$ rpki-client -vvf rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/214E0454B58A11ECAF32FE29C4F9AE02.roa File: 214E0454B58A11ECAF32FE29C4F9AE02.roa (raw, json) Hash identifier: m/bIsnc72f+GKlsPAyrWqEs82wNRpWBNpwKZDStdnM8= Subject key identifier: 65:17:B1:7F:49:DA:A2:11:6F:B7:C4:4E:23:F6:E9:E2:E9:4F:92:5F Certificate issuer: /CN=A911C61C/serialNumber=84422A85FA4E4CD4D6EE994631A3D0F0E6E82D3A Certificate serial: 0319 Authority key identifier: 84:42:2A:85:FA:4E:4C:D4:D6:EE:99:46:31:A3:D0:F0:E6:E8:2D:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/214E0454B58A11ECAF32FE29C4F9AE02.roa Signing time: Wed 15 Jan 2025 00:53:50 +0000 ROA not before: Wed 15 Jan 2025 00:53:50 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 149294 IP address blocks: 103.178.18.0/23 maxlen: 24 2400:3ee0::/32 maxlen: 32 2400:3ee0::/48 maxlen: 48 2400:3ee0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.crl rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 793 (0x319) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C61C, serialNumber=84422A85FA4E4CD4D6EE994631A3D0F0E6E82D3A Validity Not Before: Jan 15 00:53:50 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6787071e-6ba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:41:3c:d3:72:01:58:1a:8a:02:05:ba:7d:e2: e5:db:9e:b6:4c:89:9b:56:af:b8:5d:f2:ae:93:28: d6:15:fe:aa:2d:0c:87:86:d0:16:61:48:9b:36:0b: e1:c5:f1:b6:0d:31:90:28:de:1f:aa:bf:b5:f6:8b: e0:57:f3:64:62:91:16:0f:a9:8f:b9:c3:ea:40:14: dc:9d:cf:ab:00:1e:02:0e:8e:fe:10:82:8b:15:97: 00:95:75:5b:07:1c:06:ad:ba:f4:cc:c9:16:99:46: bd:54:b7:3f:75:eb:a0:6f:e2:02:0e:0b:64:47:0b: 63:db:25:7c:06:b6:8c:7e:6c:06:65:b7:05:ab:66: 20:3d:2f:84:17:d7:b3:14:54:41:2b:2d:9a:44:22: 70:95:05:1e:95:f5:ed:0a:7f:70:5f:d9:5e:9e:dc: aa:74:7d:e4:10:ec:60:c9:c6:96:58:86:23:48:be: bc:dd:a7:71:66:07:1a:52:1b:f2:64:5a:d9:61:d8: 39:2c:e2:5c:42:73:c5:10:e6:23:af:57:c9:e9:13: 79:53:d3:07:98:4a:58:66:7f:6e:df:ac:b4:1a:7b: 8b:a3:19:95:33:ab:de:99:1b:64:11:57:2e:17:2b: 71:8a:8c:59:8b:e9:85:7b:65:6e:ca:7c:c9:5b:b2: 6b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:17:B1:7F:49:DA:A2:11:6F:B7:C4:4E:23:F6:E9:E2:E9:4F:92:5F X509v3 Authority Key Identifier: keyid:84:42:2A:85:FA:4E:4C:D4:D6:EE:99:46:31:A3:D0:F0:E6:E8:2D:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/214E0454B58A11ECAF32FE29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.178.18.0/23 IPv6: 2400:3ee0::/32 Signature Algorithm: sha256WithRSAEncryption 39:b3:fd:41:c1:ea:a7:b3:f4:a0:ce:34:cc:b5:f2:1c:fb:d2: 44:3d:82:f7:22:9a:20:25:df:c9:7d:c9:aa:b8:ff:f7:24:6c: cc:03:9d:21:b6:ac:03:63:3b:41:e2:5e:c6:d3:3f:66:9d:3a: 32:ef:d2:aa:f8:6d:4a:f5:22:e6:49:87:ae:a6:1a:f2:53:84: 06:fb:34:b4:e0:49:07:0c:a5:cc:41:5b:0e:cf:37:c5:b7:9f: 8b:dd:e4:b8:54:dd:bc:2b:b1:cd:46:98:76:35:e5:6a:ad:51: ea:d8:42:b3:6d:2d:da:81:60:44:17:a2:7a:f4:6a:76:7c:7d: 5b:b5:d5:e1:47:75:c8:e5:55:ff:31:7f:8f:ae:19:75:a5:e2: 9c:76:cc:25:78:6d:e2:05:5e:0d:5d:c7:19:85:39:44:f5:61: 6a:41:4f:78:59:87:93:8d:d0:22:73:ba:9c:a1:d0:c2:82:0e: cb:95:60:20:d5:fd:4a:80:75:bd:4f:23:df:39:c9:45:d3:38: 3c:48:1c:08:24:4d:d2:ba:ef:94:c5:86:d0:05:cd:20:9b:2b: c2:b0:57:28:f5:dc:a1:0c:0b:fd:b3:f9:50:54:8d:7e:51:13: 47:0a:c5:34:d2:7e:a1:80:78:42:65:c8:9d:f1:c1:39:29:c6: 09:81:df:34 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAxkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2MUMxMTAvBgNVBAUTKDg0NDIyQTg1RkE0RTRDRDRENkVFOTk0NjMxQTNEMEYw RTZFODJEM0EwHhcNMjUwMTE1MDA1MzUwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg3MDcxZS02YmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0E803IBWBqKAgW6feLl2562TImbVq+4XfKukyjWFf6qLQyHhtAWYUibNgvh xfG2DTGQKN4fqr+19ovgV/NkYpEWD6mPucPqQBTcnc+rAB4CDo7+EIKLFZcAlXVb BxwGrbr0zMkWmUa9VLc/deugb+ICDgtkRwtj2yV8BraMfmwGZbcFq2YgPS+EF9ez FFRBKy2aRCJwlQUelfXtCn9wX9lentyqdH3kEOxgycaWWIYjSL683adxZgcaUhvy ZFrZYdg5LOJcQnPFEOYjr1fJ6RN5U9MHmEpYZn9u36y0GnuLoxmVM6vemRtkEVcu FytxioxZi+mFe2VuynzJW7JrRwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGUXsX9J 2qIRb7fETiP26eLpT5JfMB8GA1UdIwQYMBaAFIRCKoX6TkzU1u6ZRjGj0PDm6C06 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzYxQy8yQTcwOTBGQUI1 ODYxMUVDQUU4MUVEMjJDNEY5QUUwMi9oRUlxaGZwT1ROVFc3cGxHTWFQUThPYm9M VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hFSXFoZnBPVE5UVzdwbEdNYVBROE9ib0xUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM2MUMvMkE3MDkwRkFCNTg2MTFFQ0FFODFFRDIyQzRGOUFFMDIvMjE0RTA0NTRC NThBMTFFQ0FGMzJGRTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnshIwDQQCAAIwBwMFACQAPuAwDQYJKoZIhvcNAQELBQAD ggEBADmz/UHB6qez9KDONMy18hz70kQ9gvcimiAl38l9yaq4//ckbMwDnSG2rANj O0HiXsbTP2adOjLv0qr4bUr1IuZJh66mGvJThAb7NLTgSQcMpcxBWw7PN8W3n4vd 5LhU3bwrsc1GmHY15WqtUerYQrNtLdqBYEQXonr0anZ8fVu11eFHdcjlVf8xf4+u GXWl4px2zCV4beIFXg1dxxmFOUT1YWpBT3hZh5ON0CJzupyh0MKCDsuVYCDV/UqA db1PI985yUXTODxIHAgkTdK675TFhtAFzSCbK8KwVyj13KEMC/2z+VBUjX5RE0cK xTTSfqGAeEJlyJ3xwTkpxgmB3zQ= -----END CERTIFICATE-----Generated at Sat Apr 26 14:08:08 2025 by rpki-client