$ rpki-client -vvf rpki.apnic.net/member_repository/A914C651/334F68C8CEEC11EEAE03306CC4F9AE02/E6BD4CAECEEC11EEB0E9E665C4F9AE02.roa File: E6BD4CAECEEC11EEB0E9E665C4F9AE02.roa (raw, json) Hash identifier: C5+FDRdQyQalYR2P8dEPuBXkPFwg+NEWC9TQl/hqp1Y= Subject key identifier: 93:55:0E:3F:93:D6:E4:2D:30:AF:1E:46:39:9D:45:2D:92:C4:D8:BA Certificate issuer: /CN=A914C651/serialNumber=76D6FA7CF9BF8E415F2F42619B804288763E67A2 Certificate serial: E0 Authority key identifier: 76:D6:FA:7C:F9:BF:8E:41:5F:2F:42:61:9B:80:42:88:76:3E:67:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dtb6fPm_jkFfL0Jhm4BCiHY-Z6I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C651/334F68C8CEEC11EEAE03306CC4F9AE02/E6BD4CAECEEC11EEB0E9E665C4F9AE02.roa Signing time: Sat 05 Apr 2025 05:10:44 +0000 ROA not before: Sat 05 Apr 2025 05:10:44 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 18013 IP address blocks: 103.149.152.0/24 maxlen: 24 103.149.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C651/334F68C8CEEC11EEAE03306CC4F9AE02/dtb6fPm_jkFfL0Jhm4BCiHY-Z6I.crl rsync://rpki.apnic.net/member_repository/A914C651/334F68C8CEEC11EEAE03306CC4F9AE02/dtb6fPm_jkFfL0Jhm4BCiHY-Z6I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dtb6fPm_jkFfL0Jhm4BCiHY-Z6I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:34:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C651, serialNumber=76D6FA7CF9BF8E415F2F42619B804288763E67A2 Validity Not Before: Apr 5 05:10:44 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f0bb53-1f99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e4:19:7d:0c:33:37:22:6f:73:ca:dc:79:89: c9:0a:a3:0b:0d:66:6e:37:82:9b:91:7b:c9:45:b6: 12:dc:90:66:46:83:3c:6d:b9:c6:f3:4d:3f:10:2d: 59:ac:f4:6a:aa:d1:00:39:3b:8b:c1:12:00:b2:04: 41:49:24:67:2b:3a:c8:a3:9f:c2:35:57:8d:a3:ea: 03:64:69:49:22:c9:a8:d9:6b:c5:5a:ad:d8:fc:d2: ad:7e:9a:64:f0:c8:7f:07:74:19:29:8e:b1:4f:e3: a1:27:49:59:dc:fa:82:bd:6a:1a:3e:c5:f3:c3:c3: 76:c6:04:d1:64:92:83:be:5c:40:bc:71:24:26:c8: bf:ed:06:42:2c:f6:d4:50:e0:6b:09:d0:3e:17:21: 29:b2:b9:b4:de:29:2c:b0:4a:54:06:1e:f4:6a:63: 8e:84:5a:bf:0c:9e:23:e1:15:35:f5:dd:50:5d:59: b4:48:76:09:47:27:b8:12:eb:1a:c3:99:b0:94:94: 93:11:38:40:54:f3:61:4f:88:be:18:db:56:80:73: bf:4d:56:a5:ec:11:1d:a3:e7:2b:e5:35:b5:54:e1: a0:22:f3:63:09:85:01:48:5a:40:26:87:5a:f3:c3: 3c:8b:6f:55:1e:51:e0:df:bf:1f:d2:19:30:99:8d: b1:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:55:0E:3F:93:D6:E4:2D:30:AF:1E:46:39:9D:45:2D:92:C4:D8:BA X509v3 Authority Key Identifier: keyid:76:D6:FA:7C:F9:BF:8E:41:5F:2F:42:61:9B:80:42:88:76:3E:67:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C651/334F68C8CEEC11EEAE03306CC4F9AE02/dtb6fPm_jkFfL0Jhm4BCiHY-Z6I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dtb6fPm_jkFfL0Jhm4BCiHY-Z6I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C651/334F68C8CEEC11EEAE03306CC4F9AE02/E6BD4CAECEEC11EEB0E9E665C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.152.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:9a:69:02:1d:da:1e:84:dc:92:1e:0d:23:77:37:d9:91:83: b6:4d:01:12:da:dc:6e:80:3d:02:34:da:9e:ed:4d:2d:40:12: bb:02:8f:1b:1e:52:ae:77:6a:0c:59:e1:67:6f:79:3b:d4:53: 15:c0:7a:f8:da:f2:2e:23:7a:61:10:9b:e5:b4:ca:e0:dd:1d: df:ca:bb:1f:86:39:1c:f0:ec:d3:ba:18:a4:15:fc:d6:4a:a3: f6:c1:47:16:68:cb:7d:35:7a:7e:ec:d8:cc:ac:6d:8b:11:d8: 84:1f:24:06:75:0e:fe:44:89:51:39:77:07:84:cf:d3:d2:9c: cc:17:a5:e7:13:4c:66:17:37:13:fb:3c:41:9b:b5:5c:a7:c8: de:1f:cc:e7:48:00:e1:ac:d2:2f:5d:ca:7d:ff:67:a4:a9:35: fa:5c:54:eb:3f:36:2f:05:d6:62:77:d7:a5:85:13:86:09:cc: 00:ee:f4:6b:d6:e0:02:36:12:65:db:cb:2d:d7:c7:59:a6:85: 2b:f2:85:26:d6:e1:0c:11:0c:3c:85:c9:9a:b6:ff:86:90:b6: 49:b9:84:fe:60:f0:16:95:55:f4:81:66:92:da:ac:04:65:37: 42:3e:90:51:7a:7f:5c:be:9b:78:00:18:72:56:62:01:1d:f9: 50:54:d4:27 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM2NTExMTAvBgNVBAUTKDc2RDZGQTdDRjlCRjhFNDE1RjJGNDI2MTlCODA0Mjg4 NzYzRTY3QTIwHhcNMjUwNDA1MDUxMDQ0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwYmI1My0xZjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo+QZfQwzNyJvc8rceYnJCqMLDWZuN4KbkXvJRbYS3JBmRoM8bbnG800/EC1Z rPRqqtEAOTuLwRIAsgRBSSRnKzrIo5/CNVeNo+oDZGlJIsmo2WvFWq3Y/NKtfppk 8Mh/B3QZKY6xT+OhJ0lZ3PqCvWoaPsXzw8N2xgTRZJKDvlxAvHEkJsi/7QZCLPbU UOBrCdA+FyEpsrm03ikssEpUBh70amOOhFq/DJ4j4RU19d1QXVm0SHYJRye4Eusa w5mwlJSTEThAVPNhT4i+GNtWgHO/TVal7BEdo+cr5TW1VOGgIvNjCYUBSFpAJoda 88M8i29VHlHg378f0hkwmY2xuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJNVDj+T 1uQtMK8eRjmdRS2SxNi6MB8GA1UdIwQYMBaAFHbW+nz5v45BXy9CYZuAQoh2Pmei MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzY1MS8zMzRGNjhDOENF RUMxMUVFQUUwMzMwNkNDNEY5QUUwMi9kdGI2ZlBtX2prRmZMMEpobTRCQ2lIWS1a NkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R0YjZmUG1famtGZkwwSmhtNEJDaUhZLVo2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEM2NTEvMzM0RjY4QzhDRUVDMTFFRUFFMDMzMDZDQzRGOUFFMDIvRTZCRDRDQUVD RUVDMTFFRUIwRTlFNjY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlZgwDQYJKoZIhvcNAQELBQADggEBAFyaaQId2h6E3JIe DSN3N9mRg7ZNARLa3G6APQI02p7tTS1AErsCjxseUq53agxZ4WdveTvUUxXAevja 8i4jemEQm+W0yuDdHd/Kux+GORzw7NO6GKQV/NZKo/bBRxZoy301en7s2MysbYsR 2IQfJAZ1Dv5EiVE5dweEz9PSnMwXpecTTGYXNxP7PEGbtVynyN4fzOdIAOGs0i9d yn3/Z6SpNfpcVOs/Ni8F1mJ316WFE4YJzADu9GvW4AI2EmXbyy3Xx1mmhSvyhSbW 4QwRDDyFyZq2/4aQtkm5hP5g8BaVVfSBZpLarARlN0I+kFF6f1y+m3gAGHJWYgEd +VBU1Cc= -----END CERTIFICATE-----Generated at Sat Apr 26 08:28:11 2025 by rpki-client