$ rpki-client -vvf rpki.apnic.net/member_repository/A913367F/A2219058128B11EBBFA2C47EC4F9AE02/BF13AB8C5D3311EFA43E0C6EC4F9AE02.roa File: BF13AB8C5D3311EFA43E0C6EC4F9AE02.roa (raw, json) Hash identifier: w+svrnjAumlsgho2zJHotOA2YwQVmczAOvvR54Jd4tQ= Subject key identifier: 7F:05:67:7C:B0:27:0E:6E:E8:61:C9:2F:F4:57:6F:B5:9A:B8:67:0D Certificate issuer: /CN=A913367F/serialNumber=D4EA9464F322B26D7D2128DC3752F228880016DA Certificate serial: 070D Authority key identifier: D4:EA:94:64:F3:22:B2:6D:7D:21:28:DC:37:52:F2:28:88:00:16:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OqUZPMism19ISjcN1LyKIgAFto.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913367F/A2219058128B11EBBFA2C47EC4F9AE02/BF13AB8C5D3311EFA43E0C6EC4F9AE02.roa Signing time: Fri 30 Aug 2024 23:01:11 +0000 ROA not before: Fri 30 Aug 2024 23:01:11 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131471 IP address blocks: 103.104.212.0/24 maxlen: 24 103.104.213.0/24 maxlen: 24 103.104.214.0/24 maxlen: 24 103.104.215.0/24 maxlen: 24 103.153.14.0/24 maxlen: 24 103.153.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913367F/A2219058128B11EBBFA2C47EC4F9AE02/1OqUZPMism19ISjcN1LyKIgAFto.crl rsync://rpki.apnic.net/member_repository/A913367F/A2219058128B11EBBFA2C47EC4F9AE02/1OqUZPMism19ISjcN1LyKIgAFto.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OqUZPMism19ISjcN1LyKIgAFto.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:18:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1805 (0x70d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913367F, serialNumber=D4EA9464F322B26D7D2128DC3752F228880016DA Validity Not Before: Aug 30 23:01:11 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d24f37-2305 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:14:ec:65:be:f2:f1:dd:43:fb:f0:48:2c:b9: 4e:27:da:92:fb:f1:30:28:1b:1e:e2:85:54:72:8a: 11:4c:b1:b9:3f:e3:61:92:e0:00:a2:88:ce:01:48: 37:86:e0:4e:f4:49:7f:39:9a:bc:8d:5d:fb:68:19: f9:0a:7d:2c:44:0d:99:2f:12:bf:de:d4:08:c4:56: ff:b9:8b:b1:bb:3d:10:7f:ce:9f:9f:94:8e:57:be: b2:54:58:5c:8f:28:2b:4e:c0:81:ef:89:84:98:69: dd:d6:b8:a0:cb:9c:3a:90:b0:f3:e2:52:68:2c:fb: f1:79:b5:12:b3:0a:35:42:5a:06:65:4f:fb:c5:09: 7f:d8:44:4c:48:cf:02:7b:fe:d2:5b:b7:b0:a3:50: b8:c0:39:2d:8b:af:9d:13:a8:5a:c1:e8:39:99:cf: 96:c6:26:5c:bf:be:45:f9:6d:b8:33:95:e0:ba:02: 41:61:cc:18:df:41:ba:0e:cc:99:19:7d:38:42:9d: 6e:2e:37:58:ed:13:97:b5:c4:5a:ec:3b:99:1f:aa: 4c:b8:52:d4:8c:a5:48:77:47:66:76:6d:df:7c:80: 77:89:41:53:d3:04:9b:7b:7c:29:cf:79:01:8f:cb: b1:f4:c0:ac:ab:76:5f:62:19:8b:50:e4:79:b6:76: 8d:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:05:67:7C:B0:27:0E:6E:E8:61:C9:2F:F4:57:6F:B5:9A:B8:67:0D X509v3 Authority Key Identifier: keyid:D4:EA:94:64:F3:22:B2:6D:7D:21:28:DC:37:52:F2:28:88:00:16:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913367F/A2219058128B11EBBFA2C47EC4F9AE02/1OqUZPMism19ISjcN1LyKIgAFto.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1OqUZPMism19ISjcN1LyKIgAFto.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913367F/A2219058128B11EBBFA2C47EC4F9AE02/BF13AB8C5D3311EFA43E0C6EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.212.0/22 103.153.14.0/23 Signature Algorithm: sha256WithRSAEncryption 42:1a:4c:7a:a8:b5:b4:ea:64:e2:07:90:51:4f:f5:fc:eb:2e: 0a:36:c5:cf:8d:ab:79:05:8c:f9:51:60:ef:81:ab:20:7b:4f: ac:8e:32:ad:3b:cc:f2:ef:f6:9c:de:4a:92:ee:75:b9:5d:30: 27:11:78:9d:69:f2:47:02:a9:7f:43:2f:bf:23:d0:f0:63:df: 66:77:70:8a:30:f2:63:a7:ca:26:9c:a0:e0:e4:a1:78:aa:69: 39:87:2d:22:10:a6:d6:5e:c3:72:2d:11:a4:7a:b9:27:ba:eb: ef:db:6e:5e:20:6b:5d:ba:0e:ba:f5:b3:e1:ac:41:38:ce:46: 1f:8f:fe:9f:fa:81:d7:ed:21:1e:d7:13:40:72:78:a4:73:41: 46:b2:6c:17:d0:a0:20:83:28:8f:8d:cc:33:49:50:b6:0b:1c: 7b:c9:3b:89:f3:3d:1d:81:9a:88:67:7e:df:27:17:03:52:5d: fe:ad:ae:99:dd:96:6d:e7:b7:cf:6f:75:c7:77:f8:ed:c4:49: 47:50:3a:19:54:b5:73:20:a2:ee:89:51:7f:1a:d1:6a:5a:83: a1:41:c3:ca:1d:05:70:e9:17:c6:cd:b7:f4:c7:48:79:7e:fc: 98:88:6b:cd:b8:47:3f:3a:aa:4f:16:4c:2e:e1:2b:59:0c:b9: 8e:51:ff:20 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM2N0YxMTAvBgNVBAUTKEQ0RUE5NDY0RjMyMkIyNkQ3RDIxMjhEQzM3NTJGMjI4 ODgwMDE2REEwHhcNMjQwODMwMjMwMTExWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyNGYzNy0yMzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArhTsZb7y8d1D+/BILLlOJ9qS+/EwKBse4oVUcooRTLG5P+NhkuAAoojOAUg3 huBO9El/OZq8jV37aBn5Cn0sRA2ZLxK/3tQIxFb/uYuxuz0Qf86fn5SOV76yVFhc jygrTsCB74mEmGnd1rigy5w6kLDz4lJoLPvxebUSswo1QloGZU/7xQl/2ERMSM8C e/7SW7ewo1C4wDkti6+dE6haweg5mc+WxiZcv75F+W24M5XgugJBYcwY30G6DsyZ GX04Qp1uLjdY7ROXtcRa7DuZH6pMuFLUjKVId0dmdm3ffIB3iUFT0wSbe3wpz3kB j8ux9MCsq3ZfYhmLUOR5tnaN0wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFH8FZ3yw Jw5u6GHJL/RXb7WauGcNMB8GA1UdIwQYMBaAFNTqlGTzIrJtfSEo3DdS8iiIABba MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzY3Ri9BMjIxOTA1ODEy OEIxMUVCQkZBMkM0N0VDNEY5QUUwMi8xT3FVWlBNaXNtMTlJU2pjTjFMeUtJZ0FG dG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPcVVaUE1pc20xOUlTamNOMUx5S0lnQUZ0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzM2N0YvQTIyMTkwNTgxMjhCMTFFQkJGQTJDNDdFQzRGOUFFMDIvQkYxM0FCOEM1 RDMzMTFFRkE0M0UwQzZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnaNQDBAFnmQ4wDQYJKoZIhvcNAQELBQADggEBAEIaTHqo tbTqZOIHkFFP9fzrLgo2xc+Nq3kFjPlRYO+BqyB7T6yOMq07zPLv9pzeSpLudbld MCcReJ1p8kcCqX9DL78j0PBj32Z3cIow8mOnyiacoODkoXiqaTmHLSIQptZew3It EaR6uSe66+/bbl4ga126Drr1s+GsQTjORh+P/p/6gdftIR7XE0ByeKRzQUaybBfQ oCCDKI+NzDNJULYLHHvJO4nzPR2Bmohnft8nFwNSXf6trpndlm3nt89vdcd3+O3E SUdQOhlUtXMgou6JUX8a0Wpag6FBw8odBXDpF8bNt/THSHl+/JiIa824Rz86qk8W TC7hK1kMuY5R/yA= -----END CERTIFICATE-----Generated at Sat Apr 26 17:16:10 2025 by rpki-client