$ rpki-client -vvf rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/041E1E420A3811E9BE336267C4F9AE02.roa File: 041E1E420A3811E9BE336267C4F9AE02.roa (raw, json) Hash identifier: Spb+pH4GvP2Ukki1wFpymghuHWZTFJjsX3H/le8aCzw= Subject key identifier: 04:51:2F:9F:0A:84:79:A9:AF:FB:4D:E2:D7:BE:8D:15:19:47:56:CF Certificate issuer: /CN=A919F0F1/serialNumber=A679491197AC822E0D181971137A467D27C2B02C Certificate serial: 1110 Authority key identifier: A6:79:49:11:97:AC:82:2E:0D:18:19:71:13:7A:46:7D:27:C2:B0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnlJEZesgi4NGBlxE3pGfSfCsCw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/041E1E420A3811E9BE336267C4F9AE02.roa Signing time: Mon 20 Jan 2025 17:25:21 +0000 ROA not before: Mon 20 Jan 2025 17:25:21 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 132107 IP address blocks: 103.28.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.crl rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnlJEZesgi4NGBlxE3pGfSfCsCw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4368 (0x1110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F0F1, serialNumber=A679491197AC822E0D181971137A467D27C2B02C Validity Not Before: Jan 20 17:25:21 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=678e8700-c3fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b5:40:94:04:1d:c3:ec:ae:74:a7:a0:11:0f: 67:f3:c3:c1:ab:ff:4a:fd:b3:73:ba:54:ef:64:29: ec:55:1a:79:aa:07:5a:e4:1d:84:1f:da:6c:b0:92: 16:f0:9a:5c:94:ec:1d:03:dc:19:b8:66:94:0e:78: 5c:d3:b8:5f:97:03:a9:da:e9:d6:12:ae:a1:6c:21: 8f:62:a1:98:1f:0c:1c:9b:83:c5:23:f0:18:0c:7c: 8b:16:47:80:3e:77:89:41:63:b6:49:35:77:7e:a6: 4a:ca:b2:71:47:2a:13:77:d2:e3:1f:fb:53:57:52: 3d:62:10:c4:38:86:1f:94:5e:60:5b:40:cc:b7:12: ce:c8:27:d0:95:53:f5:7b:d8:58:63:3e:c5:aa:5b: 5a:5f:9c:48:57:89:a6:a9:e7:e6:7a:55:f7:ec:90: fa:de:6e:1a:b8:17:f2:b9:2d:20:af:59:24:55:12: 8b:42:ed:ee:52:8b:71:20:18:50:7b:7a:bc:93:16: df:15:cd:a5:0a:1a:38:59:ce:97:40:00:cf:a8:fc: b7:54:fa:2f:e2:8c:4b:81:f3:4d:4d:5c:5b:92:64: 59:05:26:18:11:80:1c:fd:81:3f:80:02:57:9d:7b: d6:d5:7d:9c:a2:08:e7:1c:49:fe:15:04:77:2e:20: ca:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:51:2F:9F:0A:84:79:A9:AF:FB:4D:E2:D7:BE:8D:15:19:47:56:CF X509v3 Authority Key Identifier: keyid:A6:79:49:11:97:AC:82:2E:0D:18:19:71:13:7A:46:7D:27:C2:B0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/pnlJEZesgi4NGBlxE3pGfSfCsCw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pnlJEZesgi4NGBlxE3pGfSfCsCw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F0F1/40B13BC00A3611E987A9C464C4F9AE02/041E1E420A3811E9BE336267C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.28.124.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:92:b0:22:64:e6:97:17:24:61:b0:e4:6b:44:65:a9:5f:b8: 17:c8:fa:65:03:2f:21:ac:ab:f2:e4:1c:ba:54:7c:8e:34:2b: e9:40:1d:e9:cf:75:cd:7f:33:b0:47:27:08:44:d5:1e:32:d7: 77:89:2e:31:52:33:26:ae:e7:14:50:ab:d9:5b:1a:a7:d2:1c: b0:db:90:59:6a:1d:ab:7a:25:8d:89:00:ea:a4:c5:c0:a0:5c: 5a:75:7c:1c:02:d4:dc:7a:7d:00:0b:b3:0e:66:3c:de:98:c8: 99:0e:56:8a:40:29:16:8f:15:f5:3b:46:e6:8e:c2:bb:de:7f: e8:70:62:86:08:4e:04:f1:10:82:57:57:c7:c4:45:6a:9d:55: 97:e9:a6:30:03:60:39:e7:11:26:82:74:c6:45:e7:d1:e5:55: 05:67:60:08:a3:ec:1a:c7:6d:d5:76:b3:f9:d8:a8:79:0c:97: 5c:10:db:27:26:c5:ec:89:f8:04:de:d8:6e:0d:81:db:80:d6: d0:5c:04:92:f1:72:e8:c5:21:21:74:56:8c:78:50:23:e7:35: 5b:5b:73:fe:e9:b0:6c:83:5f:d5:f7:10:52:51:72:bb:80:84: 8a:ce:28:6b:ab:6e:59:39:35:d2:13:fc:31:e9:8a:7f:d0:78: 46:2a:9d:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICERAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUYwRjExMTAvBgNVBAUTKEE2Nzk0OTExOTdBQzgyMkUwRDE4MTk3MTEzN0E0NjdE MjdDMkIwMkMwHhcNMjUwMTIwMTcyNTIxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzhlODcwMC1jM2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLVAlAQdw+yudKegEQ9n88PBq/9K/bNzulTvZCnsVRp5qgda5B2EH9pssJIW 8JpclOwdA9wZuGaUDnhc07hflwOp2unWEq6hbCGPYqGYHwwcm4PFI/AYDHyLFkeA PneJQWO2STV3fqZKyrJxRyoTd9LjH/tTV1I9YhDEOIYflF5gW0DMtxLOyCfQlVP1 e9hYYz7FqltaX5xIV4mmqefmelX37JD63m4auBfyuS0gr1kkVRKLQu3uUotxIBhQ e3q8kxbfFc2lCho4Wc6XQADPqPy3VPov4oxLgfNNTVxbkmRZBSYYEYAc/YE/gAJX nXvW1X2cogjnHEn+FQR3LiDKmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFARRL58K hHmpr/tN4te+jRUZR1bPMB8GA1UdIwQYMBaAFKZ5SRGXrIIuDRgZcRN6Rn0nwrAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjBGMS80MEIxM0JDMDBB MzYxMUU5ODdBOUM0NjRDNEY5QUUwMi9wbmxKRVplc2dpNE5HQmx4RTNwR2ZTZkNz Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BubEpFWmVzZ2k0TkdCbHhFM3BHZlNmQ3NDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUYwRjEvNDBCMTNCQzAwQTM2MTFFOTg3QTlDNDY0QzRGOUFFMDIvMDQxRTFFNDIw QTM4MTFFOUJFMzM2MjY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnHHwwDQYJKoZIhvcNAQELBQADggEBABuSsCJk5pcXJGGw 5GtEZalfuBfI+mUDLyGsq/LkHLpUfI40K+lAHenPdc1/M7BHJwhE1R4y13eJLjFS Myau5xRQq9lbGqfSHLDbkFlqHat6JY2JAOqkxcCgXFp1fBwC1Nx6fQALsw5mPN6Y yJkOVopAKRaPFfU7RuaOwrvef+hwYoYITgTxEIJXV8fERWqdVZfppjADYDnnESaC dMZF59HlVQVnYAij7BrHbdV2s/nYqHkMl1wQ2ycmxeyJ+ATe2G4NgduA1tBcBJLx cujFISF0Vox4UCPnNVtbc/7psGyDX9X3EFJRcruAhIrOKGurblk5NdIT/DHpin/Q eEYqnck= -----END CERTIFICATE-----Generated at Sat Apr 26 09:40:39 2025 by rpki-client