$ rpki-client -vvf rpki.apnic.net/member_repository/A919FF79/A3C08A2ECA9711E8AAE8075FC4F9AE02/A87EED5A7AF111EB86DC9F6CC4F9AE02.roa File: A87EED5A7AF111EB86DC9F6CC4F9AE02.roa (raw, json) Hash identifier: n5O4+xpqurpdXo1l2y1SKOgBDTyWDYNQaGaHjqKBMU8= Subject key identifier: E8:19:D0:6B:46:40:3C:0F:FD:94:14:61:59:11:31:CF:59:83:26:74 Certificate issuer: /CN=A919FF79/serialNumber=FABED3260D2C552BE915D023E189D6128A645F4B Certificate serial: 1234 Authority key identifier: FA:BE:D3:26:0D:2C:55:2B:E9:15:D0:23:E1:89:D6:12:8A:64:5F:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-r7TJg0sVSvpFdAj4YnWEopkX0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919FF79/A3C08A2ECA9711E8AAE8075FC4F9AE02/A87EED5A7AF111EB86DC9F6CC4F9AE02.roa Signing time: Thu 12 Dec 2024 17:35:08 +0000 ROA not before: Thu 12 Dec 2024 17:35:08 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 45577 IP address blocks: 103.77.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919FF79/A3C08A2ECA9711E8AAE8075FC4F9AE02/-r7TJg0sVSvpFdAj4YnWEopkX0s.crl rsync://rpki.apnic.net/member_repository/A919FF79/A3C08A2ECA9711E8AAE8075FC4F9AE02/-r7TJg0sVSvpFdAj4YnWEopkX0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-r7TJg0sVSvpFdAj4YnWEopkX0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4660 (0x1234) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919FF79 Validity Not Before: Dec 12 17:35:08 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=675b1ecc-bc1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:62:ed:fc:6b:88:22:e9:e8:9f:f0:41:b8:4b: 62:b7:46:a0:9c:36:6f:55:74:61:48:30:a5:b6:0b: 6c:54:c9:5a:53:d4:01:55:ff:e5:03:30:6c:4e:d9: 39:a7:a4:00:b7:40:d3:1f:94:61:5e:ea:4f:62:04: 2c:ba:82:89:c2:78:71:31:61:82:f9:30:f9:21:df: 77:d1:b5:ea:75:14:9b:d1:fa:aa:43:6e:cf:be:6c: 54:c0:8f:01:2d:14:86:25:69:6a:b5:44:68:0f:a4: ba:b7:ad:66:23:ed:47:09:ad:f9:70:c0:bb:34:44: 8e:b6:eb:3d:4b:6e:68:04:34:84:14:cd:ae:94:85: 9c:52:fa:27:ce:f8:41:51:88:13:1b:58:c7:2d:41: 32:b7:57:bb:e5:ff:e6:bb:ae:e0:ff:65:e8:55:5c: 01:c4:48:52:ad:50:50:02:a7:00:ed:42:cc:b1:10: fb:c4:72:c5:8c:ab:d6:87:b3:cf:41:18:01:ed:31: 59:34:79:f1:2a:bf:9f:f1:9a:39:90:f8:11:35:11: 2a:d5:49:29:b2:cc:f1:87:e2:6d:d6:7a:7c:19:21: 19:fe:3f:da:0b:c1:97:7b:2c:1f:b6:47:ca:e2:8b: bb:fc:e4:d3:09:c4:40:b0:92:5b:8b:15:6c:a5:e0: 4c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:19:D0:6B:46:40:3C:0F:FD:94:14:61:59:11:31:CF:59:83:26:74 X509v3 Authority Key Identifier: keyid:FA:BE:D3:26:0D:2C:55:2B:E9:15:D0:23:E1:89:D6:12:8A:64:5F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919FF79/A3C08A2ECA9711E8AAE8075FC4F9AE02/-r7TJg0sVSvpFdAj4YnWEopkX0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-r7TJg0sVSvpFdAj4YnWEopkX0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919FF79/A3C08A2ECA9711E8AAE8075FC4F9AE02/A87EED5A7AF111EB86DC9F6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.77.120.0/22 Signature Algorithm: sha256WithRSAEncryption 4a:6f:07:04:40:30:5f:f5:2b:97:9e:57:ed:92:77:d4:f7:4a: a4:1f:6c:70:dc:c9:f2:d9:88:2f:ef:71:0c:56:2c:b8:14:1d: de:65:c5:af:db:2b:1f:2f:14:0f:41:6b:36:1e:8f:2c:be:33: 9b:0c:79:e6:64:e1:49:47:ae:8e:42:6e:de:44:83:fb:33:d3: a3:53:72:a7:2e:5b:0c:45:1e:5b:53:b0:0a:b3:ad:4c:25:b4: af:d2:bd:ff:d2:b9:5f:89:97:62:82:96:4d:28:aa:cf:e2:dc: 66:55:00:37:bb:f5:88:8f:bc:d7:5f:ed:65:ac:45:7b:34:00: 48:03:f8:c8:24:e3:0b:7b:9b:cf:f9:47:a5:00:46:0e:dd:bd: 01:00:db:19:4e:0f:9c:24:8c:b5:a4:ce:94:a0:92:c0:f3:1f: 1d:d2:67:32:0c:1e:7f:0a:1f:cc:79:bb:23:7f:44:82:d3:ac: e0:e9:6d:d1:1a:e0:55:6d:5a:f8:90:99:83:19:4b:7f:80:c3: 97:73:a3:8d:90:50:37:89:05:4a:92:9b:01:44:88:ee:d5:9b: 4d:6d:ad:5f:0b:01:bc:48:f3:3f:07:6c:39:77:0e:0e:5a:e4: e5:18:9d:d3:c7:b9:a1:fb:30:72:61:55:6f:bd:e9:aa:0f:22: 68:eb:71:59 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUZGNzkxMTAvBgNVBAUTKEZBQkVEMzI2MEQyQzU1MkJFOTE1RDAyM0UxODlENjEy OEE2NDVGNEIwHhcNMjQxMjEyMTczNTA4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzViMWVjYy1iYzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmLt/GuIIunon/BBuEtit0agnDZvVXRhSDCltgtsVMlaU9QBVf/lAzBsTtk5 p6QAt0DTH5RhXupPYgQsuoKJwnhxMWGC+TD5Id930bXqdRSb0fqqQ27PvmxUwI8B LRSGJWlqtURoD6S6t61mI+1HCa35cMC7NESOtus9S25oBDSEFM2ulIWcUvonzvhB UYgTG1jHLUEyt1e75f/mu67g/2XoVVwBxEhSrVBQAqcA7ULMsRD7xHLFjKvWh7PP QRgB7TFZNHnxKr+f8Zo5kPgRNREq1Ukpsszxh+Jt1np8GSEZ/j/aC8GXeywftkfK 4ou7/OTTCcRAsJJbixVspeBMnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOgZ0GtG QDwP/ZQUYVkRMc9ZgyZ0MB8GA1UdIwQYMBaAFPq+0yYNLFUr6RXQI+GJ1hKKZF9L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RkY3OS9BM0MwOEEyRUNB OTcxMUU4QUFFODA3NUZDNEY5QUUwMi8tcjdUSmcwc1ZTdnBGZEFqNFluV0VvcGtY MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1yN1RKZzBzVlN2cEZkQWo0WW5XRW9wa1gwcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUZGNzkvQTNDMDhBMkVDQTk3MTFFOEFBRTgwNzVGQzRGOUFFMDIvQTg3RUVENUE3 QUYxMTFFQjg2REM5RjZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnTXgwDQYJKoZIhvcNAQELBQADggEBAEpvBwRAMF/1K5ee V+2Sd9T3SqQfbHDcyfLZiC/vcQxWLLgUHd5lxa/bKx8vFA9BazYejyy+M5sMeeZk 4UlHro5Cbt5Eg/sz06NTcqcuWwxFHltTsAqzrUwltK/Svf/SuV+Jl2KClk0oqs/i 3GZVADe79YiPvNdf7WWsRXs0AEgD+Mgk4wt7m8/5R6UARg7dvQEA2xlOD5wkjLWk zpSgksDzHx3SZzIMHn8KH8x5uyN/RILTrODpbdEa4FVtWviQmYMZS3+Aw5dzo42Q UDeJBUqSmwFEiO7Vm01trV8LAbxI8z8HbDl3Dg5a5OUYndPHuaH7MHJhVW+96aoP ImjrcVk= -----END CERTIFICATE-----Generated at Sun Apr 6 08:51:45 2025 by rpki-client