$ rpki-client -vvf rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/71C4845EDD9A11EF8CFB3566C4F9AE02.roa File: 71C4845EDD9A11EF8CFB3566C4F9AE02.roa (raw, json) Hash identifier: LzkuGFZUxj6+WvgGdYx8FBFSBGquSdSJrmGH+Nh7tDg= Subject key identifier: 58:06:01:5C:F3:E1:73:06:AC:40:5C:D2:D1:5A:5C:E2:FA:29:36:F3 Certificate issuer: /CN=A9153E2E/serialNumber=25AC3E48F2E58E88C60544798EC6724076B53413 Certificate serial: 05 Authority key identifier: 25:AC:3E:48:F2:E5:8E:88:C6:05:44:79:8E:C6:72:40:76:B5:34:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jaw-SPLljojGBUR5jsZyQHa1NBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/71C4845EDD9A11EF8CFB3566C4F9AE02.roa Signing time: Tue 28 Jan 2025 17:08:07 +0000 ROA not before: Tue 28 Jan 2025 17:08:07 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 45337 IP address blocks: 103.11.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/Jaw-SPLljojGBUR5jsZyQHa1NBM.crl rsync://rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/Jaw-SPLljojGBUR5jsZyQHa1NBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jaw-SPLljojGBUR5jsZyQHa1NBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:40:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153E2E, serialNumber=25AC3E48F2E58E88C60544798EC6724076B53413 Validity Not Before: Jan 28 17:08:07 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67990ef7-557a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:25:0c:d2:da:a2:10:66:ad:73:66:08:ee:fe: 09:ec:6c:a6:e7:ac:d1:c8:1d:bd:35:3e:ac:de:04: 00:79:7c:8a:8b:60:d1:1a:af:9d:50:67:04:27:e8: bc:85:09:4f:65:f4:1c:f5:54:b1:72:7e:1b:8e:76: 38:7a:1a:d9:cb:b6:c1:a0:72:e7:30:09:e6:40:e5: 5c:ec:ea:39:8d:3e:3b:c4:03:33:a9:a9:6d:fe:76: 02:09:fb:b3:fa:bc:08:5d:d5:3f:dc:31:18:97:18: 10:43:7b:a4:0c:f8:1d:8b:a5:c6:7e:d9:fe:0c:1a: 7d:3a:9d:44:64:d5:35:39:18:65:0d:1c:83:ad:65: a9:e0:59:4d:be:03:c3:91:3d:58:ed:fa:57:ee:87: 48:28:ad:11:c8:6b:87:fe:ae:68:38:60:ef:33:22: 44:86:4c:52:0f:7d:2a:ad:57:12:c8:6b:69:4d:d1: 3b:0f:45:8d:18:1f:bc:68:46:36:f2:1e:6c:5c:96: 7d:a0:05:0a:40:e0:34:bb:ca:77:a7:be:9f:13:fe: df:08:5b:16:df:1e:9a:92:9e:41:8c:ea:de:16:c0: 20:c4:b4:e7:e1:16:95:f3:d6:db:05:9c:bf:fd:c3: 06:6f:fc:ee:42:ce:4d:44:a9:49:ad:0a:e8:25:c0: 55:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:06:01:5C:F3:E1:73:06:AC:40:5C:D2:D1:5A:5C:E2:FA:29:36:F3 X509v3 Authority Key Identifier: keyid:25:AC:3E:48:F2:E5:8E:88:C6:05:44:79:8E:C6:72:40:76:B5:34:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/Jaw-SPLljojGBUR5jsZyQHa1NBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jaw-SPLljojGBUR5jsZyQHa1NBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153E2E/FFA35F04DD9811EFA9AF4346C4F9AE02/71C4845EDD9A11EF8CFB3566C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.11.20.0/24 Signature Algorithm: sha256WithRSAEncryption 08:7d:c0:47:c9:fa:ab:72:4a:0b:ea:94:22:67:c2:ad:63:49: 3b:26:03:7e:59:96:c7:c0:58:52:9b:95:d2:df:ac:dd:15:7a: 99:88:d9:5e:8f:ed:5b:79:19:69:4c:c1:40:2a:2c:59:39:53: 3b:cd:07:9e:ec:2c:55:fb:5e:16:33:93:f8:d6:7d:cb:1b:20: bb:5a:bb:c5:1d:80:ad:2e:da:4e:63:d4:77:42:21:77:d8:52: 65:0f:33:d4:d9:82:1d:60:5d:f0:ae:fb:16:f2:28:5e:f4:cb: ed:2f:28:1d:ad:c3:80:ca:67:24:17:3d:0b:44:a7:09:6e:e0: e7:1c:cd:66:83:98:01:d5:47:a9:c6:3d:de:0c:24:07:55:31: b1:43:d6:14:85:6f:f7:5f:3e:ec:32:4e:40:17:52:f0:ac:00: 0c:ea:b9:95:23:a4:a9:20:4f:2d:a2:8c:01:73:53:0b:80:04: d8:b2:7c:03:f2:2b:94:a5:43:3e:bc:a6:46:8c:c2:02:e7:b8: 48:32:09:62:52:4b:a7:14:9c:47:e3:24:7d:3f:f7:db:4a:b6: 12:a2:85:7f:21:93:91:52:6a:31:9e:ef:44:88:ee:c8:11:12: f7:bb:bc:29:86:45:ee:80:26:31:ac:d5:44:57:d5:66:d1:76: 53:49:6f:bc -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 M0UyRTExMC8GA1UEBRMoMjVBQzNFNDhGMkU1OEU4OEM2MDU0NDc5OEVDNjcyNDA3 NkI1MzQxMzAeFw0yNTAxMjgxNzA4MDdaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3OTkwZWY3LTU1N2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWJQzS2qIQZq1zZgju/gnsbKbnrNHIHb01PqzeBAB5fIqLYNEar51QZwQn6LyF CU9l9Bz1VLFyfhuOdjh6GtnLtsGgcucwCeZA5Vzs6jmNPjvEAzOpqW3+dgIJ+7P6 vAhd1T/cMRiXGBBDe6QM+B2LpcZ+2f4MGn06nURk1TU5GGUNHIOtZangWU2+A8OR PVjt+lfuh0gorRHIa4f+rmg4YO8zIkSGTFIPfSqtVxLIa2lN0TsPRY0YH7xoRjby Hmxcln2gBQpA4DS7ynenvp8T/t8IWxbfHpqSnkGM6t4WwCDEtOfhFpXz1tsFnL/9 wwZv/O5Czk1EqUmtCuglwFWpAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWAYBXPPh cwasQFzS0Vpc4vopNvMwHwYDVR0jBBgwFoAUJaw+SPLljojGBUR5jsZyQHa1NBMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzRTJFL0ZGQTM1RjA0REQ5 ODExRUZBOUFGNDM0NkM0RjlBRTAyL0phdy1TUExsam9qR0JVUjVqc1p5UUhhMU5C TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSmF3LVNQTGxqb2pHQlVSNWpzWnlRSGExTkJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0UyRS9GRkEzNUYwNEREOTgxMUVGQTlBRjQzNDZDNEY5QUUwMi83MUM0ODQ1RURE OUExMUVGOENGQjM1NjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGcLFDANBgkqhkiG9w0BAQsFAAOCAQEACH3AR8n6q3JKC+qU ImfCrWNJOyYDflmWx8BYUpuV0t+s3RV6mYjZXo/tW3kZaUzBQCosWTlTO80Hnuws VfteFjOT+NZ9yxsgu1q7xR2ArS7aTmPUd0Ihd9hSZQ8z1NmCHWBd8K77FvIoXvTL 7S8oHa3DgMpnJBc9C0SnCW7g5xzNZoOYAdVHqcY93gwkB1UxsUPWFIVv918+7DJO QBdS8KwADOq5lSOkqSBPLaKMAXNTC4AE2LJ8A/IrlKVDPrymRozCAue4SDIJYlJL pxScR+MkfT/320q2EqKFfyGTkVJqMZ7vRIjuyBES97u8KYZF7oAmMazVRFfVZtF2 U0lvvA== -----END CERTIFICATE-----Generated at Sat Apr 26 16:43:53 2025 by rpki-client