$ rpki-client -vvf rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/5F2F693A061211F0BA5A2029C4F9AE02.roa File: 5F2F693A061211F0BA5A2029C4F9AE02.roa (raw, json) Hash identifier: ti/+dlDrn7n64hxfzOvr4hnKhT6sYm889q99u/P1yZw= Subject key identifier: BF:D4:09:BD:B0:3E:BB:0E:74:D6:02:84:31:A2:44:4E:8D:E8:72:47 Certificate issuer: /CN=A915A330/serialNumber=FBF812A0B9AA8AED621876C89201FFF10432B697 Certificate serial: 02 Authority key identifier: FB:F8:12:A0:B9:AA:8A:ED:62:18:76:C8:92:01:FF:F1:04:32:B6:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_gSoLmqiu1iGHbIkgH_8QQytpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/5F2F693A061211F0BA5A2029C4F9AE02.roa Signing time: Fri 21 Mar 2025 05:07:22 +0000 ROA not before: Fri 21 Mar 2025 05:07:22 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136962 IP address blocks: 103.110.68.0/22 maxlen: 22 103.110.68.0/24 maxlen: 24 103.110.69.0/24 maxlen: 24 103.110.70.0/24 maxlen: 24 103.110.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.crl rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_gSoLmqiu1iGHbIkgH_8QQytpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A330, serialNumber=FBF812A0B9AA8AED621876C89201FFF10432B697 Validity Not Before: Mar 21 05:07:22 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67dcf40a-5915 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:83:56:da:6a:3f:0e:b9:3a:d7:09:d3:97:24: d9:d5:e8:72:c9:a2:3d:45:fc:cb:df:71:23:75:23: f2:5c:2b:72:53:be:ba:98:4d:a1:b4:c7:c3:fb:19: 6f:43:92:62:14:73:74:f0:d3:a2:b4:d7:6e:ef:70: ff:a9:36:41:7f:8d:d5:25:b9:88:f8:1d:b7:a5:5f: 56:0f:9f:3c:ac:13:53:4d:0d:04:80:fd:f6:87:10: e6:3e:14:39:8a:cd:a6:17:4a:92:ad:79:9c:17:c7: 04:ea:76:92:31:16:38:0e:01:24:85:78:b3:68:46: 21:69:bd:a9:6b:e8:45:95:78:46:0c:d5:10:9c:8c: e5:5a:dd:06:e3:ba:cd:31:d1:07:fd:e8:d8:a9:84: fd:f4:d8:d0:47:dc:2c:3d:21:b0:f1:6d:82:e2:51: 88:73:54:74:52:64:14:8d:e8:f0:9d:5a:5d:84:46: ac:74:bf:5f:7d:37:f1:49:e0:30:de:99:c0:41:5b: 8d:cd:8d:57:5e:c0:3b:1f:6f:50:52:79:f4:90:83: 2a:4d:3b:a3:12:b0:98:41:5e:c9:43:7d:cd:43:36: 6b:08:a5:59:f2:4c:e1:a2:54:a3:e2:fe:e3:4b:64: d0:5c:fc:e2:21:95:b6:33:24:d9:01:4a:fb:ca:f6: 15:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:D4:09:BD:B0:3E:BB:0E:74:D6:02:84:31:A2:44:4E:8D:E8:72:47 X509v3 Authority Key Identifier: keyid:FB:F8:12:A0:B9:AA:8A:ED:62:18:76:C8:92:01:FF:F1:04:32:B6:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/-_gSoLmqiu1iGHbIkgH_8QQytpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_gSoLmqiu1iGHbIkgH_8QQytpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A330/AAE49A38060F11F0A9705281C4F9AE02/5F2F693A061211F0BA5A2029C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.68.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:8d:5a:2e:32:c9:37:9b:8c:6d:3b:02:84:f7:8f:fa:16:fa: 83:97:72:69:72:24:cf:db:87:82:3a:0d:ff:f2:fe:8e:c6:0a: a4:47:db:dc:fc:3e:55:8e:bf:09:89:1b:d5:e5:0a:3c:7d:ca: fc:1f:29:f3:e0:e7:f1:52:a8:51:33:97:da:76:a4:68:38:e0: 02:55:74:f3:aa:39:44:54:8e:be:88:72:2e:05:50:f8:5c:80: 85:85:1e:46:9b:10:87:4e:d0:4e:d0:8f:12:49:53:2b:25:75: 7f:43:9d:12:40:df:f0:e7:f7:cc:4e:67:d8:32:f9:42:db:b1: 7a:c4:c9:b8:30:fc:dd:33:71:13:79:bc:aa:01:d9:bf:d8:37: f6:3d:25:9c:4d:87:99:ab:2c:08:e5:77:54:8d:d4:da:c4:6f: 88:0f:87:c8:3d:84:f5:5c:ea:e7:e7:f9:ce:05:f2:55:8b:c5: 4a:b3:1b:5d:dc:f9:29:6e:69:19:f9:0a:76:4c:67:1d:17:dd: 9f:8a:43:42:65:40:56:55:14:6c:7a:4e:f7:49:f3:4b:36:79: 24:99:5b:e8:69:e1:1e:72:d4:b2:8a:a9:81:d0:dd:89:bd:33: b2:e1:23:65:76:89:03:38:4a:43:cc:b6:5a:b2:2a:d5:57:00: 36:2c:fc:87 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QTMzMDExMC8GA1UEBRMoRkJGODEyQTBCOUFBOEFFRDYyMTg3NkM4OTIwMUZGRjEw NDMyQjY5NzAeFw0yNTAzMjEwNTA3MjJaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZGNmNDBhLTU5MTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcg1baaj8OuTrXCdOXJNnV6HLJoj1F/MvfcSN1I/JcK3JTvrqYTaG0x8P7GW9D kmIUc3Tw06K0127vcP+pNkF/jdUluYj4HbelX1YPnzysE1NNDQSA/faHEOY+FDmK zaYXSpKteZwXxwTqdpIxFjgOASSFeLNoRiFpvalr6EWVeEYM1RCcjOVa3Qbjus0x 0Qf96NiphP302NBH3Cw9IbDxbYLiUYhzVHRSZBSN6PCdWl2ERqx0v199N/FJ4DDe mcBBW43NjVdewDsfb1BSefSQgypNO6MSsJhBXslDfc1DNmsIpVnyTOGiVKPi/uNL ZNBc/OIhlbYzJNkBSvvK9hUxAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUv9QJvbA+ uw501gKEMaJETo3ockcwHwYDVR0jBBgwFoAU+/gSoLmqiu1iGHbIkgH/8QQytpcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVBMzMwL0FBRTQ5QTM4MDYw RjExRjBBOTcwNTI4MUM0RjlBRTAyLy1fZ1NvTG1xaXUxaUdIYklrZ0hfOFFReXRw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLV9nU29MbXFpdTFpR0hiSWtnSF84UVF5dHBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QTMzMC9BQUU0OUEzODA2MEYxMUYwQTk3MDUyODFDNEY5QUUwMi81RjJGNjkzQTA2 MTIxMUYwQkE1QTIwMjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmduRDANBgkqhkiG9w0BAQsFAAOCAQEAG41aLjLJN5uMbTsC hPeP+hb6g5dyaXIkz9uHgjoN//L+jsYKpEfb3Pw+VY6/CYkb1eUKPH3K/B8p8+Dn 8VKoUTOX2nakaDjgAlV086o5RFSOvohyLgVQ+FyAhYUeRpsQh07QTtCPEklTKyV1 f0OdEkDf8Of3zE5n2DL5QtuxesTJuDD83TNxE3m8qgHZv9g39j0lnE2HmassCOV3 VI3U2sRviA+HyD2E9Vzq5+f5zgXyVYvFSrMbXdz5KW5pGfkKdkxnHRfdn4pDQmVA VlUUbHpO90nzSzZ5JJlb6GnhHnLUsoqpgdDdib0zsuEjZXaJAzhKQ8y2WrIq1VcA Niz8hw== -----END CERTIFICATE-----Generated at Sat Apr 26 09:20:25 2025 by rpki-client