$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/DDE4B378619211EEB366AF27C4F9AE02.roa File: DDE4B378619211EEB366AF27C4F9AE02.roa (raw, json) Hash identifier: rvY+LkMKAD7I9F4fJqFK4vOJYN8p/UI2Ku0scGCRPiA= Subject key identifier: 06:5C:8C:F7:52:11:9F:86:36:61:A3:06:93:E0:38:ED:BA:57:4F:F3 Certificate issuer: /CN=A9125475/serialNumber=4440F6C422E9500C7D46A62D7DEB70D33A88750E Certificate serial: 3632 Authority key identifier: 44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/DDE4B378619211EEB366AF27C4F9AE02.roa Signing time: Mon 02 Dec 2024 14:30:22 +0000 ROA not before: Mon 02 Dec 2024 14:30:22 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 131090 IP address blocks: 61.7.128.0/18 maxlen: 24 103.10.228.0/22 maxlen: 22 103.10.228.0/24 maxlen: 24 103.10.229.0/24 maxlen: 24 103.10.230.0/24 maxlen: 24 103.10.231.0/24 maxlen: 24 110.77.128.0/17 maxlen: 24 110.78.128.0/18 maxlen: 24 116.58.224.0/19 maxlen: 24 119.42.64.0/18 maxlen: 24 2001:c38:b000::/36 maxlen: 36 2001:c38:b010::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:20:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13874 (0x3632) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125475 Validity Not Before: Dec 2 14:30:22 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674dc47d-186b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:68:25:1f:83:b5:10:2f:a9:e1:17:b5:72:8d: 71:60:f7:0e:6e:7a:11:3b:5f:fa:a2:ec:be:8b:5f: 23:fb:ef:1e:58:44:34:a3:70:57:11:21:48:b4:f7: 56:32:74:17:18:d5:49:aa:42:94:42:19:dc:7e:90: a3:b2:57:02:77:5f:4e:89:8a:a9:42:30:7d:9e:16: a9:8d:ea:73:f3:2e:38:5a:ce:2b:20:d2:b9:e4:90: d1:07:3a:ab:49:11:ff:44:fc:8d:ae:c7:fe:42:81: ca:a1:a0:d3:9a:e2:a7:63:28:0e:de:6d:a1:79:e9: cb:21:bf:0c:32:00:0b:d5:96:90:6b:3e:c8:40:32: 99:78:38:2f:88:be:2a:c9:a7:de:e4:eb:0d:96:e1: 5c:7c:a6:c4:70:a9:d5:6f:52:ca:05:e7:d1:3b:c0: 7a:78:b2:9b:21:94:33:d9:3d:ac:36:60:30:86:58: 23:8f:2d:bd:5a:b4:07:35:56:7f:35:50:12:f4:cd: bb:c3:92:af:19:f2:90:0a:57:c0:9d:c2:01:9b:f6: 21:3d:78:af:b2:98:a1:44:72:9d:bd:d6:96:9d:b6: e5:99:80:fc:8f:64:3f:42:a9:95:a3:c1:c4:d1:59: c2:35:59:e1:26:82:fd:5a:9f:b0:c3:0b:4e:88:42: 37:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:5C:8C:F7:52:11:9F:86:36:61:A3:06:93:E0:38:ED:BA:57:4F:F3 X509v3 Authority Key Identifier: keyid:44:40:F6:C4:22:E9:50:0C:7D:46:A6:2D:7D:EB:70:D3:3A:88:75:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/RED2xCLpUAx9RqYtfetw0zqIdQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RED2xCLpUAx9RqYtfetw0zqIdQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/AB4479721D7811E2ADB6F2C408B02CD2/DDE4B378619211EEB366AF27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.7.128.0/18 103.10.228.0/22 110.77.128.0/17 110.78.128.0/18 116.58.224.0/19 119.42.64.0/18 IPv6: 2001:c38:b000::/36 Signature Algorithm: sha256WithRSAEncryption 33:1e:d2:76:6d:a4:ba:8a:75:f3:30:a5:2f:c6:d0:9f:b5:b9: 46:ca:de:a7:4c:b3:b9:b0:c7:b5:74:a2:a8:0d:e9:e4:dd:e8: 41:25:28:18:9c:33:8b:b8:59:1e:86:f2:0b:fc:bf:42:96:96: 94:d5:13:e8:b7:0b:aa:c6:02:8e:8e:c6:0d:26:17:34:82:5b: f2:80:52:9b:e1:a6:60:78:0a:87:16:a4:33:c1:37:70:9c:b6: 7c:90:16:6f:6b:de:3c:a5:3b:d5:81:8a:fa:8d:19:f0:27:74: ad:38:c6:4d:95:da:be:ed:5b:c0:fe:29:e7:64:a0:d4:ea:9c: c0:63:cc:f9:62:b1:87:bc:50:68:54:f6:c1:65:62:6e:ea:92: 0b:da:51:fe:a1:38:88:cb:66:8c:0d:eb:8f:1f:79:1a:5c:27: cf:ea:0b:81:ef:12:c8:4e:f2:05:bb:5a:3b:72:25:de:18:db: 81:0d:78:41:d9:f5:20:6b:d0:d7:d9:c9:80:9d:a4:23:63:93: 1e:1e:3b:94:28:cf:2f:bf:30:2a:43:2f:8c:f4:05:18:ba:dd: 06:53:7c:f2:c0:c8:50:f2:ab:82:77:62:f1:b9:52:b4:fb:d2: 2c:b7:ff:57:3b:1c:f5:f1:60:67:75:25:c0:79:7e:e1:6c:70: 2f:f0:a8:5f -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgICNjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0NzUxMTAvBgNVBAUTKDQ0NDBGNkM0MjJFOTUwMEM3RDQ2QTYyRDdERUI3MEQz M0E4ODc1MEUwHhcNMjQxMjAyMTQzMDIyWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRkYzQ3ZC0xODZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmglH4O1EC+p4Re1co1xYPcObnoRO1/6ouy+i18j++8eWEQ0o3BXESFItPdW MnQXGNVJqkKUQhncfpCjslcCd19OiYqpQjB9nhapjepz8y44Ws4rINK55JDRBzqr SRH/RPyNrsf+QoHKoaDTmuKnYygO3m2heenLIb8MMgAL1ZaQaz7IQDKZeDgviL4q yafe5OsNluFcfKbEcKnVb1LKBefRO8B6eLKbIZQz2T2sNmAwhlgjjy29WrQHNVZ/ NVAS9M27w5KvGfKQClfAncIBm/YhPXivspihRHKdvdaWnbblmYD8j2Q/QqmVo8HE 0VnCNVnhJoL9Wp+wwwtOiEI3cwIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFAZcjPdS EZ+GNmGjBpPgOO26V0/zMB8GA1UdIwQYMBaAFERA9sQi6VAMfUamLX3rcNM6iHUO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQ3NS9BQjQ0Nzk3MjFE NzgxMUUyQURCNkYyQzQwOEIwMkNEMi9SRUQyeENMcFVBeDlScVl0ZmV0dzB6cUlk UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JFRDJ4Q0xwVUF4OVJxWXRmZXR3MHpxSWRRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0NzUvQUI0NDc5NzIxRDc4MTFFMkFEQjZGMkM0MDhCMDJDRDIvRERFNEIzNzg2 MTkyMTFFRUIzNjZBRjI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTQYIKwYBBQUHAQcBAf8E PjA8MCoEAgABMCQDBAY9B4ADBAJnCuQDBAduTYADBAZuToADBAV0OuADBAZ3KkAw DgQCAAIwCAMGBCABDDiwMA0GCSqGSIb3DQEBCwUAA4IBAQAzHtJ2baS6inXzMKUv xtCftblGyt6nTLO5sMe1dKKoDenk3ehBJSgYnDOLuFkehvIL/L9ClpaU1RPotwuq xgKOjsYNJhc0glvygFKb4aZgeAqHFqQzwTdwnLZ8kBZva948pTvVgYr6jRnwJ3St OMZNldq+7VvA/innZKDU6pzAY8z5YrGHvFBoVPbBZWJu6pIL2lH+oTiIy2aMDeuP H3kaXCfP6guB7xLITvIFu1o7ciXeGNuBDXhB2fUga9DX2cmAnaQjY5MeHjuUKM8v vzAqQy+M9AUYut0GU3zywMhQ8quCd2LxuVK0+9Ist/9XOxz18WBndSXAeX7hbHAv 8Khf -----END CERTIFICATE-----Generated at Sun Apr 6 11:25:48 2025 by rpki-client