$ rpki-client -vvf rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/72BCBB042FC211EBB8550B0AC4F9AE02.roa File: 72BCBB042FC211EBB8550B0AC4F9AE02.roa (raw, json) Hash identifier: kntkOaZrAaOx4SVIiImPb0s+dVekp3sawuWhb73K14Q= Subject key identifier: 87:8E:FE:04:85:C0:4C:D0:D4:71:5F:B1:96:C1:37:77:07:57:65:61 Certificate issuer: /CN=A919F53A/serialNumber=AF85788B8C52D128D5340A75095B8F0F11779C48 Certificate serial: 06E5 Authority key identifier: AF:85:78:8B:8C:52:D1:28:D5:34:0A:75:09:5B:8F:0F:11:77:9C:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r4V4i4xS0SjVNAp1CVuPDxF3nEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/72BCBB042FC211EBB8550B0AC4F9AE02.roa Signing time: Fri 20 Dec 2024 21:39:58 +0000 ROA not before: Fri 20 Dec 2024 21:39:58 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 132877 IP address blocks: 103.157.44.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/r4V4i4xS0SjVNAp1CVuPDxF3nEg.crl rsync://rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/r4V4i4xS0SjVNAp1CVuPDxF3nEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r4V4i4xS0SjVNAp1CVuPDxF3nEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:59:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1765 (0x6e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F53A Validity Not Before: Dec 20 21:39:58 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6765e42e-a225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:65:c3:c4:0c:a8:59:e5:22:b6:3f:9c:d3:4c: 2a:49:70:2f:f8:3a:f5:65:ed:67:7e:b0:7b:0f:2f: 4f:a8:76:a8:33:eb:2d:80:49:69:50:8c:f3:41:8f: 2c:a5:3d:37:67:55:62:7e:f1:0d:e3:7e:f2:5c:6a: e9:0d:1b:ef:f1:12:df:60:74:ec:9d:6d:6a:39:25: fb:34:a0:44:1f:35:d1:8b:7c:c1:e4:42:0e:65:1f: c6:68:49:34:80:d0:04:c4:cf:1b:a8:fd:19:8c:54: d4:af:1f:0f:7e:99:78:7b:e9:26:65:a9:d9:bd:69: 39:fd:f5:e3:7b:26:bf:d2:7e:d5:fb:90:ed:8d:84: 42:41:78:54:6e:df:9a:d6:b3:e0:8f:70:9c:cf:06: db:77:c3:1a:40:1f:1f:d6:cc:a3:24:47:6e:9c:c4: 1e:20:5b:a9:b9:0f:e1:8d:7a:54:21:24:13:ee:df: fe:64:0f:b8:e4:ef:da:a9:b5:e8:93:c0:ad:c5:6d: 24:4a:59:19:75:c9:a5:25:a6:62:e9:50:b0:9c:31: 5c:04:57:f9:c5:67:45:90:c7:55:73:1f:18:21:c9: 9d:b5:87:41:06:8d:01:32:26:8e:3c:dc:93:cc:20: 0b:a0:b9:a0:8e:df:f0:54:e1:d1:e2:ed:33:20:9e: 5e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:8E:FE:04:85:C0:4C:D0:D4:71:5F:B1:96:C1:37:77:07:57:65:61 X509v3 Authority Key Identifier: keyid:AF:85:78:8B:8C:52:D1:28:D5:34:0A:75:09:5B:8F:0F:11:77:9C:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/r4V4i4xS0SjVNAp1CVuPDxF3nEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r4V4i4xS0SjVNAp1CVuPDxF3nEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F53A/36B52DFA2FC011EBA25FE982C4F9AE02/72BCBB042FC211EBB8550B0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.157.44.0/23 Signature Algorithm: sha256WithRSAEncryption a0:1f:80:0b:5a:76:e0:93:5b:b4:2c:cf:d1:7e:54:fa:a6:79: 9a:fd:a8:a6:2c:10:51:a3:65:5e:f7:a4:05:a5:30:b6:ca:bb: 1c:2f:c0:ad:0a:41:b3:83:6c:e4:8b:f3:de:62:72:13:3c:fc: 93:0e:e0:01:e3:89:15:40:52:c4:e2:f0:fa:35:d5:25:7b:0a: 55:28:f8:14:14:03:66:52:46:d1:c9:7f:77:49:6f:8b:62:fa: d3:0e:3d:4f:41:e8:a2:a2:97:dd:f1:09:cf:f6:0e:35:9f:2e: 73:c9:ea:a4:39:d8:ab:77:60:9b:24:b3:fc:c2:31:52:e3:cf: 76:ce:4a:92:b6:47:61:6f:30:53:c1:a9:2f:aa:f5:b2:44:7f: 50:f6:3b:48:1a:59:f9:fb:7e:17:e5:c1:fd:82:e5:a2:d8:bc: 04:e4:ce:cc:65:a6:8a:06:b4:b0:cb:45:a5:07:2e:d8:36:1f: e9:ff:cc:cb:af:24:88:0a:ec:3d:67:de:e8:7f:11:51:bd:6f: e7:13:76:ea:2a:0a:2e:fc:59:63:bb:2e:da:fd:52:92:5d:36: 87:84:f1:be:aa:a5:ec:1c:c0:99:ca:cc:87:1b:31:63:41:69: 3f:e7:68:82:33:30:f2:1c:3a:5a:98:69:99:1f:9c:2e:0e:af: 60:76:f2:64 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY1M0ExMTAvBgNVBAUTKEFGODU3ODhCOEM1MkQxMjhENTM0MEE3NTA5NUI4RjBG MTE3NzlDNDgwHhcNMjQxMjIwMjEzOTU4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzY1ZTQyZS1hMjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1WXDxAyoWeUitj+c00wqSXAv+Dr1Ze1nfrB7Dy9PqHaoM+stgElpUIzzQY8s pT03Z1VifvEN437yXGrpDRvv8RLfYHTsnW1qOSX7NKBEHzXRi3zB5EIOZR/GaEk0 gNAExM8bqP0ZjFTUrx8Pfpl4e+kmZanZvWk5/fXjeya/0n7V+5DtjYRCQXhUbt+a 1rPgj3Cczwbbd8MaQB8f1syjJEdunMQeIFupuQ/hjXpUISQT7t/+ZA+45O/aqbXo k8CtxW0kSlkZdcmlJaZi6VCwnDFcBFf5xWdFkMdVcx8YIcmdtYdBBo0BMiaOPNyT zCALoLmgjt/wVOHR4u0zIJ5e5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFIeO/gSF wEzQ1HFfsZbBN3cHV2VhMB8GA1UdIwQYMBaAFK+FeIuMUtEo1TQKdQlbjw8Rd5xI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjUzQS8zNkI1MkRGQTJG QzAxMUVCQTI1RkU5ODJDNEY5QUUwMi9yNFY0aTR4UzBTalZOQXAxQ1Z1UER4RjNu RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I0VjRpNHhTMFNqVk5BcDFDVnVQRHhGM25FZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUY1M0EvMzZCNTJERkEyRkMwMTFFQkEyNUZFOTgyQzRGOUFFMDIvNzJCQ0JCMDQy RkMyMTFFQkI4NTUwQjBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnSwwDQYJKoZIhvcNAQELBQADggEBAKAfgAtaduCTW7Qs z9F+VPqmeZr9qKYsEFGjZV73pAWlMLbKuxwvwK0KQbODbOSL895ichM8/JMO4AHj iRVAUsTi8Po11SV7ClUo+BQUA2ZSRtHJf3dJb4ti+tMOPU9B6KKil93xCc/2DjWf LnPJ6qQ52Kt3YJsks/zCMVLjz3bOSpK2R2FvMFPBqS+q9bJEf1D2O0gaWfn7fhfl wf2C5aLYvATkzsxlpooGtLDLRaUHLtg2H+n/zMuvJIgK7D1n3uh/EVG9b+cTduoq Ci78WWO7Ltr9UpJdNoeE8b6qpewcwJnKzIcbMWNBaT/naIIzMPIcOlqYaZkfnC4O r2B28mQ= -----END CERTIFICATE-----Generated at Sat Apr 5 14:51:19 2025 by rpki-client