$ rpki-client -vvf rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/A5DE28B4216E11EF88CCA84FC4F9AE02.roa File: A5DE28B4216E11EF88CCA84FC4F9AE02.roa (raw, json) Hash identifier: MUDF9AKNbWCIway4TJPxUuZJQV3k6Qs1p5v/vm3gIuE= Subject key identifier: 49:DF:24:2D:3D:21:A1:16:1A:8A:54:E3:EC:0F:6E:E7:1E:86:5B:C2 Certificate issuer: /CN=A912CED3/serialNumber=A741EB410D4B8E46FF48AB70A1DA006A3DCF41A3 Certificate serial: 68 Authority key identifier: A7:41:EB:41:0D:4B:8E:46:FF:48:AB:70:A1:DA:00:6A:3D:CF:41:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/A5DE28B4216E11EF88CCA84FC4F9AE02.roa Signing time: Tue 03 Dec 2024 06:00:36 +0000 ROA not before: Tue 03 Dec 2024 06:00:36 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 14618 IP address blocks: 103.44.109.0/24 maxlen: 24 117.18.103.0/24 maxlen: 24 203.28.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.crl rsync://rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 104 (0x68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CED3 Validity Not Before: Dec 3 06:00:36 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=674e9e84-9c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:92:9d:e1:e6:d1:b3:73:6b:59:00:4c:3d:3a: 2a:44:e2:db:81:14:3c:f8:d1:13:c8:a5:2d:47:42: 4d:72:94:e7:cf:de:13:62:6e:9c:0e:67:1e:b0:2b: e1:71:70:74:ae:89:21:57:ff:5f:01:40:f0:28:62: 18:f4:c2:c2:04:48:11:b8:aa:b2:ad:df:28:d8:f6: 85:2c:02:02:94:af:d8:c0:ee:04:0b:23:df:cb:c9: cc:0b:a9:53:0b:35:81:36:05:d5:c5:11:ea:ea:a2: bf:1f:6c:ce:9f:3d:20:7b:4e:f0:1a:4e:dd:57:29: 40:c4:a9:ee:8e:4a:cf:94:59:ca:5f:15:03:bd:69: c9:0d:29:b7:57:ee:ba:25:c9:51:93:b7:65:3c:1f: 4a:d8:65:db:d3:f7:cd:7a:ff:61:dd:f5:13:cf:00: 48:63:71:57:6d:36:ae:8c:1b:cf:3f:4d:dd:2c:0b: 8e:ea:fa:e8:02:35:f2:e5:76:83:12:fb:33:7a:72: 9a:b7:1e:f8:ea:2c:d4:e8:c5:eb:21:1d:65:11:2a: dc:18:c2:3e:91:ad:e1:4a:16:39:bb:84:fa:75:34: d3:6f:e1:99:3c:87:34:6c:0b:9f:91:a3:33:d0:f1: fa:98:09:94:91:19:d2:d8:c2:11:ba:23:31:ec:fa: df:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:DF:24:2D:3D:21:A1:16:1A:8A:54:E3:EC:0F:6E:E7:1E:86:5B:C2 X509v3 Authority Key Identifier: keyid:A7:41:EB:41:0D:4B:8E:46:FF:48:AB:70:A1:DA:00:6A:3D:CF:41:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/A5DE28B4216E11EF88CCA84FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.44.109.0/24 117.18.103.0/24 203.28.249.0/24 Signature Algorithm: sha256WithRSAEncryption 83:98:43:48:d1:d7:9f:1a:c2:d8:cf:41:bb:59:62:61:cb:27: 14:22:b2:31:f7:5c:5a:58:9f:6a:9f:97:31:f8:fd:e8:96:d1: 01:37:c5:cb:43:59:b2:ca:7c:65:3c:7f:35:a8:e2:ab:43:0e: 33:a4:f5:5c:39:d0:a4:af:bc:17:16:ca:ed:88:31:e3:ff:49: dd:04:fd:db:00:f5:b6:44:fb:2d:38:3c:80:f0:15:f1:23:a3: be:5e:f8:df:eb:7d:ba:1c:83:21:42:9e:4f:a4:68:c7:6c:f5: cf:db:04:79:c5:dd:66:c3:d5:71:fd:a3:78:b6:b1:89:2d:2d: 1d:d8:a3:5c:60:a6:08:40:d1:a1:0b:2d:6d:56:4c:5e:a1:6a: aa:ab:bf:9b:c4:1b:d2:c0:bd:e9:42:d9:9d:68:24:92:ce:8a: 93:8a:d6:91:2a:65:51:10:d6:ea:b8:b2:94:11:fe:60:8d:4c: dd:1e:e0:8a:94:84:45:b3:6f:4d:99:29:d7:d5:0f:15:51:a0: 21:e3:03:f6:9c:89:fb:43:23:1f:8f:28:4b:5b:07:bb:53:c7: 4e:29:19:86:91:96:b1:10:28:59:a3:e6:e9:c6:da:a8:4f:07: 4d:6e:79:d2:7d:4d:d9:bd:4f:ea:e7:c2:08:a1:a5:fb:be:f6: ed:10:5c:ca -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBaDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy Q0VEMzExMC8GA1UEBRMoQTc0MUVCNDEwRDRCOEU0NkZGNDhBQjcwQTFEQTAwNkEz RENGNDFBMzAeFw0yNDEyMDMwNjAwMzZaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NGU5ZTg0LTljNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDpkp3h5tGzc2tZAEw9OipE4tuBFDz40RPIpS1HQk1ylOfP3hNibpwOZx6wK+Fx cHSuiSFX/18BQPAoYhj0wsIESBG4qrKt3yjY9oUsAgKUr9jA7gQLI9/LycwLqVML NYE2BdXFEerqor8fbM6fPSB7TvAaTt1XKUDEqe6OSs+UWcpfFQO9ackNKbdX7rol yVGTt2U8H0rYZdvT9816/2Hd9RPPAEhjcVdtNq6MG88/Td0sC47q+ugCNfLldoMS +zN6cpq3HvjqLNToxeshHWURKtwYwj6RreFKFjm7hPp1NNNv4Zk8hzRsC5+RozPQ 8fqYCZSRGdLYwhG6IzHs+t+XAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUSd8kLT0h oRYailTj7A9u5x6GW8IwHwYDVR0jBBgwFoAUp0HrQQ1Ljkb/SKtwodoAaj3PQaMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJDRUQzLzNDMTYxRkE2MjE2 QzExRUY4MEIxNTMyQkM0RjlBRTAyL3AwSHJRUTFMamtiX1NLdHdvZG9BYWozUFFh TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcDBIclFRMUxqa2JfU0t0d29kb0FhajNQUWFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0VEMy8zQzE2MUZBNjIxNkMxMUVGODBCMTUzMkJDNEY5QUUwMi9BNURFMjhCNDIx NkUxMUVGODhDQ0E4NEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAGcsbQMEAHUSZwMEAMsc+TANBgkqhkiG9w0BAQsFAAOCAQEA g5hDSNHXnxrC2M9Bu1liYcsnFCKyMfdcWlifap+XMfj96JbRATfFy0NZssp8ZTx/ Najiq0MOM6T1XDnQpK+8FxbK7Ygx4/9J3QT92wD1tkT7LTg8gPAV8SOjvl743+t9 uhyDIUKeT6Rox2z1z9sEecXdZsPVcf2jeLaxiS0tHdijXGCmCEDRoQstbVZMXqFq qqu/m8Qb0sC96ULZnWgkks6Kk4rWkSplURDW6riylBH+YI1M3R7gipSERbNvTZkp 19UPFVGgIeMD9pyJ+0MjH48oS1sHu1PHTikZhpGWsRAoWaPm6cbaqE8HTW550n1N 2b1P6ufCCKGl+7727RBcyg== -----END CERTIFICATE-----Generated at Sun Feb 16 15:44:41 2025 by rpki-client