$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/45BC5258C6F711ED9BD6E476C4F9AE02.roa File: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (raw, json) Hash identifier: wASZh3+a4jtcXdGHzHa3qDgrJcrhUIDBhkIcjHP+VMU= Subject key identifier: 2A:C6:55:02:77:67:6E:46:24:D3:80:48:66:5D:C8:D1:F3:72:EB:99 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 038C Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/45BC5258C6F711ED9BD6E476C4F9AE02.roa Signing time: Thu 05 Dec 2024 01:15:12 +0000 ROA not before: Thu 05 Dec 2024 01:15:12 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 147002 IP address blocks: 103.235.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 01:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 908 (0x38c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B Validity Not Before: Dec 5 01:15:12 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6750fe9f-9741 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:89:4b:f1:23:12:35:31:df:f2:75:a1:26:3a: 3f:ec:0c:b2:bd:4a:9b:d0:7d:f9:c0:a7:ff:6b:fc: 1a:17:ab:8d:ed:45:e9:e8:41:f1:7e:ff:67:86:01: 12:08:cb:19:b7:b8:71:70:a4:33:94:e8:64:11:c2: 18:3a:7b:ba:51:11:95:99:fb:3d:cd:71:df:27:ae: 90:3b:f1:ee:26:60:18:5d:7b:d6:27:2b:fe:cd:02: ea:76:46:5e:30:5a:c8:86:ff:f2:40:4f:fd:5e:48: 74:71:2f:cf:0a:7d:43:b8:d9:a8:51:ce:1c:ee:04: 99:4e:af:42:06:af:cd:19:54:2a:7b:2c:45:f0:f4: 5b:40:c2:f1:ed:a1:e2:de:90:dc:95:69:7f:4d:43: 77:40:03:39:bc:ff:af:9f:1c:28:93:d7:98:63:09: 07:bb:78:35:55:84:f3:71:9a:b7:09:82:e3:14:34: 74:54:60:6b:4d:e1:fb:70:e3:85:3b:50:83:bd:a1: af:d0:76:d7:0e:1c:3e:ec:e9:85:8f:95:fd:86:7a: c0:bd:28:f7:20:76:35:9d:f5:44:d2:29:63:a0:83: 28:11:50:f5:1f:76:a0:b4:e5:dc:7c:ff:ab:e0:01: 86:3b:09:b3:81:4c:34:75:3d:4f:57:f9:42:f2:cf: fe:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:C6:55:02:77:67:6E:46:24:D3:80:48:66:5D:C8:D1:F3:72:EB:99 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/45BC5258C6F711ED9BD6E476C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.235.18.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:f4:d8:7b:7b:4f:aa:22:b5:61:1c:dc:5f:84:7a:03:4d:d2: 8f:9e:9a:45:22:eb:65:b6:b2:2a:14:ff:1b:10:d9:32:0c:11: 96:c5:ff:9c:c8:3c:68:e5:d6:ce:9a:b2:31:68:d8:be:1c:d3: 0e:4c:0e:16:51:18:3b:0a:fd:dd:5d:74:2b:02:4d:8e:73:ad: 4a:a7:21:db:ac:bd:2d:e7:85:37:11:46:f6:16:48:f4:0b:a4: ac:67:3f:27:ba:bc:e4:d5:d3:95:be:c3:16:8a:de:de:4a:4c: b7:88:87:a6:5f:52:2b:40:e5:00:36:b4:09:ae:40:c8:47:17: b4:d6:0a:fc:ff:8a:48:66:4e:e9:dc:7a:2b:d7:e0:3e:ab:b2: 9e:69:dc:b9:ed:4f:87:42:27:5f:d0:b6:99:85:4e:b6:3f:0b: b5:a7:d8:2c:7f:eb:5c:89:72:c1:2c:e9:6a:da:b9:9f:ea:e9: a3:12:5d:84:7d:80:7b:62:c7:e0:f5:f4:4c:86:a3:08:fc:fa: 8e:78:8a:8f:a3:56:1a:66:6b:94:c9:ff:e9:f0:e7:fd:ac:3b: cf:bc:4e:99:a9:77:5b:27:a6:d7:a6:31:92:86:49:75:bc:c1: 31:e0:10:90:bb:5e:6e:cc:68:6a:26:52:2c:d1:ce:c3:ea:20: b5:63:a7:47 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjQxMjA1MDExNTEyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUwZmU5Zi05NzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwIlL8SMSNTHf8nWhJjo/7AyyvUqb0H35wKf/a/waF6uN7UXp6EHxfv9nhgES CMsZt7hxcKQzlOhkEcIYOnu6URGVmfs9zXHfJ66QO/HuJmAYXXvWJyv+zQLqdkZe MFrIhv/yQE/9Xkh0cS/PCn1DuNmoUc4c7gSZTq9CBq/NGVQqeyxF8PRbQMLx7aHi 3pDclWl/TUN3QAM5vP+vnxwok9eYYwkHu3g1VYTzcZq3CYLjFDR0VGBrTeH7cOOF O1CDvaGv0HbXDhw+7OmFj5X9hnrAvSj3IHY1nfVE0iljoIMoEVD1H3agtOXcfP+r 4AGGOwmzgUw0dT1PV/lC8s/+jQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCrGVQJ3 Z25GJNOASGZdyNHzcuuZMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1N0IvOERBNzI2NDBDMUZBMTFFQ0IzMEVFMjFBQzRGOUFFMDIvNDVCQzUyNThD NkY3MTFFRDlCRDZFNDc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn6xIwDQYJKoZIhvcNAQELBQADggEBAC702Ht7T6oitWEc 3F+EegNN0o+emkUi62W2sioU/xsQ2TIMEZbF/5zIPGjl1s6asjFo2L4c0w5MDhZR GDsK/d1ddCsCTY5zrUqnIdusvS3nhTcRRvYWSPQLpKxnPye6vOTV05W+wxaK3t5K TLeIh6ZfUitA5QA2tAmuQMhHF7TWCvz/ikhmTunceivX4D6rsp5p3LntT4dCJ1/Q tpmFTrY/C7Wn2Cx/61yJcsEs6WrauZ/q6aMSXYR9gHtix+D19EyGowj8+o54io+j Vhpma5TJ/+nw5/2sO8+8Tpmpd1snptemMZKGSXW8wTHgEJC7Xm7MaGomUizRzsPq ILVjp0c= -----END CERTIFICATE-----Generated at Sun Apr 6 06:48:33 2025 by rpki-client