$ rpki-client -vvf rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/D34588789F8A11ECB8E03812C4F9AE02.roa File: D34588789F8A11ECB8E03812C4F9AE02.roa (raw, json) Hash identifier: WPeDV8L3X0hykJxlwLabrBRbZ1a+b6BWMeh2+gJp+KQ= Subject key identifier: F5:E8:3F:AF:1A:0D:93:F5:17:2C:5E:00:D4:2B:63:D1:B7:12:87:FE Certificate issuer: /CN=A915FAD2/serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Certificate serial: 0F7A Authority key identifier: 4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/D34588789F8A11ECB8E03812C4F9AE02.roa Signing time: Thu 16 Jan 2025 17:55:43 +0000 ROA not before: Thu 16 Jan 2025 17:55:43 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 59249 IP address blocks: 58.84.33.0/24 maxlen: 24 58.84.34.0/24 maxlen: 24 58.84.35.0/24 maxlen: 24 103.197.49.0/24 maxlen: 24 103.254.94.0/24 maxlen: 24 103.254.167.0/24 maxlen: 24 2404:9d80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Apr 2025 17:24:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3962 (0xf7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FAD2, serialNumber=4A9D4EA9B545EA10504D36B65FAA3049F99ECD46 Validity Not Before: Jan 16 17:55:43 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6789481f-713c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a1:f4:78:9b:e3:32:ea:4d:52:f5:5d:57:dc: 36:c2:6d:9b:28:1e:ae:32:66:81:5f:c1:1d:53:ae: ae:21:7d:06:c8:54:38:c9:68:09:70:c2:17:aa:b7: 12:e6:17:c2:f9:ab:96:3f:5e:69:75:fa:a6:38:76: bd:62:fb:39:c9:af:a4:e4:4c:a7:a2:c4:55:a3:7f: 61:86:09:f3:93:1c:98:31:a4:8c:db:a6:ad:59:e2: 2f:b3:e1:b9:d5:b5:bf:01:8f:71:b1:47:7c:e1:b2: 87:f2:f2:df:e0:63:d8:f9:94:5d:5d:95:2e:dc:a5: b7:84:57:da:fd:ca:80:95:c1:3c:d0:e5:55:37:b5: 72:70:80:97:27:a0:07:cb:a5:fd:f8:5d:97:a4:00: 8b:9a:5c:67:12:dc:72:aa:6a:f1:2b:61:eb:8b:c7: 01:06:40:22:6a:54:5d:32:9f:97:49:e0:c1:9f:3c: 30:b3:27:b4:85:aa:ea:bd:f0:9d:a8:98:09:e5:e3: df:fa:70:86:e7:ec:2c:75:9c:ee:38:05:66:b6:27: 01:9c:e4:e0:95:4e:ea:c4:e9:f5:39:c4:be:64:6c: 33:3c:25:2c:61:38:95:98:06:79:b1:da:db:0a:4a: 57:59:2a:09:54:27:8c:8a:b6:c2:ef:df:e0:65:32: 9f:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:E8:3F:AF:1A:0D:93:F5:17:2C:5E:00:D4:2B:63:D1:B7:12:87:FE X509v3 Authority Key Identifier: keyid:4A:9D:4E:A9:B5:45:EA:10:50:4D:36:B6:5F:AA:30:49:F9:9E:CD:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/Sp1OqbVF6hBQTTa2X6owSfmezUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sp1OqbVF6hBQTTa2X6owSfmezUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FAD2/834AC47859BF11E989B93B63C4F9AE02/D34588789F8A11ECB8E03812C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.84.33.0-58.84.35.255 103.197.49.0/24 103.254.94.0/24 103.254.167.0/24 IPv6: 2404:9d80::/32 Signature Algorithm: sha256WithRSAEncryption 03:0b:7e:57:53:0e:f2:10:68:c1:f3:f0:2e:78:4d:42:6b:26: 94:79:fc:6e:f2:15:20:7b:41:3a:32:44:ca:54:78:44:dc:a9: d5:cc:8a:a6:eb:a5:30:0b:02:4e:b1:3d:10:54:2c:73:3b:32: c3:3e:7b:46:73:84:7b:03:a6:26:59:0e:1f:b8:43:a2:9f:60: 37:f0:d5:ef:c9:49:48:e5:98:0a:f2:69:47:2f:73:a6:51:55: 85:bb:74:4d:ef:c9:c8:dc:42:53:2d:b9:ea:6d:08:a4:e3:e2: e7:37:2e:24:b8:03:bf:2c:b6:8c:16:25:53:23:7f:a7:a2:16: 71:44:b0:75:50:af:3b:f5:11:f4:82:9c:9e:5e:9e:03:e1:d0: 24:be:88:6f:93:61:06:c7:a4:0c:0d:c8:d0:cd:ba:ef:3a:13: 4b:da:3d:ae:b8:ea:3e:60:81:46:c8:e8:d6:46:dd:b5:46:21: 55:b4:3e:a5:3a:f9:7b:e0:0a:a7:a7:a3:2e:f7:28:76:38:8d: 9d:07:67:01:65:be:6b:07:39:33:73:74:c3:07:04:ca:3d:0e: 69:89:56:bb:cc:fb:c4:c4:9e:c4:3f:65:bb:5f:c6:4f:83:92: 19:73:1f:0e:92:41:74:30:fe:2c:e5:23:a3:ee:9f:6a:6c:12: 03:c5:43:fa -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgICD3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZBRDIxMTAvBgNVBAUTKDRBOUQ0RUE5QjU0NUVBMTA1MDREMzZCNjVGQUEzMDQ5 Rjk5RUNENDYwHhcNMjUwMTE2MTc1NTQzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg5NDgxZi03MTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqaH0eJvjMupNUvVdV9w2wm2bKB6uMmaBX8EdU66uIX0GyFQ4yWgJcMIXqrcS 5hfC+auWP15pdfqmOHa9Yvs5ya+k5EynosRVo39hhgnzkxyYMaSM26atWeIvs+G5 1bW/AY9xsUd84bKH8vLf4GPY+ZRdXZUu3KW3hFfa/cqAlcE80OVVN7VycICXJ6AH y6X9+F2XpACLmlxnEtxyqmrxK2Hri8cBBkAialRdMp+XSeDBnzwwsye0harqvfCd qJgJ5ePf+nCG5+wsdZzuOAVmticBnOTglU7qxOn1OcS+ZGwzPCUsYTiVmAZ5sdrb CkpXWSoJVCeMirbC79/gZTKfbQIDAQABo4ICvjCCArowHQYDVR0OBBYEFPXoP68a DZP1FyxeANQrY9G3Eof+MB8GA1UdIwQYMBaAFEqdTqm1ReoQUE02tl+qMEn5ns1G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkFEMi84MzRBQzQ3ODU5 QkYxMUU5ODlCOTNCNjNDNEY5QUUwMi9TcDFPcWJWRjZoQlFUVGEyWDZvd1NmbWV6 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NwMU9xYlZGNmhCUVRUYTJYNm93U2ZtZXpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUZBRDIvODM0QUM0Nzg1OUJGMTFFOTg5QjkzQjYzQzRGOUFFMDIvRDM0NTg4Nzg5 RjhBMTFFQ0I4RTAzODEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSAYIKwYBBQUHAQcBAf8E OTA3MCYEAgABMCAwDAMEADpUIQMEAjpUIAMEAGfFMQMEAGf+XgMEAGf+pzANBAIA AjAHAwUAJASdgDANBgkqhkiG9w0BAQsFAAOCAQEAAwt+V1MO8hBowfPwLnhNQmsm lHn8bvIVIHtBOjJEylR4RNyp1cyKpuulMAsCTrE9EFQsczsywz57RnOEewOmJlkO H7hDop9gN/DV78lJSOWYCvJpRy9zplFVhbt0Te/JyNxCUy256m0IpOPi5zcuJLgD vyy2jBYlUyN/p6IWcUSwdVCvO/UR9IKcnl6eA+HQJL6Ib5NhBsekDA3I0M267zoT S9o9rrjqPmCBRsjo1kbdtUYhVbQ+pTr5e+AKp6ejLvcodjiNnQdnAWW+awc5M3N0 wwcEyj0OaYlWu8z7xMSexD9lu1/GT4OSGXMfDpJBdDD+LOUjo+6famwSA8VD+g== -----END CERTIFICATE-----Generated at Tue Apr 22 19:12:03 2025 by rpki-client