$ rpki-client -vvf rpki.apnic.net/member_repository/A916269D/78BF945032A111EA862BD517C4F9AE02/EDA2987A32A211EA87A1561DC4F9AE02.roa File: EDA2987A32A211EA87A1561DC4F9AE02.roa (raw, json) Hash identifier: MfEk5NxWi8gs+2M+DhUKf65mWDxmQTJBopQpU/oINak= Subject key identifier: B2:D0:B3:C9:03:B8:9D:01:12:81:AB:B1:6F:20:BD:36:CA:CC:F4:7F Certificate issuer: /CN=A916269D/serialNumber=FC3DF810BFC29BF1CFBF0AAFA56397EB9B4CAB77 Certificate serial: 0AFF Authority key identifier: FC:3D:F8:10:BF:C2:9B:F1:CF:BF:0A:AF:A5:63:97:EB:9B:4C:AB:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D34EL_Cm_HPvwqvpWOX65tMq3c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916269D/78BF945032A111EA862BD517C4F9AE02/EDA2987A32A211EA87A1561DC4F9AE02.roa Signing time: Sat 30 Nov 2024 19:38:01 +0000 ROA not before: Sat 30 Nov 2024 19:38:01 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 58895 IP address blocks: 103.94.244.0/24 maxlen: 24 103.102.38.0/24 maxlen: 24 103.102.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916269D/78BF945032A111EA862BD517C4F9AE02/_D34EL_Cm_HPvwqvpWOX65tMq3c.crl rsync://rpki.apnic.net/member_repository/A916269D/78BF945032A111EA862BD517C4F9AE02/_D34EL_Cm_HPvwqvpWOX65tMq3c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D34EL_Cm_HPvwqvpWOX65tMq3c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:16:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2815 (0xaff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916269D Validity Not Before: Nov 30 19:38:01 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=674b6999-974d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fb:fb:0b:11:d8:da:02:ee:86:af:02:5f:ff: 84:a5:aa:32:37:6e:f4:ab:be:cf:38:4a:76:6a:fe: fe:50:11:68:a2:f3:dd:7c:28:14:6e:b8:34:59:2f: 33:4c:53:10:54:d6:dc:5b:7b:8a:9b:49:71:de:57: 70:77:90:02:32:1d:af:e5:4c:5d:5b:90:58:43:05: f5:41:a4:36:50:51:69:04:96:1e:8c:f5:ec:3a:40: fb:d7:81:80:93:fe:ee:de:b4:03:84:dc:75:d1:84: 8b:02:bc:e6:60:5b:12:91:be:55:4f:42:66:95:e8: 3a:46:2f:a1:bc:4e:72:60:2c:4d:ec:08:35:53:8e: 77:d2:f5:4a:25:45:c8:5c:a8:df:09:31:c4:9b:59: f6:f8:2f:fc:c6:4b:34:32:9e:3b:9d:88:86:4f:a6: d7:80:2c:f2:cf:63:f3:98:59:c6:a3:86:9b:2a:c1: 74:ab:0b:09:c5:31:fd:e4:ff:45:f8:9e:0c:04:c8: 2c:ae:46:2f:60:62:04:62:5e:22:06:4d:22:13:f4: 1e:6c:05:15:f3:a4:30:67:0f:53:3d:69:2e:f7:67: 03:19:27:be:c2:47:63:01:02:53:59:2a:48:cd:51: 95:75:e9:27:07:2a:18:e7:33:d6:a8:27:1b:99:36: 6b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:D0:B3:C9:03:B8:9D:01:12:81:AB:B1:6F:20:BD:36:CA:CC:F4:7F X509v3 Authority Key Identifier: keyid:FC:3D:F8:10:BF:C2:9B:F1:CF:BF:0A:AF:A5:63:97:EB:9B:4C:AB:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916269D/78BF945032A111EA862BD517C4F9AE02/_D34EL_Cm_HPvwqvpWOX65tMq3c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_D34EL_Cm_HPvwqvpWOX65tMq3c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916269D/78BF945032A111EA862BD517C4F9AE02/EDA2987A32A211EA87A1561DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.94.244.0/24 103.102.38.0/24 103.102.40.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:6e:00:e4:20:a0:08:d0:4d:14:1b:6e:d7:7c:64:d6:38:e1: 55:22:cd:55:03:a8:d1:57:16:07:4c:9e:b4:50:9c:8b:95:44: 10:18:bf:82:3c:b8:b8:a8:32:47:6a:93:a1:7b:89:cc:4c:38: d9:f0:66:10:64:b5:60:ac:4f:c9:51:c5:be:2f:c2:0b:d6:eb: 03:95:94:1d:f5:b0:12:47:d1:4a:03:02:31:fb:94:74:d9:c3: 38:4d:b1:d7:34:02:73:33:7c:25:68:f6:39:b6:92:31:00:c8: f5:c9:41:1e:d6:9d:55:e2:bb:12:41:fc:bb:f6:54:67:53:a6: 45:8f:3d:b8:cd:ed:a7:c3:c3:a4:a2:72:1f:fa:37:9f:3d:4f: 69:10:36:c3:42:02:32:b6:64:96:54:58:7c:c9:74:97:bb:ed: 25:73:4f:de:ea:14:40:0b:40:ff:3d:e1:4c:a1:6d:49:5f:97: 08:f5:42:1a:96:1d:4b:74:e0:43:87:c5:d0:ba:f2:61:f6:a4: 5b:ae:29:a9:ca:7e:93:08:e0:ec:12:6d:43:c0:09:88:c9:5c: d5:b7:4e:ce:e0:9d:92:f3:f8:4d:d3:a2:c9:16:6c:ce:47:87: f7:58:72:07:4d:91:9a:61:8a:2f:dd:d9:23:0b:4f:50:82:10: 6c:a1:8a:69 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjI2OUQxMTAvBgNVBAUTKEZDM0RGODEwQkZDMjlCRjFDRkJGMEFBRkE1NjM5N0VC OUI0Q0FCNzcwHhcNMjQxMTMwMTkzODAxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRiNjk5OS05NzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvv7CxHY2gLuhq8CX/+EpaoyN270q77POEp2av7+UBFoovPdfCgUbrg0WS8z TFMQVNbcW3uKm0lx3ldwd5ACMh2v5UxdW5BYQwX1QaQ2UFFpBJYejPXsOkD714GA k/7u3rQDhNx10YSLArzmYFsSkb5VT0Jmleg6Ri+hvE5yYCxN7Ag1U4530vVKJUXI XKjfCTHEm1n2+C/8xks0Mp47nYiGT6bXgCzyz2PzmFnGo4abKsF0qwsJxTH95P9F +J4MBMgsrkYvYGIEYl4iBk0iE/QebAUV86QwZw9TPWku92cDGSe+wkdjAQJTWSpI zVGVdeknByoY5zPWqCcbmTZr/QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFLLQs8kD uJ0BEoGrsW8gvTbKzPR/MB8GA1UdIwQYMBaAFPw9+BC/wpvxz78Kr6Vjl+ubTKt3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjY5RC83OEJGOTQ1MDMy QTExMUVBODYyQkQ1MTdDNEY5QUUwMi9fRDM0RUxfQ21fSFB2d3F2cFdPWDY1dE1x M2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19EMzRFTF9DbV9IUHZ3cXZwV09YNjV0TXEzYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjI2OUQvNzhCRjk0NTAzMkExMTFFQTg2MkJENTE3QzRGOUFFMDIvRURBMjk4N0Ez MkEyMTFFQTg3QTE1NjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnXvQDBABnZiYDBAFnZigwDQYJKoZIhvcNAQELBQADggEB AIxuAOQgoAjQTRQbbtd8ZNY44VUizVUDqNFXFgdMnrRQnIuVRBAYv4I8uLioMkdq k6F7icxMONnwZhBktWCsT8lRxb4vwgvW6wOVlB31sBJH0UoDAjH7lHTZwzhNsdc0 AnMzfCVo9jm2kjEAyPXJQR7WnVXiuxJB/Lv2VGdTpkWPPbjN7afDw6Sich/6N589 T2kQNsNCAjK2ZJZUWHzJdJe77SVzT97qFEALQP894UyhbUlflwj1QhqWHUt04EOH xdC68mH2pFuuKanKfpMI4OwSbUPACYjJXNW3Ts7gnZLz+E3ToskWbM5Hh/dYcgdN kZphii/d2SMLT1CCEGyhimk= -----END CERTIFICATE-----Generated at Sun Apr 6 16:44:29 2025 by rpki-client