$ rpki-client -vvf rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/471FC532E6FC11EE84213C0FC4F9AE02.roa File: 471FC532E6FC11EE84213C0FC4F9AE02.roa (raw, json) Hash identifier: HGatQ3NBKjAKkQPomWLYHF4m0jKMBV6J5PFitZtRd34= Subject key identifier: EC:F6:10:F9:B3:06:83:2B:E2:DC:E3:4F:02:03:AE:34:89:D0:6C:D3 Certificate issuer: /CN=A918E2AC/serialNumber=F47D0FBB6E8B64ECD991168D8F730F7891E4F44E Certificate serial: 0D59 Authority key identifier: F4:7D:0F:BB:6E:8B:64:EC:D9:91:16:8D:8F:73:0F:78:91:E4:F4:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9H0Pu26LZOzZkRaNj3MPeJHk9E4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/471FC532E6FC11EE84213C0FC4F9AE02.roa Signing time: Wed 12 Feb 2025 18:36:23 +0000 ROA not before: Wed 12 Feb 2025 18:36:23 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152479 IP address blocks: 103.133.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/9H0Pu26LZOzZkRaNj3MPeJHk9E4.crl rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/9H0Pu26LZOzZkRaNj3MPeJHk9E4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9H0Pu26LZOzZkRaNj3MPeJHk9E4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:06:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3417 (0xd59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E2AC Validity Not Before: Feb 12 18:36:23 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67acea27-f89d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:5f:6f:cc:c5:35:fe:93:44:f9:ff:16:82:16: e4:be:e8:54:99:c3:59:06:e7:8e:da:b1:b5:0d:7f: 87:9b:12:df:ae:8e:96:d1:95:60:55:e9:d3:5c:2b: 74:ec:9a:ba:ad:3b:1c:27:fe:74:c5:22:13:cb:6b: 3f:67:cf:a3:a2:e3:0f:4b:c8:41:98:00:eb:1f:bb: 27:f8:c3:73:84:4e:6a:dd:ef:40:4a:6f:01:73:f7: a4:67:81:1e:51:4a:01:08:43:c8:24:7e:3b:f3:e4: 26:fe:a3:8e:29:9b:61:f4:8a:2b:eb:4d:5e:83:54: 3a:61:fc:ff:c2:ba:74:32:89:77:0b:99:ea:53:cd: 87:7e:c0:8a:5c:4f:f8:4c:96:ad:92:91:27:95:56: 07:9b:26:79:7e:25:02:57:23:2d:66:18:96:4f:aa: c0:47:ab:46:db:34:d1:08:33:04:bc:e7:45:ad:9d: 2a:9f:dc:8c:43:48:68:b2:6c:f5:45:ab:fc:ba:ab: 3d:2b:80:3b:37:1b:d6:f6:a8:b5:9a:d0:78:96:8c: 1b:77:84:49:d7:30:b9:24:47:12:af:90:a2:86:0a: 4d:b7:c2:b3:d6:30:0d:5b:07:c5:0e:fe:d1:e3:a7: 77:97:b1:c3:59:04:06:6a:82:54:c5:a2:4f:02:58: 7c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:F6:10:F9:B3:06:83:2B:E2:DC:E3:4F:02:03:AE:34:89:D0:6C:D3 X509v3 Authority Key Identifier: keyid:F4:7D:0F:BB:6E:8B:64:EC:D9:91:16:8D:8F:73:0F:78:91:E4:F4:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/9H0Pu26LZOzZkRaNj3MPeJHk9E4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9H0Pu26LZOzZkRaNj3MPeJHk9E4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/471FC532E6FC11EE84213C0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.207.0/24 Signature Algorithm: sha256WithRSAEncryption 53:ae:57:2a:4b:cb:27:fd:87:7e:7e:e1:d0:4f:f0:46:97:41: 41:b0:c6:27:1f:52:54:d9:da:34:77:f2:be:91:07:f2:6f:e9: 8d:6d:c8:1d:68:47:3a:1c:20:c0:43:95:6b:64:f3:b8:c8:4c: 55:f6:b1:f9:2b:c4:c3:a6:d3:fd:0c:14:b6:33:cb:48:fd:26: 52:4a:7d:f1:35:f2:b8:97:d6:0c:11:a5:90:94:00:17:89:e0: 0b:ba:42:0e:72:89:17:8d:45:eb:36:2f:29:50:21:23:0f:62: a1:8e:d7:95:91:37:f5:78:92:af:05:87:e4:82:37:33:9c:f7: cd:f2:0d:ba:fa:c2:8e:6a:94:6a:a1:68:9c:c6:21:96:5a:23: d0:f3:f6:80:e0:a7:40:75:53:71:01:67:3e:c9:84:43:d7:dd: 18:e3:60:40:b3:1d:f4:4b:da:9a:89:bb:e4:05:f6:4d:87:74: 69:ea:13:3e:f8:2e:44:a2:73:bc:97:ac:21:48:4f:a0:a6:04: d4:af:3c:8c:64:58:d5:5c:79:23:55:38:58:44:2c:d0:db:3f: 5e:b2:2f:c1:36:ca:a3:a3:e9:fa:28:08:c0:58:24:72:df:f1: 00:e9:ee:9f:04:83:9d:3e:84:78:c3:e0:99:4f:30:f2:f7:fd: 2d:78:a1:9b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyQUMxMTAvBgNVBAUTKEY0N0QwRkJCNkU4QjY0RUNEOTkxMTY4RDhGNzMwRjc4 OTFFNEY0NEUwHhcNMjUwMjEyMTgzNjIzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FjZWEyNy1mODlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA319vzMU1/pNE+f8WghbkvuhUmcNZBueO2rG1DX+HmxLfro6W0ZVgVenTXCt0 7Jq6rTscJ/50xSITy2s/Z8+jouMPS8hBmADrH7sn+MNzhE5q3e9ASm8Bc/ekZ4Ee UUoBCEPIJH478+Qm/qOOKZth9Ior601eg1Q6Yfz/wrp0Mol3C5nqU82HfsCKXE/4 TJatkpEnlVYHmyZ5fiUCVyMtZhiWT6rAR6tG2zTRCDMEvOdFrZ0qn9yMQ0hosmz1 Rav8uqs9K4A7NxvW9qi1mtB4lowbd4RJ1zC5JEcSr5CihgpNt8Kz1jANWwfFDv7R 46d3l7HDWQQGaoJUxaJPAlh8tQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOz2EPmz BoMr4tzjTwIDrjSJ0GzTMB8GA1UdIwQYMBaAFPR9D7tui2Ts2ZEWjY9zD3iR5PRO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTJBQy82NDE3MTMxNkNB MzIxMUU5OEJGQ0QzNTJDNEY5QUUwMi85SDBQdTI2TFpPelprUmFOajNNUGVKSGs5 RTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlIMFB1MjZMWk96WmtSYU5qM01QZUpIazlFNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEUyQUMvNjQxNzEzMTZDQTMyMTFFOThCRkNEMzUyQzRGOUFFMDIvNDcxRkM1MzJF NkZDMTFFRTg0MjEzQzBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnhc8wDQYJKoZIhvcNAQELBQADggEBAFOuVypLyyf9h35+ 4dBP8EaXQUGwxicfUlTZ2jR38r6RB/Jv6Y1tyB1oRzocIMBDlWtk87jITFX2sfkr xMOm0/0MFLYzy0j9JlJKffE18riX1gwRpZCUABeJ4Au6Qg5yiReNRes2LylQISMP YqGO15WRN/V4kq8Fh+SCNzOc983yDbr6wo5qlGqhaJzGIZZaI9Dz9oDgp0B1U3EB Zz7JhEPX3RjjYECzHfRL2pqJu+QF9k2HdGnqEz74LkSic7yXrCFIT6CmBNSvPIxk WNVceSNVOFhELNDbP16yL8E2yqOj6fooCMBYJHLf8QDp7p8Eg50+hHjD4JlPMPL3 /S14oZs= -----END CERTIFICATE-----Generated at Sat Apr 5 07:17:07 2025 by rpki-client