$ rpki-client -vvf rpki.apnic.net/member_repository/A915087F/F73196AA33E111EDB3A0EA58C4F9AE02/7CC6F3AAE53311EF884A4360C4F9AE02.roa File: 7CC6F3AAE53311EF884A4360C4F9AE02.roa (raw, json) Hash identifier: SdihL210gPCDV8+I91wffCGT616SJGuUi8ixJc1Exmw= Subject key identifier: 32:D4:0F:D1:52:B4:08:BF:40:4A:DB:4C:3A:54:4B:48:CD:C4:68:B4 Certificate issuer: /CN=A915087F/serialNumber=3A6DD4B70C4560EAC37E81E622CC43809F523B4B Certificate serial: 0200 Authority key identifier: 3A:6D:D4:B7:0C:45:60:EA:C3:7E:81:E6:22:CC:43:80:9F:52:3B:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Om3UtwxFYOrDfoHmIsxDgJ9SO0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915087F/F73196AA33E111EDB3A0EA58C4F9AE02/7CC6F3AAE53311EF884A4360C4F9AE02.roa Signing time: Fri 07 Feb 2025 09:11:17 +0000 ROA not before: Fri 07 Feb 2025 09:11:17 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 4515 IP address blocks: 103.1.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915087F/F73196AA33E111EDB3A0EA58C4F9AE02/Om3UtwxFYOrDfoHmIsxDgJ9SO0s.crl rsync://rpki.apnic.net/member_repository/A915087F/F73196AA33E111EDB3A0EA58C4F9AE02/Om3UtwxFYOrDfoHmIsxDgJ9SO0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Om3UtwxFYOrDfoHmIsxDgJ9SO0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 26 Feb 2025 03:57:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 512 (0x200) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915087F Validity Not Before: Feb 7 09:11:17 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67a5ce35-546a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:a2:b9:1c:16:8f:5f:ca:7d:0a:55:3a:36:d4: a1:aa:4c:5c:e4:e4:e4:08:0f:bf:4e:33:25:bd:4a: 95:32:51:69:30:4e:88:aa:d4:7c:c4:69:1d:24:4d: 58:8c:c6:da:37:24:63:b8:05:a4:31:98:15:84:4f: 57:da:a0:1b:7f:ae:14:3c:be:fb:39:6e:db:25:96: 61:22:d0:ca:c5:a6:9a:71:78:e4:57:45:cb:a1:1d: 69:8b:56:ac:94:54:8b:e4:a8:8e:8e:09:d5:df:70: d9:54:2e:ec:a3:7e:4a:c9:8f:9b:c8:aa:f6:c2:a3: 14:52:c4:ba:f8:b3:97:4a:69:a2:f4:4f:79:74:b8: 17:70:06:c0:30:ab:f1:a2:a5:9f:7f:d6:a1:f4:52: cf:09:fb:dc:ec:15:b8:be:f0:04:59:d4:5b:ae:6f: bd:de:22:97:3e:a1:28:91:92:14:d2:fa:01:fa:36: 3b:e3:7e:70:ba:0c:0b:1a:aa:f0:0f:7b:db:c9:7e: f9:b4:a0:b2:07:72:de:d6:37:ac:be:39:80:78:6b: 4c:6b:8c:ca:07:94:bb:65:41:e9:0a:75:a1:c3:5b: ee:70:d8:f6:26:1e:98:d0:6c:15:e1:11:8b:2a:09: c1:6d:9b:6c:7a:cd:c5:fe:3f:bc:b3:4e:e7:40:92: a7:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:D4:0F:D1:52:B4:08:BF:40:4A:DB:4C:3A:54:4B:48:CD:C4:68:B4 X509v3 Authority Key Identifier: keyid:3A:6D:D4:B7:0C:45:60:EA:C3:7E:81:E6:22:CC:43:80:9F:52:3B:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915087F/F73196AA33E111EDB3A0EA58C4F9AE02/Om3UtwxFYOrDfoHmIsxDgJ9SO0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Om3UtwxFYOrDfoHmIsxDgJ9SO0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915087F/F73196AA33E111EDB3A0EA58C4F9AE02/7CC6F3AAE53311EF884A4360C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.1.158.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:e1:2a:11:15:f0:67:89:00:88:1e:59:f3:aa:7b:73:7f:5d: 73:f1:b0:73:97:e4:39:3a:5d:2c:59:9c:75:ce:5c:2b:a7:42: 06:ed:01:d9:33:11:b4:af:a6:eb:b8:63:68:6e:09:6c:bd:1f: 35:bc:ad:d2:71:55:99:7a:ba:c3:ed:55:6e:c4:cc:06:c2:3c: 2d:78:e7:6d:ac:f3:77:27:26:f1:a1:31:9e:1f:d3:85:cc:b1: 3d:62:2d:d1:df:89:31:c2:81:fe:b0:45:53:4f:0e:78:06:f9: cf:66:b4:b5:f2:4c:56:13:a8:8f:42:9e:63:50:07:93:46:54: 06:8d:05:12:9e:61:bc:f0:00:ce:3e:50:14:a2:d1:50:22:a2: 0f:0a:05:6b:70:dd:3a:2b:cb:0f:3f:34:e9:3d:e6:51:ca:ca: bc:e6:a5:0c:8b:a8:db:fb:d7:5f:56:d5:86:4c:64:08:71:0b: 5d:f8:2b:de:e3:d3:f6:cc:93:7e:08:48:3f:69:28:84:ff:c9: bb:20:9d:06:e8:26:4c:36:e5:6d:63:bc:4a:87:7b:f2:e4:b0: 4a:a1:b7:95:bd:6d:5f:cd:b2:c4:a4:5b:f7:49:59:8a:fd:4b: ab:46:53:d0:5a:95:91:20:3c:bb:ce:96:5b:47:ff:e3:77:9d: 6c:1b:a6:9c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTA4N0YxMTAvBgNVBAUTKDNBNkRENEI3MEM0NTYwRUFDMzdFODFFNjIyQ0M0Mzgw OUY1MjNCNEIwHhcNMjUwMjA3MDkxMTE3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E1Y2UzNS01NDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA66K5HBaPX8p9ClU6NtShqkxc5OTkCA+/TjMlvUqVMlFpME6IqtR8xGkdJE1Y jMbaNyRjuAWkMZgVhE9X2qAbf64UPL77OW7bJZZhItDKxaaacXjkV0XLoR1pi1as lFSL5KiOjgnV33DZVC7so35KyY+byKr2wqMUUsS6+LOXSmmi9E95dLgXcAbAMKvx oqWff9ah9FLPCfvc7BW4vvAEWdRbrm+93iKXPqEokZIU0voB+jY7435wugwLGqrw D3vbyX75tKCyB3Le1jesvjmAeGtMa4zKB5S7ZUHpCnWhw1vucNj2Jh6Y0GwV4RGL KgnBbZtses3F/j+8s07nQJKnQwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDLUD9FS tAi/QErbTDpUS0jNxGi0MB8GA1UdIwQYMBaAFDpt1LcMRWDqw36B5iLMQ4CfUjtL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDg3Ri9GNzMxOTZBQTMz RTExMUVEQjNBMEVBNThDNEY5QUUwMi9PbTNVdHd4RllPckRmb0htSXN4RGdKOVNP MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09tM1V0d3hGWU9yRGZvSG1Jc3hEZ0o5U08wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTA4N0YvRjczMTk2QUEzM0UxMTFFREIzQTBFQTU4QzRGOUFFMDIvN0NDNkYzQUFF NTMzMTFFRjg4NEE0MzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnAZ4wDQYJKoZIhvcNAQELBQADggEBAH7hKhEV8GeJAIge WfOqe3N/XXPxsHOX5Dk6XSxZnHXOXCunQgbtAdkzEbSvpuu4Y2huCWy9HzW8rdJx VZl6usPtVW7EzAbCPC14522s83cnJvGhMZ4f04XMsT1iLdHfiTHCgf6wRVNPDngG +c9mtLXyTFYTqI9CnmNQB5NGVAaNBRKeYbzwAM4+UBSi0VAiog8KBWtw3Toryw8/ NOk95lHKyrzmpQyLqNv7119W1YZMZAhxC134K97j0/bMk34ISD9pKIT/ybsgnQbo Jkw25W1jvEqHe/LksEqht5W9bV/NssSkW/dJWYr9S6tGU9BalZEgPLvOlltH/+N3 nWwbppw= -----END CERTIFICATE-----Generated at Wed Feb 19 22:25:40 2025 by rpki-client