$ rpki-client -vvf rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/A999E39EC36C11EFAF838D35C4F9AE02.roa File: A999E39EC36C11EFAF838D35C4F9AE02.roa (raw, json) Hash identifier: ExkZaSQcYVbQZnYq0oQI5lNxhmBmn7aNpw0QWZM9X5U= Subject key identifier: BC:C0:03:D2:BA:9A:C0:4C:96:71:D2:82:EC:25:90:E3:93:4A:C2:92 Certificate issuer: /CN=A913854D/serialNumber=D95629DE62439BB01EA478AC15CA26E995A97864 Certificate serial: 02 Authority key identifier: D9:56:29:DE:62:43:9B:B0:1E:A4:78:AC:15:CA:26:E9:95:A9:78:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VYp3mJDm7AepHisFcom6ZWpeGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/A999E39EC36C11EFAF838D35C4F9AE02.roa Signing time: Thu 26 Dec 2024 09:34:54 +0000 ROA not before: Thu 26 Dec 2024 09:34:54 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 140661 IP address blocks: 103.151.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.crl rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VYp3mJDm7AepHisFcom6ZWpeGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:22:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913854D Validity Not Before: Dec 26 09:34:54 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=676d233e-5ed2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:fe:db:f3:e5:ee:b8:4a:f3:be:67:a8:e0:da: 10:1e:68:15:47:9c:fe:5d:dc:c8:45:d7:13:3c:a6: 9d:56:c1:3d:01:c8:f0:25:1f:c3:d7:e5:b6:f5:e9: d3:21:23:a4:31:fc:72:13:2e:6f:b4:07:c0:37:28: 47:7b:3d:38:85:4b:bd:ef:ef:ed:29:26:78:91:e8: c3:af:5f:9b:c1:88:60:c4:64:0a:99:ac:ca:9c:09: c4:01:78:33:b9:71:1b:91:07:df:d1:68:5c:5b:07: 8c:d5:dc:43:82:dc:5e:97:55:85:e7:cb:6c:44:f0: 4f:a1:fe:06:f1:ec:ab:ff:72:20:0c:47:8d:af:10: 0f:72:02:7e:1c:72:f5:f0:32:3d:a8:59:3d:70:25: 1c:11:df:24:95:f3:50:35:84:5c:a0:bf:33:5f:54: 06:c7:b5:cb:50:f2:4d:41:59:77:80:e9:e7:ca:7d: bf:92:2b:99:b4:03:3c:e9:4a:25:db:2f:24:cb:ce: ce:ba:9a:93:d4:82:98:a6:0c:b0:24:89:87:77:f1: 87:46:30:74:a3:3b:85:8f:20:fc:f2:56:1d:d8:54: d9:19:1d:50:a1:9d:0f:12:f0:b7:97:79:a1:f9:a0: d9:71:aa:71:45:dc:b0:18:1c:c6:9d:0a:43:f4:30: 9a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:C0:03:D2:BA:9A:C0:4C:96:71:D2:82:EC:25:90:E3:93:4A:C2:92 X509v3 Authority Key Identifier: keyid:D9:56:29:DE:62:43:9B:B0:1E:A4:78:AC:15:CA:26:E9:95:A9:78:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/2VYp3mJDm7AepHisFcom6ZWpeGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VYp3mJDm7AepHisFcom6ZWpeGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913854D/E7C8DD2EC36B11EFBCBC5B16C4F9AE02/A999E39EC36C11EFAF838D35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.115.0/24 Signature Algorithm: sha256WithRSAEncryption 04:b2:5f:93:33:74:14:c1:b3:a2:86:7f:13:8a:5a:6b:ed:ca: 6c:7f:0d:ad:4b:86:04:c9:22:f7:36:f0:2d:39:8f:eb:3a:ac: 77:72:80:91:97:7e:62:be:63:14:a1:7d:53:ce:18:d4:fd:22: ca:11:bc:30:2f:64:1a:37:0e:92:d0:c5:6d:7b:cc:bd:6a:ba: 9d:fa:6f:d6:4c:75:b2:5e:de:c0:a1:ea:50:0f:d0:74:bd:9e: 9d:ce:b2:c7:9b:3c:ba:21:a4:36:93:19:de:fa:b7:47:f9:2d: 77:41:b3:68:e9:ee:d7:89:b4:f6:ca:66:d7:cb:a0:a7:b8:3b: f2:c7:7a:83:74:8c:95:0e:7b:60:b7:56:24:cc:6f:00:d4:e6: 01:e2:6c:fe:bb:3b:8a:70:3e:36:fb:99:66:91:51:8d:a8:7a: 37:cd:11:fa:c2:c1:be:98:28:f9:b7:a8:89:37:08:63:7a:21: e6:b1:69:34:dc:82:db:1d:93:8d:06:8e:bd:ba:f6:4c:54:25: 0b:52:f1:35:3a:8c:44:70:c7:7b:ae:d1:1d:a7:16:dd:4a:47: fe:0a:81:68:96:22:19:9d:dd:b7:ac:9f:ad:75:bf:70:2e:de: 0f:4b:52:69:63:69:63:fe:06:7f:60:c6:b7:44:2a:58:c3:59: 2c:24:af:7a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz ODU0RDExMC8GA1UEBRMoRDk1NjI5REU2MjQzOUJCMDFFQTQ3OEFDMTVDQTI2RTk5 NUE5Nzg2NDAeFw0yNDEyMjYwOTM0NTRaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NmQyMzNlLTVlZDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDl/tvz5e64SvO+Z6jg2hAeaBVHnP5d3MhF1xM8pp1WwT0ByPAlH8PX5bb16dMh I6Qx/HITLm+0B8A3KEd7PTiFS73v7+0pJniR6MOvX5vBiGDEZAqZrMqcCcQBeDO5 cRuRB9/RaFxbB4zV3EOC3F6XVYXny2xE8E+h/gbx7Kv/ciAMR42vEA9yAn4ccvXw Mj2oWT1wJRwR3ySV81A1hFygvzNfVAbHtctQ8k1BWXeA6efKfb+SK5m0AzzpSiXb LyTLzs66mpPUgpimDLAkiYd38YdGMHSjO4WPIPzyVh3YVNkZHVChnQ8S8LeXeaH5 oNlxqnFF3LAYHMadCkP0MJodAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUvMAD0rqa wEyWcdKC7CWQ45NKwpIwHwYDVR0jBBgwFoAU2VYp3mJDm7AepHisFcom6ZWpeGQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4NTREL0U3QzhERDJFQzM2 QjExRUZCQ0JDNUIxNkM0RjlBRTAyLzJWWXAzbUpEbTdBZXBIaXNGY29tNlpXcGVH US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMlZZcDNtSkRtN0FlcEhpc0Zjb202WldwZUdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODU0RC9FN0M4REQyRUMzNkIxMUVGQkNCQzVCMTZDNEY5QUUwMi9BOTk5RTM5RUMz NkMxMUVGQUY4MzhEMzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeXczANBgkqhkiG9w0BAQsFAAOCAQEABLJfkzN0FMGzooZ/ E4paa+3KbH8NrUuGBMki9zbwLTmP6zqsd3KAkZd+Yr5jFKF9U84Y1P0iyhG8MC9k GjcOktDFbXvMvWq6nfpv1kx1sl7ewKHqUA/QdL2enc6yx5s8uiGkNpMZ3vq3R/kt d0GzaOnu14m09spm18ugp7g78sd6g3SMlQ57YLdWJMxvANTmAeJs/rs7inA+NvuZ ZpFRjah6N80R+sLBvpgo+beoiTcIY3oh5rFpNNyC2x2TjQaOvbr2TFQlC1LxNTqM RHDHe67RHacW3UpH/gqBaJYiGZ3dt6yfrXW/cC7eD0tSaWNpY/4Gf2DGt0QqWMNZ LCSveg== -----END CERTIFICATE-----Generated at Thu Feb 6 04:45:51 2025 by rpki-client