$ rpki-client -vvf rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/5B4A8D6EC37C11EF91554967C4F9AE02.roa File: 5B4A8D6EC37C11EF91554967C4F9AE02.roa (raw, json) Hash identifier: DyFZphDj+xYQOQuO59LnOvFtMeJz8Mp/8a6Sd7JeRP8= Subject key identifier: 94:24:F6:D8:C5:83:D9:95:7F:44:A2:86:54:21:3E:4A:0D:F0:FE:52 Certificate issuer: /CN=A912DC44/serialNumber=A6421FE13D8C93A7BDDFF8B53719B5808748D0DF Certificate serial: 0D01 Authority key identifier: A6:42:1F:E1:3D:8C:93:A7:BD:DF:F8:B5:37:19:B5:80:87:48:D0:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/5B4A8D6EC37C11EF91554967C4F9AE02.roa Signing time: Thu 26 Dec 2024 18:16:29 +0000 ROA not before: Thu 26 Dec 2024 18:16:29 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 150748 IP address blocks: 103.89.26.0/24 maxlen: 24 103.127.56.0/23 maxlen: 23 103.127.56.0/24 maxlen: 24 103.127.57.0/24 maxlen: 24 103.127.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.crl rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3329 (0xd01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DC44 Validity Not Before: Dec 26 18:16:29 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676d9d7d-e79b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0c:8f:91:b3:f4:2d:7d:4d:ef:07:fd:9c:0e: a6:f9:1d:a2:87:ca:34:b3:8d:5e:01:f6:88:03:51: d2:d0:0e:cf:ea:19:3f:78:32:1c:b0:9e:f3:a2:d5: 40:d3:69:d8:69:0f:f8:79:9b:4d:64:b9:fe:16:f5: 2d:ac:b0:06:6d:36:2c:52:a9:f0:ba:e0:1f:4e:77: e1:01:19:4a:26:7e:53:3b:ab:e1:f4:9e:29:ed:75: 32:e2:08:11:c9:78:a2:f7:92:6b:cc:de:c1:ae:5b: 6e:a0:36:a5:ce:65:5a:37:61:7f:f2:25:55:c3:33: b2:bd:00:eb:ee:d9:e9:d6:4a:0f:f6:17:4a:1b:0f: 77:a1:44:ef:95:55:c7:58:6f:18:36:63:f7:d6:9c: cf:7b:24:84:86:45:d6:a5:07:6e:96:eb:8b:a0:7c: 4a:24:0e:f9:38:1d:f6:82:b1:3e:a2:45:53:42:9f: 84:73:a4:b4:05:9b:71:6b:02:32:ef:13:62:fd:ba: 02:89:e9:47:36:6a:37:1c:5a:8e:19:6a:c3:11:97: 9b:46:75:d1:2e:00:be:0f:76:8d:d6:41:1d:5c:df: 92:72:e5:16:57:29:73:74:e8:51:f4:7f:16:b7:59: 75:84:6b:dc:f4:e9:4b:f8:0f:3e:41:56:67:3a:8d: 3f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:24:F6:D8:C5:83:D9:95:7F:44:A2:86:54:21:3E:4A:0D:F0:FE:52 X509v3 Authority Key Identifier: keyid:A6:42:1F:E1:3D:8C:93:A7:BD:DF:F8:B5:37:19:B5:80:87:48:D0:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pkIf4T2Mk6e93_i1Nxm1gIdI0N8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DC44/29B6BEDAE4FC11E9B13B4860C4F9AE02/5B4A8D6EC37C11EF91554967C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.89.26.0/24 103.127.56.0/23 103.127.59.0/24 Signature Algorithm: sha256WithRSAEncryption 59:51:dc:49:69:59:44:15:b6:8a:62:5f:de:ed:9e:33:04:36: c1:9f:cf:53:5d:6e:4d:8e:5d:aa:90:c7:bd:de:67:dd:de:b7: fb:4c:88:a3:fc:b0:83:0e:a4:da:07:63:ab:18:4c:2d:b4:b8: 0e:97:a6:e0:41:c6:5f:78:7b:e3:63:d0:6a:21:2d:7d:d4:31: f5:20:d3:1a:26:63:4c:d4:39:eb:93:6a:b1:ea:fe:d7:9b:c6: 4a:4f:a2:9d:c9:0e:85:2e:ba:22:8a:21:8f:44:f7:bd:f4:2b: 0e:ea:9e:00:0a:c7:f5:67:50:6f:1e:ff:e0:33:77:93:8a:d4: 18:ec:32:5d:26:04:0f:2a:59:4c:5d:e8:13:91:d7:3f:3d:53: 38:9b:04:9a:59:94:25:f5:5e:b1:af:b3:3f:6d:fb:60:77:a1: 38:da:32:78:0e:bb:2f:4b:8a:3b:38:e9:71:84:b3:1a:5d:17: 4b:32:ea:4d:46:cb:23:f0:4d:70:ad:fd:a1:d4:b2:f2:1c:b5: dc:00:15:92:20:df:10:ef:ea:dc:b0:5e:13:a8:89:54:59:d3: e4:31:b3:68:2d:a7:49:f6:ca:74:e5:80:2f:2c:d1:e3:bd:23: c2:7c:c4:b9:db:e6:c1:1f:36:79:cd:fb:98:26:47:ed:aa:53: 6d:50:c6:4c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICDQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRDNDQxMTAvBgNVBAUTKEE2NDIxRkUxM0Q4QzkzQTdCRERGRjhCNTM3MTlCNTgw ODc0OEQwREYwHhcNMjQxMjI2MTgxNjI5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzZkOWQ3ZC1lNzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwyPkbP0LX1N7wf9nA6m+R2ih8o0s41eAfaIA1HS0A7P6hk/eDIcsJ7zotVA 02nYaQ/4eZtNZLn+FvUtrLAGbTYsUqnwuuAfTnfhARlKJn5TO6vh9J4p7XUy4ggR yXii95JrzN7BrltuoDalzmVaN2F/8iVVwzOyvQDr7tnp1koP9hdKGw93oUTvlVXH WG8YNmP31pzPeySEhkXWpQduluuLoHxKJA75OB32grE+okVTQp+Ec6S0BZtxawIy 7xNi/boCielHNmo3HFqOGWrDEZebRnXRLgC+D3aN1kEdXN+ScuUWVylzdOhR9H8W t1l1hGvc9OlL+A8+QVZnOo0/1wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFJQk9tjF g9mVf0SihlQhPkoN8P5SMB8GA1UdIwQYMBaAFKZCH+E9jJOnvd/4tTcZtYCHSNDf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREM0NC8yOUI2QkVEQUU0 RkMxMUU5QjEzQjQ4NjBDNEY5QUUwMi9wa0lmNFQyTWs2ZTkzX2kxTnhtMWdJZEkw TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BrSWY0VDJNazZlOTNfaTFOeG0xZ0lkSTBOOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkRDNDQvMjlCNkJFREFFNEZDMTFFOUIxM0I0ODYwQzRGOUFFMDIvNUI0QThENkVD MzdDMTFFRjkxNTU0OTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnWRoDBAFnfzgDBABnfzswDQYJKoZIhvcNAQELBQADggEB AFlR3ElpWUQVtopiX97tnjMENsGfz1Ndbk2OXaqQx73eZ93et/tMiKP8sIMOpNoH Y6sYTC20uA6XpuBBxl94e+Nj0GohLX3UMfUg0xomY0zUOeuTarHq/tebxkpPop3J DoUuuiKKIY9E9730Kw7qngAKx/VnUG8e/+Azd5OK1BjsMl0mBA8qWUxd6BOR1z89 UzibBJpZlCX1XrGvsz9t+2B3oTjaMngOuy9Lijs46XGEsxpdF0sy6k1GyyPwTXCt /aHUsvIctdwAFZIg3xDv6tywXhOoiVRZ0+Qxs2gtp0n2ynTlgC8s0eO9I8J8xLnb 5sEfNnnN+5gmR+2qU21Qxkw= -----END CERTIFICATE-----Generated at Thu Feb 20 03:11:00 2025 by rpki-client