$ rpki-client -vvf rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/A5DE28B4216E11EF88CCA84FC4F9AE02.roa File: A5DE28B4216E11EF88CCA84FC4F9AE02.roa (raw, json) Hash identifier: TnSpnLe7j6/9wTqsNRxeaAfjz8zUewbXt/4PsMyvpP4= Subject key identifier: 54:65:C7:D7:D1:E7:EA:F0:CA:B9:62:FF:DC:E3:69:05:AA:00:7A:96 Certificate issuer: /CN=A912CED3/serialNumber=A741EB410D4B8E46FF48AB70A1DA006A3DCF41A3 Certificate serial: 9F Authority key identifier: A7:41:EB:41:0D:4B:8E:46:FF:48:AB:70:A1:DA:00:6A:3D:CF:41:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/A5DE28B4216E11EF88CCA84FC4F9AE02.roa Signing time: Tue 11 Mar 2025 05:53:12 +0000 ROA not before: Tue 11 Mar 2025 05:53:12 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 14618 IP address blocks: 103.44.109.0/24 maxlen: 24 117.18.103.0/24 maxlen: 24 203.28.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.crl rsync://rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 04:28:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CED3 Validity Not Before: Mar 11 05:53:12 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67cfcfc8-9501 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:de:a0:19:d5:ee:87:56:cf:26:f4:e4:3f:d3: 5d:dd:df:cc:bd:53:fb:1e:d5:d3:58:0c:fa:03:ef: 1f:be:5f:76:01:ad:95:b0:ee:65:f0:09:e7:76:0a: 1c:14:ff:64:d8:c5:7c:fb:c0:0f:4c:5a:da:4e:7e: 60:3a:d7:cc:ba:4c:fe:ae:08:4e:55:8a:b8:c2:c9: 49:09:ae:3e:c4:d2:19:9d:fe:88:aa:0a:a6:86:19: a2:b3:34:46:c6:1c:d9:9c:05:ba:d6:73:70:1e:7d: 43:3d:4c:3e:ea:7c:a1:04:5c:02:16:b7:a4:64:ee: 14:be:b0:27:b4:9a:2a:11:4a:6b:bb:aa:cd:a5:c2: a6:c5:04:a9:d0:1e:88:05:27:45:cb:ca:07:df:c3: 20:c9:95:12:1e:a0:21:01:9e:42:dd:2d:87:68:d9: d1:ee:49:48:da:8d:ef:1b:44:e4:df:fa:95:6f:2d: 45:6c:70:7e:0c:f9:28:a1:3d:60:af:67:7d:63:68: 98:60:f6:75:f6:5d:db:9e:4d:79:e0:af:c6:0e:77: 51:89:22:90:be:66:9d:f3:66:19:5b:77:24:66:35: cf:d9:2d:15:b1:4e:c2:b9:f3:57:a0:f3:fb:ad:05: 6d:da:f4:cd:72:f0:bf:6b:dc:d9:1b:10:e8:70:c2: 7e:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:65:C7:D7:D1:E7:EA:F0:CA:B9:62:FF:DC:E3:69:05:AA:00:7A:96 X509v3 Authority Key Identifier: keyid:A7:41:EB:41:0D:4B:8E:46:FF:48:AB:70:A1:DA:00:6A:3D:CF:41:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p0HrQQ1Ljkb_SKtwodoAaj3PQaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CED3/3C161FA6216C11EF80B1532BC4F9AE02/A5DE28B4216E11EF88CCA84FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.44.109.0/24 117.18.103.0/24 203.28.249.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:94:31:d0:05:3d:0f:28:fc:28:8b:94:35:23:1a:a8:93:31: bc:3e:a3:ce:f3:0b:dd:96:8b:71:80:f1:14:fd:90:01:35:53: 55:17:d0:f8:2a:20:c9:d9:6b:e3:6f:2f:6a:5c:74:f5:0f:08: 90:61:9c:43:b8:96:44:95:a3:ba:4f:46:d6:fb:a8:e6:c8:ef: 0d:ee:84:05:f1:a6:5f:78:49:19:85:46:17:84:1e:82:5e:16: 17:48:0b:67:32:43:2d:dd:17:7d:b8:b9:f6:ac:26:fb:55:22: 87:dc:48:47:1f:67:83:7b:c3:cb:53:a8:88:05:57:91:49:1a: 4f:7c:41:04:28:66:b3:1f:02:f3:ed:52:0a:d5:d6:de:64:6c: 8d:6a:4c:41:95:1c:78:1f:d7:a6:b6:76:07:5b:5c:c3:32:a6: e3:4e:0d:a1:a4:45:0d:2f:12:c5:a6:e2:e8:18:3e:8d:f6:9d: 22:74:68:7b:3b:dd:db:60:2d:78:73:ff:92:cf:8d:b9:5a:2c: b3:34:14:88:bf:c1:29:c9:27:86:bf:98:c4:d9:7e:02:fa:5b: 41:97:53:51:7c:f7:5b:08:24:da:cc:e1:e8:e9:a9:76:e9:84: bb:85:89:df:55:c8:3c:ef:f2:1f:72:52:40:7c:7c:5a:4f:d6: 02:9d:5a:bf -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNFRDMxMTAvBgNVBAUTKEE3NDFFQjQxMEQ0QjhFNDZGRjQ4QUI3MEExREEwMDZB M0RDRjQxQTMwHhcNMjUwMzExMDU1MzEyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NmY2ZjOC05NTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1d6gGdXuh1bPJvTkP9Nd3d/MvVP7HtXTWAz6A+8fvl92Aa2VsO5l8Anndgoc FP9k2MV8+8APTFraTn5gOtfMukz+rghOVYq4wslJCa4+xNIZnf6IqgqmhhmiszRG xhzZnAW61nNwHn1DPUw+6nyhBFwCFrekZO4UvrAntJoqEUpru6rNpcKmxQSp0B6I BSdFy8oH38MgyZUSHqAhAZ5C3S2HaNnR7klI2o3vG0Tk3/qVby1FbHB+DPkooT1g r2d9Y2iYYPZ19l3bnk154K/GDndRiSKQvmad82YZW3ckZjXP2S0VsU7CufNXoPP7 rQVt2vTNcvC/a9zZGxDocMJ+twIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFRlx9fR 5+rwyrli/9zjaQWqAHqWMB8GA1UdIwQYMBaAFKdB60ENS45G/0ircKHaAGo9z0Gj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0VEMy8zQzE2MUZBNjIx NkMxMUVGODBCMTUzMkJDNEY5QUUwMi9wMEhyUVExTGprYl9TS3R3b2RvQWFqM1BR YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3AwSHJRUTFMamtiX1NLdHdvZG9BYWozUFFhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkNFRDMvM0MxNjFGQTYyMTZDMTFFRjgwQjE1MzJCQzRGOUFFMDIvQTVERTI4QjQy MTZFMTFFRjg4Q0NBODRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnLG0DBAB1EmcDBADLHPkwDQYJKoZIhvcNAQELBQADggEB AA6UMdAFPQ8o/CiLlDUjGqiTMbw+o87zC92Wi3GA8RT9kAE1U1UX0PgqIMnZa+Nv L2pcdPUPCJBhnEO4lkSVo7pPRtb7qObI7w3uhAXxpl94SRmFRheEHoJeFhdIC2cy Qy3dF324ufasJvtVIofcSEcfZ4N7w8tTqIgFV5FJGk98QQQoZrMfAvPtUgrV1t5k bI1qTEGVHHgf16a2dgdbXMMypuNODaGkRQ0vEsWm4ugYPo32nSJ0aHs73dtgLXhz /5LPjblaLLM0FIi/wSnJJ4a/mMTZfgL6W0GXU1F891sIJNrM4ejpqXbphLuFid9V yDzv8h9yUkB8fFpP1gKdWr8= -----END CERTIFICATE-----Generated at Thu Mar 13 21:57:11 2025 by rpki-client