$ rpki-client -vvf rpki.apnic.net/member_repository/A914C651/334F68C8CEEC11EEAE03306CC4F9AE02/1577D3D4CEED11EEAD68A169C4F9AE02.roa File: 1577D3D4CEED11EEAD68A169C4F9AE02.roa (raw, json) Hash identifier: /tXzmPJpbFpT9Ng+OXe5R9OW1iH2k8GOdLq7rPEZELc= Subject key identifier: EF:40:20:88:D8:E5:A3:6D:B1:93:37:1F:D4:50:C7:6D:CC:B7:15:FB Certificate issuer: /CN=A914C651/serialNumber=76D6FA7CF9BF8E415F2F42619B804288763E67A2 Certificate serial: DF Authority key identifier: 76:D6:FA:7C:F9:BF:8E:41:5F:2F:42:61:9B:80:42:88:76:3E:67:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dtb6fPm_jkFfL0Jhm4BCiHY-Z6I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C651/334F68C8CEEC11EEAE03306CC4F9AE02/1577D3D4CEED11EEAD68A169C4F9AE02.roa Signing time: Sat 05 Apr 2025 05:10:43 +0000 ROA not before: Sat 05 Apr 2025 05:10:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151630 IP address blocks: 103.149.152.0/24 maxlen: 24 103.149.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C651/334F68C8CEEC11EEAE03306CC4F9AE02/dtb6fPm_jkFfL0Jhm4BCiHY-Z6I.crl rsync://rpki.apnic.net/member_repository/A914C651/334F68C8CEEC11EEAE03306CC4F9AE02/dtb6fPm_jkFfL0Jhm4BCiHY-Z6I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dtb6fPm_jkFfL0Jhm4BCiHY-Z6I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:34:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C651, serialNumber=76D6FA7CF9BF8E415F2F42619B804288763E67A2 Validity Not Before: Apr 5 05:10:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f0bb53-880e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:2b:75:43:93:71:bd:85:d4:9b:fd:4e:d1:67: 56:c3:72:33:16:e0:44:8b:46:0a:1a:11:a9:1e:34: 89:f7:01:60:0d:af:52:c2:70:dc:d2:06:31:ab:98: cd:79:64:31:54:d9:f2:87:4f:8a:21:36:e3:e2:59: f3:c2:b1:b1:cb:fb:ed:8f:3d:39:90:1d:4a:56:6c: d7:94:29:e6:cc:55:d2:d8:35:eb:e8:ec:14:ee:60: dc:dd:d8:33:87:ea:0a:41:a4:5d:63:d1:cf:11:bc: 89:6f:6b:e1:cd:47:8e:fe:a2:66:43:01:c1:96:bc: 38:91:59:6f:fa:5b:0e:37:14:8f:2e:fd:ad:14:a1: dc:db:c9:6f:a0:9e:39:61:56:74:30:7d:3b:eb:61: 3d:1b:4f:5e:a5:cd:d8:93:fe:bc:e5:1d:83:55:c1: b1:2d:e0:98:7e:8e:16:a1:fa:9f:12:4f:25:8c:60: e8:6e:20:bf:1f:18:70:ab:b1:c7:10:63:37:9c:04: aa:aa:46:c7:e9:16:92:c6:2f:39:b8:c9:ca:f2:07: a1:5b:a8:bb:3e:34:7d:44:e5:1f:ee:e8:0c:c8:f6: 99:42:1b:70:97:63:08:5e:42:c8:0b:8c:fe:8e:4b: 00:3f:93:e1:9a:89:c2:21:b0:c6:ac:24:de:0d:8d: 8e:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:40:20:88:D8:E5:A3:6D:B1:93:37:1F:D4:50:C7:6D:CC:B7:15:FB X509v3 Authority Key Identifier: keyid:76:D6:FA:7C:F9:BF:8E:41:5F:2F:42:61:9B:80:42:88:76:3E:67:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C651/334F68C8CEEC11EEAE03306CC4F9AE02/dtb6fPm_jkFfL0Jhm4BCiHY-Z6I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dtb6fPm_jkFfL0Jhm4BCiHY-Z6I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C651/334F68C8CEEC11EEAE03306CC4F9AE02/1577D3D4CEED11EEAD68A169C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.152.0/23 Signature Algorithm: sha256WithRSAEncryption 83:8c:56:95:73:ec:4e:8f:c6:18:8f:b1:74:f8:09:89:c6:2f: f1:1d:51:26:ca:07:ef:8f:2f:bd:6e:d3:48:b2:3d:a1:3b:25: a4:09:70:fb:5d:ae:49:11:49:c8:a2:b6:05:df:35:e6:92:97: 19:cb:da:91:51:66:7f:95:f8:df:56:5a:cb:90:e4:d9:61:de: 80:9b:dd:d1:ed:3b:d2:d9:a9:cd:29:94:fa:97:e4:84:53:11: fc:90:67:14:1b:8c:05:69:0b:c8:15:8c:5b:0c:41:79:d2:1f: 76:9b:6e:5c:a6:d8:cf:a1:af:50:d9:9f:2b:d6:71:2a:2d:a2: e0:2c:d8:c5:0c:18:4c:fc:95:ac:17:3a:41:d9:74:e8:1b:a6: 8d:9a:54:ab:79:d1:59:80:24:a4:22:8b:56:c0:d9:aa:61:7e: 12:79:f3:d5:d3:92:81:30:e6:ad:d0:4b:4b:e0:99:a9:5e:31: 72:62:d7:79:24:c1:78:39:6d:c6:ad:56:de:fc:e5:dc:8e:7b: 15:a1:93:c3:00:31:dd:f9:39:c6:6d:67:20:0c:87:df:58:73: 7d:42:e6:49:63:ce:73:d9:55:a1:1b:93:96:a0:00:02:5c:76: d5:8a:94:49:4a:4c:d2:18:79:2f:58:de:98:7c:6c:a1:9f:d0: f7:db:21:23 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM2NTExMTAvBgNVBAUTKDc2RDZGQTdDRjlCRjhFNDE1RjJGNDI2MTlCODA0Mjg4 NzYzRTY3QTIwHhcNMjUwNDA1MDUxMDQzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwYmI1My04ODBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Ct1Q5NxvYXUm/1O0WdWw3IzFuBEi0YKGhGpHjSJ9wFgDa9SwnDc0gYxq5jN eWQxVNnyh0+KITbj4lnzwrGxy/vtjz05kB1KVmzXlCnmzFXS2DXr6OwU7mDc3dgz h+oKQaRdY9HPEbyJb2vhzUeO/qJmQwHBlrw4kVlv+lsONxSPLv2tFKHc28lvoJ45 YVZ0MH0762E9G09epc3Yk/685R2DVcGxLeCYfo4WofqfEk8ljGDobiC/Hxhwq7HH EGM3nASqqkbH6RaSxi85uMnK8gehW6i7PjR9ROUf7ugMyPaZQhtwl2MIXkLIC4z+ jksAP5PhmonCIbDGrCTeDY2OpQIDAQABo4IClTCCApEwHQYDVR0OBBYEFO9AIIjY 5aNtsZM3H9RQx23MtxX7MB8GA1UdIwQYMBaAFHbW+nz5v45BXy9CYZuAQoh2Pmei MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzY1MS8zMzRGNjhDOENF RUMxMUVFQUUwMzMwNkNDNEY5QUUwMi9kdGI2ZlBtX2prRmZMMEpobTRCQ2lIWS1a NkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R0YjZmUG1famtGZkwwSmhtNEJDaUhZLVo2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEM2NTEvMzM0RjY4QzhDRUVDMTFFRUFFMDMzMDZDQzRGOUFFMDIvMTU3N0QzRDRD RUVEMTFFRUFENjhBMTY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlZgwDQYJKoZIhvcNAQELBQADggEBAIOMVpVz7E6PxhiP sXT4CYnGL/EdUSbKB++PL71u00iyPaE7JaQJcPtdrkkRSciitgXfNeaSlxnL2pFR Zn+V+N9WWsuQ5Nlh3oCb3dHtO9LZqc0plPqX5IRTEfyQZxQbjAVpC8gVjFsMQXnS H3abblym2M+hr1DZnyvWcSotouAs2MUMGEz8lawXOkHZdOgbpo2aVKt50VmAJKQi i1bA2aphfhJ589XTkoEw5q3QS0vgmaleMXJi13kkwXg5bcatVt785dyOexWhk8MA Md35OcZtZyAMh99Yc31C5kljznPZVaEbk5agAAJcdtWKlElKTNIYeS9Y3ph8bKGf 0PfbISM= -----END CERTIFICATE-----Generated at Sat Apr 26 08:31:00 2025 by rpki-client