$ rpki-client -vvf rpki.apnic.net/member_repository/A913D4B2/B4B20CAE784111EBB3480961C4F9AE02/C148AF5C9B4811EBB3FAE847C4F9AE02.roa File: C148AF5C9B4811EBB3FAE847C4F9AE02.roa (raw, json) Hash identifier: ElM40kRXls4915TJFeuEiV6vcriAHquSzfVrwEFHIlI= Subject key identifier: 38:C5:A9:58:7F:C5:77:0D:05:1E:BE:83:CE:5A:2B:B1:7E:56:E5:19 Certificate issuer: /CN=A913D4B2/serialNumber=828A863BDD9F4675EA183CDAA104F54B23772E49 Certificate serial: 0660 Authority key identifier: 82:8A:86:3B:DD:9F:46:75:EA:18:3C:DA:A1:04:F5:4B:23:77:2E:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/goqGO92fRnXqGDzaoQT1SyN3Lkk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D4B2/B4B20CAE784111EBB3480961C4F9AE02/C148AF5C9B4811EBB3FAE847C4F9AE02.roa Signing time: Sun 30 Mar 2025 22:24:29 +0000 ROA not before: Sun 30 Mar 2025 22:24:29 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138408 IP address blocks: 103.163.72.0/23 maxlen: 24 2001:df6:7880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D4B2/B4B20CAE784111EBB3480961C4F9AE02/goqGO92fRnXqGDzaoQT1SyN3Lkk.crl rsync://rpki.apnic.net/member_repository/A913D4B2/B4B20CAE784111EBB3480961C4F9AE02/goqGO92fRnXqGDzaoQT1SyN3Lkk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/goqGO92fRnXqGDzaoQT1SyN3Lkk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:08:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1632 (0x660) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D4B2, serialNumber=828A863BDD9F4675EA183CDAA104F54B23772E49 Validity Not Before: Mar 30 22:24:29 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e9c49c-b80a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:05:0e:0d:43:d6:28:d5:31:8c:d2:87:30:97: f1:b4:4f:31:e5:10:66:4b:f4:be:1f:5d:e5:25:17: 7b:18:b9:bc:0f:1c:43:94:e0:eb:fb:b9:0e:ff:20: a0:9a:2f:ab:8a:25:cc:ca:81:0c:b5:18:00:f9:c5: b8:46:7d:72:16:68:c9:b0:d4:20:37:35:58:4b:40: d8:81:eb:db:7d:28:ce:05:0b:6d:a6:01:c2:bb:ba: 1a:76:11:6f:7e:cb:e1:f7:b2:ea:04:bf:cb:51:d6: 0c:2c:9c:c2:cf:2c:f7:6f:10:66:f2:fc:af:21:4b: 59:10:83:f6:9a:b9:f1:66:93:9b:a5:15:58:3f:c3: ac:2f:0b:96:b5:15:4a:ec:78:60:a9:1d:51:fb:b6: 0f:52:d2:4b:5a:4a:4e:0b:fd:fe:1f:36:08:26:e0: dc:a2:b7:0e:ff:0b:c0:37:44:5b:b0:0f:31:26:bf: 0e:1c:7c:29:5f:85:1d:3d:ac:28:fa:85:eb:89:21: 85:fa:b5:20:16:66:57:a8:84:bb:25:4f:43:c4:59: ee:f6:7e:ed:56:c6:2d:5a:a2:6d:b6:8f:46:53:66: 8c:5f:10:d8:0c:f2:9b:34:c8:14:84:5b:c4:19:b4: e4:9a:f4:77:16:33:04:78:9f:5c:68:18:63:a9:de: 60:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:C5:A9:58:7F:C5:77:0D:05:1E:BE:83:CE:5A:2B:B1:7E:56:E5:19 X509v3 Authority Key Identifier: keyid:82:8A:86:3B:DD:9F:46:75:EA:18:3C:DA:A1:04:F5:4B:23:77:2E:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D4B2/B4B20CAE784111EBB3480961C4F9AE02/goqGO92fRnXqGDzaoQT1SyN3Lkk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/goqGO92fRnXqGDzaoQT1SyN3Lkk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D4B2/B4B20CAE784111EBB3480961C4F9AE02/C148AF5C9B4811EBB3FAE847C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.72.0/23 IPv6: 2001:df6:7880::/48 Signature Algorithm: sha256WithRSAEncryption 38:43:eb:9a:72:95:67:41:32:19:dd:1c:90:92:55:2d:d8:d0: bf:ec:9a:bf:89:2b:f2:56:7c:26:6d:8b:27:60:35:84:07:b1: 12:f6:f9:24:5e:ef:25:ff:d1:5d:c8:6d:95:49:b8:dc:ef:ea: f2:4c:0f:5c:ef:4c:89:c2:38:35:a1:f5:b6:15:77:a4:a2:75: 6e:6d:13:88:e6:d7:25:7e:7c:2b:e1:f1:ae:19:38:4c:b1:b5: e5:fb:31:a0:59:6b:dd:08:a5:24:d2:06:cb:aa:38:1f:ba:cb: 19:27:99:df:aa:a3:7b:3c:3b:1b:61:9c:6f:73:5e:bf:cf:f7: f6:2d:7b:f6:e2:e0:fa:0c:dd:34:23:f8:4e:fe:ed:3c:de:1a: d7:2d:df:d7:da:82:9a:e9:ee:2a:cc:00:4e:01:aa:26:c4:b5: a0:98:18:a0:0f:f3:6e:49:45:72:9f:a0:d0:b8:f2:2f:6e:5c: fb:e0:cf:ed:ff:43:de:8e:d4:70:74:d6:02:15:a4:51:0c:ce: fb:57:ad:fd:f1:fe:89:8c:9a:f5:b6:8d:e3:d8:80:8e:ca:a7: 11:78:36:8c:94:2c:74:61:26:1b:16:ca:5f:23:42:40:ce:00: 84:a5:ec:e9:9e:75:d1:da:21:2d:8e:89:a0:33:4f:f7:f4:a2: 1e:d2:8d:10 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q0QjIxMTAvBgNVBAUTKDgyOEE4NjNCREQ5RjQ2NzVFQTE4M0NEQUExMDRGNTRC MjM3NzJFNDkwHhcNMjUwMzMwMjIyNDI5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U5YzQ5Yy1iODBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQUODUPWKNUxjNKHMJfxtE8x5RBmS/S+H13lJRd7GLm8DxxDlODr+7kO/yCg mi+riiXMyoEMtRgA+cW4Rn1yFmjJsNQgNzVYS0DYgevbfSjOBQttpgHCu7oadhFv fsvh97LqBL/LUdYMLJzCzyz3bxBm8vyvIUtZEIP2mrnxZpObpRVYP8OsLwuWtRVK 7HhgqR1R+7YPUtJLWkpOC/3+HzYIJuDcorcO/wvAN0RbsA8xJr8OHHwpX4UdPawo +oXriSGF+rUgFmZXqIS7JU9DxFnu9n7tVsYtWqJtto9GU2aMXxDYDPKbNMgUhFvE GbTkmvR3FjMEeJ9caBhjqd5gvwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDjFqVh/ xXcNBR6+g85aK7F+VuUZMB8GA1UdIwQYMBaAFIKKhjvdn0Z16hg82qEE9Usjdy5J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDRCMi9CNEIyMENBRTc4 NDExMUVCQjM0ODA5NjFDNEY5QUUwMi9nb3FHTzkyZlJuWHFHRHphb1FUMVN5TjNM a2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dvcUdPOTJmUm5YcUdEemFvUVQxU3lOM0xray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0Q0QjIvQjRCMjBDQUU3ODQxMTFFQkIzNDgwOTYxQzRGOUFFMDIvQzE0OEFGNUM5 QjQ4MTFFQkIzRkFFODQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFno0gwDwQCAAIwCQMHACABDfZ4gDANBgkqhkiG9w0BAQsF AAOCAQEAOEPrmnKVZ0EyGd0ckJJVLdjQv+yav4kr8lZ8Jm2LJ2A1hAexEvb5JF7v Jf/RXchtlUm43O/q8kwPXO9MicI4NaH1thV3pKJ1bm0TiObXJX58K+Hxrhk4TLG1 5fsxoFlr3QilJNIGy6o4H7rLGSeZ36qjezw7G2Gcb3Nev8/39i179uLg+gzdNCP4 Tv7tPN4a1y3f19qCmunuKswATgGqJsS1oJgYoA/zbklFcp+g0LjyL25c++DP7f9D 3o7UcHTWAhWkUQzO+1et/fH+iYya9baN49iAjsqnEXg2jJQsdGEmGxbKXyNCQM4A hKXs6Z510dohLY6JoDNP9/SiHtKNEA== -----END CERTIFICATE-----Generated at Sat Apr 26 09:24:02 2025 by rpki-client