$ rpki-client -vvf rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/26F408FA027011EB98FEC44BC4F9AE02.roa File: 26F408FA027011EB98FEC44BC4F9AE02.roa (raw, json) Hash identifier: OT8lFgnYcC18UV02Y4GD3JZ3PmqRrvihPECOx7skEQw= Subject key identifier: 0D:47:79:01:C5:B4:8E:75:31:F5:A1:BA:2D:D9:14:2A:70:CB:B6:12 Certificate issuer: /CN=A915BFDA/serialNumber=5AC7615C459B7881037D75E5651A4CEC36F7EF91 Certificate serial: 0BE3 Authority key identifier: 5A:C7:61:5C:45:9B:78:81:03:7D:75:E5:65:1A:4C:EC:36:F7:EF:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WsdhXEWbeIEDfXXlZRpM7Db375E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/26F408FA027011EB98FEC44BC4F9AE02.roa Signing time: Mon 30 Dec 2024 18:47:26 +0000 ROA not before: Mon 30 Dec 2024 18:47:26 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 137443 IP address blocks: 103.145.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/WsdhXEWbeIEDfXXlZRpM7Db375E.crl rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/WsdhXEWbeIEDfXXlZRpM7Db375E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WsdhXEWbeIEDfXXlZRpM7Db375E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3043 (0xbe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BFDA Validity Not Before: Dec 30 18:47:26 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6772eabe-0c32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e4:48:8b:b2:4c:b6:dd:cb:4a:87:78:6a:65: ba:23:5d:6b:d5:75:07:7d:53:91:00:e1:15:f6:d2: 73:7d:8b:3b:a2:71:6e:e5:f3:2e:fe:f2:20:c5:44: 66:53:82:18:97:65:f4:29:5e:e5:bc:c4:17:eb:f9: ae:cf:00:61:3d:97:9c:23:ba:86:6c:7e:44:44:3c: 92:61:84:d6:d2:d6:28:02:1f:fe:5f:2e:de:48:38: b7:73:c3:9d:d8:0d:f8:99:e0:e0:b9:5c:c6:bd:1a: ca:2d:78:31:4a:30:1c:6a:43:9b:d9:ad:01:d3:61: 77:1c:85:8d:f2:a5:03:94:85:65:55:99:48:9d:94: 74:fd:66:30:bb:38:b6:1d:55:f4:d6:37:89:ac:97: b7:7d:2f:46:a7:6c:58:65:d8:36:87:10:8e:4b:b7: 6d:0d:7a:a9:58:b4:a5:8c:bc:a5:f2:1b:9f:dd:de: d9:fc:97:7e:79:34:ba:b3:47:af:dc:70:4e:58:ff: ec:1a:9c:60:16:43:82:03:42:81:2b:c5:68:b2:f1: a7:45:38:67:b4:24:6a:a2:8a:68:7f:c3:43:75:f1: 26:e1:34:85:52:24:2a:7f:72:d6:54:cd:1c:99:af: 27:5b:a4:02:71:f9:8d:1e:92:73:d5:77:a2:91:0f: e8:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:47:79:01:C5:B4:8E:75:31:F5:A1:BA:2D:D9:14:2A:70:CB:B6:12 X509v3 Authority Key Identifier: keyid:5A:C7:61:5C:45:9B:78:81:03:7D:75:E5:65:1A:4C:EC:36:F7:EF:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/WsdhXEWbeIEDfXXlZRpM7Db375E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WsdhXEWbeIEDfXXlZRpM7Db375E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/26F408FA027011EB98FEC44BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.38.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:e5:d4:40:f0:44:80:f0:2b:21:4b:9d:e7:23:b0:61:d3:1c: cd:40:02:28:92:6b:78:cb:ea:e1:a3:7b:13:49:e0:a1:23:d1: 77:6c:ee:7a:23:c3:46:fc:48:48:f8:07:be:8b:0c:e8:3a:78: 8b:19:22:47:07:c0:4d:83:ce:12:2f:52:4c:2a:9d:17:13:86: 48:64:70:39:94:63:f0:3f:25:2f:f2:ef:fc:54:e0:9d:d2:8e: 5a:14:80:81:46:3f:3a:63:5d:fd:3e:66:cd:7c:c8:fa:e1:54: 77:a3:b6:82:f3:3b:f9:98:32:31:45:39:9b:42:f6:97:8f:69: 5e:d8:eb:f3:6f:bc:7c:fa:0c:ce:af:e2:e6:88:bf:6f:29:f8: 9a:3f:23:5d:87:04:23:17:8e:03:8f:b0:db:49:e7:5d:c5:7d: 1b:0f:2b:91:2c:08:96:55:1a:8c:d3:ec:0c:28:32:66:b3:ee: 13:aa:d9:ca:fd:20:98:e3:a9:20:2a:bd:df:b1:60:3a:6e:11: 94:3a:23:ab:2d:e1:36:56:0d:fc:b4:a8:51:94:8b:9f:5b:b5: 99:49:55:49:2d:d1:a5:91:af:ae:ae:38:ec:98:1f:a4:88:08: 9f:44:27:8a:fa:57:ce:b8:f5:5c:a1:f7:28:de:f3:55:1d:91: c3:86:da:c5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJGREExMTAvBgNVBAUTKDVBQzc2MTVDNDU5Qjc4ODEwMzdENzVFNTY1MUE0Q0VD MzZGN0VGOTEwHhcNMjQxMjMwMTg0NzI2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzcyZWFiZS0wYzMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+RIi7JMtt3LSod4amW6I11r1XUHfVORAOEV9tJzfYs7onFu5fMu/vIgxURm U4IYl2X0KV7lvMQX6/muzwBhPZecI7qGbH5ERDySYYTW0tYoAh/+Xy7eSDi3c8Od 2A34meDguVzGvRrKLXgxSjAcakOb2a0B02F3HIWN8qUDlIVlVZlInZR0/WYwuzi2 HVX01jeJrJe3fS9Gp2xYZdg2hxCOS7dtDXqpWLSljLyl8huf3d7Z/Jd+eTS6s0ev 3HBOWP/sGpxgFkOCA0KBK8VosvGnRThntCRqoopof8NDdfEm4TSFUiQqf3LWVM0c ma8nW6QCcfmNHpJz1XeikQ/oPwIDAQABo4IClTCCApEwHQYDVR0OBBYEFA1HeQHF tI51MfWhui3ZFCpwy7YSMB8GA1UdIwQYMBaAFFrHYVxFm3iBA3115WUaTOw29++R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkZEQS82ODEyN0UyMDBG NEIxMUVBQURBMzc5NzdDNEY5QUUwMi9Xc2RoWEVXYmVJRURmWFhsWlJwTTdEYjM3 NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dzZGhYRVdiZUlFRGZYWGxaUnBNN0RiMzc1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUJGREEvNjgxMjdFMjAwRjRCMTFFQUFEQTM3OTc3QzRGOUFFMDIvMjZGNDA4RkEw MjcwMTFFQjk4RkVDNDRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkSYwDQYJKoZIhvcNAQELBQADggEBAFrl1EDwRIDwKyFL necjsGHTHM1AAiiSa3jL6uGjexNJ4KEj0Xds7nojw0b8SEj4B76LDOg6eIsZIkcH wE2DzhIvUkwqnRcThkhkcDmUY/A/JS/y7/xU4J3SjloUgIFGPzpjXf0+Zs18yPrh VHejtoLzO/mYMjFFOZtC9pePaV7Y6/NvvHz6DM6v4uaIv28p+Jo/I12HBCMXjgOP sNtJ513FfRsPK5EsCJZVGozT7AwoMmaz7hOq2cr9IJjjqSAqvd+xYDpuEZQ6I6st 4TZWDfy0qFGUi59btZlJVUkt0aWRr66uOOyYH6SICJ9EJ4r6V8649Vyh9yje81Ud kcOG2sU= -----END CERTIFICATE-----Generated at Sat Apr 5 00:59:23 2025 by rpki-client