$ rpki-client -vvf rpki.apnic.net/member_repository/A916C643/A5D884C4152B11ECA53E4C63C4F9AE02/5A0804A4152E11EC94BCB264C4F9AE02.roa File: 5A0804A4152E11EC94BCB264C4F9AE02.roa (raw, json) Hash identifier: Xz85fL4HDodJp9813Pf30AvPpXYXiy5+u/nD3T6D6uI= Subject key identifier: 1D:80:0D:A0:C2:67:87:43:29:A8:65:F2:0F:91:0E:4D:5D:FA:45:7A Certificate issuer: /CN=A916C643/serialNumber=1B62FD5E03D3337AA2DC4E150794144047B1B63A Certificate serial: 04A4 Authority key identifier: 1B:62:FD:5E:03:D3:33:7A:A2:DC:4E:15:07:94:14:40:47:B1:B6:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G2L9XgPTM3qi3E4VB5QUQEextjo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C643/A5D884C4152B11ECA53E4C63C4F9AE02/5A0804A4152E11EC94BCB264C4F9AE02.roa Signing time: Thu 28 Nov 2024 23:43:00 +0000 ROA not before: Thu 28 Nov 2024 23:43:00 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 138354 IP address blocks: 45.120.36.0/24 maxlen: 24 103.60.22.0/24 maxlen: 24 103.60.23.0/24 maxlen: 24 103.60.96.0/24 maxlen: 24 103.131.40.0/24 maxlen: 24 103.131.41.0/24 maxlen: 24 103.238.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C643/A5D884C4152B11ECA53E4C63C4F9AE02/G2L9XgPTM3qi3E4VB5QUQEextjo.crl rsync://rpki.apnic.net/member_repository/A916C643/A5D884C4152B11ECA53E4C63C4F9AE02/G2L9XgPTM3qi3E4VB5QUQEextjo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G2L9XgPTM3qi3E4VB5QUQEextjo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 23:26:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1188 (0x4a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C643, serialNumber=1B62FD5E03D3337AA2DC4E150794144047B1B63A Validity Not Before: Nov 28 23:43:00 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67490004-4de2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7e:f6:2e:c3:b3:46:5f:2b:e1:34:b0:d1:ad: 50:62:0d:c0:bb:fd:f7:a9:7f:2a:d3:d3:1b:39:99: 77:91:ea:19:e1:36:23:0b:b9:25:5a:a5:b6:21:5d: 51:38:ef:3d:dc:d1:2c:90:38:fc:cc:87:fa:a9:4f: 06:77:d1:1e:ab:93:3f:8a:68:05:fe:5c:8e:5f:fc: 58:cf:ca:11:56:8c:8c:71:96:47:75:ee:56:a0:58: 02:57:e2:73:c2:54:83:55:62:d2:7d:69:a1:76:e6: ed:e7:d9:a5:05:b2:bd:c4:38:b1:cf:e8:88:ca:1a: 70:1c:2f:19:b7:75:d3:4b:da:9e:4a:38:de:9a:6b: 2f:b2:e6:d3:25:5d:a0:a6:1e:29:c9:25:b8:13:64: 5a:a3:f0:b8:ea:4a:b8:5e:d9:7d:e1:bc:3c:71:45: ff:81:2e:96:70:7a:c6:3d:bb:78:29:a7:81:66:79: e6:54:d4:bf:35:9d:60:aa:ec:55:75:94:9c:24:6e: 67:9e:dd:af:90:8c:0d:d3:d2:d6:37:4d:ee:1a:a9: 78:27:5d:a4:c0:7e:92:0e:d2:6b:97:e5:ce:14:35: 7c:2a:18:5d:c4:47:63:ab:2b:3b:a0:fa:86:c9:9e: d4:9c:a4:2e:c2:4c:6d:11:98:96:ae:75:8f:bc:93: 97:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:80:0D:A0:C2:67:87:43:29:A8:65:F2:0F:91:0E:4D:5D:FA:45:7A X509v3 Authority Key Identifier: keyid:1B:62:FD:5E:03:D3:33:7A:A2:DC:4E:15:07:94:14:40:47:B1:B6:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C643/A5D884C4152B11ECA53E4C63C4F9AE02/G2L9XgPTM3qi3E4VB5QUQEextjo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G2L9XgPTM3qi3E4VB5QUQEextjo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C643/A5D884C4152B11ECA53E4C63C4F9AE02/5A0804A4152E11EC94BCB264C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.120.36.0/24 103.60.22.0/23 103.60.96.0/24 103.131.40.0/23 103.238.62.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:3b:36:ae:8c:83:fb:55:61:7b:7f:19:ae:cc:8a:95:50:bd: b9:33:68:2d:d1:cb:28:68:9e:41:31:32:57:9b:5d:f7:d0:5c: 70:3e:44:6e:76:34:a2:0e:10:22:8b:ec:5c:49:e1:7a:dd:f4: cf:fa:c1:38:86:09:16:db:be:17:10:e0:70:7c:8d:59:c5:f9: 09:5e:08:7b:16:e0:c8:5c:7f:77:58:ca:9c:08:02:78:a2:93: 81:94:ac:53:90:9b:57:14:12:83:f6:3e:6d:4e:e0:43:8a:76: 6d:bd:18:53:d9:91:cd:02:4c:51:b6:ff:09:92:12:f8:98:99: 8a:d7:96:7a:06:07:8a:fb:99:76:37:5e:d6:32:39:05:16:c5: 6e:11:88:f0:3a:98:7a:a2:d6:bb:8d:1f:4f:d3:12:73:85:1b: 39:a8:86:96:66:a3:dc:3f:97:f0:fb:2f:09:87:6f:34:2f:ab: 45:68:7d:59:e9:5b:86:59:ec:95:27:02:5c:b5:ec:2f:75:aa: b8:00:21:81:41:ef:02:20:71:8a:ca:eb:52:25:d5:2e:e5:9f: 1d:7b:74:83:f6:23:2d:eb:06:ab:0f:1f:27:96:52:d4:35:20: 39:b5:35:b5:11:97:d7:27:2a:39:bb:65:c9:b9:72:0b:f2:a6: 53:20:79:83 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICBKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM2NDMxMTAvBgNVBAUTKDFCNjJGRDVFMDNEMzMzN0FBMkRDNEUxNTA3OTQxNDQw NDdCMUI2M0EwHhcNMjQxMTI4MjM0MzAwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQ5MDAwNC00ZGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxH72LsOzRl8r4TSw0a1QYg3Au/33qX8q09MbOZl3keoZ4TYjC7klWqW2IV1R OO893NEskDj8zIf6qU8Gd9Eeq5M/imgF/lyOX/xYz8oRVoyMcZZHde5WoFgCV+Jz wlSDVWLSfWmhdubt59mlBbK9xDixz+iIyhpwHC8Zt3XTS9qeSjjemmsvsubTJV2g ph4pySW4E2Rao/C46kq4Xtl94bw8cUX/gS6WcHrGPbt4KaeBZnnmVNS/NZ1gquxV dZScJG5nnt2vkIwN09LWN03uGql4J12kwH6SDtJrl+XOFDV8KhhdxEdjqys7oPqG yZ7UnKQuwkxtEZiWrnWPvJOXvwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFB2ADaDC Z4dDKahl8g+RDk1d+kV6MB8GA1UdIwQYMBaAFBti/V4D0zN6otxOFQeUFEBHsbY6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzY0My9BNUQ4ODRDNDE1 MkIxMUVDQTUzRTRDNjNDNEY5QUUwMi9HMkw5WGdQVE0zcWkzRTRWQjVRVVFFZXh0 am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0cyTDlYZ1BUTTNxaTNFNFZCNVFVUUVleHRqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkM2NDMvQTVEODg0QzQxNTJCMTFFQ0E1M0U0QzYzQzRGOUFFMDIvNUEwODA0QTQx NTJFMTFFQzk0QkNCMjY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAAteCQDBAFnPBYDBABnPGADBAFngygDBABn7j4wDQYJKoZI hvcNAQELBQADggEBAJ07Nq6Mg/tVYXt/Ga7MipVQvbkzaC3RyyhonkExMlebXffQ XHA+RG52NKIOECKL7FxJ4Xrd9M/6wTiGCRbbvhcQ4HB8jVnF+QleCHsW4Mhcf3dY ypwIAniik4GUrFOQm1cUEoP2Pm1O4EOKdm29GFPZkc0CTFG2/wmSEviYmYrXlnoG B4r7mXY3XtYyOQUWxW4RiPA6mHqi1ruNH0/TEnOFGzmohpZmo9w/l/D7LwmHbzQv q0VofVnpW4ZZ7JUnAly17C91qrgAIYFB7wIgcYrK61Il1S7lnx17dIP2Iy3rBqsP HyeWUtQ1IDm1NbURl9cnKjm7Zcm5cgvyplMgeYM= -----END CERTIFICATE-----Generated at Sun Apr 13 02:21:49 2025 by rpki-client