$ rpki-client -vvf rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/207B27560EE411EDA32ABE0FC4F9AE02.roa File: 207B27560EE411EDA32ABE0FC4F9AE02.roa (raw, json) Hash identifier: 6uwFx8/ukSzKKH+6QOFIRRiywJ0AdBaXItyBqWPv0ck= Subject key identifier: 30:E7:7B:F0:99:CF:EE:00:EA:54:DC:0A:9A:2F:8B:E0:60:3B:E2:6D Certificate issuer: /CN=A912391D/serialNumber=056BEF46C7315837EBADEA41780B9E41A3FB7EA0 Certificate serial: 025F Authority key identifier: 05:6B:EF:46:C7:31:58:37:EB:AD:EA:41:78:0B:9E:41:A3:FB:7E:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BWvvRscxWDfrrepBeAueQaP7fqA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/207B27560EE411EDA32ABE0FC4F9AE02.roa Signing time: Fri 11 Apr 2025 02:06:57 +0000 ROA not before: Fri 11 Apr 2025 02:06:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45657 IP address blocks: 103.6.105.0/24 maxlen: 24 103.99.211.0/24 maxlen: 24 103.99.224.0/24 maxlen: 24 103.99.225.0/24 maxlen: 24 203.12.45.0/24 maxlen: 24 203.166.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/BWvvRscxWDfrrepBeAueQaP7fqA.crl rsync://rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/BWvvRscxWDfrrepBeAueQaP7fqA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BWvvRscxWDfrrepBeAueQaP7fqA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:32:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 607 (0x25f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912391D, serialNumber=056BEF46C7315837EBADEA41780B9E41A3FB7EA0 Validity Not Before: Apr 11 02:06:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f87941-e7c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:57:72:1c:26:91:85:74:dd:35:0c:d3:f1:c5: 7d:3c:a6:5d:a4:90:ce:fd:64:0e:7c:c6:6e:89:28: 1c:2f:cf:2d:25:d6:14:eb:d1:4c:22:24:28:57:c2: 4c:5e:3b:a9:6c:d6:9e:ea:bd:b2:13:cc:dd:d0:57: e5:b2:2d:03:2e:3b:81:72:7d:13:95:73:c3:b3:e7: d7:9c:e8:84:05:79:1b:e6:d8:37:24:8c:eb:5d:56: d2:fc:3e:4b:3c:ab:aa:94:56:c6:12:b8:28:c6:b3: e1:61:63:b7:26:5a:13:f4:d1:4c:58:58:7d:90:0a: cd:b0:c9:9e:75:12:17:a4:5f:91:1a:7d:c9:ad:d8: 57:dd:92:76:7d:f1:78:a4:6c:22:47:80:dc:68:fc: 4f:cd:f8:39:5f:20:ec:78:28:d0:10:bf:a3:13:18: 41:b5:c7:aa:c5:11:0b:fa:78:f1:77:15:69:ee:66: 74:11:6e:1c:45:a1:4f:3c:49:b5:3a:2d:7a:c4:14: 40:d9:ba:e8:d6:97:fd:11:57:3a:77:ec:85:e1:5c: 83:c0:be:e9:96:61:d5:77:fa:16:c0:94:39:1f:87: 44:89:63:ba:a1:9d:4b:fc:7f:b5:83:d3:7e:48:2e: ea:c1:58:de:cf:fb:9a:8c:c9:5c:40:04:f9:1e:44: 81:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:E7:7B:F0:99:CF:EE:00:EA:54:DC:0A:9A:2F:8B:E0:60:3B:E2:6D X509v3 Authority Key Identifier: keyid:05:6B:EF:46:C7:31:58:37:EB:AD:EA:41:78:0B:9E:41:A3:FB:7E:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/BWvvRscxWDfrrepBeAueQaP7fqA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BWvvRscxWDfrrepBeAueQaP7fqA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912391D/B571CCBE0EE111ED84674C0EC4F9AE02/207B27560EE411EDA32ABE0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.105.0/24 103.99.211.0/24 103.99.224.0/23 203.12.45.0/24 203.166.219.0/24 Signature Algorithm: sha256WithRSAEncryption 39:8a:ec:77:b4:6a:72:b1:b3:56:ad:ab:f4:4d:26:be:16:c0: d6:1c:a2:56:b2:35:f0:8c:af:18:bf:2e:ab:04:4e:d6:d0:9c: 67:a8:84:49:a2:c5:d4:92:e8:18:6f:78:13:98:e3:ec:69:fe: f5:06:24:a3:ff:48:08:51:a7:ee:db:c0:a9:a7:b8:5c:1e:f3: b1:40:f9:51:f1:bb:65:fe:f4:55:72:76:40:3c:08:57:60:f4: af:f0:ee:80:fd:e3:83:c2:a5:e5:1a:48:07:8f:8b:8b:c9:83: cb:42:1c:63:e9:89:8a:6e:c7:7f:d9:da:cc:04:a3:3f:26:27: c3:8e:c8:1a:bf:fa:fc:ed:3c:9b:cf:5d:e4:31:bc:d1:41:48: a0:31:ea:b8:fd:bb:82:48:dd:13:15:c1:2d:3b:cf:07:e4:af: 08:ba:bc:b2:4a:bf:42:90:4f:6e:31:68:f2:9e:68:df:f3:a6: 7d:5e:03:eb:17:f6:53:ad:fb:28:3f:e6:fc:82:9b:a8:aa:4f: c2:20:19:68:3f:04:d9:f2:b2:33:39:b1:e5:03:d4:3f:dc:4d: 6f:23:99:9d:a2:20:4f:34:0a:f0:19:4c:a0:48:6c:1f:7c:1b: 90:c7:dd:92:ec:39:07:4c:b5:66:60:25:3e:72:92:92:4d:68: 13:29:8a:e2 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICAl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM5MUQxMTAvBgNVBAUTKDA1NkJFRjQ2QzczMTU4MzdFQkFERUE0MTc4MEI5RTQx QTNGQjdFQTAwHhcNMjUwNDExMDIwNjU3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y4Nzk0MS1lN2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1dyHCaRhXTdNQzT8cV9PKZdpJDO/WQOfMZuiSgcL88tJdYU69FMIiQoV8JM XjupbNae6r2yE8zd0Fflsi0DLjuBcn0TlXPDs+fXnOiEBXkb5tg3JIzrXVbS/D5L PKuqlFbGErgoxrPhYWO3JloT9NFMWFh9kArNsMmedRIXpF+RGn3JrdhX3ZJ2ffF4 pGwiR4DcaPxPzfg5XyDseCjQEL+jExhBtceqxREL+njxdxVp7mZ0EW4cRaFPPEm1 Oi16xBRA2bro1pf9EVc6d+yF4VyDwL7plmHVd/oWwJQ5H4dEiWO6oZ1L/H+1g9N+ SC7qwVjez/uajMlcQAT5HkSB2QIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFDDne/CZ z+4A6lTcCpovi+BgO+JtMB8GA1UdIwQYMBaAFAVr70bHMVg3663qQXgLnkGj+36g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzkxRC9CNTcxQ0NCRTBF RTExMUVEODQ2NzRDMEVDNEY5QUUwMi9CV3Z2UnNjeFdEZnJyZXBCZUF1ZVFhUDdm cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JXdnZSc2N4V0RmcnJlcEJlQXVlUWFQN2ZxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjM5MUQvQjU3MUNDQkUwRUUxMTFFRDg0Njc0QzBFQzRGOUFFMDIvMjA3QjI3NTYw RUU0MTFFREEzMkFCRTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBABnBmkDBABnY9MDBAFnY+ADBADLDC0DBADLptswDQYJKoZI hvcNAQELBQADggEBADmK7He0anKxs1atq/RNJr4WwNYcolayNfCMrxi/LqsETtbQ nGeohEmixdSS6BhveBOY4+xp/vUGJKP/SAhRp+7bwKmnuFwe87FA+VHxu2X+9FVy dkA8CFdg9K/w7oD944PCpeUaSAePi4vJg8tCHGPpiYpux3/Z2swEoz8mJ8OOyBq/ +vztPJvPXeQxvNFBSKAx6rj9u4JI3RMVwS07zwfkrwi6vLJKv0KQT24xaPKeaN/z pn1eA+sX9lOt+yg/5vyCm6iqT8IgGWg/BNnysjM5seUD1D/cTW8jmZ2iIE80CvAZ TKBIbB98G5DH3ZLsOQdMtWZgJT5ykpJNaBMpiuI= -----END CERTIFICATE-----Generated at Sat Apr 26 13:05:17 2025 by rpki-client