg3MEUzNzMwHhcNMjQxMjAxMDMyNjEzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRiZDc1NS1jMmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubwhKbQ7KRZuikEYxYs4dI+q3+U3xcAVdU0JGGifaAL+poHg6CVFfeOIGfXo T0kj2JBMWdkjxTonAkc0oQZhxhdLVmvd6de9cIQD5twTzsYwNGxgZPWQXdC4hH7B mWwNkjyQKXuHs0alyORZ8FOyPJR+vNGIa1zx4IwWOIitl/3Fbru2eQ1yoxo72Bqs WcPVbExTlYl/hPHqTFyvb+EiBImzlPcTbev4URaaU2pXeZVXP9Co2bI/tkyoBo+k b6mz3qsqseAr2IYMNEpqp1EfzSus608rp4wUYqp/7Vfvaqt3nEg6z5cQ/zydytaS 5+Ltm35NiDa82KePddEUSQLFywIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKb1XkmD hYVodYKaoOdtbl7Xg9/DMB8GA1UdIwQYMBaAFDqlrKVcezXj+SK7uNqrHX2IcONz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTUzMy80MDI5OTc4QUY4 N0QxMUVEOTRGMTdDNTdDNEY5QUUwMi9PcVdzcFZ4N05lUDVJcnU0MnFzZGZZaHc0 M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09xV3NwVng3TmVQNUlydTQycXNkZllodzQzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUE1MzMvNDAyOTk3OEFGODdEMTFFRDk0RjE3QzU3QzRGOUFFMDIvMDUyRTZGQkFG OUY1MTFFREIyQ0FBNjM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr5YQDBAJn/UgwDQYJKoZIhvcNAQELBQADggEBAK2Xug8T QRwuERj5y7qitN4v7q3xeEu1yQ6iO897oc7Bopz86eDBLtgKI8A5rte7bxOGIip0 xgAsImd2aV8GX3nAjTDNjWX0RRvSRrg+OqzJ/t5+fBfRh3kzZoH8gjYKQh51r3Po 0Kd0Ye8n/+OhE+ItuEP2N3HymntKI6Zs+qrYUuap1zcmRNevg3XntImIoRND7+Xr bI2G0iJrpArwQA4lCkA07mjpyw1JxY1ShgBNZXwb5yS401gFPjQ21smQ6MivrpjX KJtveFUB/ucEaD139gTgMIeuir5hPnwMg7u2f4XKlE5UR01SAZQlD1CzjTnV66A0 GMohF/DsYO07rNg= -----END CERTIFICATE-----Generated at Sun Apr 6 07:53:20 2025 by rpki-client