$ rpki-client -vvf rpki.apnic.net/member_repository/A917412F/D411414C6D5611E590D87472C4F9AE02/FB87E4C4B10D11E5894F4D1CC4F9AE02.roa File: FB87E4C4B10D11E5894F4D1CC4F9AE02.roa (raw, json) Hash identifier: Xr4axXAE5xhZlqvtubxZ2pb3RMbCF82Tss/A5eKchFs= Subject key identifier: A8:45:B2:E5:C6:65:C7:1F:E8:1A:97:FE:7B:D3:D2:3C:94:96:DC:E7 Certificate issuer: /CN=A917412F/serialNumber=045B5C0867DE581D2B74842FEF8045C1A77BE8BD Certificate serial: 23CC Authority key identifier: 04:5B:5C:08:67:DE:58:1D:2B:74:84:2F:EF:80:45:C1:A7:7B:E8:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BFtcCGfeWB0rdIQv74BFwad76L0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917412F/D411414C6D5611E590D87472C4F9AE02/FB87E4C4B10D11E5894F4D1CC4F9AE02.roa Signing time: Mon 24 Mar 2025 16:23:17 +0000 ROA not before: Mon 24 Mar 2025 16:23:17 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 133064 IP address blocks: 103.26.36.0/22 maxlen: 22 103.26.38.0/24 maxlen: 24 2001:df3:a000::/46 maxlen: 46 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917412F/D411414C6D5611E590D87472C4F9AE02/BFtcCGfeWB0rdIQv74BFwad76L0.crl rsync://rpki.apnic.net/member_repository/A917412F/D411414C6D5611E590D87472C4F9AE02/BFtcCGfeWB0rdIQv74BFwad76L0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BFtcCGfeWB0rdIQv74BFwad76L0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9164 (0x23cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917412F Validity Not Before: Mar 24 16:23:17 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=67e186f5-f596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d7:89:91:92:8f:4a:46:db:c5:77:eb:a0:e1: ec:d5:bb:ec:4e:04:25:51:77:61:98:1e:b7:72:42: a8:97:1c:e7:10:8c:8d:0f:03:b7:14:88:47:26:24: f7:04:a6:85:04:ca:07:c0:71:b4:58:cb:52:78:8a: e4:96:34:09:2e:58:75:22:67:db:a8:35:cf:dd:1e: d0:1d:79:bc:5e:15:75:8d:c9:ad:19:56:77:df:53: eb:1a:59:52:6a:26:4c:35:06:4f:ee:ee:1f:bc:66: 20:db:b8:b2:9b:60:16:e4:e6:9b:7b:36:c6:72:b6: 7f:0e:8c:75:95:2e:ac:5d:e7:3d:a4:ff:ab:83:69: 78:04:18:43:65:70:29:10:26:62:ca:02:a3:5d:eb: ac:fe:7f:7f:94:2e:e8:d3:8b:4e:ac:fa:40:1a:a2: 8b:22:ef:24:54:9f:62:18:99:f8:21:bc:b1:6f:63: 46:68:aa:f0:6f:4e:02:7e:12:dc:ec:35:e2:c7:5c: 11:c3:3e:8f:e6:bc:f0:d7:27:be:3f:a4:65:78:8a: 5e:1a:f0:4a:0e:b9:bd:c6:9c:d9:23:3f:0b:6e:8e: e3:58:50:4e:45:24:5b:01:85:62:1e:8f:53:eb:97: 87:ed:52:02:b8:74:77:8b:3e:37:d0:a8:0d:11:f5: b2:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:45:B2:E5:C6:65:C7:1F:E8:1A:97:FE:7B:D3:D2:3C:94:96:DC:E7 X509v3 Authority Key Identifier: keyid:04:5B:5C:08:67:DE:58:1D:2B:74:84:2F:EF:80:45:C1:A7:7B:E8:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917412F/D411414C6D5611E590D87472C4F9AE02/BFtcCGfeWB0rdIQv74BFwad76L0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BFtcCGfeWB0rdIQv74BFwad76L0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917412F/D411414C6D5611E590D87472C4F9AE02/FB87E4C4B10D11E5894F4D1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.36.0/22 IPv6: 2001:df3:a000::/46 Signature Algorithm: sha256WithRSAEncryption a4:df:82:df:04:8c:1b:05:e0:bb:4b:7e:95:c2:2e:14:ec:9a: bb:ee:df:b0:58:6f:5c:95:f4:54:63:ae:b4:61:38:02:c3:3d: d6:7b:0a:5a:48:e3:7b:72:9b:82:f4:a9:b4:25:fa:3c:37:18: 52:b0:c5:3d:ff:bc:27:d2:ad:f2:63:4a:03:a2:80:fe:d1:99: 0a:df:78:f5:1a:dc:d7:db:54:9e:a5:dc:24:68:d6:c1:87:5b: e6:4c:ec:94:3a:c4:b9:6d:ca:10:e6:e1:65:d7:93:6e:c6:7b: b7:02:9f:83:95:b0:58:88:0e:77:3e:47:ee:29:b3:e8:67:cc: 00:74:47:19:86:23:fa:ea:1b:3b:07:5b:57:5e:33:03:10:24: 0b:3b:1d:a5:fd:7b:15:8d:5a:e4:ad:12:d3:e0:fd:54:0d:3b: fd:91:05:8f:16:ad:b6:42:23:d5:36:18:8c:49:ca:08:b5:4b: bc:83:23:85:d9:ae:af:6d:c4:9c:04:8f:11:8f:5c:eb:d5:af: de:88:24:45:4b:ea:d0:62:b1:33:c3:a4:41:9e:09:7c:ee:79: 73:6a:55:0b:9e:a1:dc:2a:a7:18:1c:e3:d8:42:1f:60:80:72: a9:de:75:40:da:85:a7:57:dd:08:f0:d9:05:a6:39:82:3b:94: bb:d9:f2:61 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICI8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQxMkYxMTAvBgNVBAUTKDA0NUI1QzA4NjdERTU4MUQyQjc0ODQyRkVGODA0NUMx QTc3QkU4QkQwHhcNMjUwMzI0MTYyMzE3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2UxODZmNS1mNTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdeJkZKPSkbbxXfroOHs1bvsTgQlUXdhmB63ckKolxznEIyNDwO3FIhHJiT3 BKaFBMoHwHG0WMtSeIrkljQJLlh1ImfbqDXP3R7QHXm8XhV1jcmtGVZ331PrGllS aiZMNQZP7u4fvGYg27iym2AW5OabezbGcrZ/Dox1lS6sXec9pP+rg2l4BBhDZXAp ECZiygKjXeus/n9/lC7o04tOrPpAGqKLIu8kVJ9iGJn4Ibyxb2NGaKrwb04CfhLc 7DXix1wRwz6P5rzw1ye+P6RleIpeGvBKDrm9xpzZIz8Lbo7jWFBORSRbAYViHo9T 65eH7VICuHR3iz430KgNEfWyLwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKhFsuXG Zccf6BqX/nvT0jyUltznMB8GA1UdIwQYMBaAFARbXAhn3lgdK3SEL++ARcGne+i9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDEyRi9ENDExNDE0QzZE NTYxMUU1OTBEODc0NzJDNEY5QUUwMi9CRnRjQ0dmZVdCMHJkSVF2NzRCRndhZDc2 TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JGdGNDR2ZlV0IwcmRJUXY3NEJGd2FkNzZMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzQxMkYvRDQxMTQxNEM2RDU2MTFFNTkwRDg3NDcyQzRGOUFFMDIvRkI4N0U0QzRC MTBEMTFFNTg5NEY0RDFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnGiQwDwQCAAIwCQMHAiABDfOgADANBgkqhkiG9w0BAQsF AAOCAQEApN+C3wSMGwXgu0t+lcIuFOyau+7fsFhvXJX0VGOutGE4AsM91nsKWkjj e3KbgvSptCX6PDcYUrDFPf+8J9Kt8mNKA6KA/tGZCt949Rrc19tUnqXcJGjWwYdb 5kzslDrEuW3KEObhZdeTbsZ7twKfg5WwWIgOdz5H7imz6GfMAHRHGYYj+uobOwdb V14zAxAkCzsdpf17FY1a5K0S0+D9VA07/ZEFjxattkIj1TYYjEnKCLVLvIMjhdmu r23EnASPEY9c69Wv3ogkRUvq0GKxM8OkQZ4JfO55c2pVC56h3CqnGBzj2EIfYIBy qd51QNqFp1fdCPDZBaY5gjuUu9nyYQ== -----END CERTIFICATE-----Generated at Sat Apr 5 08:21:29 2025 by rpki-client