$ rpki-client -vvf rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/BD8EB1A8B9EA11EF8A218C52C4F9AE02.roa File: BD8EB1A8B9EA11EF8A218C52C4F9AE02.roa (raw, json) Hash identifier: mR/q70Jk2CRrQySn0SCNQ9Ok1ptByPEBAf3/SOp/6zs= Subject key identifier: 72:5B:77:7B:81:A2:9C:B2:21:C7:70:4D:C7:22:06:F7:DA:B4:69:7B Certificate issuer: /CN=A914E8BF/serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3 Certificate serial: 0111 Authority key identifier: 5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/BD8EB1A8B9EA11EF8A218C52C4F9AE02.roa Signing time: Sat 14 Dec 2024 07:12:13 +0000 ROA not before: Sat 14 Dec 2024 07:12:12 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 139803 IP address blocks: 103.135.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 06:03:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E8BF Validity Not Before: Dec 14 07:12:12 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=675d2fcc-da62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6c:7f:b5:4a:2a:d5:6a:4a:87:8a:2f:ea:97: 0f:1d:81:49:f4:8a:88:c2:7b:39:2c:2a:3c:d7:e6: e3:3a:4c:ad:6c:87:04:c3:51:ef:ef:2f:5a:46:6a: 08:60:71:d8:83:68:c6:a8:02:89:d8:49:c3:2f:eb: 1d:92:0a:dd:dd:6b:a9:10:2d:46:c2:4a:07:92:af: 23:84:14:d4:af:4c:7d:94:8f:57:c6:80:77:d7:04: 35:7b:85:de:b9:67:d5:ae:4d:58:61:01:0d:e0:d1: 6e:26:f7:e4:bd:3f:d2:96:1f:17:43:67:09:a0:16: 2f:f9:7e:97:da:30:3b:c2:d4:47:e8:9f:c2:be:29: a8:7c:e0:a8:cd:29:2b:53:3c:61:87:19:0e:5b:69: 39:85:55:f2:73:77:9d:9a:d9:27:d7:fb:74:c7:67: d8:29:64:57:55:ab:6e:f6:9f:53:74:b6:64:f9:94: 8e:22:d1:ed:a0:38:4e:b7:fa:86:ed:43:20:bd:fc: 1a:93:42:b5:f6:1a:89:69:b1:e7:de:4c:52:25:c0: 90:93:fd:f6:af:46:c2:14:95:38:1d:bd:f9:17:0b: 20:ea:b0:34:9c:f9:28:e6:8f:d5:ca:d8:82:04:79: 58:e6:78:b4:36:2c:91:0b:cf:4f:d2:40:15:20:91: 85:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:5B:77:7B:81:A2:9C:B2:21:C7:70:4D:C7:22:06:F7:DA:B4:69:7B X509v3 Authority Key Identifier: keyid:5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/BD8EB1A8B9EA11EF8A218C52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.44.0/24 Signature Algorithm: sha256WithRSAEncryption b9:d3:b0:68:00:10:51:43:6a:7b:40:ec:24:bd:97:01:2a:e0: f1:0e:73:c6:b2:5d:56:75:24:d1:42:be:b3:82:16:88:63:5a: e8:51:f1:a5:c2:37:06:61:b4:ad:b9:b6:7f:f4:cc:19:a5:94: fd:25:03:71:0f:95:9c:8e:b3:b1:0a:e1:6a:7d:5a:a8:04:d7: ac:2a:e9:09:74:2a:40:e5:db:cc:56:21:52:bc:78:88:c3:09: 56:48:5a:bb:6c:cc:97:8e:b0:15:ff:77:17:9c:9f:de:b2:46: 84:06:b2:2e:1c:19:06:0e:bb:39:b1:f8:ca:ee:1c:29:9e:02: 91:02:cf:ff:d8:b1:ba:86:2d:ac:ed:54:c9:ea:a7:a1:aa:46: 0a:4a:61:60:7e:cb:29:05:da:99:ba:01:6d:6e:5e:97:20:b2: ae:2b:72:b4:df:89:6b:68:a3:33:11:c0:56:f1:98:f2:11:12: 32:ba:46:30:9d:24:82:9a:7a:f9:31:95:01:a0:9b:0f:db:fb: 88:2e:53:c8:16:1c:bf:93:04:93:65:f1:90:5e:fa:7a:a1:29: 95:0a:c3:2a:a1:5d:72:10:f2:e8:28:a8:de:8a:d1:65:bd:63: a3:f7:1d:1f:da:09:30:fe:c6:5e:17:89:72:78:9e:15:79:3c: bc:5c:d6:7f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU4QkYxMTAvBgNVBAUTKDVGRUIyQkMwNjZDN0FGNTdEMjY5Rjc1NzMzRjBGRjgz RTk5MDM5QTMwHhcNMjQxMjE0MDcxMjEyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzVkMmZjYy1kYTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2x/tUoq1WpKh4ov6pcPHYFJ9IqIwns5LCo81+bjOkytbIcEw1Hv7y9aRmoI YHHYg2jGqAKJ2EnDL+sdkgrd3WupEC1GwkoHkq8jhBTUr0x9lI9XxoB31wQ1e4Xe uWfVrk1YYQEN4NFuJvfkvT/Slh8XQ2cJoBYv+X6X2jA7wtRH6J/CvimofOCozSkr UzxhhxkOW2k5hVXyc3edmtkn1/t0x2fYKWRXVatu9p9TdLZk+ZSOItHtoDhOt/qG 7UMgvfwak0K19hqJabHn3kxSJcCQk/32r0bCFJU4Hb35Fwsg6rA0nPko5o/VytiC BHlY5ni0NiyRC89P0kAVIJGFxQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHJbd3uB opyyIcdwTcciBvfatGl7MB8GA1UdIwQYMBaAFF/rK8Bmx69X0mn3VzPw/4PpkDmj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RThCRi9CMzg5Q0YzODQx QTcxMUVFOTJFNUIzNzhDNEY5QUUwMi9YLXNyd0diSHIxZlNhZmRYTV9EX2ctbVFP YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtc3J3R2JIcjFmU2FmZFhNX0RfZy1tUU9hTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU4QkYvQjM4OUNGMzg0MUE3MTFFRTkyRTVCMzc4QzRGOUFFMDIvQkQ4RUIxQThC OUVBMTFFRjhBMjE4QzUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnhywwDQYJKoZIhvcNAQELBQADggEBALnTsGgAEFFDantA 7CS9lwEq4PEOc8ayXVZ1JNFCvrOCFohjWuhR8aXCNwZhtK25tn/0zBmllP0lA3EP lZyOs7EK4Wp9WqgE16wq6Ql0KkDl28xWIVK8eIjDCVZIWrtszJeOsBX/dxecn96y RoQGsi4cGQYOuzmx+MruHCmeApECz//YsbqGLaztVMnqp6GqRgpKYWB+yykF2pm6 AW1uXpcgsq4rcrTfiWtoozMRwFbxmPIREjK6RjCdJIKaevkxlQGgmw/b+4guU8gW HL+TBJNl8ZBe+nqhKZUKwyqhXXIQ8ugoqN6K0WW9Y6P3HR/aCTD+xl4XiXJ4nhV5 PLxc1n8= -----END CERTIFICATE-----Generated at Wed Feb 19 22:36:03 2025 by rpki-client