$ rpki-client -vvf rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/A41A01F2812311ED9367FC43C4F9AE02.roa File: A41A01F2812311ED9367FC43C4F9AE02.roa (raw, json) Hash identifier: Ujge7k/lW8pB/Dx6DwlTSva6Rx5jbEwksa1MWF/rwvA= Subject key identifier: BD:4E:A6:C1:8C:04:7C:06:B3:76:02:AE:A0:A1:53:25:F1:7C:78:C9 Certificate issuer: /CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Certificate serial: 1964 Authority key identifier: 61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/A41A01F2812311ED9367FC43C4F9AE02.roa Signing time: Tue 14 Jan 2025 16:34:27 +0000 ROA not before: Tue 14 Jan 2025 16:34:27 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 63949 IP address blocks: 45.118.132.0/22 maxlen: 24 103.3.60.0/22 maxlen: 24 103.29.68.0/22 maxlen: 24 2400:8900::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 16:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6500 (0x1964) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D03A Validity Not Before: Jan 14 16:34:27 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67869213-86e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2e:b5:75:91:21:93:c5:a5:07:9d:3f:2d:64: bc:b0:ef:c2:c0:21:d6:b0:8d:49:2b:c7:30:e5:b5: 9c:78:81:b7:7d:99:01:ea:1e:e3:2b:b6:c3:28:9c: bd:c8:f0:d1:09:cb:ef:78:12:ae:89:d8:8a:ad:ba: 74:83:88:90:29:99:ed:eb:57:6d:3a:9c:0f:c9:4e: 8b:e3:0c:27:5e:c4:b4:17:c4:df:e1:09:b6:e1:7d: 62:e7:6d:21:48:ec:70:c3:11:0a:4d:b4:ef:6e:7e: 49:d8:ed:42:f3:b2:ba:98:d9:dc:2b:ef:52:fb:52: f0:3a:41:10:12:d6:bf:11:71:a3:53:48:9f:84:fb: 8f:b9:7d:19:5a:31:09:2b:75:3c:42:d1:7f:b1:fd: 8e:20:fa:2d:6b:04:8f:3f:75:88:5f:60:8e:0e:f4: 9a:55:b2:bb:f5:64:75:46:39:ae:c0:74:59:d0:b6: 3d:77:c3:31:2b:19:e4:d9:91:6d:93:33:53:10:dc: 3b:66:8d:4e:10:52:3c:0a:19:17:cc:bf:c1:76:18: c5:a4:b6:7e:2d:43:75:c8:2c:1c:02:4b:07:41:63: a4:fc:fe:bd:7a:b2:61:88:25:10:fc:1d:aa:9e:55: a4:7c:7f:82:f7:3a:cf:31:d2:ec:fa:33:3f:8d:f8: 03:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:4E:A6:C1:8C:04:7C:06:B3:76:02:AE:A0:A1:53:25:F1:7C:78:C9 X509v3 Authority Key Identifier: keyid:61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/A41A01F2812311ED9367FC43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.118.132.0/22 103.3.60.0/22 103.29.68.0/22 IPv6: 2400:8900::/29 Signature Algorithm: sha256WithRSAEncryption 5f:d5:ed:0b:f2:53:ce:83:9c:08:cb:3f:cf:13:8b:d5:c7:b0: 7c:9d:05:77:b5:53:46:69:7d:bc:02:7e:6e:76:b7:e5:fa:fc: de:9c:95:61:5f:e8:c4:7d:cc:cb:92:4d:12:69:64:fb:d2:75: f6:bc:9f:63:ad:58:65:84:59:c0:9a:dc:2c:37:05:9c:65:dd: eb:78:95:f1:df:0e:39:74:e5:49:c6:af:99:1d:99:83:db:cb: 4b:ed:7a:61:fb:28:5d:4e:ac:1f:67:b8:b9:f2:19:d4:63:1c: cf:ca:5e:1b:74:15:50:9d:82:6c:14:b7:d8:f2:e8:63:78:49: 24:0c:6f:97:fd:4a:96:44:e0:2c:ba:b2:94:bd:d3:4c:2a:40: e8:71:e0:7e:17:56:a8:6a:84:b1:49:08:cc:e4:3d:ea:5f:05: 1a:9a:5e:47:44:cb:46:6e:55:2d:2c:28:a4:80:e6:c1:0b:3a: 01:93:34:c4:0b:a3:f2:d0:e9:2a:02:28:49:04:b5:0a:99:9e: b0:5b:f8:be:41:18:99:77:f7:07:f6:16:4a:5e:a9:bb:66:42: c3:ce:d4:c3:1c:1a:6f:a3:e0:4e:26:d1:58:29:3d:37:6f:df: c4:32:76:15:0a:7f:0f:13:75:da:50:50:0e:98:5d:b3:f8:c5: 5b:d2:8e:ea -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICGWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwM0ExMTAvBgNVBAUTKDYxNUVEODRDNDRFNjU3RjcwOTVFMDIxMkFGRUEwNTJD NTQyQTBEOTEwHhcNMjUwMTE0MTYzNDI3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg2OTIxMy04NmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1y61dZEhk8WlB50/LWS8sO/CwCHWsI1JK8cw5bWceIG3fZkB6h7jK7bDKJy9 yPDRCcvveBKuidiKrbp0g4iQKZnt61dtOpwPyU6L4wwnXsS0F8Tf4Qm24X1i520h SOxwwxEKTbTvbn5J2O1C87K6mNncK+9S+1LwOkEQEta/EXGjU0ifhPuPuX0ZWjEJ K3U8QtF/sf2OIPotawSPP3WIX2CODvSaVbK79WR1RjmuwHRZ0LY9d8MxKxnk2ZFt kzNTENw7Zo1OEFI8ChkXzL/BdhjFpLZ+LUN1yCwcAksHQWOk/P69erJhiCUQ/B2q nlWkfH+C9zrPMdLs+jM/jfgDbQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFL1OpsGM BHwGs3YCrqChUyXxfHjJMB8GA1UdIwQYMBaAFGFe2ExE5lf3CV4CEq/qBSxUKg2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAzQS8xQjY0NzcxMDky NDYxMUU3OUFBRUJFMTBDNEY5QUUwMi9ZVjdZVEVUbVZfY0pYZ0lTci1vRkxGUXFE WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lWN1lURVRtVl9jSlhnSVNyLW9GTEZRcURaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwM0EvMUI2NDc3MTA5MjQ2MTFFNzlBQUVCRTEwQzRGOUFFMDIvQTQxQTAxRjI4 MTIzMTFFRDkzNjdGQzQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAItdoQDBAJnAzwDBAJnHUQwDQQCAAIwBwMFAyQAiQAwDQYJ KoZIhvcNAQELBQADggEBAF/V7QvyU86DnAjLP88Ti9XHsHydBXe1U0ZpfbwCfm52 t+X6/N6clWFf6MR9zMuSTRJpZPvSdfa8n2OtWGWEWcCa3Cw3BZxl3et4lfHfDjl0 5UnGr5kdmYPby0vtemH7KF1OrB9nuLnyGdRjHM/KXht0FVCdgmwUt9jy6GN4SSQM b5f9SpZE4Cy6spS900wqQOhx4H4XVqhqhLFJCMzkPepfBRqaXkdEy0ZuVS0sKKSA 5sELOgGTNMQLo/LQ6SoCKEkEtQqZnrBb+L5BGJl39wf2FkpeqbtmQsPO1MMcGm+j 4E4m0VgpPTdv38QydhUKfw8TddpQUA6YXbP4xVvSjuo= -----END CERTIFICATE-----Generated at Mon Apr 7 08:48:58 2025 by rpki-client