$ rpki-client -vvf rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/D060B5C4B9EA11EFBB71A952C4F9AE02.roa File: D060B5C4B9EA11EFBB71A952C4F9AE02.roa (raw, json) Hash identifier: RH2tA+pDkL65URt1jd9V89/t/7TTanl0u6hNZrCKG3I= Subject key identifier: 01:E8:EB:01:2E:26:FF:29:0F:54:DD:94:99:A2:BE:AB:1C:8F:EF:AB Certificate issuer: /CN=A914E8BF/serialNumber=5FEB2BC066C7AF57D269F75733F0FF83E99039A3 Certificate serial: 0115 Authority key identifier: 5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/D060B5C4B9EA11EFBB71A952C4F9AE02.roa Signing time: Sat 14 Dec 2024 07:12:44 +0000 ROA not before: Sat 14 Dec 2024 07:12:44 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 23532 IP address blocks: 103.135.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 03:25:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 277 (0x115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E8BF Validity Not Before: Dec 14 07:12:44 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=675d2fec-1f13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:8d:8a:80:ff:df:5a:6f:6e:09:b1:6e:75:48: 7e:74:f3:26:05:75:e7:ad:aa:31:fe:1a:99:43:07: ce:e9:e8:75:58:73:15:b8:73:12:30:02:9e:c2:c1: bc:d1:55:64:6d:3c:38:50:85:06:99:0a:9a:03:bf: 7f:42:29:d1:98:4a:37:06:6d:12:61:bc:44:22:3f: 5e:c0:a9:ec:9c:29:c9:9b:ef:e3:6b:42:4f:09:81: 1b:e6:42:c4:79:19:e3:e8:b6:55:1a:c6:5d:92:de: 3b:0d:32:7c:93:fd:96:c8:b9:be:3b:05:cf:79:fd: e8:9b:be:99:f9:a8:6a:c2:5d:2c:f5:d9:2e:01:df: 3c:70:9b:13:d2:64:6c:e9:03:04:b4:81:46:56:60: 0a:81:39:79:1a:0a:5f:c5:86:9f:5f:29:c5:55:ac: e5:0a:94:38:35:31:4a:1b:74:bb:d0:aa:77:f1:a2: 88:8f:57:51:d4:14:d5:64:58:3c:23:04:51:42:9f: 0b:01:a5:63:51:b1:e4:f0:d2:b4:81:d1:2c:bd:22: 5f:cd:42:19:6c:a1:4a:26:cb:3d:6c:2f:0a:9b:2d: 05:e9:b6:be:f5:67:81:5e:12:54:ed:6d:be:8a:86: 07:af:38:76:59:74:a9:43:bb:ee:eb:9a:ac:bd:18: fc:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:E8:EB:01:2E:26:FF:29:0F:54:DD:94:99:A2:BE:AB:1C:8F:EF:AB X509v3 Authority Key Identifier: keyid:5F:EB:2B:C0:66:C7:AF:57:D2:69:F7:57:33:F0:FF:83:E9:90:39:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/X-srwGbHr1fSafdXM_D_g-mQOaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X-srwGbHr1fSafdXM_D_g-mQOaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E8BF/B389CF3841A711EE92E5B378C4F9AE02/D060B5C4B9EA11EFBB71A952C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.44.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:cc:31:2e:cb:d6:f0:75:a7:09:c5:76:b9:98:5a:86:ca:5f: 75:8f:48:fb:33:25:82:34:03:65:64:7a:7c:b8:35:2e:c9:0b: 46:3d:b1:32:b1:3c:0c:3b:90:13:f3:db:a4:c4:59:0d:c0:6d: d7:00:6d:21:9f:a8:cb:98:c7:b0:47:20:05:f2:56:a7:25:d2: ad:9e:2b:07:eb:2b:06:2f:74:01:85:b0:42:76:ad:de:45:b2: 63:e2:08:50:47:18:69:83:c5:07:3e:7d:03:c1:c5:f8:5b:a7: 88:e2:29:df:49:d7:48:e1:9a:1f:47:58:ae:e0:f7:f6:e3:cc: df:40:f2:c6:53:fe:ba:b3:01:74:33:7c:f4:82:7b:38:a1:52: 12:bd:dd:26:7c:8f:38:23:d2:b2:c9:8d:2a:b9:f4:c5:be:2d: ea:f1:9d:a2:06:61:08:bd:a6:63:ec:01:8c:75:7c:9f:0b:92: 8f:07:56:e9:7b:b3:47:90:54:f5:e1:ba:8c:2e:0e:7b:f3:6e: 89:d9:39:13:d7:3a:b4:41:ea:aa:92:42:65:85:26:c7:04:73: da:33:67:05:03:2e:5b:cd:54:e8:f1:47:5a:46:86:21:c0:84: 2b:04:c2:85:db:99:64:b9:a1:b5:01:4b:83:13:a2:0b:1d:1a: e5:6a:32:55 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU4QkYxMTAvBgNVBAUTKDVGRUIyQkMwNjZDN0FGNTdEMjY5Rjc1NzMzRjBGRjgz RTk5MDM5QTMwHhcNMjQxMjE0MDcxMjQ0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzVkMmZlYy0xZjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA142KgP/fWm9uCbFudUh+dPMmBXXnraox/hqZQwfO6eh1WHMVuHMSMAKewsG8 0VVkbTw4UIUGmQqaA79/QinRmEo3Bm0SYbxEIj9ewKnsnCnJm+/ja0JPCYEb5kLE eRnj6LZVGsZdkt47DTJ8k/2WyLm+OwXPef3om76Z+ahqwl0s9dkuAd88cJsT0mRs 6QMEtIFGVmAKgTl5GgpfxYafXynFVazlCpQ4NTFKG3S70Kp38aKIj1dR1BTVZFg8 IwRRQp8LAaVjUbHk8NK0gdEsvSJfzUIZbKFKJss9bC8Kmy0F6ba+9WeBXhJU7W2+ ioYHrzh2WXSpQ7vu65qsvRj8/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFAHo6wEu Jv8pD1TdlJmivqscj++rMB8GA1UdIwQYMBaAFF/rK8Bmx69X0mn3VzPw/4PpkDmj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RThCRi9CMzg5Q0YzODQx QTcxMUVFOTJFNUIzNzhDNEY5QUUwMi9YLXNyd0diSHIxZlNhZmRYTV9EX2ctbVFP YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gtc3J3R2JIcjFmU2FmZFhNX0RfZy1tUU9hTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU4QkYvQjM4OUNGMzg0MUE3MTFFRTkyRTVCMzc4QzRGOUFFMDIvRDA2MEI1QzRC OUVBMTFFRkJCNzFBOTUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnhywwDQYJKoZIhvcNAQELBQADggEBAF/MMS7L1vB1pwnF drmYWobKX3WPSPszJYI0A2Vkeny4NS7JC0Y9sTKxPAw7kBPz26TEWQ3AbdcAbSGf qMuYx7BHIAXyVqcl0q2eKwfrKwYvdAGFsEJ2rd5FsmPiCFBHGGmDxQc+fQPBxfhb p4jiKd9J10jhmh9HWK7g9/bjzN9A8sZT/rqzAXQzfPSCezihUhK93SZ8jzgj0rLJ jSq59MW+LerxnaIGYQi9pmPsAYx1fJ8Lko8HVul7s0eQVPXhuowuDnvzbonZORPX OrRB6qqSQmWFJscEc9ozZwUDLlvNVOjxR1pGhiHAhCsEwoXbmWS5obUBS4MTogsd GuVqMlU= -----END CERTIFICATE-----Generated at Wed Feb 5 09:55:05 2025 by rpki-client