$ rpki-client -vvf rpki.apnic.net/member_repository/A913814E/80C95AAE5F2711EDB1D5FA3DC4F9AE02/D479653E5F2911EDB481A53EC4F9AE02.roa File: D479653E5F2911EDB481A53EC4F9AE02.roa (raw, json) Hash identifier: 0dlbreUmhOPpVhne6aJZBNls5GiTDrN1TntwCVFUe0A= Subject key identifier: 2A:2E:9D:94:92:34:86:33:44:57:A1:B4:58:15:30:FA:BD:85:DE:50 Certificate issuer: /CN=A913814E/serialNumber=CA3803699AD5B0906C00797A3A1E9CD95B6591B1 Certificate serial: 01D5 Authority key identifier: CA:38:03:69:9A:D5:B0:90:6C:00:79:7A:3A:1E:9C:D9:5B:65:91:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yjgDaZrVsJBsAHl6Oh6c2VtlkbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913814E/80C95AAE5F2711EDB1D5FA3DC4F9AE02/D479653E5F2911EDB481A53EC4F9AE02.roa Signing time: Sat 03 May 2025 02:38:50 +0000 ROA not before: Sat 03 May 2025 02:38:50 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135405 IP address blocks: 103.217.156.0/24 maxlen: 24 103.217.157.0/24 maxlen: 24 103.217.158.0/24 maxlen: 24 103.217.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913814E/80C95AAE5F2711EDB1D5FA3DC4F9AE02/yjgDaZrVsJBsAHl6Oh6c2VtlkbE.crl rsync://rpki.apnic.net/member_repository/A913814E/80C95AAE5F2711EDB1D5FA3DC4F9AE02/yjgDaZrVsJBsAHl6Oh6c2VtlkbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yjgDaZrVsJBsAHl6Oh6c2VtlkbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 02:13:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913814E, serialNumber=CA3803699AD5B0906C00797A3A1E9CD95B6591B1 Validity Not Before: May 3 02:38:50 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681581ba-74e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:da:49:0e:99:d4:93:c4:6d:47:51:0f:2b:2a: c1:0b:41:cb:86:c4:d1:16:46:47:9a:c2:bb:25:9d: 7c:9e:be:b2:9c:f4:c8:55:d7:61:5d:23:0f:f1:be: 8c:92:ee:bc:fb:60:a6:55:81:5f:80:ff:56:d7:f0: 34:10:e2:93:02:12:8f:9e:22:d3:1c:a7:85:0c:fb: b9:8f:8b:79:ed:56:fa:df:e9:56:80:c5:e9:38:f1: db:a5:31:57:30:89:97:c1:c1:2c:55:24:f2:85:14: 93:23:ed:c0:52:19:9d:60:99:b0:73:e8:e3:6a:4b: 5d:9c:97:85:4b:0e:dd:c6:da:61:11:4e:f3:4e:dc: c2:4d:5a:fa:f3:a0:8d:71:a7:13:57:6a:11:45:59: b9:52:88:c4:f1:9b:df:05:01:6d:80:4f:59:71:b6: 3e:72:d7:2f:a7:e6:5b:1b:e7:fc:99:c5:02:42:ad: a7:4d:51:11:2e:f1:ff:82:6c:9d:a6:c7:91:45:1c: 99:be:d3:0c:62:bc:b7:3c:81:fb:7a:3d:42:c9:6a: b4:10:ec:16:4e:dd:56:8f:4a:10:61:6a:47:ed:05: ca:8a:9c:a0:dd:be:5f:70:4a:da:1c:5f:aa:d2:2d: 35:bd:51:43:42:79:5a:13:2e:30:87:5c:bb:0e:7e: 48:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:2E:9D:94:92:34:86:33:44:57:A1:B4:58:15:30:FA:BD:85:DE:50 X509v3 Authority Key Identifier: keyid:CA:38:03:69:9A:D5:B0:90:6C:00:79:7A:3A:1E:9C:D9:5B:65:91:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913814E/80C95AAE5F2711EDB1D5FA3DC4F9AE02/yjgDaZrVsJBsAHl6Oh6c2VtlkbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yjgDaZrVsJBsAHl6Oh6c2VtlkbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913814E/80C95AAE5F2711EDB1D5FA3DC4F9AE02/D479653E5F2911EDB481A53EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.217.156.0/22 Signature Algorithm: sha256WithRSAEncryption 44:ba:3a:6e:78:63:b8:95:30:59:37:8f:ed:3c:18:6d:e0:1e: 7f:bb:10:18:57:7d:20:a1:8c:93:07:e6:de:98:40:9d:5b:b6: b6:e8:44:ee:ed:7b:0c:27:c4:50:4c:7e:54:49:5a:7a:2d:8b: 86:22:08:05:26:e1:ed:f6:4b:ec:84:3d:95:1c:47:81:10:46: e8:3b:ee:48:8b:39:c1:86:8d:ef:f4:66:8d:23:66:71:29:95: df:e5:66:9d:69:42:5b:5f:34:ea:d0:31:50:ed:d1:66:d2:46: f6:13:c7:b1:87:d8:f1:55:b4:0c:38:3d:de:19:75:97:7d:82: 1f:a9:bb:e5:9f:63:0f:a1:d2:38:04:f0:61:23:e5:dd:0c:3f: 70:5d:fd:d9:b9:2a:3d:1a:5a:f5:4b:8f:3b:0d:1d:eb:71:f9: bf:bd:64:48:ca:dc:bd:52:a8:55:65:3d:f0:12:3e:c6:fd:ad: b2:16:70:f1:84:3e:75:ec:c7:e8:d3:5e:97:a9:a8:72:a6:a5: 2a:44:9e:b2:59:d0:5f:c3:24:ea:f4:67:17:bb:5d:a6:fe:56: 37:69:88:ad:87:96:39:ec:00:4f:a6:d1:8b:36:3f:2f:71:52: ad:1d:1d:7d:b0:a2:30:fe:a7:5f:c2:5d:a7:5d:99:b3:be:2b: 1d:87:f0:96 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgxNEUxMTAvBgNVBAUTKENBMzgwMzY5OUFENUIwOTA2QzAwNzk3QTNBMUU5Q0Q5 NUI2NTkxQjEwHhcNMjUwNTAzMDIzODUwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1ODFiYS03NGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNpJDpnUk8RtR1EPKyrBC0HLhsTRFkZHmsK7JZ18nr6ynPTIVddhXSMP8b6M ku68+2CmVYFfgP9W1/A0EOKTAhKPniLTHKeFDPu5j4t57Vb63+lWgMXpOPHbpTFX MImXwcEsVSTyhRSTI+3AUhmdYJmwc+jjaktdnJeFSw7dxtphEU7zTtzCTVr686CN cacTV2oRRVm5UojE8ZvfBQFtgE9ZcbY+ctcvp+ZbG+f8mcUCQq2nTVERLvH/gmyd pseRRRyZvtMMYry3PIH7ej1CyWq0EOwWTt1Wj0oQYWpH7QXKipyg3b5fcEraHF+q 0i01vVFDQnlaEy4wh1y7Dn5IpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCounZSS NIYzRFehtFgVMPq9hd5QMB8GA1UdIwQYMBaAFMo4A2ma1bCQbAB5ejoenNlbZZGx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODE0RS84MEM5NUFBRTVG MjcxMUVEQjFENUZBM0RDNEY5QUUwMi95amdEYVpyVnNKQnNBSGw2T2g2YzJWdGxr YkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lqZ0RhWnJWc0pCc0FIbDZPaDZjMlZ0bGtiRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzgxNEUvODBDOTVBQUU1RjI3MTFFREIxRDVGQTNEQzRGOUFFMDIvRDQ3OTY1M0U1 RjI5MTFFREI0ODFBNTNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn2ZwwDQYJKoZIhvcNAQELBQADggEBAES6Om54Y7iVMFk3 j+08GG3gHn+7EBhXfSChjJMH5t6YQJ1btrboRO7tewwnxFBMflRJWnoti4YiCAUm 4e32S+yEPZUcR4EQRug77kiLOcGGje/0Zo0jZnEpld/lZp1pQltfNOrQMVDt0WbS RvYTx7GH2PFVtAw4Pd4ZdZd9gh+pu+WfYw+h0jgE8GEj5d0MP3Bd/dm5Kj0aWvVL jzsNHetx+b+9ZEjK3L1SqFVlPfASPsb9rbIWcPGEPnXsx+jTXpepqHKmpSpEnrJZ 0F/DJOr0Zxe7Xab+VjdpiK2HljnsAE+m0Ys2Py9xUq0dHX2wojD+p1/CXaddmbO+ Kx2H8JY= -----END CERTIFICATE-----Generated at Fri May 16 13:17:54 2025 by rpki-client