$ rpki-client -vvf rpki.apnic.net/member_repository/A916DB8E/FF80276C3BCC11EC8A6BCD7EC4F9AE02/4AD39148A91511ED9E2AC948C4F9AE02.roa File: 4AD39148A91511ED9E2AC948C4F9AE02.roa (raw, json) Hash identifier: lV86FgcjhujyEw+tqQZA5LVzdbV5o2JfVCvKZDvrKH8= Subject key identifier: 12:B6:70:81:23:E2:E4:8D:38:E4:43:01:D9:5E:A0:23:C0:49:4C:BB Certificate issuer: /CN=A916DB8E/serialNumber=9DE3DA7A0AC6940D32ABB9CFFCB061F2AEE5661D Certificate serial: 048B Authority key identifier: 9D:E3:DA:7A:0A:C6:94:0D:32:AB:B9:CF:FC:B0:61:F2:AE:E5:66:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nePaegrGlA0yq7nP_LBh8q7lZh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DB8E/FF80276C3BCC11EC8A6BCD7EC4F9AE02/4AD39148A91511ED9E2AC948C4F9AE02.roa Signing time: Thu 03 Apr 2025 00:25:48 +0000 ROA not before: Thu 03 Apr 2025 00:25:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55020 IP address blocks: 45.113.0.0/22 maxlen: 24 103.52.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DB8E/FF80276C3BCC11EC8A6BCD7EC4F9AE02/nePaegrGlA0yq7nP_LBh8q7lZh0.crl rsync://rpki.apnic.net/member_repository/A916DB8E/FF80276C3BCC11EC8A6BCD7EC4F9AE02/nePaegrGlA0yq7nP_LBh8q7lZh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nePaegrGlA0yq7nP_LBh8q7lZh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 00:12:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1163 (0x48b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DB8E Validity Not Before: Apr 3 00:25:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67edd58c-bebe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:00:43:f0:58:0a:d4:6b:98:ed:2a:71:8d:f0: 0d:e8:e3:62:d2:a3:01:c8:14:19:c1:73:7e:48:c9: cf:9e:7f:ca:91:4d:cd:56:9f:ec:36:2f:ce:bb:2b: 69:2c:e2:98:81:06:df:ca:2a:05:43:55:28:a3:b2: 5c:9f:82:56:9f:c7:ee:2b:62:68:89:d4:1e:71:8f: f5:48:9b:86:fa:f3:08:d9:a6:20:da:a5:cb:1f:01: a8:e8:2f:64:d1:59:0b:e6:5b:3a:11:81:15:80:4a: ac:1a:b8:02:be:25:75:56:48:70:b6:42:ee:db:59: cb:67:40:89:e6:89:ee:1d:a5:47:49:dd:f4:1b:5c: 4c:93:6b:83:b0:43:10:40:dd:fd:4a:31:dd:e4:d4: 41:31:f8:65:1c:c2:f4:fe:05:47:4f:d8:09:f1:73: 1a:88:5b:25:36:f2:37:b0:6d:d0:01:c6:24:2b:11: ee:c9:5b:2a:d8:58:a0:89:d0:20:32:3f:71:e8:e3: e4:a4:1d:a7:b7:10:8b:cb:3a:1c:a4:4c:a5:a4:c5: d6:70:3c:6c:0e:18:5f:44:dd:41:df:5c:79:22:07: bb:6d:36:64:90:18:bd:b3:b6:ef:11:3d:65:89:b9: 78:9d:42:71:42:e0:25:55:6f:27:c8:1b:cb:6f:d9: 24:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:B6:70:81:23:E2:E4:8D:38:E4:43:01:D9:5E:A0:23:C0:49:4C:BB X509v3 Authority Key Identifier: keyid:9D:E3:DA:7A:0A:C6:94:0D:32:AB:B9:CF:FC:B0:61:F2:AE:E5:66:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DB8E/FF80276C3BCC11EC8A6BCD7EC4F9AE02/nePaegrGlA0yq7nP_LBh8q7lZh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nePaegrGlA0yq7nP_LBh8q7lZh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DB8E/FF80276C3BCC11EC8A6BCD7EC4F9AE02/4AD39148A91511ED9E2AC948C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.113.0.0/22 103.52.152.0/22 Signature Algorithm: sha256WithRSAEncryption b2:bb:d3:46:f5:8b:3f:c4:0f:66:7f:80:3a:09:d4:2f:f5:96: e7:82:36:9d:a2:df:3e:34:30:49:13:b5:1d:65:0c:0e:ee:00: 11:ad:b0:af:42:ef:6d:c3:4c:bc:f3:bc:f8:41:ee:da:c8:f1: 6f:2e:8c:03:39:78:cb:00:98:2d:32:fc:e0:7d:28:d5:81:e5: 5b:fd:13:13:17:9b:54:ed:3e:4b:7f:8d:0d:4f:e3:f6:f6:44: 29:e7:b1:35:23:b2:50:0f:cf:ee:ea:3b:d1:0a:02:42:fb:a3: 76:06:e5:88:46:07:df:e3:b6:97:c4:d6:d0:a5:45:74:33:ca: 8e:fd:cd:0d:80:41:46:db:59:a2:a1:2b:2b:a7:b5:84:33:cd: 0f:63:20:ea:89:45:dc:b7:29:64:2e:f1:85:9d:a9:b6:ee:33: 88:b0:94:60:27:ed:e5:e4:c8:84:e2:58:4e:f7:50:a5:61:a0: b3:3d:e9:76:28:90:27:21:72:07:10:4d:f1:6c:dc:f1:b9:f8: 64:2a:6d:33:f3:4a:bb:97:57:93:e0:c5:f9:01:46:75:a5:83: 16:01:2a:0d:a4:be:56:9c:43:b1:67:50:8f:9f:c9:15:e4:3a: 55:74:19:f3:90:04:01:af:fa:0b:3a:53:15:6c:f8:6d:92:5c: 9d:bc:1a:37 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRCOEUxMTAvBgNVBAUTKDlERTNEQTdBMEFDNjk0MEQzMkFCQjlDRkZDQjA2MUYy QUVFNTY2MUQwHhcNMjUwNDAzMDAyNTQ4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkZDU4Yy1iZWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwBD8FgK1GuY7SpxjfAN6ONi0qMByBQZwXN+SMnPnn/KkU3NVp/sNi/Ouytp LOKYgQbfyioFQ1Uoo7Jcn4JWn8fuK2JoidQecY/1SJuG+vMI2aYg2qXLHwGo6C9k 0VkL5ls6EYEVgEqsGrgCviV1VkhwtkLu21nLZ0CJ5onuHaVHSd30G1xMk2uDsEMQ QN39SjHd5NRBMfhlHML0/gVHT9gJ8XMaiFslNvI3sG3QAcYkKxHuyVsq2FigidAg Mj9x6OPkpB2ntxCLyzocpEylpMXWcDxsDhhfRN1B31x5Ige7bTZkkBi9s7bvET1l ibl4nUJxQuAlVW8nyBvLb9kk+wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBK2cIEj 4uSNOORDAdleoCPASUy7MB8GA1UdIwQYMBaAFJ3j2noKxpQNMqu5z/ywYfKu5WYd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REI4RS9GRjgwMjc2QzNC Q0MxMUVDOEE2QkNEN0VDNEY5QUUwMi9uZVBhZWdyR2xBMHlxN25QX0xCaDhxN2xa aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25lUGFlZ3JHbEEweXE3blBfTEJoOHE3bFpoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkRCOEUvRkY4MDI3NkMzQkNDMTFFQzhBNkJDRDdFQzRGOUFFMDIvNEFEMzkxNDhB OTE1MTFFRDlFMkFDOTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAItcQADBAJnNJgwDQYJKoZIhvcNAQELBQADggEBALK700b1 iz/ED2Z/gDoJ1C/1lueCNp2i3z40MEkTtR1lDA7uABGtsK9C723DTLzzvPhB7trI 8W8ujAM5eMsAmC0y/OB9KNWB5Vv9ExMXm1TtPkt/jQ1P4/b2RCnnsTUjslAPz+7q O9EKAkL7o3YG5YhGB9/jtpfE1tClRXQzyo79zQ2AQUbbWaKhKyuntYQzzQ9jIOqJ Rdy3KWQu8YWdqbbuM4iwlGAn7eXkyITiWE73UKVhoLM96XYokCchcgcQTfFs3PG5 +GQqbTPzSruXV5PgxfkBRnWlgxYBKg2kvlacQ7FnUI+fyRXkOlV0GfOQBAGv+gs6 UxVs+G2SXJ28Gjc= -----END CERTIFICATE-----Generated at Sat Apr 5 08:19:01 2025 by rpki-client