$ rpki-client -vvf rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/ECCC589A09FE11EFBEBB616CC4F9AE02.roa File: ECCC589A09FE11EFBEBB616CC4F9AE02.roa (raw, json) Hash identifier: HToMFGJs0PrSzy3dl46ENaQsO9PZvPk8q0J0yzAJKJA= Subject key identifier: 61:6F:C8:A3:9A:18:E5:3A:F4:71:14:E8:46:32:6A:39:1B:F0:0D:17 Certificate issuer: /CN=A914D0AF/serialNumber=4A85CF138872D3E44F90D7B6F3028F0B506734CC Certificate serial: 03C1 Authority key identifier: 4A:85:CF:13:88:72:D3:E4:4F:90:D7:B6:F3:02:8F:0B:50:67:34:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/ECCC589A09FE11EFBEBB616CC4F9AE02.roa Signing time: Thu 03 Apr 2025 00:56:35 +0000 ROA not before: Thu 03 Apr 2025 00:56:35 +0000 ROA not after: Fri 01 Aug 2025 00:00:00 +0000 asID: 149492 IP address blocks: 103.181.46.0/23 maxlen: 23 103.181.47.0/24 maxlen: 24 2001:df0:67c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.crl rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 961 (0x3c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D0AF, serialNumber=4A85CF138872D3E44F90D7B6F3028F0B506734CC Validity Not Before: Apr 3 00:56:35 2025 GMT Not After : Aug 1 00:00:00 2025 GMT Subject: CN=67eddcc2-9956 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:92:7d:b1:7f:17:de:c6:f2:a8:1e:f3:6d:53: c8:5d:a2:cd:ce:f9:a5:6b:6e:50:b4:d5:eb:c5:6a: 99:a3:a0:ce:c0:ac:c4:22:06:e3:2b:1b:0f:25:2a: c8:2a:a2:fc:9e:3e:1e:a3:bb:d0:76:5c:a1:fc:92: 11:3a:f3:c8:09:2c:ac:ae:7e:49:43:ba:d0:7e:34: 3d:8e:c0:62:15:2e:d6:07:dd:4e:ec:6d:df:8a:18: 87:96:84:88:09:04:28:1b:9d:02:35:df:9b:40:88: c4:70:e9:98:bd:52:f7:34:69:ce:da:05:4d:df:c7: 5c:59:84:97:8d:38:16:cf:fd:93:60:bd:cd:8a:6d: 56:3b:c5:32:3c:f0:67:f9:1d:60:0d:bb:5d:1e:73: a8:87:1a:cc:c6:62:1b:ed:12:d0:d2:ed:fb:b5:e3: e4:46:e7:29:d7:d9:93:bf:59:f2:e9:61:af:9e:c6: 20:53:0e:cd:2d:43:84:1c:b2:d8:e4:a7:d9:3c:77: 0e:d4:d2:62:27:e7:fa:6d:92:6b:69:12:ef:80:f4: 4f:15:15:b0:f0:03:2c:45:65:f7:7c:f5:01:d1:d9: d9:0d:9d:4f:92:8e:46:5e:2c:95:45:80:50:11:2d: 7b:7b:c5:35:29:0f:78:e1:68:fd:d4:6f:6e:d0:01: 51:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:6F:C8:A3:9A:18:E5:3A:F4:71:14:E8:46:32:6A:39:1B:F0:0D:17 X509v3 Authority Key Identifier: keyid:4A:85:CF:13:88:72:D3:E4:4F:90:D7:B6:F3:02:8F:0B:50:67:34:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/SoXPE4hy0-RPkNe28wKPC1BnNMw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SoXPE4hy0-RPkNe28wKPC1BnNMw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D0AF/1E339B3688DE11EC8A8B1628C4F9AE02/ECCC589A09FE11EFBEBB616CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.46.0/23 IPv6: 2001:df0:67c0::/48 Signature Algorithm: sha256WithRSAEncryption 22:a0:a3:8c:37:ba:70:f1:eb:c7:36:cf:e1:5c:b6:61:32:a3: 77:da:95:5c:76:05:a2:b0:aa:16:ab:1e:ef:b3:9a:75:8c:f4: 38:31:39:a4:5d:51:2d:9a:eb:8c:11:4b:e7:10:c4:ae:15:06: e5:7b:1f:bd:18:27:bb:b9:d5:10:3e:c9:71:ed:d9:9d:ab:8b: 99:ef:1c:7b:cf:22:7e:14:b8:39:78:0d:d4:38:46:7a:51:ac: bc:e6:82:3f:6f:a8:70:9a:9a:1e:50:21:69:c5:38:ef:a5:8b: 4b:5b:11:1b:27:a6:f9:2f:c6:c4:e1:0b:4f:5f:7d:23:3a:35: 92:62:8a:d4:7d:ca:ea:93:4d:99:7f:8b:89:23:9f:97:07:bc: fc:7a:af:88:58:9d:15:f0:ee:e1:eb:2d:73:eb:d5:b9:97:33: be:c5:64:04:68:7e:0e:ef:4d:f9:9f:d5:95:a9:ce:6d:05:b2: d1:71:4a:b9:41:fb:08:67:e9:bb:45:10:46:98:f7:b5:f0:bc: 99:9e:84:10:58:e8:cb:df:40:bc:51:d7:75:d1:27:3b:fd:6d: 90:59:a5:be:c1:0e:d3:e3:d0:7f:ce:3f:58:80:08:8e:e0:5b: 87:35:2f:dd:eb:17:54:c8:22:86:15:a6:00:f5:e1:5c:76:3d: 66:64:83:73 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQwQUYxMTAvBgNVBAUTKDRBODVDRjEzODg3MkQzRTQ0RjkwRDdCNkYzMDI4RjBC NTA2NzM0Q0MwHhcNMjUwNDAzMDA1NjM1WhcNMjUwODAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkZGNjMi05OTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp5J9sX8X3sbyqB7zbVPIXaLNzvmla25QtNXrxWqZo6DOwKzEIgbjKxsPJSrI KqL8nj4eo7vQdlyh/JIROvPICSysrn5JQ7rQfjQ9jsBiFS7WB91O7G3fihiHloSI CQQoG50CNd+bQIjEcOmYvVL3NGnO2gVN38dcWYSXjTgWz/2TYL3Nim1WO8UyPPBn +R1gDbtdHnOohxrMxmIb7RLQ0u37tePkRucp19mTv1ny6WGvnsYgUw7NLUOEHLLY 5KfZPHcO1NJiJ+f6bZJraRLvgPRPFRWw8AMsRWX3fPUB0dnZDZ1Pko5GXiyVRYBQ ES17e8U1KQ944Wj91G9u0AFRVwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGFvyKOa GOU69HEU6EYyajkb8A0XMB8GA1UdIwQYMBaAFEqFzxOIctPkT5DXtvMCjwtQZzTM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDBBRi8xRTMzOUIzNjg4 REUxMUVDOEE4QjE2MjhDNEY5QUUwMi9Tb1hQRTRoeTAtUlBrTmUyOHdLUEMxQm5O TXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NvWFBFNGh5MC1SUGtOZTI4d0tQQzFCbk5Ndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEQwQUYvMUUzMzlCMzY4OERFMTFFQzhBOEIxNjI4QzRGOUFFMDIvRUNDQzU4OUEw OUZFMTFFRkJFQkI2MTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFntS4wDwQCAAIwCQMHACABDfBnwDANBgkqhkiG9w0BAQsF AAOCAQEAIqCjjDe6cPHrxzbP4Vy2YTKjd9qVXHYForCqFqse77OadYz0ODE5pF1R LZrrjBFL5xDErhUG5XsfvRgnu7nVED7Jce3ZnauLme8ce88ifhS4OXgN1DhGelGs vOaCP2+ocJqaHlAhacU476WLS1sRGyem+S/GxOELT199Izo1kmKK1H3K6pNNmX+L iSOflwe8/HqviFidFfDu4estc+vVuZczvsVkBGh+Du9N+Z/VlanObQWy0XFKuUH7 CGfpu0UQRpj3tfC8mZ6EEFjoy99AvFHXddEnO/1tkFmlvsEO0+PQf84/WIAIjuBb hzUv3esXVMgihhWmAPXhXHY9ZmSDcw== -----END CERTIFICATE-----Generated at Sat Apr 26 12:22:40 2025 by rpki-client