$ rpki-client -vvf rpki.apnic.net/member_repository/A919123C/E5621A68B54811EAB1F54066C4F9AE02/2B7215E2B54B11EA85EE266DC4F9AE02.roa File: 2B7215E2B54B11EA85EE266DC4F9AE02.roa (raw, json) Hash identifier: HHCFckY7O591LILqzlA5i+TVYe0u7mT2Ya4XZsY3L5w= Subject key identifier: 50:A5:00:9F:59:2B:7B:44:A7:E5:8B:96:04:D1:B1:7F:AE:B7:EC:D6 Certificate issuer: /CN=A919123C/serialNumber=BB1DED544B27A13719B48FB00373CD49E0DE8517 Certificate serial: 087C Authority key identifier: BB:1D:ED:54:4B:27:A1:37:19:B4:8F:B0:03:73:CD:49:E0:DE:85:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ux3tVEsnoTcZtI-wA3PNSeDehRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919123C/E5621A68B54811EAB1F54066C4F9AE02/2B7215E2B54B11EA85EE266DC4F9AE02.roa Signing time: Thu 02 Jan 2025 20:19:43 +0000 ROA not before: Thu 02 Jan 2025 20:19:43 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 16509 IP address blocks: 103.149.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919123C/E5621A68B54811EAB1F54066C4F9AE02/ux3tVEsnoTcZtI-wA3PNSeDehRc.crl rsync://rpki.apnic.net/member_repository/A919123C/E5621A68B54811EAB1F54066C4F9AE02/ux3tVEsnoTcZtI-wA3PNSeDehRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ux3tVEsnoTcZtI-wA3PNSeDehRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2172 (0x87c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919123C Validity Not Before: Jan 2 20:19:43 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6776f4df-8687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2b:cb:2b:52:3c:59:28:b8:28:17:64:cc:3a: 50:35:4b:17:b8:45:2f:89:4d:d6:aa:76:81:7c:4d: 01:65:54:96:4f:54:32:e3:5c:bb:0f:ee:c8:68:09: ca:78:f9:0d:51:02:f9:ad:88:7b:27:a6:7f:75:33: 48:18:95:f0:c1:2b:31:c7:ab:a7:0e:59:72:47:a0: 4c:d2:1c:0f:f1:ac:68:46:4c:88:5a:2b:2e:df:ef: 5b:0b:cd:a1:ae:b1:51:3e:bc:87:fb:93:9a:e8:9d: 16:ac:9c:74:a3:71:1b:d5:c6:7c:0f:30:15:34:5e: b6:ed:0d:30:e7:70:6d:d9:55:61:e0:ba:17:c8:5b: 5a:db:a0:28:6c:e8:ff:e8:43:13:9d:88:1a:47:35: 9f:c5:36:88:24:24:30:1d:ec:4e:c6:d6:69:00:54: a9:2b:9b:fb:ff:47:90:8d:25:25:8c:81:0b:1d:8c: 86:b0:d1:c4:24:c3:f3:71:2d:de:04:be:23:7a:44: 4e:09:9d:70:97:37:88:0a:b9:98:2f:89:1d:bc:4d: 48:05:b8:70:11:f3:0d:0d:62:f9:0b:64:d8:a6:14: 88:08:8a:49:ac:4b:1b:ea:33:75:7d:bd:15:79:6b: 0a:44:ba:54:6e:c2:81:4a:5a:87:ce:89:4d:1a:28: 23:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:A5:00:9F:59:2B:7B:44:A7:E5:8B:96:04:D1:B1:7F:AE:B7:EC:D6 X509v3 Authority Key Identifier: keyid:BB:1D:ED:54:4B:27:A1:37:19:B4:8F:B0:03:73:CD:49:E0:DE:85:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919123C/E5621A68B54811EAB1F54066C4F9AE02/ux3tVEsnoTcZtI-wA3PNSeDehRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ux3tVEsnoTcZtI-wA3PNSeDehRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919123C/E5621A68B54811EAB1F54066C4F9AE02/2B7215E2B54B11EA85EE266DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.112.0/24 Signature Algorithm: sha256WithRSAEncryption 16:72:ea:5e:cc:e2:ee:30:40:a5:8c:64:5b:fb:6b:a4:9e:90: a6:79:40:e6:f5:c1:72:f7:3e:09:8c:c3:6d:08:13:17:b9:c3: 0b:1a:78:15:bd:03:f6:fd:0f:bd:07:09:71:53:61:b5:9c:24: 2b:a9:0f:88:ed:7b:e5:36:6e:08:91:8c:89:e7:0a:48:51:5c: 9c:25:11:dc:28:02:ea:e3:85:d9:37:86:2b:21:eb:52:43:1d: 6d:f9:90:8b:24:70:a2:2a:db:f7:81:85:c1:ce:9a:85:78:0e: aa:98:ef:35:13:27:b5:4d:ea:83:ad:8d:28:e9:7a:74:c5:7f: 91:71:6b:c4:51:95:d9:5e:45:45:15:53:bd:31:86:4d:f2:f8: 78:74:5a:8e:2f:6b:c4:99:30:b8:43:ac:c0:bb:15:a8:1c:45: 8a:fd:47:f2:85:d0:16:b0:ea:7a:a6:c5:13:39:16:52:e2:b8: 81:3b:ca:fb:90:da:42:23:f9:a1:b1:e3:03:ec:62:7b:ca:ba: 4f:97:2a:26:9a:57:bb:54:e4:d7:63:83:bf:6d:82:19:fb:cb: a5:fe:7e:66:c4:78:de:cc:94:25:e3:28:cd:dc:d4:ed:d6:07: 01:79:97:2a:e6:fd:2a:e8:16:a8:38:ad:a3:68:5a:84:c0:58: 88:52:ae:64 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEyM0MxMTAvBgNVBAUTKEJCMURFRDU0NEIyN0ExMzcxOUI0OEZCMDAzNzNDRDQ5 RTBERTg1MTcwHhcNMjUwMTAyMjAxOTQzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc2ZjRkZi04Njg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCvLK1I8WSi4KBdkzDpQNUsXuEUviU3WqnaBfE0BZVSWT1Qy41y7D+7IaAnK ePkNUQL5rYh7J6Z/dTNIGJXwwSsxx6unDllyR6BM0hwP8axoRkyIWisu3+9bC82h rrFRPryH+5Oa6J0WrJx0o3Eb1cZ8DzAVNF627Q0w53Bt2VVh4LoXyFta26AobOj/ 6EMTnYgaRzWfxTaIJCQwHexOxtZpAFSpK5v7/0eQjSUljIELHYyGsNHEJMPzcS3e BL4jekROCZ1wlzeICrmYL4kdvE1IBbhwEfMNDWL5C2TYphSICIpJrEsb6jN1fb0V eWsKRLpUbsKBSlqHzolNGigjjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFClAJ9Z K3tEp+WLlgTRsX+ut+zWMB8GA1UdIwQYMBaAFLsd7VRLJ6E3GbSPsANzzUng3oUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTIzQy9FNTYyMUE2OEI1 NDgxMUVBQjFGNTQwNjZDNEY5QUUwMi91eDN0VkVzbm9UY1p0SS13QTNQTlNlRGVo UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V4M3RWRXNub1RjWnRJLXdBM1BOU2VEZWhSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTEyM0MvRTU2MjFBNjhCNTQ4MTFFQUIxRjU0MDY2QzRGOUFFMDIvMkI3MjE1RTJC NTRCMTFFQTg1RUUyNjZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlXAwDQYJKoZIhvcNAQELBQADggEBABZy6l7M4u4wQKWM ZFv7a6SekKZ5QOb1wXL3PgmMw20IExe5wwsaeBW9A/b9D70HCXFTYbWcJCupD4jt e+U2bgiRjInnCkhRXJwlEdwoAurjhdk3hish61JDHW35kIskcKIq2/eBhcHOmoV4 DqqY7zUTJ7VN6oOtjSjpenTFf5Fxa8RRldleRUUVU70xhk3y+Hh0Wo4va8SZMLhD rMC7FagcRYr9R/KF0Baw6nqmxRM5FlLiuIE7yvuQ2kIj+aGx4wPsYnvKuk+XKiaa V7tU5Ndjg79tghn7y6X+fmbEeN7MlCXjKM3c1O3WBwF5lyrm/SroFqg4raNoWoTA WIhSrmQ= -----END CERTIFICATE-----Generated at Sun Feb 16 15:50:12 2025 by rpki-client