$ rpki-client -vvf rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/E2348176D54D11EF8A899250C4F9AE02.roa File: E2348176D54D11EF8A899250C4F9AE02.roa (raw, json) Hash identifier: vU7fQooVaJk/8bmjfMJwzmIcKpCJVNxNvX0SFPwtzeQ= Subject key identifier: 13:63:62:5A:01:C1:0B:18:FA:6F:C0:6B:0F:5C:2D:7F:00:84:B8:AF Certificate issuer: /CN=A91716DE/serialNumber=4CC904E94C5C9B93A44A4F65EFB20A800D6DD7E7 Certificate serial: 03C3 Authority key identifier: 4C:C9:04:E9:4C:5C:9B:93:A4:4A:4F:65:EF:B2:0A:80:0D:6D:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/E2348176D54D11EF8A899250C4F9AE02.roa Signing time: Sat 18 Jan 2025 03:39:56 +0000 ROA not before: Sat 18 Jan 2025 03:39:56 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153494 IP address blocks: 43.243.44.0/22 maxlen: 24 103.38.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 963 (0x3c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91716DE Validity Not Before: Jan 18 03:39:56 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=678b228b-d8e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:2b:ff:e6:55:e6:33:ef:4b:7d:ea:b7:3e:67: f2:12:3c:eb:79:08:63:e0:3c:49:ef:e9:5a:4e:1c: 45:10:6f:ea:47:4f:ad:33:4d:70:d5:5c:92:3b:bd: 4a:34:33:29:03:cd:3b:7b:93:5f:50:77:ba:2f:58: 5f:ac:35:52:fb:f1:56:44:2a:54:4c:78:e6:27:fc: fa:84:31:43:8c:14:65:a5:e2:e3:c4:32:07:33:20: ab:41:f2:46:4c:56:fb:70:b2:a8:96:69:4d:c4:06: 0a:de:19:a7:76:5c:c9:ef:ae:cc:bb:43:c7:d7:2f: d7:11:d6:da:1f:29:49:ee:ee:ec:f3:b8:f0:5d:09: 54:4b:a8:1f:8d:ee:6e:47:ff:e9:e9:99:1c:44:37: 52:8d:eb:f6:84:5d:44:8d:96:74:ff:57:97:7f:8b: ac:ed:23:2f:ff:22:89:9d:bf:b5:6c:62:8e:c2:8c: 8a:9e:c1:e2:45:28:79:57:4f:38:db:0f:06:d4:88: 6e:17:41:ea:cf:4b:7a:69:ac:01:b1:84:7b:ec:84: dd:80:f9:9e:5e:ff:48:51:62:3d:83:71:1d:e3:af: 5a:89:57:b5:01:32:de:d3:5a:55:1f:6f:bb:db:81: 0e:35:07:d8:8d:89:af:02:08:2f:7b:24:f2:ab:81: 20:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:63:62:5A:01:C1:0B:18:FA:6F:C0:6B:0F:5C:2D:7F:00:84:B8:AF X509v3 Authority Key Identifier: keyid:4C:C9:04:E9:4C:5C:9B:93:A4:4A:4F:65:EF:B2:0A:80:0D:6D:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/TMkE6Uxcm5OkSk9l77IKgA1t1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TMkE6Uxcm5OkSk9l77IKgA1t1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91716DE/8F340DD0752D11EC9C748D54C4F9AE02/E2348176D54D11EF8A899250C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.44.0/22 103.38.156.0/22 Signature Algorithm: sha256WithRSAEncryption aa:49:d2:a9:e5:11:57:1b:c0:47:25:c0:19:3c:3a:26:fb:13: 17:6e:f2:77:99:61:73:31:7b:91:a2:70:42:25:59:7f:02:8b: 98:34:7d:1a:99:4b:34:c4:db:8c:21:75:77:ae:ce:ee:5e:0a: 66:c1:80:91:a3:a1:4d:c5:1d:0f:b8:dd:ba:1d:57:0d:70:d6: a0:fa:92:64:59:b7:53:ff:d3:e5:86:20:ed:30:90:1f:d5:d2: b4:63:50:32:9b:8a:33:be:b1:27:a1:ac:8e:4a:e2:1e:d1:61: 22:49:f6:e4:67:88:17:2b:aa:ae:4d:5d:5a:c0:c8:11:56:6a: 9a:62:49:e6:aa:26:5b:c5:56:48:3b:c0:65:44:30:da:3f:7d: 8f:bb:32:19:88:90:a3:82:8a:63:f5:4f:98:cc:ed:f4:1c:90: f8:6b:9e:4d:fd:84:1d:5d:01:a0:ae:d4:52:6c:67:b1:d9:ae: 79:57:34:e3:ba:7f:cc:68:f3:89:90:76:72:01:d1:ef:2b:48: 0d:a9:ea:88:c0:9b:4c:cb:eb:b3:3a:0f:b6:c9:4f:b1:6c:21: 16:24:cb:6d:6b:7f:43:d2:e4:1d:51:fe:bf:c2:1c:f9:00:28: 1b:3f:4d:03:70:4e:e8:dc:aa:c8:8f:85:de:64:07:36:cd:3b: 29:c5:37:00 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2REUxMTAvBgNVBAUTKDRDQzkwNEU5NEM1QzlCOTNBNDRBNEY2NUVGQjIwQTgw MEQ2REQ3RTcwHhcNMjUwMTE4MDMzOTU2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzhiMjI4Yi1kOGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2yv/5lXmM+9Lfeq3PmfyEjzreQhj4DxJ7+laThxFEG/qR0+tM01w1VySO71K NDMpA807e5NfUHe6L1hfrDVS+/FWRCpUTHjmJ/z6hDFDjBRlpeLjxDIHMyCrQfJG TFb7cLKolmlNxAYK3hmndlzJ767Mu0PH1y/XEdbaHylJ7u7s87jwXQlUS6gfje5u R//p6ZkcRDdSjev2hF1EjZZ0/1eXf4us7SMv/yKJnb+1bGKOwoyKnsHiRSh5V084 2w8G1IhuF0Hqz0t6aawBsYR77ITdgPmeXv9IUWI9g3Ed469aiVe1ATLe01pVH2+7 24EONQfYjYmvAggveyTyq4EgjQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBNjYloB wQsY+m/Aaw9cLX8AhLivMB8GA1UdIwQYMBaAFEzJBOlMXJuTpEpPZe+yCoANbdfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTZERS84RjM0MEREMDc1 MkQxMUVDOUM3NDhENTRDNEY5QUUwMi9UTWtFNlV4Y201T2tTazlsNzdJS2dBMXQx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RNa0U2VXhjbTVPa1NrOWw3N0lLZ0ExdDEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE2REUvOEYzNDBERDA3NTJEMTFFQzlDNzQ4RDU0QzRGOUFFMDIvRTIzNDgxNzZE NTREMTFFRjhBODk5MjUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr8ywDBAJnJpwwDQYJKoZIhvcNAQELBQADggEBAKpJ0qnl EVcbwEclwBk8Oib7Exdu8neZYXMxe5GicEIlWX8Ci5g0fRqZSzTE24whdXeuzu5e CmbBgJGjoU3FHQ+43bodVw1w1qD6kmRZt1P/0+WGIO0wkB/V0rRjUDKbijO+sSeh rI5K4h7RYSJJ9uRniBcrqq5NXVrAyBFWappiSeaqJlvFVkg7wGVEMNo/fY+7MhmI kKOCimP1T5jM7fQckPhrnk39hB1dAaCu1FJsZ7HZrnlXNOO6f8xo84mQdnIB0e8r SA2p6ojAm0zL67M6D7bJT7FsIRYky21rf0PS5B1R/r/CHPkAKBs/TQNwTujcqsiP hd5kBzbNOynFNwA= -----END CERTIFICATE-----Generated at Sat Apr 5 02:23:05 2025 by rpki-client