$ rpki-client -vvf rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/503E43126E5E11EEB39D9E48C4F9AE02.roa File: 503E43126E5E11EEB39D9E48C4F9AE02.roa (raw, json) Hash identifier: L+aSJH2lWC1anAfV1QDeoFg2+6ljff+C6eVKVad/Lj8= Subject key identifier: 79:11:33:C5:0B:20:29:17:B5:95:18:66:54:7C:72:8B:CA:B2:91:2F Certificate issuer: /CN=A91210E0/serialNumber=3F20C29E1D7E515DF3E3D85AA44E751F8172731A Certificate serial: 0102 Authority key identifier: 3F:20:C2:9E:1D:7E:51:5D:F3:E3:D8:5A:A4:4E:75:1F:81:72:73:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/503E43126E5E11EEB39D9E48C4F9AE02.roa Signing time: Wed 19 Feb 2025 06:28:10 +0000 ROA not before: Wed 19 Feb 2025 06:28:10 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 132529 IP address blocks: 43.248.52.0/22 maxlen: 22 103.244.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.crl rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:49:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91210E0, serialNumber=3F20C29E1D7E515DF3E3D85AA44E751F8172731A Validity Not Before: Feb 19 06:28:10 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67b579fa-c29a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:08:f0:31:40:c2:c3:4e:c2:12:e8:c6:0e:83: 20:94:29:50:c1:0f:f4:4c:58:6f:a6:e5:43:27:d7: 9f:30:be:d6:fc:ac:1c:fe:c9:5c:87:d7:9f:c6:6f: c7:7d:0f:a9:e2:bc:00:09:14:20:20:2a:ab:86:87: 06:21:fc:8a:f3:fb:00:47:26:62:7b:25:03:71:d1: 48:14:cc:16:1d:69:41:bb:0c:1c:3d:3e:ea:4e:71: 67:6b:e0:f1:00:e9:cf:de:16:c3:c1:85:41:9c:3b: b0:f5:67:7e:b4:f9:7e:cd:d5:4f:5c:54:c3:e0:a1: 80:9a:05:97:68:a4:f3:6d:a8:7c:77:fd:21:2c:08: d2:32:f9:1b:00:a4:66:b7:90:c9:42:10:6e:30:fe: 5d:63:39:08:65:65:73:bf:79:0f:03:09:50:f8:5e: 96:32:66:0d:f0:b2:0e:40:b0:bc:d8:2e:35:58:93: f9:94:cd:0e:27:84:c9:ce:24:ec:93:bb:25:68:dd: 9f:bc:41:c3:24:5f:25:bf:55:8e:e4:1b:2d:b3:de: 03:21:62:8c:b4:ef:11:2c:d6:57:b3:45:3f:7a:ea: 68:e7:14:55:64:1b:08:ae:2d:b5:39:81:06:55:03: 18:97:69:99:8e:c3:a2:61:e4:f0:c5:d1:64:ac:f1: c4:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:11:33:C5:0B:20:29:17:B5:95:18:66:54:7C:72:8B:CA:B2:91:2F X509v3 Authority Key Identifier: keyid:3F:20:C2:9E:1D:7E:51:5D:F3:E3:D8:5A:A4:4E:75:1F:81:72:73:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/PyDCnh1-UV3z49hapE51H4Fycxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PyDCnh1-UV3z49hapE51H4Fycxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91210E0/3EB10C9A6D9811EEAA2AA36AC4F9AE02/503E43126E5E11EEB39D9E48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.248.52.0/22 103.244.128.0/22 Signature Algorithm: sha256WithRSAEncryption 06:d0:5f:02:c1:40:50:f5:28:eb:7a:39:83:6b:07:68:22:26: a3:c8:a6:d3:29:40:ce:84:94:d0:6e:f3:27:82:77:92:0f:bd: 70:f0:86:5d:cb:5f:c2:e9:d4:ef:e2:dc:c5:8c:f1:ad:98:d8: 1f:74:44:31:a0:02:b3:b1:99:06:5d:f2:b4:84:e7:79:ef:30: 92:74:6c:79:db:aa:bb:6e:a9:b7:ef:58:ac:fc:fc:5d:e5:bb: c3:f7:89:e7:c9:9e:9f:ae:9e:00:fd:38:4f:38:d3:4e:9a:65: 4b:dd:09:e1:72:fa:c1:e6:9b:50:db:40:75:e9:15:0c:a3:3f: 41:04:52:d9:73:e9:99:24:76:94:7e:48:be:a5:8e:14:c6:c5: f2:d8:8b:7b:6f:45:7a:c9:3d:ba:6a:91:77:ef:87:d6:24:c3: 4b:f7:24:23:46:f1:a4:c3:d6:d0:5f:0a:c7:f9:a8:76:9a:98: 01:12:ee:1d:57:4b:8a:58:3f:ab:f3:6c:42:67:5a:10:37:03: 5f:5b:0f:4a:d8:a6:da:a2:a0:26:30:df:9f:b4:83:d0:ca:28: 3d:5b:7f:17:93:f4:32:92:03:cf:78:82:53:76:13:b9:af:57: 51:f7:3d:bb:eb:cd:c3:2e:6d:9d:7d:85:4d:07:f2:97:5a:ac: 96:54:47:d5 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjEwRTAxMTAvBgNVBAUTKDNGMjBDMjlFMUQ3RTUxNURGM0UzRDg1QUE0NEU3NTFG ODE3MjczMUEwHhcNMjUwMjE5MDYyODEwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I1NzlmYS1jMjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwjwMUDCw07CEujGDoMglClQwQ/0TFhvpuVDJ9efML7W/Kwc/slch9efxm/H fQ+p4rwACRQgICqrhocGIfyK8/sARyZieyUDcdFIFMwWHWlBuwwcPT7qTnFna+Dx AOnP3hbDwYVBnDuw9Wd+tPl+zdVPXFTD4KGAmgWXaKTzbah8d/0hLAjSMvkbAKRm t5DJQhBuMP5dYzkIZWVzv3kPAwlQ+F6WMmYN8LIOQLC82C41WJP5lM0OJ4TJziTs k7slaN2fvEHDJF8lv1WO5Bsts94DIWKMtO8RLNZXs0U/eupo5xRVZBsIri21OYEG VQMYl2mZjsOiYeTwxdFkrPHERwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHkRM8UL ICkXtZUYZlR8covKspEvMB8GA1UdIwQYMBaAFD8gwp4dflFd8+PYWqROdR+BcnMa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTBFMC8zRUIxMEM5QTZE OTgxMUVFQUEyQUEzNkFDNEY5QUUwMi9QeURDbmgxLVVWM3o0OWhhcEU1MUg0Rnlj eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5RENuaDEtVVYzejQ5aGFwRTUxSDRGeWN4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjEwRTAvM0VCMTBDOUE2RDk4MTFFRUFBMkFBMzZBQzRGOUFFMDIvNTAzRTQzMTI2 RTVFMTFFRUIzOUQ5RTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr+DQDBAJn9IAwDQYJKoZIhvcNAQELBQADggEBAAbQXwLB QFD1KOt6OYNrB2giJqPIptMpQM6ElNBu8yeCd5IPvXDwhl3LX8Lp1O/i3MWM8a2Y 2B90RDGgArOxmQZd8rSE53nvMJJ0bHnbqrtuqbfvWKz8/F3lu8P3iefJnp+ungD9 OE84006aZUvdCeFy+sHmm1DbQHXpFQyjP0EEUtlz6ZkkdpR+SL6ljhTGxfLYi3tv RXrJPbpqkXfvh9Ykw0v3JCNG8aTD1tBfCsf5qHaamAES7h1XS4pYP6vzbEJnWhA3 A19bD0rYptqioCYw35+0g9DKKD1bfxeT9DKSA894glN2E7mvV1H3PbvrzcMubZ19 hU0H8pdarJZUR9U= -----END CERTIFICATE-----Generated at Sat Apr 26 15:19:51 2025 by rpki-client