$ rpki-client -vvf rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/0F291AFE9D2811EC83448E6FC4F9AE02.roa File: 0F291AFE9D2811EC83448E6FC4F9AE02.roa (raw, json) Hash identifier: p2rd5X9PRaHj3dg5SJAK0M8GBgiGK7ul3HPfe5PMkz4= Subject key identifier: 44:87:27:9A:D1:67:8B:F1:70:C1:3D:E4:74:A7:40:8C:9F:DA:9A:85 Certificate issuer: /CN=A9118B32/serialNumber=B61103A5C9CC60EAD188A2F9FD11E63D5233D995 Certificate serial: 0382 Authority key identifier: B6:11:03:A5:C9:CC:60:EA:D1:88:A2:F9:FD:11:E6:3D:52:33:D9:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/0F291AFE9D2811EC83448E6FC4F9AE02.roa Signing time: Thu 03 Apr 2025 00:56:58 +0000 ROA not before: Thu 03 Apr 2025 00:56:58 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 149521 IP address blocks: 103.182.118.0/23 maxlen: 23 103.182.118.0/24 maxlen: 24 103.182.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:36:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 898 (0x382) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118B32, serialNumber=B61103A5C9CC60EAD188A2F9FD11E63D5233D995 Validity Not Before: Apr 3 00:56:58 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67eddcda-da89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:76:43:34:1b:9f:8b:cf:f9:41:9a:02:0b:5f: ee:50:7c:73:78:c1:73:64:54:44:a1:fc:a8:2a:3a: 56:e1:f2:e0:91:49:f5:2a:cf:9a:d2:3c:48:fb:b5: 45:d0:2e:38:34:2e:3f:89:47:08:e3:39:7a:2c:8a: cd:db:70:79:26:bc:9c:4e:85:5e:9e:59:99:87:07: a5:d8:6a:41:eb:af:d3:85:9a:67:b1:7d:a0:cd:7a: 0a:90:e1:50:53:42:5c:82:ad:b4:37:f7:0a:96:ec: 33:3d:66:43:15:d0:ce:68:1d:c4:d8:a4:90:2b:cf: 46:5f:ff:c1:ad:8f:32:61:80:25:63:17:08:3b:d9: 55:1f:9a:cf:c8:02:9c:f3:ca:f8:cf:34:5a:f2:ad: 9e:35:6a:d4:9f:2a:c5:6a:28:6f:05:17:4a:9b:17: 7b:f1:7e:e2:ff:33:84:2e:c1:5f:51:6d:da:dd:62: 3f:e7:f0:3e:fb:30:16:35:65:4a:42:bc:f8:7a:5e: 8c:e0:f7:95:25:f5:93:b2:db:36:f0:5a:e9:14:b5: 34:7e:b6:06:4b:68:34:4f:0b:02:9e:20:f4:72:20: 7d:d3:b5:a6:47:4b:c1:e1:1f:c7:e6:95:0b:22:86: 66:ca:47:9a:e5:83:69:d6:0a:cb:cd:e0:1b:c4:a2: b9:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:87:27:9A:D1:67:8B:F1:70:C1:3D:E4:74:A7:40:8C:9F:DA:9A:85 X509v3 Authority Key Identifier: keyid:B6:11:03:A5:C9:CC:60:EA:D1:88:A2:F9:FD:11:E6:3D:52:33:D9:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/0F291AFE9D2811EC83448E6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.182.118.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:3f:7e:f0:e5:81:bd:99:6e:c9:22:a9:7a:0f:f6:52:1c:48: 19:6a:1e:20:b4:a1:49:c5:47:0c:2f:21:13:bb:b8:e9:66:b0: 46:e3:c4:e1:b5:b6:c9:1d:d1:1a:d7:d0:fc:01:1b:9a:c0:8f: d5:4b:d6:9c:42:eb:e4:9b:1c:ff:bd:9d:52:2c:90:cf:45:8d: 32:72:72:65:9b:4d:fa:da:90:1e:5e:bd:87:3d:f8:2e:9d:5f: 98:52:81:84:bb:aa:f5:4d:f0:c3:5d:06:06:36:d1:11:b3:35: 11:60:d0:66:1c:2c:00:48:f0:b8:97:52:df:22:00:36:a4:22: de:f3:1e:fb:50:84:0e:7f:f2:cc:3e:6a:45:52:36:85:63:05: 01:4f:4c:6a:9f:3e:95:e2:87:83:b1:d3:a9:84:28:a9:43:e6: f1:75:7f:5c:40:fe:e7:c9:01:d8:d7:8c:06:6c:53:02:16:08: 94:cb:5c:c3:b5:f2:1f:fc:60:5d:b3:b1:cb:58:c8:e3:be:5b: a9:35:cb:46:cc:d3:0f:84:b8:77:bb:df:dd:56:2d:c4:c7:47: 33:92:4d:ea:02:43:c4:b1:7e:a3:fa:48:e3:d7:0c:ee:48:ef: 49:76:59:85:77:a3:43:88:47:22:15:77:1d:67:91:8c:ec:9e: 7a:ee:7d:7e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThCMzIxMTAvBgNVBAUTKEI2MTEwM0E1QzlDQzYwRUFEMTg4QTJGOUZEMTFFNjNE NTIzM0Q5OTUwHhcNMjUwNDAzMDA1NjU4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkZGNkYS1kYTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2nZDNBufi8/5QZoCC1/uUHxzeMFzZFREofyoKjpW4fLgkUn1Ks+a0jxI+7VF 0C44NC4/iUcI4zl6LIrN23B5JrycToVenlmZhwel2GpB66/ThZpnsX2gzXoKkOFQ U0Jcgq20N/cKluwzPWZDFdDOaB3E2KSQK89GX//BrY8yYYAlYxcIO9lVH5rPyAKc 88r4zzRa8q2eNWrUnyrFaihvBRdKmxd78X7i/zOELsFfUW3a3WI/5/A++zAWNWVK Qrz4el6M4PeVJfWTsts28FrpFLU0frYGS2g0TwsCniD0ciB907WmR0vB4R/H5pUL IoZmykea5YNp1grLzeAbxKK5TQIDAQABo4IClTCCApEwHQYDVR0OBBYEFESHJ5rR Z4vxcME95HSnQIyf2pqFMB8GA1UdIwQYMBaAFLYRA6XJzGDq0Yii+f0R5j1SM9mV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEIzMi9GRjc3MUJCQzlE MjUxMUVDODVGREYzNkVDNEY5QUUwMi90aEVEcGNuTVlPclJpS0w1X1JIbVBWSXoy WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RoRURwY25NWU9yUmlLTDVfUkhtUFZJejJaVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MThCMzIvRkY3NzFCQkM5RDI1MTFFQzg1RkRGMzZFQzRGOUFFMDIvMEYyOTFBRkU5 RDI4MTFFQzgzNDQ4RTZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFntnYwDQYJKoZIhvcNAQELBQADggEBAFo/fvDlgb2Zbski qXoP9lIcSBlqHiC0oUnFRwwvIRO7uOlmsEbjxOG1tskd0RrX0PwBG5rAj9VL1pxC 6+SbHP+9nVIskM9FjTJycmWbTfrakB5evYc9+C6dX5hSgYS7qvVN8MNdBgY20RGz NRFg0GYcLABI8LiXUt8iADakIt7zHvtQhA5/8sw+akVSNoVjBQFPTGqfPpXih4Ox 06mEKKlD5vF1f1xA/ufJAdjXjAZsUwIWCJTLXMO18h/8YF2zsctYyOO+W6k1y0bM 0w+EuHe7391WLcTHRzOSTeoCQ8SxfqP6SOPXDO5I70l2WYV3o0OIRyIVdx1nkYzs nnrufX4= -----END CERTIFICATE-----Generated at Sat Apr 26 08:27:55 2025 by rpki-client