$ rpki-client -vvf rpki.apnic.net/member_repository/A915C325/8CE7DE76137411E9A1DC1053C4F9AE02/1ED040D0137511E98DD28353C4F9AE02.roa File: 1ED040D0137511E98DD28353C4F9AE02.roa (raw, json) Hash identifier: KtVDjjSzHPLYoect4ZHiTibts9NkJOtiflrVSKdNkLA= Subject key identifier: 7C:37:C5:A3:2F:36:D4:D1:D8:11:E9:7B:EF:C0:A3:FB:24:9E:58:B6 Certificate issuer: /CN=A915C325/serialNumber=434A4917595216BF08829DC52C2ED3A8F282048B Certificate serial: 10E6 Authority key identifier: 43:4A:49:17:59:52:16:BF:08:82:9D:C5:2C:2E:D3:A8:F2:82:04:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q0pJF1lSFr8Igp3FLC7TqPKCBIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C325/8CE7DE76137411E9A1DC1053C4F9AE02/1ED040D0137511E98DD28353C4F9AE02.roa Signing time: Sun 16 Feb 2025 17:55:12 +0000 ROA not before: Sun 16 Feb 2025 17:55:12 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 136214 IP address blocks: 103.83.204.0/22 maxlen: 24 203.89.120.0/22 maxlen: 24 2401:5740::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C325/8CE7DE76137411E9A1DC1053C4F9AE02/Q0pJF1lSFr8Igp3FLC7TqPKCBIs.crl rsync://rpki.apnic.net/member_repository/A915C325/8CE7DE76137411E9A1DC1053C4F9AE02/Q0pJF1lSFr8Igp3FLC7TqPKCBIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q0pJF1lSFr8Igp3FLC7TqPKCBIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:17:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4326 (0x10e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C325, serialNumber=434A4917595216BF08829DC52C2ED3A8F282048B Validity Not Before: Feb 16 17:55:12 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67b2267f-1296 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b2:87:cf:34:8d:fd:df:e1:82:e7:4b:f5:45: 08:03:8b:6b:bc:99:df:e8:c9:93:ab:c3:e1:26:57: 90:59:d6:28:81:3d:e2:13:33:56:77:2a:b5:55:df: 4b:22:56:12:c2:36:ef:21:9f:94:7b:68:d9:91:30: d4:f8:6b:8c:20:ec:5d:7f:83:2f:48:23:1b:e8:91: 76:5a:75:be:41:74:7a:7c:f5:00:ec:e9:39:11:20: 8e:cf:0f:e9:9e:25:1a:ad:fd:55:4a:dd:53:fa:ed: f1:1a:74:19:dc:01:9b:06:64:2d:6c:2d:3f:d5:5c: 9e:7f:e9:8d:02:75:c4:08:dc:f6:92:44:b0:65:40: bd:f0:f5:05:3e:74:59:34:5e:36:b1:17:88:d7:10: aa:4e:1c:cd:75:92:f3:45:7b:54:62:9b:bd:a3:3b: 01:61:4a:2e:8b:c4:ec:82:d4:ea:18:a1:2c:b0:29: 02:37:6b:6a:67:47:d2:4f:06:a7:1c:dc:aa:05:3b: 01:a8:90:3a:f4:1f:b8:83:47:7a:77:cc:88:78:4b: 57:fd:36:f2:2b:64:3c:c7:0c:76:a8:94:54:4e:e9: ca:e8:dd:77:b5:ac:89:24:a1:63:69:18:25:30:fc: d8:28:04:ac:6e:12:93:c6:0b:ea:64:c0:fe:f4:34: 49:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:37:C5:A3:2F:36:D4:D1:D8:11:E9:7B:EF:C0:A3:FB:24:9E:58:B6 X509v3 Authority Key Identifier: keyid:43:4A:49:17:59:52:16:BF:08:82:9D:C5:2C:2E:D3:A8:F2:82:04:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C325/8CE7DE76137411E9A1DC1053C4F9AE02/Q0pJF1lSFr8Igp3FLC7TqPKCBIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q0pJF1lSFr8Igp3FLC7TqPKCBIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C325/8CE7DE76137411E9A1DC1053C4F9AE02/1ED040D0137511E98DD28353C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.83.204.0/22 203.89.120.0/22 IPv6: 2401:5740::/32 Signature Algorithm: sha256WithRSAEncryption 57:2b:66:80:66:5d:86:34:bb:99:bc:85:e1:b5:82:bd:1f:30: 35:85:48:b3:a2:4f:ac:e5:ad:97:92:17:66:77:fd:76:5b:bc: f2:4f:3e:d6:c8:6d:d4:ab:19:ad:30:55:cb:1a:d9:79:9c:f4: 0d:03:ac:10:3c:ce:dc:da:54:37:49:5b:15:6a:b6:62:04:09: b2:e3:e2:e1:64:65:a0:c2:d0:4d:95:55:b6:e3:4e:5a:44:fe: b5:3c:64:19:18:ae:7a:ff:6c:8d:16:fc:45:5f:84:a6:54:91: 07:e7:5e:c0:9d:0f:1d:e0:aa:a4:2b:13:80:a7:1b:c1:cb:8a: c4:38:92:55:1c:5c:43:22:aa:68:41:f3:65:56:53:72:b5:c4: 38:81:4f:40:3b:33:56:43:39:20:4b:68:cb:ad:a6:3e:bd:90: 02:1f:c2:a6:37:9c:c7:75:5c:5f:b7:4a:69:05:fc:be:96:09: 25:26:92:15:fc:b8:a1:2f:8e:c9:17:e9:2d:e4:6c:4a:f2:85: 25:f5:85:04:f6:a9:95:28:2e:c9:53:22:96:38:32:c8:dc:fc: ac:0e:f0:ff:75:17:05:7e:6e:fe:4e:64:29:64:b7:53:2e:b4: 08:a9:da:3f:99:d2:8e:6a:03:ce:85:58:f3:a4:cd:a5:bb:ab: df:1a:3c:44 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICEOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMzMjUxMTAvBgNVBAUTKDQzNEE0OTE3NTk1MjE2QkYwODgyOURDNTJDMkVEM0E4 RjI4MjA0OEIwHhcNMjUwMjE2MTc1NTEyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2IyMjY3Zi0xMjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwrKHzzSN/d/hgudL9UUIA4trvJnf6MmTq8PhJleQWdYogT3iEzNWdyq1Vd9L IlYSwjbvIZ+Ue2jZkTDU+GuMIOxdf4MvSCMb6JF2WnW+QXR6fPUA7Ok5ESCOzw/p niUarf1VSt1T+u3xGnQZ3AGbBmQtbC0/1Vyef+mNAnXECNz2kkSwZUC98PUFPnRZ NF42sReI1xCqThzNdZLzRXtUYpu9ozsBYUoui8TsgtTqGKEssCkCN2tqZ0fSTwan HNyqBTsBqJA69B+4g0d6d8yIeEtX/TbyK2Q8xwx2qJRUTunK6N13tayJJKFjaRgl MPzYKASsbhKTxgvqZMD+9DRJFQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFHw3xaMv NtTR2BHpe+/Ao/sknli2MB8GA1UdIwQYMBaAFENKSRdZUha/CIKdxSwu06jyggSL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzMyNS84Q0U3REU3NjEz NzQxMUU5QTFEQzEwNTNDNEY5QUUwMi9RMHBKRjFsU0ZyOElncDNGTEM3VHFQS0NC SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EwcEpGMWxTRnI4SWdwM0ZMQzdUcVBLQ0JJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUMzMjUvOENFN0RFNzYxMzc0MTFFOUExREMxMDUzQzRGOUFFMDIvMUVEMDQwRDAx Mzc1MTFFOThERDI4MzUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnU8wDBALLWXgwDQQCAAIwBwMFACQBV0AwDQYJKoZIhvcN AQELBQADggEBAFcrZoBmXYY0u5m8heG1gr0fMDWFSLOiT6zlrZeSF2Z3/XZbvPJP PtbIbdSrGa0wVcsa2Xmc9A0DrBA8ztzaVDdJWxVqtmIECbLj4uFkZaDC0E2VVbbj TlpE/rU8ZBkYrnr/bI0W/EVfhKZUkQfnXsCdDx3gqqQrE4CnG8HLisQ4klUcXEMi qmhB82VWU3K1xDiBT0A7M1ZDOSBLaMutpj69kAIfwqY3nMd1XF+3SmkF/L6WCSUm khX8uKEvjskX6S3kbEryhSX1hQT2qZUoLslTIpY4Msjc/KwO8P91FwV+bv5OZClk t1MutAip2j+Z0o5qA86FWPOkzaW7q98aPEQ= -----END CERTIFICATE-----Generated at Sat Apr 26 12:28:35 2025 by rpki-client