$ rpki-client -vvf rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/D4D3B47EA27811EE9C29A256C4F9AE02.roa File: D4D3B47EA27811EE9C29A256C4F9AE02.roa (raw, json) Hash identifier: QHRHGfrfRtZTCug8O+YvL4h2f3rUlXsvRTX9IxlC4gs= Subject key identifier: F2:6B:6B:D1:D5:B4:24:FC:B0:7B:59:5D:04:E8:6B:28:2A:27:A4:5F Certificate issuer: /CN=A911A6D6/serialNumber=3A6866B1DF3C2E5B5FACAEE0C0992BBC788C5D0A Certificate serial: 012F Authority key identifier: 3A:68:66:B1:DF:3C:2E:5B:5F:AC:AE:E0:C0:99:2B:BC:78:8C:5D:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/D4D3B47EA27811EE9C29A256C4F9AE02.roa Signing time: Tue 31 Dec 2024 03:16:34 +0000 ROA not before: Tue 31 Dec 2024 03:16:34 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 139208 IP address blocks: 103.179.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.crl rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:03:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A6D6, serialNumber=3A6866B1DF3C2E5B5FACAEE0C0992BBC788C5D0A Validity Not Before: Dec 31 03:16:34 2024 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67736212-47cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:f6:6a:37:30:4e:6e:f0:6c:f8:e3:02:10:78: cd:cd:aa:c9:07:16:ed:57:17:b5:1d:a0:4c:ce:e1: 3a:58:bd:a8:54:1e:10:26:0b:f0:6c:3a:0a:60:b4: e3:32:b6:08:96:77:21:45:b7:54:b7:5a:9b:28:5b: dd:9b:c2:32:a5:c0:71:ec:00:cf:c6:ce:84:80:1b: 2a:c8:55:b2:db:4e:ed:6d:c7:11:45:c2:f0:57:98: ac:33:e2:a2:cf:3d:1e:09:71:9d:8e:db:55:89:de: 22:70:e9:1f:4a:06:28:b9:16:65:56:af:50:3d:e7: e6:d2:e2:a1:87:d8:94:03:22:8e:23:40:57:2a:79: d3:4a:22:b7:bc:d6:ed:71:9b:44:aa:1c:4e:ed:5a: 2e:8c:17:80:87:e1:62:e3:e6:e5:59:26:e1:76:1a: 39:5f:31:e9:80:93:93:5b:d0:99:ec:0a:4d:2d:86: bb:f1:12:cd:88:6a:9d:9e:9f:f8:99:d8:47:87:97: 12:40:bd:49:f4:98:dd:81:a9:64:d5:de:7f:08:53: 90:42:b8:52:ef:c8:f3:3d:15:3d:e5:da:fb:32:5f: 4f:00:00:7b:c5:a2:64:9f:e9:1a:ba:d8:bb:da:aa: 7f:62:71:c5:e8:d9:1b:63:16:60:41:a3:67:ff:db: da:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:6B:6B:D1:D5:B4:24:FC:B0:7B:59:5D:04:E8:6B:28:2A:27:A4:5F X509v3 Authority Key Identifier: keyid:3A:68:66:B1:DF:3C:2E:5B:5F:AC:AE:E0:C0:99:2B:BC:78:8C:5D:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/Omhmsd88LltfrK7gwJkrvHiMXQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Omhmsd88LltfrK7gwJkrvHiMXQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A6D6/DE34C178FC8011EDA8382052C4F9AE02/D4D3B47EA27811EE9C29A256C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.200.0/24 Signature Algorithm: sha256WithRSAEncryption 14:57:a4:e5:e7:30:76:b4:c5:c0:a8:5f:db:72:d0:17:33:0f: 40:1b:90:4b:e6:5e:2f:51:46:3a:c1:15:ec:7b:a1:d9:06:71: 76:05:82:4b:1c:c1:51:03:55:64:1c:6b:c3:73:a8:42:8b:f5: 4d:5f:9d:c0:8d:d6:f0:c1:3b:47:09:dc:c9:d3:ca:0e:83:b0: ec:bd:02:1d:33:d2:38:b1:a1:75:69:46:db:7a:40:40:45:73: 74:f4:de:30:74:5a:08:03:6d:ee:10:66:ce:7f:09:94:bd:75: 69:75:6f:1f:ff:e3:11:be:0e:45:9c:1e:68:41:49:22:d2:40: 52:7b:49:67:6d:e0:a0:3d:91:dd:7d:08:c1:4b:53:b5:0c:35: da:32:98:7e:aa:8c:06:4e:7d:39:76:2e:34:30:3d:b6:fb:d3: ba:d9:fe:30:32:d5:34:47:38:ab:a9:d3:82:02:34:16:07:16: b0:1a:e8:05:49:78:72:c6:62:0c:aa:e7:92:d1:b5:7d:bd:9b: 2f:f2:ba:7d:ca:32:c3:07:18:ec:61:a2:7c:f7:eb:9c:e1:5c: 54:99:3f:22:8b:f2:a1:f4:2d:a0:4a:a3:46:02:db:b4:d3:92: 86:32:83:b2:36:15:1c:d9:62:ac:8f:9e:01:25:77:8b:38:e4: a3:df:93:24 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE2RDYxMTAvBgNVBAUTKDNBNjg2NkIxREYzQzJFNUI1RkFDQUVFMEMwOTkyQkJD Nzg4QzVEMEEwHhcNMjQxMjMxMDMxNjM0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzczNjIxMi00N2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtvZqNzBObvBs+OMCEHjNzarJBxbtVxe1HaBMzuE6WL2oVB4QJgvwbDoKYLTj MrYIlnchRbdUt1qbKFvdm8IypcBx7ADPxs6EgBsqyFWy207tbccRRcLwV5isM+Ki zz0eCXGdjttVid4icOkfSgYouRZlVq9QPefm0uKhh9iUAyKOI0BXKnnTSiK3vNbt cZtEqhxO7VoujBeAh+Fi4+blWSbhdho5XzHpgJOTW9CZ7ApNLYa78RLNiGqdnp/4 mdhHh5cSQL1J9Jjdgalk1d5/CFOQQrhS78jzPRU95dr7Ml9PAAB7xaJkn+kauti7 2qp/YnHF6NkbYxZgQaNn/9vatQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPJra9HV tCT8sHtZXQToaygqJ6RfMB8GA1UdIwQYMBaAFDpoZrHfPC5bX6yu4MCZK7x4jF0K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTZENi9ERTM0QzE3OEZD ODAxMUVEQTgzODIwNTJDNEY5QUUwMi9PbWhtc2Q4OExsdGZySzdnd0prcnZIaU1Y UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09taG1zZDg4TGx0ZnJLN2d3SmtydkhpTVhRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUE2RDYvREUzNEMxNzhGQzgwMTFFREE4MzgyMDUyQzRGOUFFMDIvRDREM0I0N0VB Mjc4MTFFRTlDMjlBMjU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABns8gwDQYJKoZIhvcNAQELBQADggEBABRXpOXnMHa0xcCo X9ty0BczD0AbkEvmXi9RRjrBFex7odkGcXYFgkscwVEDVWQca8NzqEKL9U1fncCN 1vDBO0cJ3MnTyg6DsOy9Ah0z0jixoXVpRtt6QEBFc3T03jB0WggDbe4QZs5/CZS9 dWl1bx//4xG+DkWcHmhBSSLSQFJ7SWdt4KA9kd19CMFLU7UMNdoymH6qjAZOfTl2 LjQwPbb707rZ/jAy1TRHOKup04ICNBYHFrAa6AVJeHLGYgyq55LRtX29my/yun3K MsMHGOxhonz365zhXFSZPyKL8qH0LaBKo0YC27TTkoYyg7I2FRzZYqyPngEld4s4 5KPfkyQ= -----END CERTIFICATE-----Generated at Sat Apr 26 08:33:49 2025 by rpki-client