$ rpki-client -vvf rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/6656B366814C11EB913AEC78C4F9AE02.roa File: 6656B366814C11EB913AEC78C4F9AE02.roa (raw, json) Hash identifier: hWmIjVl3wq2WAFI85MCQWSOZgmGgPc2bb2Ktcia7bs0= Subject key identifier: 6A:B3:CE:50:A7:93:5E:7B:A4:10:46:A2:B2:65:3E:C8:A3:99:EA:AE Certificate issuer: /CN=A9155688/serialNumber=96E5AA70824B8D13DDCFE61FCC9A20CAD65E60C1 Certificate serial: 0658 Authority key identifier: 96:E5:AA:70:82:4B:8D:13:DD:CF:E6:1F:CC:9A:20:CA:D6:5E:60:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/luWqcIJLjRPdz-YfzJogytZeYME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/6656B366814C11EB913AEC78C4F9AE02.roa Signing time: Wed 16 Apr 2025 22:33:22 +0000 ROA not before: Wed 16 Apr 2025 22:33:22 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132245 IP address blocks: 103.19.112.0/24 maxlen: 24 103.19.113.0/24 maxlen: 24 103.19.114.0/24 maxlen: 24 103.19.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.crl rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/luWqcIJLjRPdz-YfzJogytZeYME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:17:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1624 (0x658) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155688, serialNumber=96E5AA70824B8D13DDCFE61FCC9A20CAD65E60C1 Validity Not Before: Apr 16 22:33:22 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68003032-ec90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:e3:af:6e:a2:d1:b6:32:2f:5d:78:11:66:18: 3f:62:37:b2:85:17:28:c1:c3:d5:41:e1:f8:6e:66: 0a:8f:42:82:e8:4a:d9:7e:84:99:55:4c:01:52:ba: c0:49:02:df:23:d3:f1:12:73:fb:09:ac:bf:f9:d6: 77:b0:61:ef:aa:ee:b9:36:cb:dd:e9:04:d7:26:68: 73:c3:66:5e:52:7d:7f:b3:1e:dc:4f:5c:2f:c7:8f: 2c:b8:29:5f:33:78:2c:be:5c:7c:1b:00:86:c2:25: 30:96:87:77:2a:00:e8:62:22:0a:c1:a4:4e:8d:59: 25:06:1e:68:73:c8:ee:3a:0b:14:d5:03:8d:22:26: cd:35:eb:bc:c8:9c:93:d1:f2:53:3d:bf:8a:a7:8b: 4c:25:d7:d4:0d:02:0a:33:7d:37:46:8f:f3:17:e1: 3a:49:84:45:c3:f2:2c:32:ee:63:82:dc:ed:8e:12: f1:05:5d:70:6d:e5:11:d5:c1:e5:00:af:8c:53:c7: 2d:85:a2:58:9f:f9:c1:b9:f9:b0:6d:00:62:a3:94: 69:d1:06:93:6e:3c:fe:e1:46:7b:9c:36:17:bc:c0: a8:4d:00:7a:a1:d4:5d:cc:60:c4:5d:a2:2c:48:fc: bd:50:f3:eb:83:ce:f4:46:b2:df:58:20:1e:29:df: 7d:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:B3:CE:50:A7:93:5E:7B:A4:10:46:A2:B2:65:3E:C8:A3:99:EA:AE X509v3 Authority Key Identifier: keyid:96:E5:AA:70:82:4B:8D:13:DD:CF:E6:1F:CC:9A:20:CA:D6:5E:60:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/luWqcIJLjRPdz-YfzJogytZeYME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/luWqcIJLjRPdz-YfzJogytZeYME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155688/9D5629A0814211EBBD8C4284C4F9AE02/6656B366814C11EB913AEC78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.19.112.0/22 Signature Algorithm: sha256WithRSAEncryption c9:53:fa:a0:1e:33:14:f1:bc:8e:64:73:27:d0:0e:3e:09:81: 42:b7:06:48:5a:98:60:d5:57:6f:5f:c7:9b:ba:b0:6d:f7:da: 99:4b:db:37:e0:4c:2b:83:3e:d4:2c:df:a2:f9:19:6d:d9:52: 80:59:e2:91:33:3b:6f:37:27:f3:b0:6e:de:c6:e9:3d:d2:ab: a1:29:1d:e3:ae:fb:72:ae:2c:5e:b2:5b:44:06:19:f4:62:cf: 5c:5a:0c:0c:70:87:6f:47:37:72:dc:ae:82:9c:4d:d2:87:b6: 8b:85:b0:a3:f9:62:cc:f8:c5:f1:45:d0:a9:ba:3f:bf:9e:aa: 67:0b:12:62:6a:55:43:a1:f0:4f:20:92:56:4b:36:a1:48:3e: e6:97:72:f4:70:3c:17:9d:6a:f9:2a:02:26:ee:e6:37:bf:10: ea:57:b2:2b:d5:c1:cb:9b:8d:32:bf:6e:e6:2b:db:ca:f7:1e: 51:5f:ec:72:2c:ed:99:30:e8:bd:0f:94:12:61:2a:a5:15:b9: 73:04:90:4e:3b:15:9f:ee:d4:c3:11:6d:56:14:c9:0d:9b:e2: 07:5b:a4:86:5b:2e:38:08:4e:27:c6:64:91:5e:3d:0c:f6:7d: fd:23:cc:51:33:74:0d:75:9b:f9:e6:ef:23:a2:b5:1a:73:cc: ae:a2:fb:20 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU2ODgxMTAvBgNVBAUTKDk2RTVBQTcwODI0QjhEMTNERENGRTYxRkNDOUEyMENB RDY1RTYwQzEwHhcNMjUwNDE2MjIzMzIyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODAwMzAzMi1lYzkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4+OvbqLRtjIvXXgRZhg/YjeyhRcowcPVQeH4bmYKj0KC6ErZfoSZVUwBUrrA SQLfI9PxEnP7Cay/+dZ3sGHvqu65Nsvd6QTXJmhzw2ZeUn1/sx7cT1wvx48suClf M3gsvlx8GwCGwiUwlod3KgDoYiIKwaROjVklBh5oc8juOgsU1QONIibNNeu8yJyT 0fJTPb+Kp4tMJdfUDQIKM303Ro/zF+E6SYRFw/IsMu5jgtztjhLxBV1wbeUR1cHl AK+MU8cthaJYn/nBufmwbQBio5Rp0QaTbjz+4UZ7nDYXvMCoTQB6odRdzGDEXaIs SPy9UPPrg870RrLfWCAeKd99sQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGqzzlCn k157pBBGorJlPsijmequMB8GA1UdIwQYMBaAFJblqnCCS40T3c/mH8yaIMrWXmDB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTY4OC85RDU2MjlBMDgx NDIxMUVCQkQ4QzQyODRDNEY5QUUwMi9sdVdxY0lKTGpSUGR6LVlmekpvZ3l0WmVZ TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x1V3FjSUpMalJQZHotWWZ6Sm9neXRaZVlNRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTU2ODgvOUQ1NjI5QTA4MTQyMTFFQkJEOEM0Mjg0QzRGOUFFMDIvNjY1NkIzNjY4 MTRDMTFFQjkxM0FFQzc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnE3AwDQYJKoZIhvcNAQELBQADggEBAMlT+qAeMxTxvI5k cyfQDj4JgUK3BkhamGDVV29fx5u6sG332plL2zfgTCuDPtQs36L5GW3ZUoBZ4pEz O283J/Owbt7G6T3Sq6EpHeOu+3KuLF6yW0QGGfRiz1xaDAxwh29HN3LcroKcTdKH touFsKP5Ysz4xfFF0Km6P7+eqmcLEmJqVUOh8E8gklZLNqFIPuaXcvRwPBedavkq Aibu5je/EOpXsivVwcubjTK/buYr28r3HlFf7HIs7Zkw6L0PlBJhKqUVuXMEkE47 FZ/u1MMRbVYUyQ2b4gdbpIZbLjgITifGZJFePQz2ff0jzFEzdA11m/nm7yOitRpz zK6i+yA= -----END CERTIFICATE-----Generated at Sat Apr 26 08:15:05 2025 by rpki-client