$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/4B1D295E9EA211EB901A9532C4F9AE02.roa File: 4B1D295E9EA211EB901A9532C4F9AE02.roa (raw, json) Hash identifier: 6+05b8G0TEW8X4nNCgb84dRnZnbGJzRjWgQsJpxv0jY= Subject key identifier: E9:5A:3B:9D:68:6F:22:79:7F:6A:20:27:91:02:75:C3:21:69:FF:0D Certificate issuer: /CN=A918D0E6/serialNumber=7505A86B5F4FAA50543D248C6F0854C505AEDC0F Certificate serial: 0B0B Authority key identifier: 75:05:A8:6B:5F:4F:AA:50:54:3D:24:8C:6F:08:54:C5:05:AE:DC:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/4B1D295E9EA211EB901A9532C4F9AE02.roa Signing time: Thu 06 Mar 2025 19:39:35 +0000 ROA not before: Thu 06 Mar 2025 19:39:35 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 140050 IP address blocks: 103.147.226.0/23 maxlen: 23 103.147.226.0/24 maxlen: 24 103.147.227.0/24 maxlen: 24 2001:df4:d180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.crl rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 17:48:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2827 (0xb0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0E6, serialNumber=7505A86B5F4FAA50543D248C6F0854C505AEDC0F Validity Not Before: Mar 6 19:39:35 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c9f9f6-3478 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:b7:6b:5c:ac:ea:27:82:6c:1d:e0:6a:01:34: 6c:d8:e3:b0:9f:c7:50:54:f8:a3:a7:3a:03:75:51: 6e:29:44:0f:84:8f:65:d1:c1:3a:2e:4f:34:c3:ca: 19:0d:3d:9a:6a:67:1f:e8:55:30:77:b3:90:2a:03: 1a:33:83:70:df:a7:24:4b:ae:30:da:bf:ac:b6:b7: b3:c2:d5:dc:b2:e3:0a:66:ca:46:b6:54:df:73:c3: af:44:5a:bd:72:b2:55:f9:b5:92:d4:2d:92:4d:73: 61:60:90:40:65:9c:c8:63:cf:54:4a:6b:45:03:41: 14:34:6a:cd:43:02:0e:10:54:a7:de:0c:53:d7:56: 7d:de:82:9c:3d:69:8f:24:1b:54:2d:ed:5a:53:66: 6c:47:a1:8a:a2:82:e4:ac:91:03:e6:d9:35:ee:df: ce:90:43:31:35:71:68:39:dd:2f:a5:24:7d:8f:d0: 89:48:30:19:c2:9a:ce:d3:b4:cd:1c:69:86:99:ff: c4:68:48:35:94:6b:63:f1:ae:11:a2:63:06:7e:51: 9a:8f:af:b1:ea:05:bf:af:74:6f:70:31:e2:74:4c: f1:c4:72:48:72:37:90:4a:ed:af:c6:93:eb:c5:02: 61:ac:ad:50:a1:44:2f:98:b3:8a:d4:b2:e3:4f:d0: 56:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:5A:3B:9D:68:6F:22:79:7F:6A:20:27:91:02:75:C3:21:69:FF:0D X509v3 Authority Key Identifier: keyid:75:05:A8:6B:5F:4F:AA:50:54:3D:24:8C:6F:08:54:C5:05:AE:DC:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/4B1D295E9EA211EB901A9532C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.226.0/23 IPv6: 2001:df4:d180::/48 Signature Algorithm: sha256WithRSAEncryption 3a:af:14:a1:10:e9:e1:c3:3d:d4:f3:f8:5e:c6:5c:34:6a:a3: 18:91:a5:3d:d8:85:8d:63:ed:70:ba:04:39:a9:cb:42:99:16: 6d:ee:ce:ff:8d:93:45:32:e1:71:60:0c:b3:c6:49:22:3e:db: 4c:03:73:f8:01:a3:3d:ab:6d:11:21:f1:a2:22:eb:a7:14:d0: 93:d0:69:7d:b5:4e:ab:54:58:8f:21:82:a5:b0:33:f9:a3:2a: 1a:fd:72:f9:d2:bc:0e:81:55:62:bc:aa:c3:53:6d:6b:d6:a1: 6f:1a:56:54:e5:81:dd:6c:49:df:46:fb:c7:32:90:e7:25:e2: 27:d0:ca:d6:3d:17:26:83:68:92:58:75:0f:69:76:1b:6a:d9: 93:b9:8c:d1:9a:13:9c:46:30:94:4f:64:dd:9a:ef:ea:ec:a2: 39:7a:8c:88:ca:da:e7:eb:fa:7d:d7:66:9b:dc:ba:4b:86:00: 6d:d8:ca:c8:59:53:fa:af:26:62:19:eb:c9:f4:6e:a4:57:cd: a3:38:30:38:dc:58:20:b6:c4:db:95:82:a4:84:4a:0c:eb:3c: b6:fc:30:71:d2:88:9b:08:49:bd:cb:ac:e4:40:ea:7a:28:29: 1a:5a:79:1a:f8:db:5b:8e:67:36:1c:3f:86:37:c4:ad:c5:c4: cb:24:13:90 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwRTYxMTAvBgNVBAUTKDc1MDVBODZCNUY0RkFBNTA1NDNEMjQ4QzZGMDg1NEM1 MDVBRURDMEYwHhcNMjUwMzA2MTkzOTM1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M5ZjlmNi0zNDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4LdrXKzqJ4JsHeBqATRs2OOwn8dQVPijpzoDdVFuKUQPhI9l0cE6Lk80w8oZ DT2aamcf6FUwd7OQKgMaM4Nw36ckS64w2r+strezwtXcsuMKZspGtlTfc8OvRFq9 crJV+bWS1C2STXNhYJBAZZzIY89USmtFA0EUNGrNQwIOEFSn3gxT11Z93oKcPWmP JBtULe1aU2ZsR6GKooLkrJED5tk17t/OkEMxNXFoOd0vpSR9j9CJSDAZwprO07TN HGmGmf/EaEg1lGtj8a4RomMGflGaj6+x6gW/r3RvcDHidEzxxHJIcjeQSu2vxpPr xQJhrK1QoUQvmLOK1LLjT9BWSwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOlaO51o byJ5f2ogJ5ECdcMhaf8NMB8GA1UdIwQYMBaAFHUFqGtfT6pQVD0kjG8IVMUFrtwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBFNi9EOEFERDk0MjNG MzcxMUVBQTc4NjQzNEJDNEY5QUUwMi9kUVdvYTE5UHFsQlVQU1NNYndoVXhRV3Uz QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRV29hMTlQcWxCVVBTU01id2hVeFFXdTNBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQwRTYvRDhBREQ5NDIzRjM3MTFFQUE3ODY0MzRCQzRGOUFFMDIvNEIxRDI5NUU5 RUEyMTFFQjkwMUE5NTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnk+IwDwQCAAIwCQMHACABDfTRgDANBgkqhkiG9w0BAQsF AAOCAQEAOq8UoRDp4cM91PP4XsZcNGqjGJGlPdiFjWPtcLoEOanLQpkWbe7O/42T RTLhcWAMs8ZJIj7bTANz+AGjPattESHxoiLrpxTQk9BpfbVOq1RYjyGCpbAz+aMq Gv1y+dK8DoFVYryqw1Nta9ahbxpWVOWB3WxJ30b7xzKQ5yXiJ9DK1j0XJoNoklh1 D2l2G2rZk7mM0ZoTnEYwlE9k3Zrv6uyiOXqMiMra5+v6fddmm9y6S4YAbdjKyFlT +q8mYhnryfRupFfNozgwONxYILbE25WCpIRKDOs8tvwwcdKImwhJvcus5EDqeigp Glp5GvjbW45nNhw/hjfErcXEyyQTkA== -----END CERTIFICATE-----Generated at Sun Apr 13 00:20:21 2025 by rpki-client