$ rpki-client -vvf rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/4A120466FC5F11EF9B1B9787C4F9AE02.roa File: 4A120466FC5F11EF9B1B9787C4F9AE02.roa (raw, json) Hash identifier: MMXwma/vg44HfRT3v422QfCaw48hIyaly+XfBSNTWHg= Subject key identifier: 32:36:4F:67:F6:7C:71:78:81:D9:19:23:E2:21:A5:D0:0F:84:F6:80 Certificate issuer: /CN=A917419E/serialNumber=1445489FDD50AA44AC1D2A3C3A166E06C662AFD5 Certificate serial: 057E Authority key identifier: 14:45:48:9F:DD:50:AA:44:AC:1D:2A:3C:3A:16:6E:06:C6:62:AF:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEVIn91QqkSsHSo8OhZuBsZir9U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/4A120466FC5F11EF9B1B9787C4F9AE02.roa Signing time: Sat 08 Mar 2025 20:52:47 +0000 ROA not before: Sat 08 Mar 2025 20:52:47 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 27182 IP address blocks: 103.172.134.0/24 maxlen: 24 103.172.135.0/24 maxlen: 24 2407:d340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/FEVIn91QqkSsHSo8OhZuBsZir9U.crl rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/FEVIn91QqkSsHSo8OhZuBsZir9U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEVIn91QqkSsHSo8OhZuBsZir9U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:49:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1406 (0x57e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917419E Validity Not Before: Mar 8 20:52:47 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67ccae1e-6855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:70:8b:ca:10:8b:a3:c3:70:6c:32:d1:29:71: 70:65:b8:cb:da:87:41:6c:af:f9:d4:66:20:39:d0: 04:0e:75:52:55:f6:06:98:44:22:e7:c8:5d:f0:47: 35:19:f5:1f:14:00:9f:59:af:0c:11:23:16:91:74: 45:e1:4e:bb:da:13:15:2a:04:d1:e9:30:e6:8b:0a: 1e:86:95:88:16:a5:27:05:2a:13:1e:1a:dd:9f:dc: 2e:7c:7b:ff:ba:d1:fd:fa:65:af:64:88:19:14:63: d1:98:f8:71:c7:b7:a5:13:3f:3a:c9:2f:2a:31:97: 53:0a:4f:91:a0:b8:e1:37:9e:32:1e:71:51:6a:62: eb:2c:21:38:b9:cd:cb:f9:b1:a6:e5:f8:d5:39:7b: 06:e2:fd:07:8b:91:b0:42:6c:06:2b:25:54:b8:ee: 3a:ed:f7:9d:e5:5c:28:94:95:ad:1f:ef:55:01:9b: b6:5f:30:fb:b2:5b:91:66:04:6b:62:00:c2:f5:f2: 57:2c:83:02:10:c6:30:df:62:70:f9:14:c0:da:de: d9:e0:df:35:0d:29:b9:d2:3e:b8:5b:ca:81:8e:aa: e1:8d:7a:cc:bd:7a:30:58:8f:03:61:e6:ee:10:0f: 25:41:50:6a:88:c6:0c:be:3c:43:07:00:19:50:8d: b9:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:36:4F:67:F6:7C:71:78:81:D9:19:23:E2:21:A5:D0:0F:84:F6:80 X509v3 Authority Key Identifier: keyid:14:45:48:9F:DD:50:AA:44:AC:1D:2A:3C:3A:16:6E:06:C6:62:AF:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/FEVIn91QqkSsHSo8OhZuBsZir9U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FEVIn91QqkSsHSo8OhZuBsZir9U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917419E/981EE9860B2111EC8421494DC4F9AE02/4A120466FC5F11EF9B1B9787C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.134.0/23 IPv6: 2407:d340::/32 Signature Algorithm: sha256WithRSAEncryption ba:04:12:fe:8c:b1:54:58:2e:20:85:7c:12:fb:c7:1e:a5:1b: 1c:55:e2:b6:e1:f8:32:58:0e:d4:60:2d:84:18:9a:36:18:1f: 3c:81:19:bd:bc:93:3c:ec:88:37:fd:5b:e9:ae:c6:b4:77:4f: 56:cf:55:a0:fc:61:98:a3:1f:9f:a6:aa:c0:ce:46:e0:ec:81: 26:9e:d6:25:47:ad:74:06:72:ce:54:b6:bb:00:4d:a4:fd:39: 4b:89:f0:e4:11:c9:03:55:81:6b:39:7e:37:f5:50:d3:b8:87: 84:9d:24:d3:32:19:05:87:93:3a:eb:da:7c:33:91:f0:6c:c9: f6:b5:22:ae:e0:eb:89:26:d0:b2:e8:77:0b:42:0a:f8:66:c1: 9c:45:46:ad:c6:2e:9e:34:13:e5:02:40:84:68:92:54:22:b6: 09:d5:e5:f7:23:66:78:d9:7b:a4:a1:bc:f3:c7:65:4d:61:d8: 71:af:eb:d2:ad:9b:b5:76:e5:e5:a9:4c:db:c1:ab:e7:3e:3d: 51:32:8f:7f:b2:0b:16:6a:0e:db:40:11:a5:6a:ee:48:ff:e2: 69:6f:b1:4e:b5:aa:74:83:b7:04:a7:6f:a3:4c:9e:f7:05:f7: a0:e1:67:48:f2:9f:7b:31:a6:7a:40:76:2c:43:e0:8e:d2:0a: b2:ba:16:61 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQxOUUxMTAvBgNVBAUTKDE0NDU0ODlGREQ1MEFBNDRBQzFEMkEzQzNBMTY2RTA2 QzY2MkFGRDUwHhcNMjUwMzA4MjA1MjQ3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NjYWUxZS02ODU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnCLyhCLo8NwbDLRKXFwZbjL2odBbK/51GYgOdAEDnVSVfYGmEQi58hd8Ec1 GfUfFACfWa8MESMWkXRF4U672hMVKgTR6TDmiwoehpWIFqUnBSoTHhrdn9wufHv/ utH9+mWvZIgZFGPRmPhxx7elEz86yS8qMZdTCk+RoLjhN54yHnFRamLrLCE4uc3L +bGm5fjVOXsG4v0Hi5GwQmwGKyVUuO467fed5VwolJWtH+9VAZu2XzD7sluRZgRr YgDC9fJXLIMCEMYw32Jw+RTA2t7Z4N81DSm50j64W8qBjqrhjXrMvXowWI8DYebu EA8lQVBqiMYMvjxDBwAZUI25wQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDI2T2f2 fHF4gdkZI+IhpdAPhPaAMB8GA1UdIwQYMBaAFBRFSJ/dUKpErB0qPDoWbgbGYq/V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDE5RS85ODFFRTk4NjBC MjExMUVDODQyMTQ5NERDNEY5QUUwMi9GRVZJbjkxUXFrU3NIU284T2hadUJzWmly OVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZFVkluOTFRcWtTc0hTbzhPaFp1QnNaaXI5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzQxOUUvOTgxRUU5ODYwQjIxMTFFQzg0MjE0OTREQzRGOUFFMDIvNEExMjA0NjZG QzVGMTFFRjlCMUI5Nzg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnrIYwDQQCAAIwBwMFACQH00AwDQYJKoZIhvcNAQELBQAD ggEBALoEEv6MsVRYLiCFfBL7xx6lGxxV4rbh+DJYDtRgLYQYmjYYHzyBGb28kzzs iDf9W+muxrR3T1bPVaD8YZijH5+mqsDORuDsgSae1iVHrXQGcs5UtrsATaT9OUuJ 8OQRyQNVgWs5fjf1UNO4h4SdJNMyGQWHkzrr2nwzkfBsyfa1Iq7g64km0LLodwtC CvhmwZxFRq3GLp40E+UCQIRoklQitgnV5fcjZnjZe6ShvPPHZU1h2HGv69Ktm7V2 5eWpTNvBq+c+PVEyj3+yCxZqDttAEaVq7kj/4mlvsU61qnSDtwSnb6NMnvcF96Dh Z0jyn3sxpnpAdixD4I7SCrK6FmE= -----END CERTIFICATE-----Generated at Sat Apr 5 07:20:46 2025 by rpki-client