$ rpki-client -vvf rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/4720EB9ED60F11EFA2510540C4F9AE02.roa File: 4720EB9ED60F11EFA2510540C4F9AE02.roa (raw, json) Hash identifier: Q8ipP3E5cVxqpK+wwh4P32pECYgAwVU6B1+eB8QC8yE= Subject key identifier: B2:39:76:9E:86:ED:27:7A:49:09:18:8F:27:6D:12:2C:3E:1C:34:A7 Certificate issuer: /CN=A914459D/serialNumber=FB488568E7520BC782A119897629030ED0695CDB Certificate serial: 2B Authority key identifier: FB:48:85:68:E7:52:0B:C7:82:A1:19:89:76:29:03:0E:D0:69:5C:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0iFaOdSC8eCoRmJdikDDtBpXNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/4720EB9ED60F11EFA2510540C4F9AE02.roa Signing time: Thu 03 Apr 2025 07:03:54 +0000 ROA not before: Thu 03 Apr 2025 07:03:54 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 133394 IP address blocks: 103.226.53.0/24 maxlen: 24 103.239.76.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/-0iFaOdSC8eCoRmJdikDDtBpXNs.crl rsync://rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/-0iFaOdSC8eCoRmJdikDDtBpXNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0iFaOdSC8eCoRmJdikDDtBpXNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:36:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914459D, serialNumber=FB488568E7520BC782A119897629030ED0695CDB Validity Not Before: Apr 3 07:03:54 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ee32d9-c6b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b8:8b:c3:b6:00:38:4b:46:5d:80:84:d0:a5: d7:16:43:cf:c8:90:72:dd:ea:9a:1f:88:cc:40:07: b0:4b:50:26:ca:1a:6d:26:d3:bf:21:11:61:46:1f: 96:0b:96:c0:93:26:2b:58:78:cc:3d:4c:b1:ec:1f: ad:c1:e7:cc:10:7c:12:ab:dc:52:10:c3:6d:f1:0d: ea:a1:8c:e5:ef:89:fb:96:a6:71:1c:ef:94:2e:e3: 5a:13:36:48:9f:48:26:9a:bd:56:54:23:8f:bc:73: 16:90:4e:38:f7:da:28:04:a2:4d:8a:ab:c6:93:be: a5:bb:23:ad:9f:80:4d:5a:ab:51:a1:a8:f0:16:17: 20:07:18:30:05:b9:aa:01:10:25:53:8f:0f:45:6d: b3:ba:5c:a2:44:f4:2c:32:42:1b:e2:90:8b:bb:4f: 79:20:c4:33:c2:4b:f3:03:ab:fd:d8:75:4f:d6:b0: ce:d5:01:05:d7:3a:ba:59:ae:a2:00:1b:c3:f3:c1: b2:ca:50:83:fd:57:a6:2f:43:54:4b:aa:36:6d:ff: 21:c3:ca:d6:c1:04:d8:02:da:f2:6b:e4:5e:b2:c5: ad:50:f9:6d:a9:51:c2:b8:1f:a3:70:ed:0b:37:57: c1:ff:16:c4:e0:8d:3c:c6:e9:f6:b2:12:a6:51:d6: 3d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:39:76:9E:86:ED:27:7A:49:09:18:8F:27:6D:12:2C:3E:1C:34:A7 X509v3 Authority Key Identifier: keyid:FB:48:85:68:E7:52:0B:C7:82:A1:19:89:76:29:03:0E:D0:69:5C:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/-0iFaOdSC8eCoRmJdikDDtBpXNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-0iFaOdSC8eCoRmJdikDDtBpXNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914459D/0B3F665AD60F11EFB0FA533FC4F9AE02/4720EB9ED60F11EFA2510540C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.226.53.0/24 103.239.76.0/23 Signature Algorithm: sha256WithRSAEncryption be:28:67:1e:3c:10:0a:35:15:3a:f0:37:a8:e6:df:65:f0:52: fe:25:cb:4d:09:46:03:fa:2b:ca:bf:3e:bc:96:3f:69:05:53: 69:fc:ff:d4:80:d5:a8:e5:8c:92:50:37:e4:e2:ae:e6:07:48: 5e:38:32:f8:9f:a7:9c:3d:b0:d6:fd:b6:56:38:07:a3:9a:d8: 42:90:84:53:41:cf:1c:ca:76:59:a7:b9:a8:4f:38:40:be:c5: 53:c0:1c:23:02:84:a7:a9:08:cd:1e:51:dc:1e:43:0e:65:64: 9f:41:66:7b:ed:85:8a:fc:52:99:8e:c5:2b:bb:ec:9e:2e:dc: 0c:de:d3:7e:b4:a1:cf:64:7c:cc:82:7c:69:48:de:2b:a7:12: a4:d2:76:ef:1b:20:93:08:2f:4f:2a:73:bf:ad:04:b4:8b:55: 9a:d7:f2:ce:a6:ea:3c:eb:e6:39:db:dd:3b:85:9e:c1:91:cc: 09:8b:dd:00:2e:6a:f5:f3:62:24:6e:26:a5:a3:ab:e3:44:a5: e2:dd:32:bd:fb:14:37:27:0a:62:84:b1:d5:fb:65:f6:bc:f4: 50:77:8a:1d:c2:90:ad:1c:e9:e7:0e:d5:d9:11:3d:01:2f:32: fc:a5:ed:ce:0c:b7:cc:55:64:c0:a8:0d:63:d6:68:6e:a2:79: 65:8f:b2:f8 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NDU5RDExMC8GA1UEBRMoRkI0ODg1NjhFNzUyMEJDNzgyQTExOTg5NzYyOTAzMEVE MDY5NUNEQjAeFw0yNTA0MDMwNzAzNTRaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZWUzMmQ5LWM2YjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8uIvDtgA4S0ZdgITQpdcWQ8/IkHLd6pofiMxAB7BLUCbKGm0m078hEWFGH5YL lsCTJitYeMw9TLHsH63B58wQfBKr3FIQw23xDeqhjOXvifuWpnEc75Qu41oTNkif SCaavVZUI4+8cxaQTjj32igEok2Kq8aTvqW7I62fgE1aq1GhqPAWFyAHGDAFuaoB ECVTjw9FbbO6XKJE9CwyQhvikIu7T3kgxDPCS/MDq/3YdU/WsM7VAQXXOrpZrqIA G8PzwbLKUIP9V6YvQ1RLqjZt/yHDytbBBNgC2vJr5F6yxa1Q+W2pUcK4H6Nw7Qs3 V8H/FsTgjTzG6fayEqZR1j0dAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUsjl2nobt J3pJCRiPJ20SLD4cNKcwHwYDVR0jBBgwFoAU+0iFaOdSC8eCoRmJdikDDtBpXNsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ0NTlELzBCM0Y2NjVBRDYw RjExRUZCMEZBNTMzRkM0RjlBRTAyLy0waUZhT2RTQzhlQ29SbUpkaWtERHRCcFhO cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLTBpRmFPZFNDOGVDb1JtSmRpa0REdEJwWE5zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDU5RC8wQjNGNjY1QUQ2MEYxMUVGQjBGQTUzM0ZDNEY5QUUwMi80NzIwRUI5RUQ2 MEYxMUVGQTI1MTA1NDBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAGfiNQMEAWfvTDANBgkqhkiG9w0BAQsFAAOCAQEAvihnHjwQ CjUVOvA3qObfZfBS/iXLTQlGA/oryr8+vJY/aQVTafz/1IDVqOWMklA35OKu5gdI Xjgy+J+nnD2w1v22VjgHo5rYQpCEU0HPHMp2Wae5qE84QL7FU8AcIwKEp6kIzR5R 3B5DDmVkn0Fme+2FivxSmY7FK7vsni7cDN7TfrShz2R8zIJ8aUjeK6cSpNJ27xsg kwgvTypzv60EtItVmtfyzqbqPOvmOdvdO4WewZHMCYvdAC5q9fNiJG4mpaOr40Sl 4t0yvfsUNycKYoSx1ftl9rz0UHeKHcKQrRzp5w7V2RE9AS8y/KXtzgy3zFVkwKgN Y9ZobqJ5ZY+y+A== -----END CERTIFICATE-----Generated at Sat Apr 26 07:52:30 2025 by rpki-client