$ rpki-client -vvf rpki.apnic.net/member_repository/A9196977/B94B8C98B20411EB9CC7F449C4F9AE02/E40449BED7A011EFB0DF210CC4F9AE02.roa File: E40449BED7A011EFB0DF210CC4F9AE02.roa (raw, json) Hash identifier: ars+4kUYh+fBY0hItqO0CQ4bv/P8oF+2aWPQbb5TTz8= Subject key identifier: 21:8F:8F:F2:05:DA:22:BB:73:55:D6:96:07:4A:35:C9:25:43:FE:83 Certificate issuer: /CN=A9196977/serialNumber=B8070DFC57EAE0EBE8AEE4BB5C91D06ABD1CA71A Certificate serial: 05BB Authority key identifier: B8:07:0D:FC:57:EA:E0:EB:E8:AE:E4:BB:5C:91:D0:6A:BD:1C:A7:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uAcN_Ffq4OvoruS7XJHQar0cpxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196977/B94B8C98B20411EB9CC7F449C4F9AE02/E40449BED7A011EFB0DF210CC4F9AE02.roa Signing time: Tue 21 Jan 2025 02:39:27 +0000 ROA not before: Tue 21 Jan 2025 02:39:27 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 138685 IP address blocks: 103.44.44.0/24 maxlen: 32 2001:df1:6c00::/47 maxlen: 47 2001:df1:6c00::/48 maxlen: 48 2001:df1:6c01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196977/B94B8C98B20411EB9CC7F449C4F9AE02/uAcN_Ffq4OvoruS7XJHQar0cpxo.crl rsync://rpki.apnic.net/member_repository/A9196977/B94B8C98B20411EB9CC7F449C4F9AE02/uAcN_Ffq4OvoruS7XJHQar0cpxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uAcN_Ffq4OvoruS7XJHQar0cpxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:47:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1467 (0x5bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196977, serialNumber=B8070DFC57EAE0EBE8AEE4BB5C91D06ABD1CA71A Validity Not Before: Jan 21 02:39:27 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=678f08df-89a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e1:c4:ed:f3:55:4b:4f:6c:f1:4c:4d:6a:94: eb:22:e0:55:47:cc:a2:ba:13:70:b1:63:2e:b5:10: 39:88:19:61:5d:9f:73:9c:f5:b3:e6:40:96:92:a8: b5:3e:53:fe:f2:8e:8b:b5:31:80:3b:e7:32:81:8d: df:f9:77:30:0e:e9:00:36:d6:03:d0:8a:1d:80:7f: c4:eb:01:7e:c0:83:76:9e:32:95:2e:f3:08:51:21: 5d:99:55:1c:54:24:01:4a:17:82:9f:78:97:35:90: be:06:1e:f9:24:5d:29:90:c5:1a:52:cc:85:06:7c: 34:f4:26:02:d0:df:aa:59:88:bd:26:41:7c:49:54: 17:66:ce:09:f0:8e:a7:12:93:ae:ad:f8:c9:c2:5f: d5:1e:be:f2:15:9b:09:3c:68:2a:83:13:7f:1f:0b: 71:4f:99:ee:76:ca:19:72:14:7c:66:9b:b5:57:48: a6:7e:ff:73:8c:fe:be:7c:4e:67:99:5f:be:ea:79: 30:bf:c9:90:e4:2b:90:ad:03:62:ae:20:9c:e5:4a: f9:07:be:52:ac:db:33:e7:2e:c0:e8:01:69:bb:e1: c4:8b:9a:92:71:c0:50:43:70:70:97:52:16:5e:f0: df:8e:79:fb:74:a5:e6:c0:79:ce:ef:3e:57:72:e0: 28:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:8F:8F:F2:05:DA:22:BB:73:55:D6:96:07:4A:35:C9:25:43:FE:83 X509v3 Authority Key Identifier: keyid:B8:07:0D:FC:57:EA:E0:EB:E8:AE:E4:BB:5C:91:D0:6A:BD:1C:A7:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196977/B94B8C98B20411EB9CC7F449C4F9AE02/uAcN_Ffq4OvoruS7XJHQar0cpxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uAcN_Ffq4OvoruS7XJHQar0cpxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196977/B94B8C98B20411EB9CC7F449C4F9AE02/E40449BED7A011EFB0DF210CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.44.44.0/24 IPv6: 2001:df1:6c00::/47 Signature Algorithm: sha256WithRSAEncryption 92:1f:7e:0c:99:84:c1:9e:1c:2b:5f:62:27:d5:f7:6b:3f:57: 47:74:ee:b8:57:1e:09:8a:df:ad:a7:ed:32:24:52:7b:9e:28: 4c:8f:af:bf:aa:be:a4:1d:e9:96:7f:9b:d0:b9:30:7a:0f:3f: c5:2d:bd:15:f4:c0:ae:ab:e9:2d:8d:d3:9b:37:a0:97:83:d6: 63:83:7d:78:49:f5:cc:a2:cb:44:94:46:7d:92:00:ee:fa:cd: 02:93:e7:85:bf:f2:a2:db:ba:be:a4:9f:f4:ce:80:9a:c6:a7: 7d:7f:67:38:ec:7a:32:91:a3:18:6c:21:0d:18:5c:76:41:1c: 22:cd:0e:58:25:b4:70:4b:3d:79:f3:28:d2:06:4a:2b:60:c8: 7d:bd:45:72:42:91:2f:f0:08:26:63:a3:4a:f8:0d:ea:66:ef: 26:81:6e:aa:3b:e1:4a:e9:d8:eb:cf:d9:42:92:53:70:75:c6: 9e:e6:8a:3f:64:1a:e1:dd:76:23:21:dd:54:c5:44:3b:94:07: 68:8a:25:f5:e2:b4:78:df:22:6e:db:67:79:d3:ae:57:20:8b: 5a:53:10:3d:85:50:98:6f:d1:c3:3b:3e:8f:fc:9a:1a:18:38: 36:e6:71:ee:69:59:63:7f:a1:9c:25:8e:ad:27:84:6f:06:e4: 90:7a:77:5a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY5NzcxMTAvBgNVBAUTKEI4MDcwREZDNTdFQUUwRUJFOEFFRTRCQjVDOTFEMDZB QkQxQ0E3MUEwHhcNMjUwMTIxMDIzOTI3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzhmMDhkZi04OWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn+HE7fNVS09s8UxNapTrIuBVR8yiuhNwsWMutRA5iBlhXZ9znPWz5kCWkqi1 PlP+8o6LtTGAO+cygY3f+XcwDukANtYD0IodgH/E6wF+wIN2njKVLvMIUSFdmVUc VCQBSheCn3iXNZC+Bh75JF0pkMUaUsyFBnw09CYC0N+qWYi9JkF8SVQXZs4J8I6n EpOurfjJwl/VHr7yFZsJPGgqgxN/HwtxT5nudsoZchR8Zpu1V0imfv9zjP6+fE5n mV++6nkwv8mQ5CuQrQNiriCc5Ur5B75SrNsz5y7A6AFpu+HEi5qSccBQQ3Bwl1IW XvDfjnn7dKXmwHnO7z5XcuAo+QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCGPj/IF 2iK7c1XWlgdKNcklQ/6DMB8GA1UdIwQYMBaAFLgHDfxX6uDr6K7ku1yR0Gq9HKca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Njk3Ny9COTRCOEM5OEIy MDQxMUVCOUNDN0Y0NDlDNEY5QUUwMi91QWNOX0ZmcTRPdm9ydVM3WEpIUWFyMGNw eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VBY05fRmZxNE92b3J1UzdYSkhRYXIwY3B4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY5NzcvQjk0QjhDOThCMjA0MTFFQjlDQzdGNDQ5QzRGOUFFMDIvRTQwNDQ5QkVE N0EwMTFFRkIwREYyMTBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnLCwwDwQCAAIwCQMHASABDfFsADANBgkqhkiG9w0BAQsF AAOCAQEAkh9+DJmEwZ4cK19iJ9X3az9XR3TuuFceCYrfraftMiRSe54oTI+vv6q+ pB3pln+b0Lkweg8/xS29FfTArqvpLY3Tmzegl4PWY4N9eEn1zKLLRJRGfZIA7vrN ApPnhb/yotu6vqSf9M6AmsanfX9nOOx6MpGjGGwhDRhcdkEcIs0OWCW0cEs9efMo 0gZKK2DIfb1FckKRL/AIJmOjSvgN6mbvJoFuqjvhSunY68/ZQpJTcHXGnuaKP2Qa 4d12IyHdVMVEO5QHaIol9eK0eN8ibttnedOuVyCLWlMQPYVQmG/Rwzs+j/yaGhg4 NuZx7mlZY3+hnCWOrSeEbwbkkHp3Wg== -----END CERTIFICATE-----Generated at Sat Apr 26 08:03:09 2025 by rpki-client