$ rpki-client -vvf rpki.apnic.net/member_repository/A917C29E/045122A8011C11EEB2684F4BC4F9AE02/ED6DF5CC014611EEBE219313C4F9AE02.roa File: ED6DF5CC014611EEBE219313C4F9AE02.roa (raw, json) Hash identifier: Sh9MMHhw+WZ/mCiixFTMPeTs0/iUB/LaBQpEWqALmcA= Subject key identifier: 4B:A7:35:51:DC:55:54:21:4A:EB:33:13:BB:06:FE:FD:10:DA:6B:39 Certificate issuer: /CN=A917C29E/serialNumber=B293489E3ACF28F0D1571437CDF0BCC2CA54545A Certificate serial: 0134 Authority key identifier: B2:93:48:9E:3A:CF:28:F0:D1:57:14:37:CD:F0:BC:C2:CA:54:54:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spNInjrPKPDRVxQ3zfC8wspUVFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C29E/045122A8011C11EEB2684F4BC4F9AE02/ED6DF5CC014611EEBE219313C4F9AE02.roa Signing time: Tue 07 Jan 2025 03:36:33 +0000 ROA not before: Tue 07 Jan 2025 03:36:33 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 136180 IP address blocks: 103.203.56.0/22 maxlen: 24 116.213.44.0/22 maxlen: 24 2400:87c0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C29E/045122A8011C11EEB2684F4BC4F9AE02/spNInjrPKPDRVxQ3zfC8wspUVFo.crl rsync://rpki.apnic.net/member_repository/A917C29E/045122A8011C11EEB2684F4BC4F9AE02/spNInjrPKPDRVxQ3zfC8wspUVFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spNInjrPKPDRVxQ3zfC8wspUVFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 03:20:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C29E Validity Not Before: Jan 7 03:36:33 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=677ca141-0cfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3b:23:26:a1:ab:62:0d:4b:74:e2:50:de:91: 3f:70:3f:9e:3b:39:9e:76:9a:d2:c6:e2:41:e8:cf: 38:e6:7f:21:a7:fc:6a:ed:62:e6:b4:1a:8a:a6:25: cc:9f:e2:3a:09:4a:71:e2:27:0e:32:61:ce:23:3c: 22:40:7e:a8:98:30:bb:01:27:7a:54:9b:83:3d:59: a0:e1:3d:8a:ee:eb:0e:d9:6d:33:01:07:bc:bd:eb: d8:8f:e1:a1:0b:04:fe:32:fe:f1:02:8b:4e:52:67: a2:a4:9a:b9:0e:0e:d7:5e:cd:23:f2:27:84:85:51: 79:b8:4e:18:07:e3:e3:44:2b:30:25:6c:3a:12:ae: 0b:32:fe:27:ff:76:1c:fd:29:d2:2d:e6:7b:70:7e: 84:41:59:9a:5a:30:e8:ee:14:ee:f6:1f:ae:6d:80: 74:e5:61:aa:4a:52:1b:e4:e4:1a:64:c8:e9:58:49: c1:7b:91:ff:fa:6e:69:e9:d1:3e:3c:54:d6:57:4b: 6f:a8:e9:2a:f8:1c:fa:c2:1a:0e:b4:b1:3b:4a:b3: b5:62:68:70:5a:77:49:3a:f4:1a:23:95:3b:20:74: 26:3b:0e:89:ad:ac:bf:6d:ff:f3:92:a8:79:cd:f0: 6d:ae:5d:fa:e9:be:a9:1f:86:91:ef:b5:8f:df:7a: 45:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:A7:35:51:DC:55:54:21:4A:EB:33:13:BB:06:FE:FD:10:DA:6B:39 X509v3 Authority Key Identifier: keyid:B2:93:48:9E:3A:CF:28:F0:D1:57:14:37:CD:F0:BC:C2:CA:54:54:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C29E/045122A8011C11EEB2684F4BC4F9AE02/spNInjrPKPDRVxQ3zfC8wspUVFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spNInjrPKPDRVxQ3zfC8wspUVFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C29E/045122A8011C11EEB2684F4BC4F9AE02/ED6DF5CC014611EEBE219313C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.203.56.0/22 116.213.44.0/22 IPv6: 2400:87c0::/32 Signature Algorithm: sha256WithRSAEncryption 3a:0f:5b:b3:18:44:5b:32:92:9e:41:14:2d:e1:3f:8b:1f:fd: 08:cd:46:c0:17:4c:76:e3:bf:bc:1a:0f:79:e5:2b:78:b3:7e: a9:9a:80:d1:44:44:fe:94:d9:b1:20:05:de:66:a4:ad:95:50: 9e:66:8a:d0:c2:3b:c0:42:50:62:f8:00:06:35:dc:bb:4e:ad: 5d:97:3a:9a:24:a7:26:b3:be:bd:0b:55:83:0e:07:63:bf:30: ab:07:fc:4d:70:fc:b0:a9:92:fd:d1:fd:6e:13:02:a7:5c:bd: ea:d7:a4:36:58:85:2b:92:95:1f:d4:5c:44:91:a2:a7:0b:a5: c0:aa:90:08:c1:4d:ee:70:df:29:bf:b9:d2:61:bc:2c:1d:40: 73:3a:d8:09:6d:0c:21:71:ae:33:11:2a:63:b9:2b:12:28:05: 1b:50:e4:a8:bc:79:e0:48:26:0f:da:38:e8:4b:2c:90:95:1a: f0:26:cc:ff:dd:f5:8c:27:aa:b0:82:55:06:cc:a8:4c:69:58: 87:40:ae:95:2c:6a:96:70:bb:6f:12:7c:22:fb:aa:28:43:60: 03:a4:f3:fd:7b:95:56:3c:be:fb:59:8e:85:4e:3f:9a:ed:2e: 61:fc:e6:c5:96:1d:dd:57:23:e8:78:d8:0f:6f:6b:4d:aa:a2: d2:f0:4f:a2 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MyOUUxMTAvBgNVBAUTKEIyOTM0ODlFM0FDRjI4RjBEMTU3MTQzN0NERjBCQ0My Q0E1NDU0NUEwHhcNMjUwMTA3MDMzNjMzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdjYTE0MS0wY2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqjsjJqGrYg1LdOJQ3pE/cD+eOzmedprSxuJB6M845n8hp/xq7WLmtBqKpiXM n+I6CUpx4icOMmHOIzwiQH6omDC7ASd6VJuDPVmg4T2K7usO2W0zAQe8vevYj+Gh CwT+Mv7xAotOUmeipJq5Dg7XXs0j8ieEhVF5uE4YB+PjRCswJWw6Eq4LMv4n/3Yc /SnSLeZ7cH6EQVmaWjDo7hTu9h+ubYB05WGqSlIb5OQaZMjpWEnBe5H/+m5p6dE+ PFTWV0tvqOkq+Bz6whoOtLE7SrO1YmhwWndJOvQaI5U7IHQmOw6Jray/bf/zkqh5 zfBtrl366b6pH4aR77WP33pFowIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFEunNVHc VVQhSuszE7sG/v0Q2ms5MB8GA1UdIwQYMBaAFLKTSJ46zyjw0VcUN83wvMLKVFRa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzI5RS8wNDUxMjJBODAx MUMxMUVFQjI2ODRGNEJDNEY5QUUwMi9zcE5JbmpyUEtQRFJWeFEzemZDOHdzcFVW Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NwTkluanJQS1BEUlZ4UTN6ZkM4d3NwVVZGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0MyOUUvMDQ1MTIyQTgwMTFDMTFFRUIyNjg0RjRCQzRGOUFFMDIvRUQ2REY1Q0Mw MTQ2MTFFRUJFMjE5MzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnyzgDBAJ01SwwDQQCAAIwBwMFACQAh8AwDQYJKoZIhvcN AQELBQADggEBADoPW7MYRFsykp5BFC3hP4sf/QjNRsAXTHbjv7waD3nlK3izfqma gNFERP6U2bEgBd5mpK2VUJ5mitDCO8BCUGL4AAY13LtOrV2XOpokpyazvr0LVYMO B2O/MKsH/E1w/LCpkv3R/W4TAqdcverXpDZYhSuSlR/UXESRoqcLpcCqkAjBTe5w 3ym/udJhvCwdQHM62AltDCFxrjMRKmO5KxIoBRtQ5Ki8eeBIJg/aOOhLLJCVGvAm zP/d9YwnqrCCVQbMqExpWIdArpUsapZwu28SfCL7qihDYAOk8/17lVY8vvtZjoVO P5rtLmH85sWWHd1XI+h42A9va02qotLwT6I= -----END CERTIFICATE-----Generated at Sat Apr 5 01:40:37 2025 by rpki-client