$ rpki-client -vvf rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/94CB63BC241E11EB985FC048C4F9AE02.roa File: 94CB63BC241E11EB985FC048C4F9AE02.roa (raw, json) Hash identifier: QadRAteDkMr+/Vf11v/PSiWZ5qLyjgZNySKVRInle2I= Subject key identifier: 7D:AF:85:E4:DE:6C:39:46:27:59:1F:21:82:E9:46:BA:EB:26:00:F8 Certificate issuer: /CN=A914CCC5/serialNumber=3911E1EFB02B036F835BF658E136601A67421693 Certificate serial: 0740 Authority key identifier: 39:11:E1:EF:B0:2B:03:6F:83:5B:F6:58:E1:36:60:1A:67:42:16:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/94CB63BC241E11EB985FC048C4F9AE02.roa Signing time: Wed 26 Mar 2025 22:03:07 +0000 ROA not before: Wed 26 Mar 2025 22:03:07 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138573 IP address blocks: 103.133.184.0/22 maxlen: 24 2001:df7:a700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:29:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1856 (0x740) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CCC5, serialNumber=3911E1EFB02B036F835BF658E136601A67421693 Validity Not Before: Mar 26 22:03:07 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67e4799b-806e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:58:dc:fa:20:08:bb:82:98:01:89:73:dd:d5: bb:72:86:9c:8d:5b:70:e9:48:c8:8d:a2:ca:49:3e: 70:0e:4d:ce:d6:f5:83:62:a1:3d:03:e0:ea:1a:25: 10:cc:23:df:fb:ca:a2:7c:f0:2c:7a:a8:61:e4:92: a3:83:97:2b:ac:06:54:2f:b9:d2:44:48:1e:59:1b: d7:aa:48:6a:36:ce:c6:51:8d:a5:31:f3:60:ad:ba: 7f:18:b1:98:82:9a:3d:6f:5f:3a:2a:06:fd:d0:a4: 24:b0:b5:d8:83:3c:83:96:7a:81:e5:e7:c4:c8:a5: cf:e4:ca:f6:e7:ff:cb:3f:6a:18:42:27:6b:fa:a1: 18:ea:01:fa:c5:f4:5e:a7:1b:ee:42:bc:f3:04:b2: df:47:e7:9f:dd:fb:7f:a4:dc:3d:75:03:99:99:c8: 0c:d7:53:50:6c:c6:c9:ff:f7:a2:d7:3d:bf:b2:3c: 6c:ae:ab:b2:a6:1a:24:56:d9:c4:35:6b:16:c2:e4: b0:35:26:47:05:6a:63:db:a6:34:29:70:a5:47:55: b5:b8:3e:a3:bf:1d:42:23:cd:27:5a:ef:68:15:a6: 82:df:a0:20:0d:98:de:a9:21:cd:d1:65:7b:20:f6: e3:6a:37:a4:d1:7e:12:87:e7:9b:4f:06:79:ec:82: 9d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:AF:85:E4:DE:6C:39:46:27:59:1F:21:82:E9:46:BA:EB:26:00:F8 X509v3 Authority Key Identifier: keyid:39:11:E1:EF:B0:2B:03:6F:83:5B:F6:58:E1:36:60:1A:67:42:16:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/94CB63BC241E11EB985FC048C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.184.0/22 IPv6: 2001:df7:a700::/48 Signature Algorithm: sha256WithRSAEncryption 3f:7f:8c:c7:cb:91:af:a6:22:47:a7:7b:de:b5:b6:c5:e7:41: d6:b5:ff:ab:0e:69:8c:c3:71:dd:e1:7f:26:c7:80:68:d8:c1: a0:3d:59:69:7e:c3:be:8e:1b:32:98:4d:81:04:27:b5:9f:25: 9d:3a:0e:8b:58:53:48:f1:e1:63:cb:3d:8d:4d:88:42:fb:7f: 51:b8:84:d9:60:33:9d:57:b4:23:22:ef:b4:f4:2a:00:bf:c6: 86:35:65:7d:50:91:10:68:d7:7c:83:f3:6c:e8:70:81:83:dc: 8d:10:92:b4:2d:95:9f:f3:9d:d8:0d:84:48:e4:07:75:97:d3: 20:19:c4:aa:a9:ea:d7:c5:96:55:a0:42:6a:86:5e:9d:4c:57: 6b:26:e1:03:47:cb:91:1f:ec:c9:9e:72:27:f7:ef:5d:27:61: 30:7a:85:4f:32:a2:37:d4:34:79:5e:db:0a:0e:01:28:1f:d8: 20:00:22:c4:9d:61:ce:67:5d:5e:10:b4:4a:60:48:6f:4e:fe: 4d:95:58:ec:a7:d8:7b:92:b6:58:8e:a2:9e:75:59:33:71:57: b7:d1:e2:df:e1:c2:fb:90:13:db:f1:13:65:b1:20:c3:8d:89: cc:6a:1c:5b:04:ad:42:b2:2a:74:c9:d4:41:d9:8b:64:4d:92: 03:74:6d:f1 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENDQzUxMTAvBgNVBAUTKDM5MTFFMUVGQjAyQjAzNkY4MzVCRjY1OEUxMzY2MDFB Njc0MjE2OTMwHhcNMjUwMzI2MjIwMzA3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2U0Nzk5Yi04MDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvljc+iAIu4KYAYlz3dW7coacjVtw6UjIjaLKST5wDk3O1vWDYqE9A+DqGiUQ zCPf+8qifPAseqhh5JKjg5crrAZUL7nSREgeWRvXqkhqNs7GUY2lMfNgrbp/GLGY gpo9b186Kgb90KQksLXYgzyDlnqB5efEyKXP5Mr25//LP2oYQidr+qEY6gH6xfRe pxvuQrzzBLLfR+ef3ft/pNw9dQOZmcgM11NQbMbJ//ei1z2/sjxsrquyphokVtnE NWsWwuSwNSZHBWpj26Y0KXClR1W1uD6jvx1CI80nWu9oFaaC36AgDZjeqSHN0WV7 IPbjajek0X4Sh+ebTwZ57IKdsQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFH2vheTe bDlGJ1kfIYLpRrrrJgD4MB8GA1UdIwQYMBaAFDkR4e+wKwNvg1v2WOE2YBpnQhaT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0NDNS80M0I1RUZEMDI0 MUMxMUVCQUIzMkQ1NDNDNEY5QUUwMi9PUkhoNzdBckEyLURXX1pZNFRaZ0dtZENG cE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09SSGg3N0FyQTItRFdfWlk0VFpnR21kQ0ZwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NENDQzUvNDNCNUVGRDAyNDFDMTFFQkFCMzJENTQzQzRGOUFFMDIvOTRDQjYzQkMy NDFFMTFFQjk4NUZDMDQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnhbgwDwQCAAIwCQMHACABDfenADANBgkqhkiG9w0BAQsF AAOCAQEAP3+Mx8uRr6YiR6d73rW2xedB1rX/qw5pjMNx3eF/JseAaNjBoD1ZaX7D vo4bMphNgQQntZ8lnToOi1hTSPHhY8s9jU2IQvt/UbiE2WAznVe0IyLvtPQqAL/G hjVlfVCREGjXfIPzbOhwgYPcjRCStC2Vn/Od2A2ESOQHdZfTIBnEqqnq18WWVaBC aoZenUxXaybhA0fLkR/syZ5yJ/fvXSdhMHqFTzKiN9Q0eV7bCg4BKB/YIAAixJ1h zmddXhC0SmBIb07+TZVY7KfYe5K2WI6innVZM3FXt9Hi3+HC+5AT2/ETZbEgw42J zGocWwStQrIqdMnUQdmLZE2SA3Rt8Q== -----END CERTIFICATE-----Generated at Sat Apr 26 07:42:46 2025 by rpki-client