$ rpki-client -vvf rpki.apnic.net/member_repository/A915C094/01F8EB92F68711E9A9FB9C55C4F9AE02/4C65E804F68911E98EF88758C4F9AE02.roa File: 4C65E804F68911E98EF88758C4F9AE02.roa (raw, json) Hash identifier: nVclf58inHRItWEODJ4FKUnmAP+f1Uxv1S86KdkjVqA= Subject key identifier: D1:88:B3:13:91:F5:3F:A1:96:10:0F:66:C2:22:C1:81:62:C5:98:84 Certificate issuer: /CN=A915C094/serialNumber=4CF2DD66DCA42FEAF60C38E7695B03B43E7E7ADB Certificate serial: 0C80 Authority key identifier: 4C:F2:DD:66:DC:A4:2F:EA:F6:0C:38:E7:69:5B:03:B4:3E:7E:7A:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TPLdZtykL-r2DDjnaVsDtD5-ets.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C094/01F8EB92F68711E9A9FB9C55C4F9AE02/4C65E804F68911E98EF88758C4F9AE02.roa Signing time: Sat 22 Feb 2025 18:57:05 +0000 ROA not before: Sat 22 Feb 2025 18:57:05 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 138509 IP address blocks: 103.127.92.0/24 maxlen: 24 103.127.93.0/24 maxlen: 24 2404:1dc0::/32 maxlen: 32 2404:1dc0:300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C094/01F8EB92F68711E9A9FB9C55C4F9AE02/TPLdZtykL-r2DDjnaVsDtD5-ets.crl rsync://rpki.apnic.net/member_repository/A915C094/01F8EB92F68711E9A9FB9C55C4F9AE02/TPLdZtykL-r2DDjnaVsDtD5-ets.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TPLdZtykL-r2DDjnaVsDtD5-ets.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 18:07:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3200 (0xc80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C094, serialNumber=4CF2DD66DCA42FEAF60C38E7695B03B43E7E7ADB Validity Not Before: Feb 22 18:57:05 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67ba1e01-08ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6d:63:4f:f5:cc:72:6f:b8:87:01:b4:d8:85: 5f:8a:97:a2:46:30:92:fe:9d:70:ef:68:ef:c8:d8: 32:5c:87:b6:52:5d:ee:1d:14:64:42:ff:18:20:f7: e5:13:20:98:b5:bd:26:34:ca:e9:37:f4:b4:da:57: 1e:fd:9c:44:86:3b:2f:c3:30:b6:f6:1e:07:bf:be: d5:17:1e:f1:d8:b8:97:b1:60:cb:b7:3a:05:18:b9: ab:6a:a6:5d:c6:99:2e:58:50:e2:14:a0:1d:e0:20: fe:10:74:79:56:16:e8:8e:e1:67:ca:37:6c:0d:f0: 91:67:91:cd:34:e9:02:5d:95:83:19:52:76:cf:2a: 10:19:53:b8:3a:d3:54:de:7e:c3:c6:d4:2a:bf:6b: 8f:ca:df:8a:9c:a7:d3:9a:ab:81:e8:1b:3f:99:d1: a6:f5:5d:e9:2a:6b:93:fd:62:f0:1b:bf:56:6d:82: 3e:a6:82:40:ed:bf:fd:86:ff:12:d0:0c:0c:f7:ef: 19:e6:6d:cb:37:e0:7e:44:ef:14:0f:53:1d:ca:c9: 60:e3:c1:f1:bf:13:2d:d0:6b:00:19:78:88:dd:56: 6f:2a:cd:82:8b:99:84:70:92:9d:ac:9f:a8:04:51: 11:55:cb:d3:54:d4:da:75:57:4a:a7:e6:43:8b:fe: 09:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:88:B3:13:91:F5:3F:A1:96:10:0F:66:C2:22:C1:81:62:C5:98:84 X509v3 Authority Key Identifier: keyid:4C:F2:DD:66:DC:A4:2F:EA:F6:0C:38:E7:69:5B:03:B4:3E:7E:7A:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C094/01F8EB92F68711E9A9FB9C55C4F9AE02/TPLdZtykL-r2DDjnaVsDtD5-ets.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TPLdZtykL-r2DDjnaVsDtD5-ets.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C094/01F8EB92F68711E9A9FB9C55C4F9AE02/4C65E804F68911E98EF88758C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.127.92.0/23 IPv6: 2404:1dc0::/32 Signature Algorithm: sha256WithRSAEncryption 8b:ae:81:fa:f3:83:6a:35:08:e6:41:ce:18:2c:7d:d8:e7:cd: 9a:cc:8c:d6:f9:c1:ec:12:e3:a3:92:52:73:f5:30:2c:bb:be: cc:76:d0:2f:36:d8:d8:00:55:07:bd:c0:30:e2:03:a4:39:7c: 5c:b3:ae:a3:b0:83:ad:d2:38:f8:46:f2:7a:1f:cd:90:0c:19: 22:2e:55:21:16:62:92:0e:ed:7d:c8:69:fb:4c:f9:90:69:33: 9e:16:df:f7:c1:60:d0:e1:50:35:2c:36:5d:81:51:eb:7a:87: 7c:e1:76:58:5b:ad:bb:cb:0a:e4:18:77:bd:bb:b0:1a:20:25: 63:45:29:4f:61:10:92:ad:fd:33:1b:ac:c4:30:30:6e:3f:ef: 80:e6:66:aa:1e:a5:23:a2:a7:1f:1d:11:c5:44:b8:95:55:a7: cd:5d:68:9a:fc:88:8d:9b:ca:6f:a2:77:8c:92:60:cd:cb:bc: 03:cf:4a:43:1a:10:29:59:59:fb:d7:e0:f7:3a:34:25:2a:d3: 6b:6b:d1:1b:18:59:7f:68:42:b3:e5:3b:df:cb:c6:1c:7f:df: df:d1:6d:f4:53:e1:6a:50:bc:25:36:96:37:b8:10:cd:5c:03: 54:81:67:84:30:98:8f:dc:21:f5:e8:41:cb:85:37:50:68:1d: 0b:7d:19:23 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMwOTQxMTAvBgNVBAUTKDRDRjJERDY2RENBNDJGRUFGNjBDMzhFNzY5NUIwM0I0 M0U3RTdBREIwHhcNMjUwMjIyMTg1NzA1WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JhMWUwMS0wOGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsm1jT/XMcm+4hwG02IVfipeiRjCS/p1w72jvyNgyXIe2Ul3uHRRkQv8YIPfl EyCYtb0mNMrpN/S02lce/ZxEhjsvwzC29h4Hv77VFx7x2LiXsWDLtzoFGLmraqZd xpkuWFDiFKAd4CD+EHR5VhbojuFnyjdsDfCRZ5HNNOkCXZWDGVJ2zyoQGVO4OtNU 3n7DxtQqv2uPyt+KnKfTmquB6Bs/mdGm9V3pKmuT/WLwG79WbYI+poJA7b/9hv8S 0AwM9+8Z5m3LN+B+RO8UD1Mdyslg48HxvxMt0GsAGXiI3VZvKs2Ci5mEcJKdrJ+o BFERVcvTVNTadVdKp+ZDi/4JMQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNGIsxOR 9T+hlhAPZsIiwYFixZiEMB8GA1UdIwQYMBaAFEzy3WbcpC/q9gw452lbA7Q+fnrb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzA5NC8wMUY4RUI5MkY2 ODcxMUU5QTlGQjlDNTVDNEY5QUUwMi9UUExkWnR5a0wtcjJERGpuYVZzRHRENS1l dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RQTGRadHlrTC1yMkREam5hVnNEdEQ1LWV0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUMwOTQvMDFGOEVCOTJGNjg3MTFFOUE5RkI5QzU1QzRGOUFFMDIvNEM2NUU4MDRG Njg5MTFFOThFRjg4NzU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnf1wwDQQCAAIwBwMFACQEHcAwDQYJKoZIhvcNAQELBQAD ggEBAIuugfrzg2o1COZBzhgsfdjnzZrMjNb5wewS46OSUnP1MCy7vsx20C822NgA VQe9wDDiA6Q5fFyzrqOwg63SOPhG8nofzZAMGSIuVSEWYpIO7X3IaftM+ZBpM54W 3/fBYNDhUDUsNl2BUet6h3zhdlhbrbvLCuQYd727sBogJWNFKU9hEJKt/TMbrMQw MG4/74DmZqoepSOipx8dEcVEuJVVp81daJr8iI2bym+id4ySYM3LvAPPSkMaEClZ WfvX4Pc6NCUq02tr0RsYWX9oQrPlO9/Lxhx/39/RbfRT4WpQvCU2lje4EM1cA1SB Z4QwmI/cIfXoQcuFN1BoHQt9GSM= -----END CERTIFICATE-----Generated at Sun Apr 13 18:57:19 2025 by rpki-client