$ rpki-client -vvf rpki.apnic.net/member_repository/A918B759/69C3BEE6EB6411EFA9A2C261C4F9AE02/44DE35D0EBE011EFB534ED7AC4F9AE02.roa File: 44DE35D0EBE011EFB534ED7AC4F9AE02.roa (raw, json) Hash identifier: 0+vRm59ex9NMyreeXhWeUcmkTmPtMjioToFn5xjtXJU= Subject key identifier: B8:0C:18:B3:C0:84:5D:D4:B5:28:A8:8D:5D:87:3A:CA:6A:65:F9:39 Certificate issuer: /CN=A918B759/serialNumber=FB4B683FBA4DB6AC1A5AC508807FC7EA496C5EC5 Certificate serial: 03 Authority key identifier: FB:4B:68:3F:BA:4D:B6:AC:1A:5A:C5:08:80:7F:C7:EA:49:6C:5E:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0toP7pNtqwaWsUIgH_H6klsXsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B759/69C3BEE6EB6411EFA9A2C261C4F9AE02/44DE35D0EBE011EFB534ED7AC4F9AE02.roa Signing time: Sat 15 Feb 2025 21:03:13 +0000 ROA not before: Sat 15 Feb 2025 21:03:13 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 58545 IP address blocks: 103.23.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B759/69C3BEE6EB6411EFA9A2C261C4F9AE02/-0toP7pNtqwaWsUIgH_H6klsXsU.crl rsync://rpki.apnic.net/member_repository/A918B759/69C3BEE6EB6411EFA9A2C261C4F9AE02/-0toP7pNtqwaWsUIgH_H6klsXsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0toP7pNtqwaWsUIgH_H6klsXsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:11:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B759 Validity Not Before: Feb 15 21:03:13 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67b10111-dbef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f1:5a:fd:84:98:c1:8c:65:c9:51:76:5b:cb: e1:32:d6:40:63:c6:c5:40:4c:12:32:d2:dd:7a:93: 0e:fc:c5:f8:0a:21:f4:5c:43:e6:15:6f:47:54:8b: 32:d4:f5:2e:b2:50:05:62:5d:7f:84:f2:5f:4b:5f: e7:a8:92:f5:49:45:bb:9e:68:14:44:11:5c:33:ad: a7:2b:d1:2d:d7:b3:dd:6b:de:f0:0a:51:47:5d:0c: b0:82:ff:5f:05:65:4e:57:41:8a:43:17:19:a2:e1: 5a:8a:b7:97:c8:fc:49:3e:7c:e0:0e:1c:e5:8d:05: 6c:4a:d8:a9:09:a6:e7:5a:cb:75:27:4d:9f:aa:7c: 90:be:f5:f6:af:67:1d:4d:12:4a:5f:14:7c:e5:66: 5a:e7:9a:91:2f:df:ff:9d:7b:f9:3f:ae:3d:3e:b4: dd:c2:4d:f7:3f:63:e4:8d:23:2d:79:4f:24:20:75: 26:29:cb:36:9e:ec:b8:89:ab:56:50:66:fa:ba:21: 98:a6:50:e2:ab:9e:03:3d:27:bf:32:26:d8:d3:42: cd:c2:ac:b0:45:2e:9f:2e:26:36:03:7f:ff:71:e5: 16:aa:5e:7d:88:b1:90:db:c8:3e:c2:74:56:52:6c: cf:21:a1:12:ed:45:ca:1c:e7:17:b3:7a:83:b0:5a: d1:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:0C:18:B3:C0:84:5D:D4:B5:28:A8:8D:5D:87:3A:CA:6A:65:F9:39 X509v3 Authority Key Identifier: keyid:FB:4B:68:3F:BA:4D:B6:AC:1A:5A:C5:08:80:7F:C7:EA:49:6C:5E:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B759/69C3BEE6EB6411EFA9A2C261C4F9AE02/-0toP7pNtqwaWsUIgH_H6klsXsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0toP7pNtqwaWsUIgH_H6klsXsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B759/69C3BEE6EB6411EFA9A2C261C4F9AE02/44DE35D0EBE011EFB534ED7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.245.0/24 Signature Algorithm: sha256WithRSAEncryption c9:ca:83:b2:2f:18:bf:c9:62:79:b9:83:1a:d4:cb:a1:2c:91: ad:c5:b3:b2:ec:60:2e:58:64:fb:40:ac:ec:c3:71:0d:a7:39: 6e:ba:44:8e:91:9e:60:82:6d:83:94:df:4f:bd:33:a4:2e:b7: fa:c6:1c:af:fc:7c:0b:b4:8c:73:80:11:fc:4f:64:6d:1f:22: ca:d7:6d:bb:12:e6:0f:23:ff:38:2c:44:ef:14:ed:d9:cc:e3: d4:c5:c9:05:49:14:56:27:bd:dc:ef:93:1a:05:f6:3a:0c:e7: 22:b5:3c:ce:4e:e7:79:e8:04:83:6e:e0:65:c6:73:a1:10:fd: 44:2a:22:fe:20:b9:6a:d1:e0:95:78:0f:85:40:ce:00:31:0f: c7:c0:65:06:4e:cf:6a:26:89:6f:3b:38:2e:10:eb:7d:b9:17: 12:a0:64:8f:51:30:81:5d:a9:46:11:17:1b:81:fe:88:54:2b: 02:44:ec:0f:81:59:00:2f:b4:4e:40:db:3c:d4:76:83:92:6a: 26:87:86:d3:c5:dd:57:9b:3c:67:1f:01:7b:e8:b2:70:4f:19: d9:3d:a0:c7:33:ac:8a:08:8b:74:75:99:70:9e:06:9e:05:e5: d2:3c:d6:fe:7c:2a:b4:b3:81:04:e4:7a:e2:f2:5d:29:d4:4f: 87:61:f7:c7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 Qjc1OTExMC8GA1UEBRMoRkI0QjY4M0ZCQTREQjZBQzFBNUFDNTA4ODA3RkM3RUE0 OTZDNUVDNTAeFw0yNTAyMTUyMTAzMTNaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YjEwMTExLWRiZWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC38Vr9hJjBjGXJUXZby+Ey1kBjxsVATBIy0t16kw78xfgKIfRcQ+YVb0dUizLU 9S6yUAViXX+E8l9LX+eokvVJRbueaBREEVwzracr0S3Xs91r3vAKUUddDLCC/18F ZU5XQYpDFxmi4VqKt5fI/Ek+fOAOHOWNBWxK2KkJpuday3UnTZ+qfJC+9favZx1N EkpfFHzlZlrnmpEv3/+de/k/rj0+tN3CTfc/Y+SNIy15TyQgdSYpyzae7LiJq1ZQ Zvq6IZimUOKrngM9J78yJtjTQs3CrLBFLp8uJjYDf/9x5RaqXn2IsZDbyD7CdFZS bM8hoRLtRcoc5xezeoOwWtEJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUuAwYs8CE XdS1KKiNXYc6ympl+TkwHwYDVR0jBBgwFoAU+0toP7pNtqwaWsUIgH/H6klsXsUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThCNzU5LzY5QzNCRUU2RUI2 NDExRUZBOUEyQzI2MUM0RjlBRTAyLy0wdG9QN3BOdHF3YVdzVUlnSF9INmtsc1hz VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLTB0b1A3cE50cXdhV3NVSWdIX0g2a2xzWHNVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Qjc1OS82OUMzQkVFNkVCNjQxMUVGQTlBMkMyNjFDNEY5QUUwMi80NERFMzVEMEVC RTAxMUVGQjUzNEVEN0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGcX9TANBgkqhkiG9w0BAQsFAAOCAQEAycqDsi8Yv8liebmD GtTLoSyRrcWzsuxgLlhk+0Cs7MNxDac5brpEjpGeYIJtg5TfT70zpC63+sYcr/x8 C7SMc4AR/E9kbR8iytdtuxLmDyP/OCxE7xTt2czj1MXJBUkUVie93O+TGgX2Ogzn IrU8zk7neegEg27gZcZzoRD9RCoi/iC5atHglXgPhUDOADEPx8BlBk7PaiaJbzs4 LhDrfbkXEqBkj1EwgV2pRhEXG4H+iFQrAkTsD4FZAC+0TkDbPNR2g5JqJoeG08Xd V5s8Zx8Be+iycE8Z2T2gxzOsigiLdHWZcJ4GngXl0jzW/nwqtLOBBOR64vJdKdRP h2H3xw== -----END CERTIFICATE-----Generated at Sat Apr 5 07:17:02 2025 by rpki-client