$ rpki-client -vvf rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/7E3B7BE6B1E911EC9A0D366FC4F9AE02.roa File: 7E3B7BE6B1E911EC9A0D366FC4F9AE02.roa (raw, json) Hash identifier: kRz4OHfhPxe5EPvefvMi3Xao6izuUxMq6U5mJJMpf2U= Subject key identifier: CE:46:4B:D8:2D:F6:47:20:68:EB:36:78:2D:A5:C0:E0:73:83:17:D1 Certificate issuer: /CN=A914A553/serialNumber=AB4C3E35AEFC55B5BA358CA406ED9626A4220FD0 Certificate serial: 0A6E Authority key identifier: AB:4C:3E:35:AE:FC:55:B5:BA:35:8C:A4:06:ED:96:26:A4:22:0F:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0w-Na78VbW6NYykBu2WJqQiD9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/7E3B7BE6B1E911EC9A0D366FC4F9AE02.roa Signing time: Wed 08 Jan 2025 19:38:07 +0000 ROA not before: Wed 08 Jan 2025 19:38:07 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 136010 IP address blocks: 103.79.216.0/24 maxlen: 24 103.79.217.0/24 maxlen: 24 103.79.218.0/24 maxlen: 24 103.79.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.crl rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0w-Na78VbW6NYykBu2WJqQiD9A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:28:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2670 (0xa6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A553, serialNumber=AB4C3E35AEFC55B5BA358CA406ED9626A4220FD0 Validity Not Before: Jan 8 19:38:07 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=677ed41f-3252 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c1:f5:f2:74:06:04:87:ce:36:05:d2:33:04: 01:09:0e:e9:2b:bb:da:54:0c:0f:d5:af:9f:c0:07: db:ea:11:83:17:fe:48:40:11:e3:a0:4e:c5:08:56: 95:45:7a:db:e8:3f:7a:9e:3c:cd:1e:2b:15:09:51: 08:8d:ae:aa:c3:42:f7:ad:39:c7:19:96:d1:27:be: 54:e0:e8:6c:83:f0:04:82:45:91:77:23:1c:56:4d: 71:6c:b1:0c:90:c0:77:81:c3:6c:bf:ac:1d:c6:db: 31:2e:cd:9e:4f:87:30:2b:f4:d2:9d:9f:48:a7:bd: 2d:d0:2e:c4:f5:bc:b5:ca:bf:35:17:45:2d:7d:fb: cd:8f:e1:2c:1f:78:52:0f:39:45:5f:e3:fc:5d:c3: ed:1f:ec:78:ee:62:2e:1c:e1:74:f6:27:4e:e6:12: 34:e7:73:3c:16:cb:06:06:b2:4c:e0:22:b1:f0:6b: 9c:d1:5d:ee:70:2b:2d:12:cf:1b:67:40:79:18:bb: f2:09:77:08:fd:b1:cf:6f:01:1c:2c:70:95:a4:73: 51:15:8b:0a:bb:da:ae:ce:4a:a1:60:f3:02:19:d4: bb:48:d8:52:14:58:84:dc:ee:61:83:8b:f4:59:24: 86:ac:ff:f2:65:fb:c4:70:15:43:3e:3f:d2:d5:24: f3:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:46:4B:D8:2D:F6:47:20:68:EB:36:78:2D:A5:C0:E0:73:83:17:D1 X509v3 Authority Key Identifier: keyid:AB:4C:3E:35:AE:FC:55:B5:BA:35:8C:A4:06:ED:96:26:A4:22:0F:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/q0w-Na78VbW6NYykBu2WJqQiD9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q0w-Na78VbW6NYykBu2WJqQiD9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A553/95C8A3E457A311EAA935C083C4F9AE02/7E3B7BE6B1E911EC9A0D366FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.216.0/22 Signature Algorithm: sha256WithRSAEncryption 36:d6:4d:c6:6a:74:bb:38:bb:a8:52:39:c2:83:6a:00:3b:1d: 45:80:4b:93:ff:17:67:88:05:28:8a:1a:e2:03:2a:43:d3:60: f7:65:c1:ed:c6:64:5c:57:9a:f1:d8:8b:49:ac:03:93:67:01: 98:56:df:d3:34:b2:bf:11:a8:97:00:c2:4b:91:ce:d2:57:bc: 37:a9:17:25:7c:cc:c0:e5:67:4f:11:16:23:54:31:12:35:82: 6c:10:f4:1b:f4:40:d4:2f:d9:b0:96:9c:a1:3e:ec:22:ba:8b: 3e:91:6a:d6:3a:9b:b6:fa:c0:c8:b7:5f:dd:e4:68:1a:d9:39: 9c:5b:4d:ae:ae:f5:12:a6:03:68:ca:ea:b7:7f:9f:44:0b:b5: e9:16:70:f5:63:ef:39:98:79:77:a6:e9:12:61:40:41:4a:a3: ae:35:8f:30:78:65:fb:c4:0a:b1:59:ba:ac:8a:09:93:62:e4: fa:f6:34:2c:ee:7e:e4:4b:28:03:32:73:01:a5:61:b2:8d:50: d4:31:87:d9:bb:52:21:20:51:9d:eb:13:ff:94:fd:db:98:4c: 73:8e:f3:bf:2f:9c:e7:ca:53:bc:af:5c:f4:51:04:0d:19:13: fe:49:1f:7f:85:aa:40:ad:98:5c:9a:6e:a3:56:95:8a:84:e0: 08:e3:fd:21 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE1NTMxMTAvBgNVBAUTKEFCNEMzRTM1QUVGQzU1QjVCQTM1OENBNDA2RUQ5NjI2 QTQyMjBGRDAwHhcNMjUwMTA4MTkzODA3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdlZDQxZi0zMjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0cH18nQGBIfONgXSMwQBCQ7pK7vaVAwP1a+fwAfb6hGDF/5IQBHjoE7FCFaV RXrb6D96njzNHisVCVEIja6qw0L3rTnHGZbRJ75U4Ohsg/AEgkWRdyMcVk1xbLEM kMB3gcNsv6wdxtsxLs2eT4cwK/TSnZ9Ip70t0C7E9by1yr81F0UtffvNj+EsH3hS DzlFX+P8XcPtH+x47mIuHOF09idO5hI053M8FssGBrJM4CKx8Guc0V3ucCstEs8b Z0B5GLvyCXcI/bHPbwEcLHCVpHNRFYsKu9quzkqhYPMCGdS7SNhSFFiE3O5hg4v0 WSSGrP/yZfvEcBVDPj/S1STzNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM5GS9gt 9kcgaOs2eC2lwOBzgxfRMB8GA1UdIwQYMBaAFKtMPjWu/FW1ujWMpAbtliakIg/Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTU1My85NUM4QTNFNDU3 QTMxMUVBQTkzNUMwODNDNEY5QUUwMi9xMHctTmE3OFZiVzZOWXlrQnUyV0pxUWlE OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Ewdy1OYTc4VmJXNk5ZeWtCdTJXSnFRaUQ5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEE1NTMvOTVDOEEzRTQ1N0EzMTFFQUE5MzVDMDgzQzRGOUFFMDIvN0UzQjdCRTZC MUU5MTFFQzlBMEQzNjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnT9gwDQYJKoZIhvcNAQELBQADggEBADbWTcZqdLs4u6hS OcKDagA7HUWAS5P/F2eIBSiKGuIDKkPTYPdlwe3GZFxXmvHYi0msA5NnAZhW39M0 sr8RqJcAwkuRztJXvDepFyV8zMDlZ08RFiNUMRI1gmwQ9Bv0QNQv2bCWnKE+7CK6 iz6RatY6m7b6wMi3X93kaBrZOZxbTa6u9RKmA2jK6rd/n0QLtekWcPVj7zmYeXem 6RJhQEFKo641jzB4ZfvECrFZuqyKCZNi5Pr2NCzufuRLKAMycwGlYbKNUNQxh9m7 UiEgUZ3rE/+U/duYTHOO878vnOfKU7yvXPRRBA0ZE/5JH3+FqkCtmFyabqNWlYqE 4Ajj/SE= -----END CERTIFICATE-----Generated at Sat Apr 26 13:05:19 2025 by rpki-client