$ rpki-client -vvf rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/65486DA81F8411E79BCB6D54C4F9AE02.roa File: 65486DA81F8411E79BCB6D54C4F9AE02.roa (raw, json) Hash identifier: 4xV+J3CmmdCpDaEFPGjRsDGwUIL2Vy4kSy5m15MGfXg= Subject key identifier: 51:79:B4:EA:90:64:06:B2:B5:78:5C:2A:DD:CE:17:0A:FF:EC:60:2D Certificate issuer: /CN=A919BEDB/serialNumber=1EDE5C6E008028BCD2AE33651381BDE1FD07C5D4 Certificate serial: 1B0E Authority key identifier: 1E:DE:5C:6E:00:80:28:BC:D2:AE:33:65:13:81:BD:E1:FD:07:C5:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/65486DA81F8411E79BCB6D54C4F9AE02.roa Signing time: Mon 06 Jan 2025 16:33:53 +0000 ROA not before: Mon 06 Jan 2025 16:33:53 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 3356 IP address blocks: 103.82.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 16:17:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6926 (0x1b0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BEDB Validity Not Before: Jan 6 16:33:53 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=677c05f1-ef77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:29:f0:21:08:f6:38:14:ba:30:84:51:ac:bc: 29:ea:fc:9d:06:f4:dd:95:c7:53:9b:5a:87:61:cd: b4:6a:ca:6c:85:f7:42:a1:57:47:0c:e9:f4:f3:fb: ac:e3:6c:aa:1a:e2:67:8a:a3:8a:2d:bf:c9:74:c2: 2d:01:1e:b9:80:d6:91:ba:a4:2f:e3:b9:45:32:0a: 38:e7:71:4b:05:8c:95:b0:c7:3b:af:70:29:e0:1f: cc:48:6f:23:43:ec:aa:f5:7c:ef:82:6e:d0:80:e8: 8d:9e:bd:fc:9a:f7:5a:53:2f:db:1a:e9:81:5d:06: c1:e6:b5:7e:81:14:9a:cd:cf:22:53:c2:17:c1:16: 44:46:82:ab:5e:82:1a:7f:4f:3d:ac:60:ca:e4:3a: 2d:04:bf:58:8d:e0:f7:5e:96:a0:99:4c:51:86:e5: ef:ef:81:57:2c:51:a5:61:9c:3d:ed:f9:ad:78:a7: c6:6e:e1:19:84:64:71:0e:42:14:14:c5:89:bd:53: 81:77:de:99:ed:04:91:22:62:cc:dd:36:28:d5:79: 49:42:c4:24:7a:ce:26:cf:e7:56:34:dd:c3:9b:e0: b7:82:00:bf:29:2b:9d:e8:c5:34:d5:7e:1b:9d:34: 4e:09:c4:3d:bf:12:da:dd:f6:f5:5a:0a:9f:c7:a3: f1:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:79:B4:EA:90:64:06:B2:B5:78:5C:2A:DD:CE:17:0A:FF:EC:60:2D X509v3 Authority Key Identifier: keyid:1E:DE:5C:6E:00:80:28:BC:D2:AE:33:65:13:81:BD:E1:FD:07:C5:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/65486DA81F8411E79BCB6D54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.128.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:29:23:bf:89:71:9b:2a:ea:1c:51:fb:ca:71:2d:81:a5:42: 25:81:5b:88:7a:e3:87:48:1e:67:27:a3:07:9c:1c:8f:9f:98: 4b:5c:3a:04:ee:db:f5:b3:00:f9:16:d5:38:c7:c8:14:1e:58: 1d:f1:9b:64:6b:4e:0b:66:ca:be:96:ab:7e:0a:0d:9b:34:6a: 1d:78:39:2d:c9:62:19:90:73:32:26:4a:54:a3:90:3e:c2:96: bc:c9:96:ad:4c:b3:2d:82:1a:14:0f:bd:e4:de:49:2a:8f:8a: 60:fc:09:d7:14:fb:0e:b0:b4:e7:2c:e3:57:4d:0e:22:96:96: d1:f8:83:5a:52:85:a5:86:3a:e1:a0:2a:0a:51:e1:f7:95:61: ee:29:4b:fc:53:df:bd:b3:90:e2:39:61:22:af:b2:33:be:aa: fc:0c:47:13:58:de:57:11:aa:fc:01:24:e1:5e:a7:74:85:45: f5:0e:58:6b:9b:44:51:34:65:84:ac:ed:76:b7:13:f6:8f:a3: 9c:8e:2f:8c:f0:1e:2a:8f:de:f0:bb:9a:52:4d:5b:87:a3:a9: 16:63:da:87:cb:e2:05:95:7b:8e:04:45:fa:e0:af:56:b7:e8: 1b:ea:58:f2:70:5e:2b:fd:6f:14:c2:e8:00:d9:7a:fa:05:57: 23:a5:f6:3b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUJFREIxMTAvBgNVBAUTKDFFREU1QzZFMDA4MDI4QkNEMkFFMzM2NTEzODFCREUx RkQwN0M1RDQwHhcNMjUwMTA2MTYzMzUzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdjMDVmMS1lZjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2inwIQj2OBS6MIRRrLwp6vydBvTdlcdTm1qHYc20aspshfdCoVdHDOn08/us 42yqGuJniqOKLb/JdMItAR65gNaRuqQv47lFMgo453FLBYyVsMc7r3Ap4B/MSG8j Q+yq9Xzvgm7QgOiNnr38mvdaUy/bGumBXQbB5rV+gRSazc8iU8IXwRZERoKrXoIa f089rGDK5DotBL9YjeD3XpagmUxRhuXv74FXLFGlYZw97fmteKfGbuEZhGRxDkIU FMWJvVOBd96Z7QSRImLM3TYo1XlJQsQkes4mz+dWNN3Dm+C3ggC/KSud6MU01X4b nTROCcQ9vxLa3fb1Wgqfx6Px0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFFF5tOqQ ZAaytXhcKt3OFwr/7GAtMB8GA1UdIwQYMBaAFB7eXG4AgCi80q4zZROBveH9B8XU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QkVEQi81RDg2N0VCQzFG ODMxMUU3QjU3RTYwNTNDNEY5QUUwMi9IdDVjYmdDQUtMelNyak5sRTRHOTRmMEh4 ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0NWNiZ0NBS0x6U3JqTmxFNEc5NGYwSHhkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUJFREIvNUQ4NjdFQkMxRjgzMTFFN0I1N0U2MDUzQzRGOUFFMDIvNjU0ODZEQTgx Rjg0MTFFNzlCQ0I2RDU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnUoAwDQYJKoZIhvcNAQELBQADggEBADspI7+JcZsq6hxR +8pxLYGlQiWBW4h644dIHmcnowecHI+fmEtcOgTu2/WzAPkW1TjHyBQeWB3xm2Rr Tgtmyr6Wq34KDZs0ah14OS3JYhmQczImSlSjkD7ClrzJlq1Msy2CGhQPveTeSSqP imD8CdcU+w6wtOcs41dNDiKWltH4g1pShaWGOuGgKgpR4feVYe4pS/xT372zkOI5 YSKvsjO+qvwMRxNY3lcRqvwBJOFep3SFRfUOWGubRFE0ZYSs7Xa3E/aPo5yOL4zw HiqP3vC7mlJNW4ejqRZj2ofL4gWVe44ERfrgr1a36BvqWPJwXiv9bxTC6ADZevoF VyOl9js= -----END CERTIFICATE-----Generated at Thu Mar 13 21:53:35 2025 by rpki-client