$ rpki-client -vvf rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/EFA0015E593911EFA8EAD43CC4F9AE02.roa File: EFA0015E593911EFA8EAD43CC4F9AE02.roa (raw, json) Hash identifier: U6ij5hk5FRfd6jZqWoSf+8Wvzol5Qvpq3+ctiHWpCug= Subject key identifier: BC:BF:F2:90:5A:9B:A9:A5:1B:6A:7A:1D:F2:E3:35:69:71:85:97:CF Certificate issuer: /CN=A911C676/serialNumber=A9E95A416BCCEEFD86EA2FA019C25E4D76B8E9D9 Certificate serial: 1201 Authority key identifier: A9:E9:5A:41:6B:CC:EE:FD:86:EA:2F:A0:19:C2:5E:4D:76:B8:E9:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qelaQWvM7v2G6i-gGcJeTXa46dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/EFA0015E593911EFA8EAD43CC4F9AE02.roa Signing time: Mon 16 Dec 2024 10:15:41 +0000 ROA not before: Mon 16 Dec 2024 10:15:41 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 134094 IP address blocks: 45.123.116.0/24 maxlen: 24 45.123.118.0/24 maxlen: 24 45.123.119.0/24 maxlen: 24 103.51.140.0/22 maxlen: 22 103.51.140.0/24 maxlen: 24 103.51.141.0/24 maxlen: 24 103.51.142.0/24 maxlen: 24 103.51.143.0/24 maxlen: 24 103.103.128.0/22 maxlen: 22 103.103.128.0/24 maxlen: 24 103.103.129.0/24 maxlen: 24 103.103.130.0/24 maxlen: 24 103.103.131.0/24 maxlen: 24 203.15.150.0/24 maxlen: 24 2401:f540::/48 maxlen: 48 2401:f540:1::/48 maxlen: 48 2401:f540:2::/48 maxlen: 48 2401:f540:3::/48 maxlen: 48 2401:f540:4::/48 maxlen: 48 2401:f540:5::/48 maxlen: 48 2401:f540:6::/48 maxlen: 48 2401:f540:7::/48 maxlen: 48 2401:f540:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/qelaQWvM7v2G6i-gGcJeTXa46dk.crl rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/qelaQWvM7v2G6i-gGcJeTXa46dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qelaQWvM7v2G6i-gGcJeTXa46dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:09:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4609 (0x1201) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C676, serialNumber=A9E95A416BCCEEFD86EA2FA019C25E4D76B8E9D9 Validity Not Before: Dec 16 10:15:41 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=675ffdcd-5c7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:dc:c9:8f:98:7c:ec:e2:1c:0b:ba:22:48:fe: 47:22:fe:3d:56:e6:e6:f5:a4:d3:b6:4d:e0:97:f6: 01:37:ea:37:59:89:a3:72:ad:15:9e:b4:7e:47:dd: 4c:1b:27:b0:dd:68:77:f8:f5:90:41:cb:be:e8:82: ae:81:e2:18:4f:d0:e5:be:cd:4a:14:09:85:d7:1f: a5:f0:b0:8e:f3:7c:b0:3f:e9:ad:82:2c:6e:6e:af: ad:65:06:eb:74:2b:0d:f6:32:4b:49:07:46:c4:05: 35:66:ae:2e:5a:53:0e:43:d4:2e:00:4a:4f:06:25: 28:f7:20:99:9b:25:ce:90:23:42:4f:84:87:ad:8d: 2f:7f:23:25:85:0a:56:6e:75:e7:3c:fd:af:3e:c4: 81:a6:37:08:57:1b:82:de:9f:13:c5:91:74:fe:c6: 99:81:fd:06:dd:78:f0:70:94:e6:58:db:18:64:ed: e8:9c:3c:fc:96:7e:b1:ca:41:50:e0:76:f7:ee:dc: 4b:54:5f:39:b1:61:af:9a:d2:43:a0:d0:fa:0d:97: a8:a7:e2:e8:a0:ad:1a:ab:01:51:79:ac:b0:1c:97: a3:6b:cc:0f:ea:37:53:4d:e3:2c:02:a2:d1:28:78: f9:4d:a5:19:8c:a9:50:4c:f6:a7:7d:ee:62:42:4f: bc:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:BF:F2:90:5A:9B:A9:A5:1B:6A:7A:1D:F2:E3:35:69:71:85:97:CF X509v3 Authority Key Identifier: keyid:A9:E9:5A:41:6B:CC:EE:FD:86:EA:2F:A0:19:C2:5E:4D:76:B8:E9:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/qelaQWvM7v2G6i-gGcJeTXa46dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qelaQWvM7v2G6i-gGcJeTXa46dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C676/CD38AB16DDD911E8AF451F0AC4F9AE02/EFA0015E593911EFA8EAD43CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.123.116.0/24 45.123.118.0/23 103.51.140.0/22 103.103.128.0/22 203.15.150.0/24 IPv6: 2401:f540::/45 2401:f540:10::/48 Signature Algorithm: sha256WithRSAEncryption 43:85:de:96:7a:a6:50:4c:df:24:cf:2a:b4:61:a3:6b:65:33: fa:bb:eb:d4:07:63:f5:e3:e9:a4:2c:23:dd:4b:f2:e5:51:cd: 22:6f:07:6e:4a:e2:82:c0:08:9d:c5:26:23:9a:93:84:06:0c: b8:82:7b:96:de:83:c2:07:f3:62:e0:f3:6c:0b:6a:3c:b7:b8: c9:db:4b:e0:c0:93:96:02:66:bf:9c:9d:a1:3d:83:bd:51:e9: c4:0a:60:27:30:cb:1e:2f:bf:21:ab:39:5d:b2:fb:00:31:81: 9e:b1:4b:0f:08:b3:c1:dd:eb:44:4c:81:bf:85:b9:21:82:93: d0:a2:c2:80:f7:4a:fc:a5:b6:79:a9:19:14:87:97:6e:6d:f1: 8a:25:f6:8e:b4:f4:46:a8:aa:49:5d:5d:d1:c5:db:bb:89:7e: 7d:74:c8:82:18:4f:3c:9c:7c:04:e7:34:16:62:f6:97:c3:fd: 7d:a9:a9:66:d3:0b:af:91:21:ea:8a:bc:6b:e7:ca:13:b4:b6: c5:a2:75:55:10:5f:7f:dd:e3:91:24:18:26:c9:c6:04:a6:db: 8d:98:9d:90:3f:fb:4a:b7:f9:b6:b5:2c:53:63:38:51:ea:c3: 25:17:c0:b2:34:6d:90:ef:34:72:97:20:c7:43:c6:e8:fc:a6: 12:48:9b:73 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgICEgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2NzYxMTAvBgNVBAUTKEE5RTk1QTQxNkJDQ0VFRkQ4NkVBMkZBMDE5QzI1RTRE NzZCOEU5RDkwHhcNMjQxMjE2MTAxNTQxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzVmZmRjZC01YzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn9zJj5h87OIcC7oiSP5HIv49Vubm9aTTtk3gl/YBN+o3WYmjcq0VnrR+R91M Gyew3Wh3+PWQQcu+6IKugeIYT9Dlvs1KFAmF1x+l8LCO83ywP+mtgixubq+tZQbr dCsN9jJLSQdGxAU1Zq4uWlMOQ9QuAEpPBiUo9yCZmyXOkCNCT4SHrY0vfyMlhQpW bnXnPP2vPsSBpjcIVxuC3p8TxZF0/saZgf0G3XjwcJTmWNsYZO3onDz8ln6xykFQ 4Hb37txLVF85sWGvmtJDoND6DZeop+LooK0aqwFReaywHJeja8wP6jdTTeMsAqLR KHj5TaUZjKlQTPanfe5iQk+8YQIDAQABo4ICxzCCAsMwHQYDVR0OBBYEFLy/8pBa m6mlG2p6HfLjNWlxhZfPMB8GA1UdIwQYMBaAFKnpWkFrzO79huovoBnCXk12uOnZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzY3Ni9DRDM4QUIxNkRE RDkxMUU4QUY0NTFGMEFDNEY5QUUwMi9xZWxhUVd2TTd2Mkc2aS1nR2NKZVRYYTQ2 ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FlbGFRV3ZNN3YyRzZpLWdHY0plVFhhNDZkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM2NzYvQ0QzOEFCMTZEREQ5MTFFOEFGNDUxRjBBQzRGOUFFMDIvRUZBMDAxNUU1 OTM5MTFFRkE4RUFENDNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUQYIKwYBBQUHAQcBAf8E QjBAMCQEAgABMB4DBAAte3QDBAEte3YDBAJnM4wDBAJnZ4ADBADLD5YwGAQCAAIw EgMHAyQB9UAAAAMHACQB9UAAEDANBgkqhkiG9w0BAQsFAAOCAQEAQ4XelnqmUEzf JM8qtGGja2Uz+rvr1Adj9ePppCwj3Uvy5VHNIm8HbkrigsAIncUmI5qThAYMuIJ7 lt6DwgfzYuDzbAtqPLe4ydtL4MCTlgJmv5ydoT2DvVHpxApgJzDLHi+/Ias5XbL7 ADGBnrFLDwizwd3rREyBv4W5IYKT0KLCgPdK/KW2eakZFIeXbm3xiiX2jrT0Rqiq SV1d0cXbu4l+fXTIghhPPJx8BOc0FmL2l8P9fampZtMLr5Eh6oq8a+fKE7S2xaJ1 VRBff93jkSQYJsnGBKbbjZidkD/7Srf5trUsU2M4UerDJRfAsjRtkO80cpcgx0PG 6PymEkibcw== -----END CERTIFICATE-----Generated at Sat Apr 26 08:03:43 2025 by rpki-client