$ rpki-client -vvf rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/5C95BDC0C12E11EEA47CBB59C4F9AE02.roa File: 5C95BDC0C12E11EEA47CBB59C4F9AE02.roa (raw, json) Hash identifier: 3i/bsnBVCwTkaRt5VNWAWhHJ6/+t7BMJDdGcwpMXiuk= Subject key identifier: B8:91:6D:73:7B:75:DB:A8:4E:B7:C0:F4:3A:41:95:71:D6:C2:81:4D Certificate issuer: /CN=A912438F/serialNumber=C888D1EEE04BEF3E815F09DDFA19193D699B4F47 Certificate serial: 0727 Authority key identifier: C8:88:D1:EE:E0:4B:EF:3E:81:5F:09:DD:FA:19:19:3D:69:9B:4F:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIjR7uBL7z6BXwnd-hkZPWmbT0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/5C95BDC0C12E11EEA47CBB59C4F9AE02.roa Signing time: Tue 14 Jan 2025 21:40:31 +0000 ROA not before: Tue 14 Jan 2025 21:40:31 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 139325 IP address blocks: 103.158.158.0/24 maxlen: 24 103.158.159.0/24 maxlen: 24 2001:df5:5b80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/yIjR7uBL7z6BXwnd-hkZPWmbT0c.crl rsync://rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/yIjR7uBL7z6BXwnd-hkZPWmbT0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIjR7uBL7z6BXwnd-hkZPWmbT0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:31:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1831 (0x727) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912438F, serialNumber=C888D1EEE04BEF3E815F09DDFA19193D699B4F47 Validity Not Before: Jan 14 21:40:31 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6786d9cf-1c0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:61:4f:cb:09:f5:f1:e2:2b:00:06:3b:ec:3e: 49:a7:8a:68:81:4d:4b:3e:2d:37:5a:b1:bd:ef:ab: 08:61:e8:26:77:a5:18:91:6a:3b:4b:58:ce:36:98: 8a:e9:dd:b6:fd:5c:a3:fa:4a:32:cb:ed:67:e1:4a: 3f:63:bf:25:73:ac:d7:c3:bc:cd:8d:37:45:c3:9d: 8a:aa:6e:b9:e3:b9:af:be:88:e3:f0:43:8e:3a:af: 4d:b7:17:e4:c9:d9:bf:d9:11:3c:7c:2e:c0:03:56: 9c:69:85:2e:93:1a:b4:f6:6f:e0:15:ff:2e:ec:5a: 32:d8:05:65:53:d1:33:56:41:5a:75:42:1c:a7:2c: 5d:10:ca:86:d5:ff:fb:b3:54:8f:bd:3a:27:2a:e0: 9c:9a:14:f8:f1:8f:85:8c:1f:98:df:86:cb:8f:7c: dc:e1:f2:95:9f:68:e8:6e:2d:93:57:9a:67:0c:d1: da:1d:41:30:5c:9d:23:72:d4:96:b8:f4:14:ce:3d: 81:b9:24:74:dd:8a:2a:47:19:98:7a:b7:ae:cc:ba: 33:ab:3b:ac:f7:f3:f5:8e:4c:a5:1c:20:fa:37:71: 4f:e2:07:94:62:fd:89:53:cc:e8:58:b6:ae:05:f5: e7:83:35:ea:33:91:54:73:31:f9:b3:d7:7e:17:a1: 98:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:91:6D:73:7B:75:DB:A8:4E:B7:C0:F4:3A:41:95:71:D6:C2:81:4D X509v3 Authority Key Identifier: keyid:C8:88:D1:EE:E0:4B:EF:3E:81:5F:09:DD:FA:19:19:3D:69:9B:4F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/yIjR7uBL7z6BXwnd-hkZPWmbT0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yIjR7uBL7z6BXwnd-hkZPWmbT0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912438F/C7590BD625AE11EB8EEC220AC4F9AE02/5C95BDC0C12E11EEA47CBB59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.158.0/23 IPv6: 2001:df5:5b80::/48 Signature Algorithm: sha256WithRSAEncryption 5f:c6:1e:57:14:4f:84:32:00:6e:d1:8c:34:df:c8:6a:cd:c5: b7:8f:4f:8e:4c:87:bb:9d:ec:0f:1b:a3:57:10:56:c8:99:f1: 8d:bf:52:0e:6b:72:1d:e3:f6:83:34:ca:7c:02:37:83:65:ca: 03:78:09:e6:3b:db:05:bb:29:d0:4c:b8:bb:92:ef:01:70:d6: 17:1f:8e:3b:79:c8:64:20:3e:fc:0f:a8:d3:7c:98:6f:d9:98: 55:cd:18:3f:6f:8b:3c:2b:db:6d:4d:69:68:32:49:8d:28:18: 6c:55:9a:79:d8:c5:26:87:54:8b:cf:19:62:fb:3f:4a:66:d4: b4:a4:25:89:02:73:96:0d:53:ae:26:d3:4c:0b:60:cf:f6:f1: 9a:40:3d:a5:cb:05:24:2b:27:35:fe:25:d1:e1:4b:74:90:d7: 6d:c8:76:9c:6d:e6:29:e9:e7:3e:ff:83:c1:6c:b3:9d:b7:6b: 5b:63:cf:78:4b:76:e4:4f:3c:ae:10:31:c0:d4:46:af:a6:e4: 60:f6:4b:fa:10:bc:64:e7:10:26:33:e0:f1:74:42:e6:1c:0f: 58:30:8d:fe:b8:6e:d1:84:db:f3:c0:3c:f2:82:f9:91:1e:db: 3c:e6:10:0f:65:7b:c3:49:44:34:5a:6a:59:ea:14:53:0b:e2: e5:e7:32:08 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQzOEYxMTAvBgNVBAUTKEM4ODhEMUVFRTA0QkVGM0U4MTVGMDlEREZBMTkxOTNE Njk5QjRGNDcwHhcNMjUwMTE0MjE0MDMxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg2ZDljZi0xYzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoGFPywn18eIrAAY77D5Jp4pogU1LPi03WrG976sIYegmd6UYkWo7S1jONpiK 6d22/Vyj+koyy+1n4Uo/Y78lc6zXw7zNjTdFw52Kqm6547mvvojj8EOOOq9Ntxfk ydm/2RE8fC7AA1acaYUukxq09m/gFf8u7Foy2AVlU9EzVkFadUIcpyxdEMqG1f/7 s1SPvTonKuCcmhT48Y+FjB+Y34bLj3zc4fKVn2jobi2TV5pnDNHaHUEwXJ0jctSW uPQUzj2BuSR03YoqRxmYereuzLozqzus9/P1jkylHCD6N3FP4geUYv2JU8zoWLau BfXngzXqM5FUczH5s9d+F6GYjQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLiRbXN7 dduoTrfA9DpBlXHWwoFNMB8GA1UdIwQYMBaAFMiI0e7gS+8+gV8J3foZGT1pm09H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDM4Ri9DNzU5MEJENjI1 QUUxMUVCOEVFQzIyMEFDNEY5QUUwMi95SWpSN3VCTDd6NkJYd25kLWhrWlBXbWJU MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lJalI3dUJMN3o2Qlh3bmQtaGtaUFdtYlQwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQzOEYvQzc1OTBCRDYyNUFFMTFFQjhFRUMyMjBBQzRGOUFFMDIvNUM5NUJEQzBD MTJFMTFFRUE0N0NCQjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnnp4wDwQCAAIwCQMHACABDfVbgDANBgkqhkiG9w0BAQsF AAOCAQEAX8YeVxRPhDIAbtGMNN/Ias3Ft49PjkyHu53sDxujVxBWyJnxjb9SDmty HeP2gzTKfAI3g2XKA3gJ5jvbBbsp0Ey4u5LvAXDWFx+OO3nIZCA+/A+o03yYb9mY Vc0YP2+LPCvbbU1paDJJjSgYbFWaedjFJodUi88ZYvs/SmbUtKQliQJzlg1TribT TAtgz/bxmkA9pcsFJCsnNf4l0eFLdJDXbch2nG3mKennPv+DwWyznbdrW2PPeEt2 5E88rhAxwNRGr6bkYPZL+hC8ZOcQJjPg8XRC5hwPWDCN/rhu0YTb88A88oL5kR7b POYQD2V7w0lENFpqWeoUUwvi5ecyCA== -----END CERTIFICATE-----Generated at Sat Apr 26 13:09:25 2025 by rpki-client