$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/813A255423A611F09025FC11C4F9AE02.roa File: 813A255423A611F09025FC11C4F9AE02.roa (raw, json) Hash identifier: uB4liRC15aLaiBtidHUNmFUGA+rWusK0euEN/1U3aMw= Subject key identifier: 0F:4A:3C:0B:65:87:44:19:AF:39:C2:AC:2E:33:9D:6A:44:AC:B2:D6 Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Certificate serial: 1378 Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/813A255423A611F09025FC11C4F9AE02.roa Signing time: Sun 27 Apr 2025 20:30:49 +0000 ROA not before: Sun 27 Apr 2025 20:30:49 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 138042 IP address blocks: 103.120.144.0/22 maxlen: 24 2403:5940::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 17:10:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4984 (0x1378) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AF32, serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Validity Not Before: Apr 27 20:30:49 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=680e93f9-00c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fa:01:37:07:48:5c:a8:64:9a:40:f4:41:1f: 8d:6d:a1:93:ef:a3:ec:cf:c4:11:fa:e2:7c:ad:d6: 71:e9:2e:93:09:cf:be:11:e5:94:de:2b:1b:12:c0: e8:34:7a:6f:e0:d0:19:fd:02:31:cb:d7:14:eb:53: 9d:55:43:ce:a3:24:2d:e4:95:aa:50:5c:ed:55:58: 75:4f:7e:50:4b:12:d0:e9:9a:e1:d3:2f:99:4a:e5: 2e:f3:9a:58:a0:f2:b5:42:bc:87:da:ae:a4:c4:e5: 5a:22:bf:99:a7:86:c6:88:41:d0:3b:b0:62:fb:a4: 4f:68:9c:6a:1f:f9:3f:4f:97:2a:42:e1:6a:3f:29: 94:30:02:95:87:26:e0:60:ef:5f:9f:42:76:64:8d: a5:24:25:01:cf:52:73:84:f3:8c:38:8b:33:e5:dc: ad:9b:bb:45:0a:2b:fb:74:d8:17:64:e2:7d:24:ff: b6:12:d2:86:fe:cf:d5:52:9f:32:3c:02:22:a1:30: 01:b3:25:55:9a:55:84:fe:27:4d:95:7d:1a:25:cb: 49:df:94:9d:23:04:bf:4a:d4:92:7e:b7:39:52:25: 73:10:80:d4:43:74:0b:5c:46:1d:67:26:c7:18:8d: 71:4b:8e:1d:89:91:37:c6:cc:bb:fd:51:be:50:e6: 76:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:4A:3C:0B:65:87:44:19:AF:39:C2:AC:2E:33:9D:6A:44:AC:B2:D6 X509v3 Authority Key Identifier: keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/813A255423A611F09025FC11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.144.0/22 IPv6: 2403:5940::/32 Signature Algorithm: sha256WithRSAEncryption 55:f9:67:60:c3:71:2a:3e:56:61:78:3d:35:97:dd:83:d2:73: b7:da:38:72:1d:c8:bb:34:3b:61:3c:a4:14:e3:7b:c2:30:1c: a2:b9:33:e3:ea:11:6f:13:fb:77:2d:25:cc:24:22:23:64:c1: f0:f2:a1:5b:10:3b:87:0e:f3:28:d1:bf:7f:33:12:ff:38:ab: 26:af:04:1b:33:68:c6:52:c6:e7:e4:b6:67:0f:1a:ef:9a:f0: 65:2b:d6:7e:b3:ee:78:a6:87:73:d9:07:27:f4:fc:ea:60:3b: 9b:d0:c8:9a:a0:ef:fe:15:65:ca:18:48:21:2f:b4:c7:4c:54: 0d:b8:08:99:71:62:07:55:71:80:28:d3:bc:1b:b9:2f:fa:f2: 60:91:8a:8c:3e:09:ac:bf:07:6e:17:9d:1f:2d:13:fe:0a:6c: 8a:25:2f:c8:d7:12:9d:32:ee:c4:cb:df:43:b9:8e:91:5e:6c: c5:9f:91:19:b6:95:70:d3:56:9a:f4:4b:19:f2:2a:c1:e9:c6: 5e:9b:79:56:52:d2:cb:14:19:d3:93:27:7e:fa:16:6b:e3:80: 96:20:8b:05:70:42:2f:3f:46:3c:b0:e4:d2:95:fc:08:ad:95: 94:5e:b6:52:f4:0f:ea:8b:8e:6c:7f:4a:43:e0:04:36:a4:62: 98:95:f6:22 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICE3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFGMzIxMTAvBgNVBAUTKDg0NzA3MzFCODk5QThERUVCMjlGRUE1MUI5MERDMTU4 REJEQTJBRjAwHhcNMjUwNDI3MjAzMDQ5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBlOTNmOS0wMGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzvoBNwdIXKhkmkD0QR+NbaGT76Psz8QR+uJ8rdZx6S6TCc++EeWU3isbEsDo NHpv4NAZ/QIxy9cU61OdVUPOoyQt5JWqUFztVVh1T35QSxLQ6Zrh0y+ZSuUu85pY oPK1QryH2q6kxOVaIr+Zp4bGiEHQO7Bi+6RPaJxqH/k/T5cqQuFqPymUMAKVhybg YO9fn0J2ZI2lJCUBz1JzhPOMOIsz5dytm7tFCiv7dNgXZOJ9JP+2EtKG/s/VUp8y PAIioTABsyVVmlWE/idNlX0aJctJ35SdIwS/StSSfrc5UiVzEIDUQ3QLXEYdZybH GI1xS44diZE3xsy7/VG+UOZ2YQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFA9KPAtl h0QZrznCrC4znWpErLLWMB8GA1UdIwQYMBaAFIRwcxuJmo3usp/qUbkNwVjb2irw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUYzMi85REVDMDc0MDlF NTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWplNnluLXBSdVEzQldOdmFL dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIQnpHNG1hamU2eW4tcFJ1UTNCV052YUt2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEFGMzIvOURFQzA3NDA5RTUwMTFFODk4MDNEODI2QzRGOUFFMDIvODEzQTI1NTQy M0E2MTFGMDkwMjVGQzExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJneJAwDQQCAAIwBwMFACQDWUAwDQYJKoZIhvcNAQELBQAD ggEBAFX5Z2DDcSo+VmF4PTWX3YPSc7faOHIdyLs0O2E8pBTje8IwHKK5M+PqEW8T +3ctJcwkIiNkwfDyoVsQO4cO8yjRv38zEv84qyavBBszaMZSxufktmcPGu+a8GUr 1n6z7nimh3PZByf0/OpgO5vQyJqg7/4VZcoYSCEvtMdMVA24CJlxYgdVcYAo07wb uS/68mCRiow+Cay/B24XnR8tE/4KbIolL8jXEp0y7sTL30O5jpFebMWfkRm2lXDT Vpr0SxnyKsHpxl6beVZS0ssUGdOTJ376FmvjgJYgiwVwQi8/Rjyw5NKV/AitlZRe tlL0D+qLjmx/SkPgBDakYpiV9iI= -----END CERTIFICATE-----Generated at Sun May 4 10:49:20 2025 by rpki-client