$ rpki-client -vvf rpki.apnic.net/member_repository/A914E556/2EAAFECA0C3711EBA8AA8222C4F9AE02/375F7DAA0C3911EB828BDC25C4F9AE02.roa File: 375F7DAA0C3911EB828BDC25C4F9AE02.roa (raw, json) Hash identifier: BK8JW2Wj4etRuysdxWiOktynoZCEWJ2xeDWHB4Oo8iI= Subject key identifier: 2F:13:C5:C6:AB:39:D4:CF:4B:24:CB:2C:AB:76:E9:02:28:66:A1:AA Certificate issuer: /CN=A914E556/serialNumber=879EC9AFCDFA27A3CE7B5D43787A2F890385586E Certificate serial: 077C Authority key identifier: 87:9E:C9:AF:CD:FA:27:A3:CE:7B:5D:43:78:7A:2F:89:03:85:58:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h57Jr836J6POe11DeHoviQOFWG4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E556/2EAAFECA0C3711EBA8AA8222C4F9AE02/375F7DAA0C3911EB828BDC25C4F9AE02.roa Signing time: Mon 31 Mar 2025 21:51:59 +0000 ROA not before: Mon 31 Mar 2025 21:51:59 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 24572 IP address blocks: 103.2.72.0/22 maxlen: 22 114.110.48.0/20 maxlen: 20 114.111.64.0/18 maxlen: 18 124.83.128.0/17 maxlen: 17 183.79.0.0/16 maxlen: 16 2400:7e00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E556/2EAAFECA0C3711EBA8AA8222C4F9AE02/h57Jr836J6POe11DeHoviQOFWG4.crl rsync://rpki.apnic.net/member_repository/A914E556/2EAAFECA0C3711EBA8AA8222C4F9AE02/h57Jr836J6POe11DeHoviQOFWG4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h57Jr836J6POe11DeHoviQOFWG4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 21:13:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1916 (0x77c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E556, serialNumber=879EC9AFCDFA27A3CE7B5D43787A2F890385586E Validity Not Before: Mar 31 21:51:59 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67eb0e7e-7a1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ab:c7:70:38:72:b3:79:30:6d:2e:86:07:0c: 19:f0:b0:43:a8:c1:be:1d:12:e8:d6:60:1d:58:ca: 41:0a:21:4f:02:a0:5e:00:6b:0c:31:c9:af:93:28: 34:4c:a5:0b:64:a1:38:27:c2:35:a4:1b:d8:5b:16: 87:61:62:0c:30:df:f0:a4:12:d2:9f:70:96:bc:b9: 6d:c5:8a:1b:a8:dc:9b:a6:1d:a1:1c:9e:ba:f7:00: da:ea:cf:c6:36:14:69:a9:50:ee:d1:20:4b:57:aa: 94:97:87:a6:e4:c4:7c:14:5d:05:d6:f6:3e:68:0b: 20:6b:bc:b2:05:61:11:8b:b5:85:84:85:63:04:af: 7e:c0:45:39:cf:96:6c:7d:15:4f:90:53:15:2e:12: 49:cd:3d:3b:e6:fb:02:9a:3d:89:e9:97:34:e1:9b: 91:db:2c:58:da:65:1a:c0:16:92:37:ca:b4:52:aa: 80:2a:a5:3c:e2:0a:a8:a5:1b:cb:a5:78:5c:51:a4: 68:1e:62:c8:ae:a8:5b:32:96:89:84:1e:b8:a3:c2: 4a:57:94:cc:ba:fc:f4:b4:7c:72:31:d6:c5:ba:2f: fc:6e:25:9c:02:b0:49:5d:21:ed:01:b5:e8:45:0b: 76:38:92:ee:31:02:a1:7f:d9:70:d9:15:7b:ee:e3: 38:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:13:C5:C6:AB:39:D4:CF:4B:24:CB:2C:AB:76:E9:02:28:66:A1:AA X509v3 Authority Key Identifier: keyid:87:9E:C9:AF:CD:FA:27:A3:CE:7B:5D:43:78:7A:2F:89:03:85:58:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E556/2EAAFECA0C3711EBA8AA8222C4F9AE02/h57Jr836J6POe11DeHoviQOFWG4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h57Jr836J6POe11DeHoviQOFWG4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E556/2EAAFECA0C3711EBA8AA8222C4F9AE02/375F7DAA0C3911EB828BDC25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.2.72.0/22 114.110.48.0/20 114.111.64.0/18 124.83.128.0/17 183.79.0.0/16 IPv6: 2400:7e00::/32 Signature Algorithm: sha256WithRSAEncryption 00:ca:9b:d1:4c:37:fe:a6:f2:bc:be:06:b4:8e:44:c7:11:6e: 74:39:da:60:d9:2a:26:97:e3:51:39:cc:81:e4:3d:fa:87:ea: 39:90:18:28:a8:cd:3b:f0:c3:f3:31:8d:9d:29:c1:ca:fc:f4: 1e:ba:8a:2a:3c:2d:10:f0:e6:cb:35:17:52:54:98:bb:7f:66: 21:a7:53:71:75:e1:45:8f:22:c4:6a:e6:8a:4b:6d:74:92:9d: dc:01:3b:cc:23:7b:20:15:e6:42:c7:c9:db:61:e2:af:51:71: 5d:4f:5a:75:98:54:7c:ec:6a:16:39:6c:72:34:27:50:44:e8: 6e:7d:2d:ae:05:1e:13:15:f4:22:8e:d5:a2:53:0e:52:98:ef: 33:bb:c3:b0:1b:1e:a4:9b:d4:e5:2b:03:51:eb:21:70:92:b8: 97:2e:45:76:8f:19:f0:eb:a6:c6:2e:fb:77:1c:b6:93:20:9e: fd:61:ef:9d:9e:a6:a5:ca:8d:80:d6:b1:70:26:59:bb:5d:af: 46:cd:62:0e:4f:2e:20:87:6f:cb:da:5a:f4:44:ee:03:a8:c7: 80:1d:51:ee:b9:fc:e8:3e:bf:b9:a4:0a:90:de:21:22:45:b7: 64:b4:dc:82:c5:75:35:b2:71:4f:e5:3d:04:13:8a:cf:93:75: 67:59:47:9c -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICB3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU1NTYxMTAvBgNVBAUTKDg3OUVDOUFGQ0RGQTI3QTNDRTdCNUQ0Mzc4N0EyRjg5 MDM4NTU4NkUwHhcNMjUwMzMxMjE1MTU5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2ViMGU3ZS03YTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzavHcDhys3kwbS6GBwwZ8LBDqMG+HRLo1mAdWMpBCiFPAqBeAGsMMcmvkyg0 TKULZKE4J8I1pBvYWxaHYWIMMN/wpBLSn3CWvLltxYobqNybph2hHJ669wDa6s/G NhRpqVDu0SBLV6qUl4em5MR8FF0F1vY+aAsga7yyBWERi7WFhIVjBK9+wEU5z5Zs fRVPkFMVLhJJzT075vsCmj2J6Zc04ZuR2yxY2mUawBaSN8q0UqqAKqU84gqopRvL pXhcUaRoHmLIrqhbMpaJhB64o8JKV5TMuvz0tHxyMdbFui/8biWcArBJXSHtAbXo RQt2OJLuMQKhf9lw2RV77uM4iQIDAQABo4ICuzCCArcwHQYDVR0OBBYEFC8Txcar OdTPSyTLLKt26QIoZqGqMB8GA1UdIwQYMBaAFIeeya/N+iejzntdQ3h6L4kDhVhu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTU1Ni8yRUFBRkVDQTBD MzcxMUVCQThBQTgyMjJDNEY5QUUwMi9oNTdKcjgzNko2UE9lMTFEZUhvdmlRT0ZX RzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g1N0pyODM2SjZQT2UxMURlSG92aVFPRldHNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU1NTYvMkVBQUZFQ0EwQzM3MTFFQkE4QUE4MjIyQzRGOUFFMDIvMzc1RjdEQUEw QzM5MTFFQjgyOEJEQzI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MCMEAgABMB0DBAJnAkgDBARybjADBAZyb0ADBAd8U4ADAwC3TzANBAIAAjAH AwUAJAB+ADANBgkqhkiG9w0BAQsFAAOCAQEAAMqb0Uw3/qbyvL4GtI5ExxFudDna YNkqJpfjUTnMgeQ9+ofqOZAYKKjNO/DD8zGNnSnByvz0HrqKKjwtEPDmyzUXUlSY u39mIadTcXXhRY8ixGrmikttdJKd3AE7zCN7IBXmQsfJ22Hir1FxXU9adZhUfOxq FjlscjQnUETobn0trgUeExX0Io7VolMOUpjvM7vDsBsepJvU5SsDUeshcJK4ly5F do8Z8Oumxi77dxy2kyCe/WHvnZ6mpcqNgNaxcCZZu12vRs1iDk8uIIdvy9pa9ETu A6jHgB1R7rn86D6/uaQKkN4hIkW3ZLTcgsV1NbJxT+U9BBOKz5N1Z1lHnA== -----END CERTIFICATE-----Generated at Sat Apr 26 08:16:58 2025 by rpki-client