$ rpki-client -vvf rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/FB45F610638211E9A58B4C45C4F9AE02.roa File: FB45F610638211E9A58B4C45C4F9AE02.roa (raw, json) Hash identifier: IofhJ7EiHeyM1r1MV+JctpkNg1pbQMhCCkdpR4fk3JY= Subject key identifier: 44:26:A8:A4:A2:7C:19:2E:69:6F:12:BA:18:F6:29:41:A0:CE:66:52 Certificate issuer: /CN=A91859A3/serialNumber=B841C80BE818C61AAE8417940CA3E69CC141DF8F Certificate serial: 0F5A Authority key identifier: B8:41:C8:0B:E8:18:C6:1A:AE:84:17:94:0C:A3:E6:9C:C1:41:DF:8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uEHIC-gYxhquhBeUDKPmnMFB348.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/FB45F610638211E9A58B4C45C4F9AE02.roa Signing time: Wed 26 Feb 2025 18:16:08 +0000 ROA not before: Wed 26 Feb 2025 18:16:08 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 132590 IP address blocks: 45.121.236.0/22 maxlen: 24 103.245.76.0/22 maxlen: 24 2401:7540::/32 maxlen: 42 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.crl rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uEHIC-gYxhquhBeUDKPmnMFB348.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3930 (0xf5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91859A3, serialNumber=B841C80BE818C61AAE8417940CA3E69CC141DF8F Validity Not Before: Feb 26 18:16:08 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67bf5a67-4635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:05:57:f8:7e:4b:0b:fa:53:60:8e:50:ae:64: ea:1f:7d:3b:eb:8a:21:bd:19:4f:d3:0e:8e:7a:e5: 1e:ab:6f:0a:3d:85:e1:46:dd:19:4b:a5:a8:5e:cd: 78:fd:88:ea:31:56:81:3e:88:2b:55:26:db:4e:dc: 4c:be:b9:20:99:6b:36:3b:9b:ec:2f:2b:ee:3d:08: 0d:bf:60:48:37:9c:f9:e4:70:72:30:e0:e8:a0:c1: 8e:29:b7:77:fb:a3:bd:fd:59:74:95:ff:e2:38:73: bd:d4:84:d0:5e:75:8c:0d:62:21:fd:28:ec:66:88: 20:0b:f1:a7:b9:ac:1c:8c:3f:53:fc:73:88:12:60: 6f:14:34:dc:b5:58:a2:b0:8a:0d:46:01:13:49:97: 38:93:b4:80:62:26:97:35:4f:0c:66:cb:79:93:2d: 25:34:67:b6:29:30:8c:2e:da:fa:ba:0d:d7:f4:e1: 91:01:80:bb:21:db:b4:6c:63:5d:88:fb:a5:21:bd: 8e:3c:00:b5:c4:dc:62:22:39:2e:70:d7:b2:bb:f8: 0f:e6:83:8c:a9:df:3d:58:1e:87:fc:fa:e3:56:e2: 49:76:ba:08:02:7d:ed:2d:5a:20:b4:2e:93:bb:ad: 28:1b:53:a5:a6:3a:9e:f4:0a:67:30:13:f7:5c:2f: 54:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:26:A8:A4:A2:7C:19:2E:69:6F:12:BA:18:F6:29:41:A0:CE:66:52 X509v3 Authority Key Identifier: keyid:B8:41:C8:0B:E8:18:C6:1A:AE:84:17:94:0C:A3:E6:9C:C1:41:DF:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/uEHIC-gYxhquhBeUDKPmnMFB348.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uEHIC-gYxhquhBeUDKPmnMFB348.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91859A3/76435FEE638111E99A51A642C4F9AE02/FB45F610638211E9A58B4C45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.121.236.0/22 103.245.76.0/22 IPv6: 2401:7540::/32 Signature Algorithm: sha256WithRSAEncryption 69:44:1e:22:c9:fc:13:3d:74:85:b5:ac:ed:d7:af:40:07:46: 4d:ef:b8:01:3b:1d:07:bf:89:3f:8f:cb:7c:01:7b:67:92:6c: 2d:83:7a:80:8b:a1:46:a2:2d:9d:1e:e6:e3:4b:d7:db:df:ee: 47:a6:02:30:af:66:be:a2:20:e7:25:2e:dd:b6:9c:70:d1:6c: 94:71:f3:f9:78:c9:87:90:89:4d:21:2e:e9:49:df:24:31:f0: 5e:ea:cb:37:75:ac:cd:59:5c:09:3b:db:25:35:20:71:16:59: d8:b2:68:67:d5:fa:5c:d4:f6:66:6a:04:29:99:08:67:ca:26: a6:c5:40:69:47:7b:0a:7d:61:a1:48:ad:79:a3:c2:70:92:ef: 04:c5:c6:14:b5:9b:e0:18:67:af:8e:29:e6:eb:84:cb:30:be: ba:ba:5e:c1:8d:f3:47:10:9a:74:4b:64:41:eb:52:e0:13:30: cf:ed:73:38:d6:ba:1a:13:91:46:79:87:6f:12:47:dc:18:c3: d4:96:ab:65:f6:4f:60:8d:dc:2a:f2:4d:00:cb:25:5e:6a:f2: c2:5f:2d:03:85:fb:88:a2:db:7c:97:86:0c:23:6a:a0:06:bd: 0a:2c:81:8c:60:ac:2c:92:ca:d4:2a:fe:62:b1:e2:9a:d7:60: 72:78:1e:3c -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICD1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU5QTMxMTAvBgNVBAUTKEI4NDFDODBCRTgxOEM2MUFBRTg0MTc5NDBDQTNFNjlD QzE0MURGOEYwHhcNMjUwMjI2MTgxNjA4WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JmNWE2Ny00NjM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAVX+H5LC/pTYI5QrmTqH30764ohvRlP0w6OeuUeq28KPYXhRt0ZS6WoXs14 /YjqMVaBPogrVSbbTtxMvrkgmWs2O5vsLyvuPQgNv2BIN5z55HByMODooMGOKbd3 +6O9/Vl0lf/iOHO91ITQXnWMDWIh/SjsZoggC/GnuawcjD9T/HOIEmBvFDTctVii sIoNRgETSZc4k7SAYiaXNU8MZst5ky0lNGe2KTCMLtr6ug3X9OGRAYC7Idu0bGNd iPulIb2OPAC1xNxiIjkucNeyu/gP5oOMqd89WB6H/PrjVuJJdroIAn3tLVogtC6T u60oG1Olpjqe9ApnMBP3XC9UfQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFEQmqKSi fBkuaW8Suhj2KUGgzmZSMB8GA1UdIwQYMBaAFLhByAvoGMYaroQXlAyj5pzBQd+P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTlBMy83NjQzNUZFRTYz ODExMUU5OUE1MUE2NDJDNEY5QUUwMi91RUhJQy1nWXhocXVoQmVVREtQbW5NRkIz NDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VFSElDLWdZeGhxdWhCZVVES1Btbk1GQjM0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU5QTMvNzY0MzVGRUU2MzgxMTFFOTlBNTFBNjQyQzRGOUFFMDIvRkI0NUY2MTA2 MzgyMTFFOUE1OEI0QzQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIteewDBAJn9UwwDQQCAAIwBwMFACQBdUAwDQYJKoZIhvcN AQELBQADggEBAGlEHiLJ/BM9dIW1rO3Xr0AHRk3vuAE7HQe/iT+Py3wBe2eSbC2D eoCLoUaiLZ0e5uNL19vf7kemAjCvZr6iIOclLt22nHDRbJRx8/l4yYeQiU0hLulJ 3yQx8F7qyzd1rM1ZXAk72yU1IHEWWdiyaGfV+lzU9mZqBCmZCGfKJqbFQGlHewp9 YaFIrXmjwnCS7wTFxhS1m+AYZ6+OKebrhMswvrq6XsGN80cQmnRLZEHrUuATMM/t czjWuhoTkUZ5h28SR9wYw9SWq2X2T2CN3CryTQDLJV5q8sJfLQOF+4ii23yXhgwj aqAGvQosgYxgrCySytQq/mKx4prXYHJ4Hjw= -----END CERTIFICATE-----Generated at Sat Apr 26 07:52:36 2025 by rpki-client