$ rpki-client -vvf rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/D2438C7C4B1F11EDAF41BC7FC4F9AE02.roa File: D2438C7C4B1F11EDAF41BC7FC4F9AE02.roa (raw, json) Hash identifier: tt7O9YQ0p71DCEEFVfdI/EIIH0WIFOY0otBzHdQ0+Os= Subject key identifier: 5E:D6:BE:D7:53:C7:17:92:BE:30:FB:E5:BE:38:B4:FD:47:5A:20:6B Certificate issuer: /CN=A915B6E9/serialNumber=F861A424C5DD94B741D81809B5F7FF395563765E Certificate serial: 0394 Authority key identifier: F8:61:A4:24:C5:DD:94:B7:41:D8:18:09:B5:F7:FF:39:55:63:76:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-GGkJMXdlLdB2BgJtff_OVVjdl4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/D2438C7C4B1F11EDAF41BC7FC4F9AE02.roa Signing time: Tue 07 Jan 2025 00:44:10 +0000 ROA not before: Tue 07 Jan 2025 00:44:10 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 134732 IP address blocks: 103.180.244.0/23 maxlen: 24 2001:df0:6340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/-GGkJMXdlLdB2BgJtff_OVVjdl4.crl rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/-GGkJMXdlLdB2BgJtff_OVVjdl4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-GGkJMXdlLdB2BgJtff_OVVjdl4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 00:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 916 (0x394) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B6E9, serialNumber=F861A424C5DD94B741D81809B5F7FF395563765E Validity Not Before: Jan 7 00:44:10 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=677c78da-6380 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8f:d6:d6:b2:ed:d8:52:3d:ae:36:dc:25:ee: e1:81:77:b8:a4:ac:7e:76:48:8e:c5:f3:7e:7c:e7: 1e:75:7f:0c:5a:a4:da:16:32:2f:aa:66:19:ce:c0: 5a:95:03:29:1d:f1:7f:37:60:df:95:61:59:40:79: 13:1e:7a:8d:c8:f7:0a:88:e0:a0:8e:0a:b3:a3:51: 31:6d:7a:c6:e0:00:d3:54:69:e1:85:a9:8c:cc:7f: a8:17:df:d6:a5:fd:bf:f0:b8:65:c2:fa:4d:77:f8: 31:f4:6f:fa:87:82:dd:3e:67:e3:40:37:86:e8:65: 17:88:99:1e:56:22:2c:84:3f:d5:7e:39:f6:05:c3: f1:d8:d7:40:a5:b1:ca:14:07:89:3a:24:29:9d:1f: 5c:ba:6d:f3:d8:2c:b0:fb:ca:5b:50:c9:f8:a3:ff: 71:42:4c:9a:a4:55:08:16:1b:d7:b0:e5:27:0a:f1: 7a:9e:15:39:c7:3b:12:a4:53:86:6e:6b:ac:d2:f4: 66:c3:c0:7b:24:e6:02:36:99:af:6f:05:c3:31:85: 90:1e:98:7c:3e:b8:3f:74:75:b5:02:e3:49:04:5c: a0:32:12:09:36:67:00:a7:fc:79:a4:00:30:5d:46: cf:bf:b7:eb:c0:94:e4:59:17:d5:70:2b:4a:8b:5b: 7e:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:D6:BE:D7:53:C7:17:92:BE:30:FB:E5:BE:38:B4:FD:47:5A:20:6B X509v3 Authority Key Identifier: keyid:F8:61:A4:24:C5:DD:94:B7:41:D8:18:09:B5:F7:FF:39:55:63:76:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/-GGkJMXdlLdB2BgJtff_OVVjdl4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-GGkJMXdlLdB2BgJtff_OVVjdl4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B6E9/0A16919C858E11EC9C028454C4F9AE02/D2438C7C4B1F11EDAF41BC7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.180.244.0/23 IPv6: 2001:df0:6340::/48 Signature Algorithm: sha256WithRSAEncryption 41:5c:10:1a:11:f5:b2:6f:60:d2:ee:2c:5c:61:22:5b:ed:4c: 7e:57:b2:72:a6:87:15:35:c9:3e:86:5a:a5:d3:94:d6:26:7f: 33:c8:cb:51:f1:34:6c:52:32:ee:7d:bd:0d:39:b4:81:a6:a6: 45:06:72:fe:ec:99:47:66:78:d7:b2:ad:cc:cd:d1:9d:53:26: c6:db:23:dc:ac:ef:e1:32:79:e2:25:03:40:a7:08:f4:95:3e: fc:6c:a1:19:d0:1c:fd:cc:2e:ec:d7:c7:f9:e8:4c:c1:d8:4e: 02:f4:de:8d:dc:ba:39:60:2a:2b:e9:be:22:89:53:4b:ce:ce: 70:47:0b:be:b5:10:3b:17:c9:95:c0:38:8f:0e:e4:16:03:38: df:52:c1:71:c6:3b:70:51:da:5d:32:63:02:3e:7b:a0:2d:57: 6b:ea:b7:22:66:ab:a7:a1:99:7f:74:d3:74:17:97:8a:eb:4a: 29:1c:a9:fe:69:86:90:1a:59:5b:af:74:be:ee:06:e7:b3:08: 3f:01:4b:50:a5:d4:dd:25:69:3f:f3:50:35:fc:8f:b6:02:83: da:73:ee:43:46:c1:05:6d:07:cb:f5:79:68:aa:03:0b:ae:b4: 6a:7a:89:06:5d:a2:a9:29:58:15:b1:67:55:b2:1c:33:5d:59: e5:3a:b5:e7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA5QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI2RTkxMTAvBgNVBAUTKEY4NjFBNDI0QzVERDk0Qjc0MUQ4MTgwOUI1RjdGRjM5 NTU2Mzc2NUUwHhcNMjUwMTA3MDA0NDEwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdjNzhkYS02MzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArY/W1rLt2FI9rjbcJe7hgXe4pKx+dkiOxfN+fOcedX8MWqTaFjIvqmYZzsBa lQMpHfF/N2DflWFZQHkTHnqNyPcKiOCgjgqzo1ExbXrG4ADTVGnhhamMzH+oF9/W pf2/8LhlwvpNd/gx9G/6h4LdPmfjQDeG6GUXiJkeViIshD/Vfjn2BcPx2NdApbHK FAeJOiQpnR9cum3z2Cyw+8pbUMn4o/9xQkyapFUIFhvXsOUnCvF6nhU5xzsSpFOG bmus0vRmw8B7JOYCNpmvbwXDMYWQHph8Prg/dHW1AuNJBFygMhIJNmcAp/x5pAAw XUbPv7frwJTkWRfVcCtKi1t+bwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFF7WvtdT xxeSvjD75b44tP1HWiBrMB8GA1UdIwQYMBaAFPhhpCTF3ZS3QdgYCbX3/zlVY3Ze MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjZFOS8wQTE2OTE5Qzg1 OEUxMUVDOUMwMjg0NTRDNEY5QUUwMi8tR0drSk1YZGxMZEIyQmdKdGZmX09WVmpk bDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1HR2tKTVhkbExkQjJCZ0p0ZmZfT1ZWamRsNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUI2RTkvMEExNjkxOUM4NThFMTFFQzlDMDI4NDU0QzRGOUFFMDIvRDI0MzhDN0M0 QjFGMTFFREFGNDFCQzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFntPQwDwQCAAIwCQMHACABDfBjQDANBgkqhkiG9w0BAQsF AAOCAQEAQVwQGhH1sm9g0u4sXGEiW+1MfleycqaHFTXJPoZapdOU1iZ/M8jLUfE0 bFIy7n29DTm0gaamRQZy/uyZR2Z417KtzM3RnVMmxtsj3Kzv4TJ54iUDQKcI9JU+ /GyhGdAc/cwu7NfH+ehMwdhOAvTejdy6OWAqK+m+IolTS87OcEcLvrUQOxfJlcA4 jw7kFgM431LBccY7cFHaXTJjAj57oC1Xa+q3Imarp6GZf3TTdBeXiutKKRyp/mmG kBpZW690vu4G57MIPwFLUKXU3SVpP/NQNfyPtgKD2nPuQ0bBBW0Hy/V5aKoDC660 anqJBl2iqSlYFbFnVbIcM11Z5Tq15w== -----END CERTIFICATE-----Generated at Sat Apr 26 17:02:21 2025 by rpki-client