$ rpki-client -vvf rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/5431D022524211ECA52D990FC4F9AE02.roa File: 5431D022524211ECA52D990FC4F9AE02.roa (raw, json) Hash identifier: ngVDpB9EeVUj1wtwuXlGNZD63XjFCao61CO9K4ARPTk= Subject key identifier: B3:FE:6B:DE:50:6F:A5:63:76:BE:8A:9D:57:95:48:80:6D:67:38:D1 Certificate issuer: /CN=A912871A/serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Certificate serial: 042E Authority key identifier: 58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/5431D022524211ECA52D990FC4F9AE02.roa Signing time: Sat 01 Mar 2025 02:33:32 +0000 ROA not before: Sat 01 Mar 2025 02:33:32 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 133934 IP address blocks: 103.48.208.0/24 maxlen: 24 103.48.209.0/24 maxlen: 24 103.48.210.0/24 maxlen: 24 103.48.211.0/24 maxlen: 24 2402:b280::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1070 (0x42e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912871A, serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Validity Not Before: Mar 1 02:33:32 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c271fc-3383 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bb:65:cf:3b:34:0b:d4:cd:45:ce:5f:a1:66: aa:f4:cb:2b:1f:80:22:27:de:1e:14:75:5c:6f:02: 5a:9a:7c:6f:b2:ba:2b:66:c6:78:c5:c2:e2:ce:84: 2a:29:4c:f9:94:55:31:b5:47:43:c3:14:1a:26:42: f7:9b:8b:63:fc:2e:9f:6c:6e:c4:5d:d2:b1:55:19: 8d:52:f9:92:13:e8:cb:d7:04:bc:bf:08:9f:87:7c: f8:01:6f:88:39:f5:e1:ad:b0:d0:32:63:de:6e:a9: a9:e2:0b:83:57:e8:91:ac:8a:d1:11:32:e2:03:80: 3b:6a:a6:2e:ef:10:62:87:65:fd:7e:2e:87:64:68: b4:a3:17:dd:ac:1a:ae:15:26:de:84:20:29:39:03: d5:69:08:c4:1e:b4:ce:0d:4d:41:93:dd:2a:cf:6e: 42:7c:57:e9:82:8d:4d:d6:21:0f:30:da:e0:67:5e: 5c:d5:22:1e:02:08:14:65:b8:7a:c3:3f:32:cf:0e: 1c:ae:37:bb:cd:8d:c5:d9:e7:7e:fe:ad:45:b8:84: 1c:11:9a:36:78:84:f9:bf:09:1d:5b:a9:47:01:06: 5c:93:30:47:f4:a0:5f:e3:02:7e:13:15:68:95:6e: 3d:3f:2d:a3:6f:1c:ea:35:ba:8e:5f:5b:d2:f8:c0: 93:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:FE:6B:DE:50:6F:A5:63:76:BE:8A:9D:57:95:48:80:6D:67:38:D1 X509v3 Authority Key Identifier: keyid:58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/5431D022524211ECA52D990FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.48.208.0/22 IPv6: 2402:b280::/32 Signature Algorithm: sha256WithRSAEncryption 45:61:03:8d:29:cd:fc:b2:8a:6f:bc:7d:2e:b8:1a:73:a9:b1: 0a:d9:e6:c4:bd:87:64:bd:d9:a0:eb:8a:20:79:21:12:11:fc: 3d:46:c8:d8:bc:83:33:26:84:71:f0:6f:cc:c4:8f:bd:9c:6a: 62:8d:ba:19:2b:e0:81:53:1e:14:b6:6d:f6:39:b8:0d:34:6a: a5:90:d9:6d:31:2c:25:c4:35:df:e2:65:04:6b:82:aa:53:7f: a6:de:d5:6e:28:70:d2:b2:9a:1d:85:91:9d:42:a7:e2:0f:ae: 50:c5:51:aa:04:cb:3b:71:79:35:1c:11:27:16:69:01:8a:10: 52:ad:dd:8f:b7:66:8e:03:d3:65:a4:5d:88:25:2c:d9:5f:27: b3:f8:9e:f1:e3:91:30:ac:8b:50:e9:cd:8c:f4:94:08:4e:3c: 52:d1:62:0b:e5:ed:78:ab:46:d2:bb:30:06:fc:be:78:58:91: d6:f3:f4:ca:ed:d7:4a:98:d0:c3:5d:2a:f1:7c:09:d0:d4:2b: a6:d4:5b:08:6d:06:85:84:c0:00:6c:21:cd:b9:be:95:33:2d: 5b:fb:a7:d6:6e:70:99:9d:7d:a0:8b:6f:e4:8f:5e:b6:32:43: c7:d3:f5:e8:66:c7:fb:cf:c5:cb:28:fe:5b:c0:65:9c:71:d6: 87:0b:fd:b0 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg3MUExMTAvBgNVBAUTKDU4NUREQzRGRDlGOUUzMTQwMDVGMzcxOThGRDFFMjJF NjgyNDlERUIwHhcNMjUwMzAxMDIzMzMyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MyNzFmYy0zMzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbtlzzs0C9TNRc5foWaq9MsrH4AiJ94eFHVcbwJamnxvsrorZsZ4xcLizoQq KUz5lFUxtUdDwxQaJkL3m4tj/C6fbG7EXdKxVRmNUvmSE+jL1wS8vwifh3z4AW+I OfXhrbDQMmPebqmp4guDV+iRrIrRETLiA4A7aqYu7xBih2X9fi6HZGi0oxfdrBqu FSbehCApOQPVaQjEHrTODU1Bk90qz25CfFfpgo1N1iEPMNrgZ15c1SIeAggUZbh6 wz8yzw4crje7zY3F2ed+/q1FuIQcEZo2eIT5vwkdW6lHAQZckzBH9KBf4wJ+ExVo lW49Py2jbxzqNbqOX1vS+MCTSQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLP+a95Q b6Vjdr6KnVeVSIBtZzjRMB8GA1UdIwQYMBaAFFhd3E/Z+eMUAF83GY/R4i5oJJ3r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODcxQS8wNUJEMEYzMDUy NDAxMUVDODY1ODA2MEVDNEY5QUUwMi9XRjNjVDluNTR4UUFYemNaajlIaUxtZ2tu ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dGM2NUOW41NHhRQVh6Y1pqOUhpTG1na25lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg3MUEvMDVCRDBGMzA1MjQwMTFFQzg2NTgwNjBFQzRGOUFFMDIvNTQzMUQwMjI1 MjQyMTFFQ0E1MkQ5OTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnMNAwDQQCAAIwBwMFACQCsoAwDQYJKoZIhvcNAQELBQAD ggEBAEVhA40pzfyyim+8fS64GnOpsQrZ5sS9h2S92aDriiB5IRIR/D1GyNi8gzMm hHHwb8zEj72camKNuhkr4IFTHhS2bfY5uA00aqWQ2W0xLCXENd/iZQRrgqpTf6be 1W4ocNKymh2FkZ1Cp+IPrlDFUaoEyztxeTUcEScWaQGKEFKt3Y+3Zo4D02WkXYgl LNlfJ7P4nvHjkTCsi1DpzYz0lAhOPFLRYgvl7XirRtK7MAb8vnhYkdbz9Mrt10qY 0MNdKvF8CdDUK6bUWwhtBoWEwABsIc25vpUzLVv7p9ZucJmdfaCLb+SPXrYyQ8fT 9ehmx/vPxcso/lvAZZxx1ocL/bA= -----END CERTIFICATE-----Generated at Sat Apr 26 13:09:47 2025 by rpki-client