$ rpki-client -vvf rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/C73A1C1CEEC211EFBB3A3D30C4F9AE02.roa File: C73A1C1CEEC211EFBB3A3D30C4F9AE02.roa (raw, json) Hash identifier: 2+pMen1/mVG17axHfaJf6K4zr5VFlLkq/JD7aEzO63s= Subject key identifier: 3F:1A:CC:01:0E:F1:2D:81:15:45:37:D9:D2:3A:09:9D:CE:02:31:DE Certificate issuer: /CN=A915AF7A/serialNumber=F10892F85468BF004EEF5F4E1FA5917F0632A049 Certificate serial: 0134 Authority key identifier: F1:08:92:F8:54:68:BF:00:4E:EF:5F:4E:1F:A5:91:7F:06:32:A0:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8QiS-FRovwBO719OH6WRfwYyoEk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/C73A1C1CEEC211EFBB3A3D30C4F9AE02.roa Signing time: Sun 20 Apr 2025 22:53:49 +0000 ROA not before: Sun 20 Apr 2025 22:53:49 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 149765 IP address blocks: 103.167.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/8QiS-FRovwBO719OH6WRfwYyoEk.crl rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/8QiS-FRovwBO719OH6WRfwYyoEk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8QiS-FRovwBO719OH6WRfwYyoEk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:52:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915AF7A, serialNumber=F10892F85468BF004EEF5F4E1FA5917F0632A049 Validity Not Before: Apr 20 22:53:49 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68057afd-d00d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:54:a5:d3:91:2d:74:6c:25:c9:ec:44:da:cf: dd:12:ae:d3:8e:8a:4f:a2:c9:09:00:a3:85:17:ea: 27:a0:6d:bd:f3:99:72:09:fe:9f:27:31:5c:21:b8: 6c:65:38:83:c7:9c:97:d1:5a:e2:df:49:2f:67:70: a6:ae:f6:98:a6:34:84:01:1b:23:b2:22:bf:0e:f6: b8:93:f7:09:31:07:4a:cf:9a:3b:bc:48:0e:81:7b: 05:2b:cd:10:74:91:61:46:00:50:a6:5e:77:a4:b0: a0:8b:6a:f9:79:c0:8f:d8:bd:42:5a:e3:94:7c:1f: 98:61:22:fa:f3:d6:fe:50:98:c5:2c:9c:05:4b:52: eb:1c:43:71:49:27:ed:42:5a:41:46:8e:54:11:a0: b9:34:83:1f:04:5e:23:0d:b7:aa:56:d4:9a:51:f8: f1:1d:1c:c0:aa:6a:2b:ef:a9:d1:7a:5a:4f:ca:c2: b8:db:4d:94:33:8f:bc:21:4c:08:d7:32:be:7e:88: 07:74:9d:24:5a:79:0e:e9:a6:f8:40:a0:a9:55:27: 34:c5:21:eb:4e:c6:32:be:dc:4d:2a:8d:57:0e:23: 15:0b:aa:16:3f:d4:ed:b3:49:ce:1b:90:c9:aa:99: c8:73:90:77:7d:bc:3f:6e:a1:b5:d7:93:b9:92:d8: 03:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:1A:CC:01:0E:F1:2D:81:15:45:37:D9:D2:3A:09:9D:CE:02:31:DE X509v3 Authority Key Identifier: keyid:F1:08:92:F8:54:68:BF:00:4E:EF:5F:4E:1F:A5:91:7F:06:32:A0:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/8QiS-FRovwBO719OH6WRfwYyoEk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8QiS-FRovwBO719OH6WRfwYyoEk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915AF7A/E0533336BAC911EBB807D51CC4F9AE02/C73A1C1CEEC211EFBB3A3D30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.41.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:bf:b5:7f:92:7d:42:19:38:05:e8:26:dd:45:a3:04:f9:b4: de:06:5c:62:4e:74:e7:25:74:9b:26:52:b9:09:49:71:79:f0: 44:5c:86:72:87:f2:b8:7a:7d:92:97:ec:3b:e8:55:1b:d2:b8: a1:12:be:4a:77:85:8d:84:94:93:26:b9:8b:bf:fe:cb:0a:26: f6:d4:3b:9e:ac:bd:98:83:f0:56:c6:66:4e:40:b0:d7:0b:d6: 62:68:93:57:1b:83:95:e9:5a:1c:f7:f6:44:55:2e:d0:56:6e: 4f:ff:a4:31:84:19:b6:e2:3c:c1:3d:fe:46:ce:aa:c5:fa:bb: 7d:c6:20:25:6e:e4:bb:c5:d2:64:c3:ab:7b:f8:57:0e:c7:65: c6:01:0a:e2:ba:8a:f9:65:a8:a6:c3:3c:f7:bd:23:ef:8a:e6: ee:25:e1:17:cf:46:41:da:18:ad:4a:69:70:7c:46:7f:27:3e: ed:57:8d:5b:01:b7:2b:2d:62:d9:aa:87:7f:b5:88:07:48:75: 71:f0:5a:4e:0c:8c:ce:b9:bd:88:11:58:29:35:f4:62:6a:6b: d4:8b:e0:74:07:a7:86:f1:df:9c:17:25:6c:cc:fd:12:b7:6e: d1:22:cc:66:3f:60:a4:74:71:53:2e:65:ec:be:0a:7e:a4:6d: df:9f:d0:b7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUFGN0ExMTAvBgNVBAUTKEYxMDg5MkY4NTQ2OEJGMDA0RUVGNUY0RTFGQTU5MTdG MDYzMkEwNDkwHhcNMjUwNDIwMjI1MzQ5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA1N2FmZC1kMDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2lSl05EtdGwlyexE2s/dEq7TjopPoskJAKOFF+onoG2985lyCf6fJzFcIbhs ZTiDx5yX0Vri30kvZ3CmrvaYpjSEARsjsiK/Dva4k/cJMQdKz5o7vEgOgXsFK80Q dJFhRgBQpl53pLCgi2r5ecCP2L1CWuOUfB+YYSL689b+UJjFLJwFS1LrHENxSSft QlpBRo5UEaC5NIMfBF4jDbeqVtSaUfjxHRzAqmor76nRelpPysK4202UM4+8IUwI 1zK+fogHdJ0kWnkO6ab4QKCpVSc0xSHrTsYyvtxNKo1XDiMVC6oWP9Tts0nOG5DJ qpnIc5B3fbw/bqG115O5ktgD3QIDAQABo4IClTCCApEwHQYDVR0OBBYEFD8azAEO 8S2BFUU32dI6CZ3OAjHeMB8GA1UdIwQYMBaAFPEIkvhUaL8ATu9fTh+lkX8GMqBJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QUY3QS9FMDUzMzMzNkJB QzkxMUVCQjgwN0Q1MUNDNEY5QUUwMi84UWlTLUZSb3Z3Qk83MTlPSDZXUmZ3WXlv RWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhRaVMtRlJvdndCTzcxOU9INldSZndZeW9Fay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUFGN0EvRTA1MzMzMzZCQUM5MTFFQkI4MDdENTFDQzRGOUFFMDIvQzczQTFDMUNF RUMyMTFFRkJCM0EzRDMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnpykwDQYJKoZIhvcNAQELBQADggEBADq/tX+SfUIZOAXo Jt1FowT5tN4GXGJOdOcldJsmUrkJSXF58ERchnKH8rh6fZKX7DvoVRvSuKESvkp3 hY2ElJMmuYu//ssKJvbUO56svZiD8FbGZk5AsNcL1mJok1cbg5XpWhz39kRVLtBW bk//pDGEGbbiPME9/kbOqsX6u33GICVu5LvF0mTDq3v4Vw7HZcYBCuK6ivllqKbD PPe9I++K5u4l4RfPRkHaGK1KaXB8Rn8nPu1XjVsBtystYtmqh3+1iAdIdXHwWk4M jM65vYgRWCk19GJqa9SL4HQHp4bx35wXJWzM/RK3btEizGY/YKR0cVMuZey+Cn6k bd+f0Lc= -----END CERTIFICATE-----Generated at Sat Apr 26 14:10:37 2025 by rpki-client