$ rpki-client -vvf rpki.apnic.net/member_repository/A916CA70/A7125D7603AA11EB8C158229C4F9AE02/1E4394CC03AC11EBBA025F2BC4F9AE02.roa File: 1E4394CC03AC11EBBA025F2BC4F9AE02.roa (raw, json) Hash identifier: hCxFygIxGBaZzO8/d0Vcf9NqUsTf/UZgA3mXuGpyT3g= Subject key identifier: 47:DB:61:19:EE:90:91:97:55:AC:4C:78:16:AF:7A:0C:C5:FB:2E:DC Certificate issuer: /CN=A916CA70/serialNumber=C12F0F572DA338D213441EF07CA511D1A9C89B6D Certificate serial: 076A Authority key identifier: C1:2F:0F:57:2D:A3:38:D2:13:44:1E:F0:7C:A5:11:D1:A9:C8:9B:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wS8PVy2jONITRB7wfKUR0anIm20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CA70/A7125D7603AA11EB8C158229C4F9AE02/1E4394CC03AC11EBBA025F2BC4F9AE02.roa Signing time: Fri 24 Jan 2025 21:11:13 +0000 ROA not before: Fri 24 Jan 2025 21:11:13 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 139917 IP address blocks: 103.147.44.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CA70/A7125D7603AA11EB8C158229C4F9AE02/wS8PVy2jONITRB7wfKUR0anIm20.crl rsync://rpki.apnic.net/member_repository/A916CA70/A7125D7603AA11EB8C158229C4F9AE02/wS8PVy2jONITRB7wfKUR0anIm20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wS8PVy2jONITRB7wfKUR0anIm20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:07:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1898 (0x76a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CA70, serialNumber=C12F0F572DA338D213441EF07CA511D1A9C89B6D Validity Not Before: Jan 24 21:11:13 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=679401f0-aebc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:43:eb:27:22:4f:4a:47:f1:10:75:18:e5:4d: c8:ed:70:41:08:32:e6:bd:47:ff:47:9f:e6:ee:95: 63:35:af:2d:29:6a:22:95:2d:fb:19:ee:c9:ba:f5: 8f:38:16:25:8e:82:bf:fd:42:50:4f:d1:97:b7:49: e6:fe:38:0f:e4:2d:2a:6a:dc:43:02:e5:96:68:6d: 35:9c:57:ac:6b:72:e9:32:7e:81:6c:ca:6a:d6:41: 1b:62:2e:a9:c5:bd:37:dc:b0:72:16:56:b5:0d:c0: db:fa:29:eb:54:c5:f9:f1:00:10:43:df:20:88:bf: 0c:e1:5b:98:17:e2:9d:2c:40:75:7e:8a:69:59:ff: 60:9a:53:b2:dc:63:2e:77:9c:c9:a2:b8:81:63:03: 21:26:61:5d:d8:18:91:70:d2:fb:a6:5b:8b:d6:88: 38:84:d6:eb:17:2c:0d:4d:3c:fc:5c:ce:4f:8d:42: b6:52:80:cd:4a:02:09:36:3b:9d:3d:bf:4c:6c:b5: e8:8b:6f:ef:f7:a7:57:81:74:1f:16:60:73:ad:ce: 08:bc:60:f5:be:1b:e5:3f:42:90:70:00:46:e9:57: c4:ce:3a:91:ae:aa:13:87:dc:e7:da:13:06:81:48: b5:64:52:90:c0:ff:66:5d:42:2e:93:c2:9a:2a:3d: f6:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:DB:61:19:EE:90:91:97:55:AC:4C:78:16:AF:7A:0C:C5:FB:2E:DC X509v3 Authority Key Identifier: keyid:C1:2F:0F:57:2D:A3:38:D2:13:44:1E:F0:7C:A5:11:D1:A9:C8:9B:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CA70/A7125D7603AA11EB8C158229C4F9AE02/wS8PVy2jONITRB7wfKUR0anIm20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wS8PVy2jONITRB7wfKUR0anIm20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CA70/A7125D7603AA11EB8C158229C4F9AE02/1E4394CC03AC11EBBA025F2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.147.44.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:50:ad:62:bb:d7:a3:97:1f:e3:05:23:a5:9e:fd:d4:9d:38: 6c:bf:16:a1:f3:4b:bc:df:65:9e:fe:d4:7f:d9:d1:60:fc:20: 29:a7:ef:79:62:03:32:dd:b7:bc:1c:a6:6f:c1:0d:83:ab:21: e8:3c:2d:bd:74:5f:c8:8b:51:d4:b8:5d:53:16:32:a4:01:3d: 61:30:2e:19:eb:25:53:43:ec:08:29:24:f2:a5:7b:2d:d7:57: 8d:5f:48:58:c9:d3:c4:a5:18:36:17:88:6e:ef:32:4c:20:38: 57:1d:9b:4a:12:a7:ef:7d:00:71:c7:f7:c1:44:f0:5e:9d:a9: 50:76:54:0e:9e:5d:c1:da:24:ac:82:77:f5:5e:22:96:6e:b9: af:32:3d:67:f2:1e:ec:05:8a:03:be:18:74:f4:0a:f7:58:7f: 65:7d:b3:4f:01:35:9e:f0:ea:f4:e9:9a:4c:79:59:92:12:1e: d8:2e:b1:72:a4:7c:b7:ac:57:94:d0:b4:a9:a1:43:39:1f:13: bc:55:e9:3f:7b:cc:5a:23:2b:2f:23:4a:22:87:ec:a9:7d:7f: d6:e9:2b:f2:e4:7c:7d:cf:45:8e:82:dc:cc:f6:ff:76:71:f4: c1:1c:aa:f2:0a:ce:f8:82:76:ae:36:68:2d:f3:27:ef:46:47: 48:7e:23:26 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNBNzAxMTAvBgNVBAUTKEMxMkYwRjU3MkRBMzM4RDIxMzQ0MUVGMDdDQTUxMUQx QTlDODlCNkQwHhcNMjUwMTI0MjExMTEzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk0MDFmMC1hZWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukPrJyJPSkfxEHUY5U3I7XBBCDLmvUf/R5/m7pVjNa8tKWoilS37Ge7JuvWP OBYljoK//UJQT9GXt0nm/jgP5C0qatxDAuWWaG01nFesa3LpMn6BbMpq1kEbYi6p xb033LByFla1DcDb+inrVMX58QAQQ98giL8M4VuYF+KdLEB1foppWf9gmlOy3GMu d5zJoriBYwMhJmFd2BiRcNL7pluL1og4hNbrFywNTTz8XM5PjUK2UoDNSgIJNjud Pb9MbLXoi2/v96dXgXQfFmBzrc4IvGD1vhvlP0KQcABG6VfEzjqRrqoTh9zn2hMG gUi1ZFKQwP9mXUIuk8KaKj32xwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEfbYRnu kJGXVaxMeBavegzF+y7cMB8GA1UdIwQYMBaAFMEvD1ctozjSE0Qe8HylEdGpyJtt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0E3MC9BNzEyNUQ3NjAz QUExMUVCOEMxNTgyMjlDNEY5QUUwMi93UzhQVnkyak9OSVRSQjd3ZktVUjBhbklt MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dTOFBWeTJqT05JVFJCN3dmS1VSMGFuSW0yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkNBNzAvQTcxMjVENzYwM0FBMTFFQjhDMTU4MjI5QzRGOUFFMDIvMUU0Mzk0Q0Mw M0FDMTFFQkJBMDI1RjJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnkywwDQYJKoZIhvcNAQELBQADggEBAD9QrWK716OXH+MF I6We/dSdOGy/FqHzS7zfZZ7+1H/Z0WD8ICmn73liAzLdt7wcpm/BDYOrIeg8Lb10 X8iLUdS4XVMWMqQBPWEwLhnrJVND7AgpJPKley3XV41fSFjJ08SlGDYXiG7vMkwg OFcdm0oSp+99AHHH98FE8F6dqVB2VA6eXcHaJKyCd/VeIpZuua8yPWfyHuwFigO+ GHT0CvdYf2V9s08BNZ7w6vTpmkx5WZISHtgusXKkfLesV5TQtKmhQzkfE7xV6T97 zFojKy8jSiKH7Kl9f9bpK/LkfH3PRY6C3Mz2/3Zx9MEcqvIKzviCdq42aC3zJ+9G R0h+IyY= -----END CERTIFICATE-----Generated at Sat Apr 26 08:30:58 2025 by rpki-client