$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/599A4CE6E20A11EFB6D59522C4F9AE02.roa File: 599A4CE6E20A11EFB6D59522C4F9AE02.roa (raw, json) Hash identifier: Ako6yP4FzPL/tuK+bXZ7sw24f/7Bv4MP5I/+RHf650g= Subject key identifier: 87:85:9F:E1:BC:99:CE:66:0A:E7:5A:72:78:E9:2A:D6:18:D8:89:31 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: A485 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/599A4CE6E20A11EFB6D59522C4F9AE02.roa Signing time: Mon 03 Feb 2025 08:39:15 +0000 ROA not before: Mon 03 Feb 2025 08:39:15 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137650 IP address blocks: 45.114.70.0/24 maxlen: 24 103.134.250.0/23 maxlen: 24 103.157.126.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 28 Feb 2025 08:51:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42117 (0xa485) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Feb 3 08:39:15 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67a080b3-f346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b3:d2:5e:61:56:8b:03:94:55:ae:5a:4c:b8: e6:2d:ce:e1:bc:84:b7:d6:fe:3d:59:6e:fb:74:13: d0:e0:38:76:29:b1:13:9d:13:8e:cf:fb:96:0f:da: 82:4c:1c:b1:7c:7e:6f:dd:d3:9f:c3:47:6f:be:5e: 56:3f:a0:14:2d:40:4d:6d:bf:ee:8e:1e:df:99:ef: 05:2e:fd:9d:79:d0:89:53:50:18:d5:c7:e8:be:ae: 2d:f2:60:0a:b9:b8:fd:bb:56:cc:bc:5e:be:15:cd: 7d:37:1a:56:07:58:51:46:fc:8d:9d:e3:1b:6d:66: 72:b2:c8:9b:ae:ea:b9:e3:26:40:b4:a8:f1:6b:e5: fa:a0:06:45:df:d3:fd:b2:80:7a:fc:0a:b0:6f:59: cb:e1:26:63:f4:e6:f5:eb:a9:21:bf:8f:cc:c2:54: 1a:43:36:26:2d:8e:65:a6:54:10:87:0c:ec:53:c5: 73:0d:fd:9a:9d:57:f9:0a:7a:b2:e7:80:d2:68:2b: dc:cb:61:96:45:05:5b:8b:de:c6:6b:95:6d:17:ed: 7d:09:89:78:5d:91:8a:19:5d:eb:3a:9a:a8:9d:31: 7c:31:2f:bf:fa:da:04:1f:5d:99:99:02:ce:6b:9a: d3:1d:d8:39:a1:6a:7f:1e:ca:4b:eb:ac:c8:55:6f: e4:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:85:9F:E1:BC:99:CE:66:0A:E7:5A:72:78:E9:2A:D6:18:D8:89:31 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/599A4CE6E20A11EFB6D59522C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.70.0/24 103.134.250.0/23 103.157.126.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:63:ef:12:46:3b:06:27:c1:ad:a5:5f:b2:99:28:56:c0:75: c4:da:6b:56:24:9e:0c:f1:68:31:5c:6d:c5:40:2b:58:33:29: c5:69:fb:b6:e3:83:b5:13:eb:db:3c:08:cd:0d:10:81:fa:0c: 82:90:17:f3:02:ee:3e:a6:0b:b1:11:f8:c5:91:01:20:25:92: c1:26:fa:ab:09:28:10:b6:0c:35:f2:e6:fd:42:4e:c7:6c:be: 96:ea:08:00:55:f6:6d:73:31:c2:c0:57:d5:6a:90:66:0f:41: b0:58:43:9e:ff:95:e6:8f:50:73:57:a2:11:c1:48:99:54:6a: b2:85:6a:02:55:c6:a9:7a:e9:2a:2c:76:d2:f1:fc:e7:7f:1d: a0:6d:ec:50:55:fe:3f:fc:f5:c1:ed:7f:7a:9a:10:6d:03:9b: 7c:9c:7c:e3:cf:e9:a7:d7:28:62:c2:cd:f8:15:c0:0c:a9:41: 2f:3a:dc:b6:d7:a4:b9:bd:35:77:9b:48:22:90:9a:52:5e:84: f2:2e:a8:b0:83:18:9d:98:ea:5c:d0:59:46:59:d8:1e:7b:34: 22:ed:78:4f:e2:90:8e:0d:7a:d5:c7:36:69:4d:2e:71:f7:e8: e6:d9:55:1d:7d:0e:ab:b8:39:fa:ab:4a:9e:4f:21:49:0f:59: 99:c1:c6:93 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIDAKSFMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDIwMzA4MzkxNVoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjdhMDgwYjMtZjM0NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANaz0l5hVosDlFWuWky45i3O4byEt9b+PVlu+3QT0OA4dimxE50Tjs/7lg/a gkwcsXx+b93Tn8NHb75eVj+gFC1ATW2/7o4e35nvBS79nXnQiVNQGNXH6L6uLfJg Crm4/btWzLxevhXNfTcaVgdYUUb8jZ3jG21mcrLIm67queMmQLSo8Wvl+qAGRd/T /bKAevwKsG9Zy+EmY/Tm9eupIb+PzMJUGkM2Ji2OZaZUEIcM7FPFcw39mp1X+Qp6 sueA0mgr3MthlkUFW4vexmuVbRftfQmJeF2Rihld6zqaqJ0xfDEvv/raBB9dmZkC zmua0x3YOaFqfx7KS+usyFVv5K0CAwEAAaOCAqEwggKdMB0GA1UdDgQWBBSHhZ/h vJnOZgrnWnJ46SrWGNiJMTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzU5OUE0Q0U2 RTIwQTExRUZCNkQ1OTUyMkM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMCsGCCsGAQUFBwEHAQH/ BBwwGjAYBAIAATASAwQALXJGAwQBZ4b6AwQBZ51+MA0GCSqGSIb3DQEBCwUAA4IB AQCfY+8SRjsGJ8GtpV+ymShWwHXE2mtWJJ4M8WgxXG3FQCtYMynFafu244O1E+vb PAjNDRCB+gyCkBfzAu4+pguxEfjFkQEgJZLBJvqrCSgQtgw18ub9Qk7HbL6W6ggA VfZtczHCwFfVapBmD0GwWEOe/5Xmj1BzV6IRwUiZVGqyhWoCVcapeukqLHbS8fzn fx2gbexQVf4//PXB7X96mhBtA5t8nHzjz+mn1yhiws34FcAMqUEvOty216S5vTV3 m0gikJpSXoTyLqiwgxidmOpc0FlGWdgeezQi7XhP4pCODXrVxzZpTS5x9+jm2VUd fQ6ruDn6q0qeTyFJD1mZwcaT -----END CERTIFICATE-----Generated at Fri Feb 21 11:15:53 2025 by rpki-client