$ rpki-client -vvf rpki.apnic.net/member_repository/A919BCD9/17B78F16FF8211E9B402FC24C4F9AE02/E4B59AA2FF8311E9B1B99628C4F9AE02.roa File: E4B59AA2FF8311E9B1B99628C4F9AE02.roa (raw, json) Hash identifier: waZbL1P4NpHdHtHaU30SRx8sKqkEE7bIrM8wDlF6928= Subject key identifier: E7:BF:1C:39:DB:21:F4:FD:30:05:0A:D1:FB:FB:8B:C1:08:5B:06:72 Certificate issuer: /CN=A919BCD9/serialNumber=4099B0084376A9E04CED7C678ABC6858DD9F851A Certificate serial: 0C21 Authority key identifier: 40:99:B0:08:43:76:A9:E0:4C:ED:7C:67:8A:BC:68:58:DD:9F:85:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJmwCEN2qeBM7XxnirxoWN2fhRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BCD9/17B78F16FF8211E9B402FC24C4F9AE02/E4B59AA2FF8311E9B1B99628C4F9AE02.roa Signing time: Sat 04 Jan 2025 18:16:39 +0000 ROA not before: Sat 04 Jan 2025 18:16:39 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 132130 IP address blocks: 103.126.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BCD9/17B78F16FF8211E9B402FC24C4F9AE02/QJmwCEN2qeBM7XxnirxoWN2fhRo.crl rsync://rpki.apnic.net/member_repository/A919BCD9/17B78F16FF8211E9B402FC24C4F9AE02/QJmwCEN2qeBM7XxnirxoWN2fhRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJmwCEN2qeBM7XxnirxoWN2fhRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 18:15:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3105 (0xc21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BCD9, serialNumber=4099B0084376A9E04CED7C678ABC6858DD9F851A Validity Not Before: Jan 4 18:16:39 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67797b07-e9f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:a2:01:36:3a:9a:59:00:4a:02:ed:f4:d6:96: d7:f9:d8:a5:d9:e2:32:aa:54:43:3b:16:c7:08:50: 5b:ae:77:92:06:dc:f1:e7:62:a8:38:98:c1:dc:09: 09:a0:b6:98:6b:65:95:be:44:f2:ae:2f:a5:1b:d5: d4:90:31:75:80:3f:68:05:62:6e:6e:b9:9a:be:57: 35:d6:b3:9f:90:17:71:41:b1:1b:3b:a0:10:b8:30: 9a:f4:ba:27:a3:07:9f:f9:52:9e:dd:2b:80:cc:62: 1b:9b:07:e1:64:d1:d2:25:f9:43:20:8d:f8:8a:e0: 3c:fc:36:8e:dc:6d:9d:9e:e8:06:9c:03:23:a9:2b: 39:e8:aa:7a:0c:46:ff:e8:77:88:f2:85:c3:e0:bb: c4:4c:57:cf:e9:5f:82:df:5e:02:dc:db:6a:ad:ff: bd:2c:e0:97:4a:d6:13:26:92:0f:7f:cb:70:5a:d0: 54:64:03:7b:b6:86:5b:e8:5b:83:ae:54:d4:14:7c: e6:31:fc:23:de:32:4b:48:5c:e6:49:91:b2:93:28: b1:ca:ac:ab:37:2f:27:de:92:3e:4a:60:15:c4:9a: 95:c0:4a:20:54:31:92:2f:c6:1e:95:49:5f:6e:77: 43:fa:f0:89:75:d2:42:60:a3:e9:e2:fd:5b:8a:16: 6d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:BF:1C:39:DB:21:F4:FD:30:05:0A:D1:FB:FB:8B:C1:08:5B:06:72 X509v3 Authority Key Identifier: keyid:40:99:B0:08:43:76:A9:E0:4C:ED:7C:67:8A:BC:68:58:DD:9F:85:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BCD9/17B78F16FF8211E9B402FC24C4F9AE02/QJmwCEN2qeBM7XxnirxoWN2fhRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJmwCEN2qeBM7XxnirxoWN2fhRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BCD9/17B78F16FF8211E9B402FC24C4F9AE02/E4B59AA2FF8311E9B1B99628C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.220.0/22 Signature Algorithm: sha256WithRSAEncryption 97:92:f5:9b:03:8f:77:76:c6:72:ab:42:e1:f1:54:92:b2:71: 7d:72:37:bf:fe:1e:3c:f5:62:88:97:21:a9:2a:2e:b5:a8:3c: df:7d:ec:b7:54:48:ea:c8:69:70:37:09:33:b9:ef:5f:b8:66: 2b:da:6d:c5:92:0a:67:a3:fa:07:d8:8e:5d:fb:bb:5b:43:ae: 08:f9:84:30:d0:8f:01:2e:fa:3f:2a:0d:28:3a:40:3e:62:4a: cb:c9:6e:c4:2c:1d:8e:e7:e9:a2:7b:5a:61:9d:cc:92:ae:a2: bf:a4:a7:8a:64:ee:cb:13:a6:98:96:10:2c:86:d7:af:41:01: e9:75:aa:ec:a5:93:24:2c:c2:32:ca:aa:68:15:38:42:1f:23: 7f:0b:c7:4e:7e:57:f1:60:0a:50:db:fb:14:20:a5:f9:6c:b0: 9e:3e:a9:3e:e2:86:4f:2f:cb:7a:9a:80:17:65:5f:0a:5c:87: 98:27:91:2f:aa:31:35:ea:5f:53:ee:b6:8e:50:e7:7d:de:fb: 3f:30:60:33:78:eb:bf:55:83:94:d8:b7:18:67:1c:b2:82:d0: 11:be:ac:57:59:2b:f4:8c:76:f3:49:f3:4f:55:21:75:e4:4a: 51:de:f3:67:7c:0d:b6:ef:a5:36:68:a6:9a:a3:0b:fd:81:fd: 55:1b:bc:2d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUJDRDkxMTAvBgNVBAUTKDQwOTlCMDA4NDM3NkE5RTA0Q0VEN0M2NzhBQkM2ODU4 REQ5Rjg1MUEwHhcNMjUwMTA0MTgxNjM5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc5N2IwNy1lOWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7qIBNjqaWQBKAu301pbX+dil2eIyqlRDOxbHCFBbrneSBtzx52KoOJjB3AkJ oLaYa2WVvkTyri+lG9XUkDF1gD9oBWJubrmavlc11rOfkBdxQbEbO6AQuDCa9Lon owef+VKe3SuAzGIbmwfhZNHSJflDII34iuA8/DaO3G2dnugGnAMjqSs56Kp6DEb/ 6HeI8oXD4LvETFfP6V+C314C3Ntqrf+9LOCXStYTJpIPf8twWtBUZAN7toZb6FuD rlTUFHzmMfwj3jJLSFzmSZGykyixyqyrNy8n3pI+SmAVxJqVwEogVDGSL8YelUlf bndD+vCJddJCYKPp4v1bihZtXwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOe/HDnb IfT9MAUK0fv7i8EIWwZyMB8GA1UdIwQYMBaAFECZsAhDdqngTO18Z4q8aFjdn4Ua MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QkNEOS8xN0I3OEYxNkZG ODIxMUU5QjQwMkZDMjRDNEY5QUUwMi9RSm13Q0VOMnFlQk03WHhuaXJ4b1dOMmZo Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKbXdDRU4ycWVCTTdYeG5pcnhvV04yZmhSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUJDRDkvMTdCNzhGMTZGRjgyMTFFOUI0MDJGQzI0QzRGOUFFMDIvRTRCNTlBQTJG RjgzMTFFOUIxQjk5NjI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnftwwDQYJKoZIhvcNAQELBQADggEBAJeS9ZsDj3d2xnKr QuHxVJKycX1yN7/+Hjz1YoiXIakqLrWoPN997LdUSOrIaXA3CTO571+4ZivabcWS Cmej+gfYjl37u1tDrgj5hDDQjwEu+j8qDSg6QD5iSsvJbsQsHY7n6aJ7WmGdzJKu or+kp4pk7ssTppiWECyG169BAel1quylkyQswjLKqmgVOEIfI38Lx05+V/FgClDb +xQgpflssJ4+qT7ihk8vy3qagBdlXwpch5gnkS+qMTXqX1Puto5Q533e+z8wYDN4 679Vg5TYtxhnHLKC0BG+rFdZK/SMdvNJ809VIXXkSlHe82d8DbbvpTZoppqjC/2B /VUbvC0= -----END CERTIFICATE-----Generated at Sat Apr 26 15:10:28 2025 by rpki-client