$ rpki-client -vvf rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/D3B49A1676CA11EDAA4FE042C4F9AE02.roa File: D3B49A1676CA11EDAA4FE042C4F9AE02.roa (raw, json) Hash identifier: MMkdhzYrtB2EaUzaUeaUoWgtYA29GMYgRCaFiVCPSo0= Subject key identifier: 50:54:07:5F:C4:DD:14:4F:14:2C:C4:37:85:89:1C:0F:69:2F:62:EB Certificate issuer: /CN=A919CA1B/serialNumber=82064A103CF50F01D19453006A386CD387391BE6 Certificate serial: 0186 Authority key identifier: 82:06:4A:10:3C:F5:0F:01:D1:94:53:00:6A:38:6C:D3:87:39:1B:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggZKEDz1DwHRlFMAajhs04c5G-Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/D3B49A1676CA11EDAA4FE042C4F9AE02.roa Signing time: Fri 27 Dec 2024 02:16:45 +0000 ROA not before: Fri 27 Dec 2024 02:16:45 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 63969 IP address blocks: 103.49.114.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/ggZKEDz1DwHRlFMAajhs04c5G-Y.crl rsync://rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/ggZKEDz1DwHRlFMAajhs04c5G-Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggZKEDz1DwHRlFMAajhs04c5G-Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:37:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 390 (0x186) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CA1B Validity Not Before: Dec 27 02:16:45 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676e0e0d-20b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:0d:95:3d:93:cc:0e:0e:6d:00:fd:43:71:24: 59:bb:a5:85:bd:72:e8:cb:9f:ca:cf:91:33:90:9a: 33:53:f0:79:79:e2:36:de:78:d4:78:fd:99:df:e2: 73:a2:ea:5b:86:0e:3e:90:f4:fa:14:26:77:64:d9: db:a3:a0:34:85:0e:6c:2b:bb:e0:1c:b0:0f:41:2e: 4d:7e:ea:04:46:d5:a7:eb:b0:6a:bc:d2:e8:2e:36: 20:34:9b:2e:b9:46:2a:44:e1:67:17:53:53:93:3e: 4b:f1:02:63:48:29:33:c8:89:56:78:6c:ab:4d:cd: d9:9e:fb:cc:cc:83:c0:48:f0:d0:0b:8a:e7:65:49: 8e:38:f8:44:83:55:9f:5c:e5:9e:7e:20:ce:c6:0f: c7:e2:3b:bf:4a:65:e5:dc:6b:f1:f2:c1:06:9e:ff: ca:ef:1b:21:40:c0:d9:9b:1c:05:23:d8:e2:ba:c9: 52:0a:d7:86:bd:24:c5:24:ce:14:0a:e7:94:88:8a: ce:17:a7:03:87:3f:a2:3f:d5:64:a0:f0:15:70:00: ca:75:cc:ee:a6:a6:3c:61:0a:cd:b7:2e:4c:47:72: 18:b3:cc:b7:69:34:f7:e5:aa:da:d2:f9:ed:7b:d0: 6d:4b:9f:18:9d:9a:6f:8e:7f:b1:d0:96:6b:92:13: b0:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:54:07:5F:C4:DD:14:4F:14:2C:C4:37:85:89:1C:0F:69:2F:62:EB X509v3 Authority Key Identifier: keyid:82:06:4A:10:3C:F5:0F:01:D1:94:53:00:6A:38:6C:D3:87:39:1B:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/ggZKEDz1DwHRlFMAajhs04c5G-Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggZKEDz1DwHRlFMAajhs04c5G-Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CA1B/1447829A76BD11EDBB48947DC4F9AE02/D3B49A1676CA11EDAA4FE042C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.49.114.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:a6:d7:08:38:a1:ed:f4:1c:db:7d:74:86:03:ad:c0:fe:da: 24:f1:2c:19:60:7c:9a:88:e8:d9:68:e7:5e:e0:26:4b:21:f5: d1:14:e4:8e:e5:bf:8e:6d:2e:a2:3e:b7:80:fa:9a:92:21:8c: 08:a5:1c:94:2f:33:4a:7b:c6:7d:b0:75:ec:85:ec:b3:df:ca: 5c:7a:65:d0:5b:65:f8:da:6e:77:3e:97:64:33:b9:77:5e:d9: d8:0f:ee:95:99:ea:b6:d7:00:b6:37:b0:f2:5a:ec:d2:97:88: 24:ad:07:1a:c0:cd:0d:d0:c5:20:b4:05:8b:51:2c:92:3d:7e: c6:30:03:fd:ca:58:ae:ab:53:c5:46:75:fe:5a:14:1f:98:f5: 54:ae:5a:ba:29:54:ee:05:d7:64:95:b7:5e:fd:99:34:4d:13: 94:9b:eb:6c:a7:c9:8d:d1:ad:2f:1c:50:0e:fb:4d:8f:33:5a: 63:b9:92:7d:45:9b:5f:30:3e:ac:84:2f:e3:09:28:8c:3d:10: 4d:a0:05:ce:a9:bd:06:36:05:46:f6:80:4a:91:70:b3:4e:15: 18:bb:e3:96:8e:20:30:9e:d8:8c:fa:41:65:7f:15:e8:e6:81: 2d:d5:a3:81:9e:1c:dc:47:a1:a1:5a:29:ed:64:29:05:7a:61: 16:35:ff:c3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBMUIxMTAvBgNVBAUTKDgyMDY0QTEwM0NGNTBGMDFEMTk0NTMwMDZBMzg2Q0Qz ODczOTFCRTYwHhcNMjQxMjI3MDIxNjQ1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzZlMGUwZC0yMGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2g2VPZPMDg5tAP1DcSRZu6WFvXLoy5/Kz5EzkJozU/B5eeI23njUeP2Z3+Jz oupbhg4+kPT6FCZ3ZNnbo6A0hQ5sK7vgHLAPQS5NfuoERtWn67BqvNLoLjYgNJsu uUYqROFnF1NTkz5L8QJjSCkzyIlWeGyrTc3ZnvvMzIPASPDQC4rnZUmOOPhEg1Wf XOWefiDOxg/H4ju/SmXl3Gvx8sEGnv/K7xshQMDZmxwFI9jiuslSCteGvSTFJM4U CueUiIrOF6cDhz+iP9VkoPAVcADKdczupqY8YQrNty5MR3IYs8y3aTT35ara0vnt e9BtS58YnZpvjn+x0JZrkhOw6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFFBUB1/E 3RRPFCzEN4WJHA9pL2LrMB8GA1UdIwQYMBaAFIIGShA89Q8B0ZRTAGo4bNOHORvm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0ExQi8xNDQ3ODI5QTc2 QkQxMUVEQkI0ODk0N0RDNEY5QUUwMi9nZ1pLRUR6MUR3SFJsRk1BYWpoczA0YzVH LVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dnWktFRHoxRHdIUmxGTUFhamhzMDRjNUctWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUNBMUIvMTQ0NzgyOUE3NkJEMTFFREJCNDg5NDdEQzRGOUFFMDIvRDNCNDlBMTY3 NkNBMTFFREFBNEZFMDQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnMXIwDQYJKoZIhvcNAQELBQADggEBAI6m1wg4oe30HNt9 dIYDrcD+2iTxLBlgfJqI6Nlo517gJksh9dEU5I7lv45tLqI+t4D6mpIhjAilHJQv M0p7xn2wdeyF7LPfylx6ZdBbZfjabnc+l2QzuXde2dgP7pWZ6rbXALY3sPJa7NKX iCStBxrAzQ3QxSC0BYtRLJI9fsYwA/3KWK6rU8VGdf5aFB+Y9VSuWropVO4F12SV t179mTRNE5Sb62ynyY3RrS8cUA77TY8zWmO5kn1Fm18wPqyEL+MJKIw9EE2gBc6p vQY2BUb2gEqRcLNOFRi745aOIDCe2Iz6QWV/FejmgS3Vo4GeHNxHoaFaKe1kKQV6 YRY1/8M= -----END CERTIFICATE-----Generated at Mon Apr 7 00:44:46 2025 by rpki-client