$ rpki-client -vvf rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/513D702E112511F081CC4E49C4F9AE02.roa File: 513D702E112511F081CC4E49C4F9AE02.roa (raw, json) Hash identifier: Kg31LYu7Durk6j8slLyu/vJtO9Dfls9nej9ZAhspvEw= Subject key identifier: 52:98:DF:06:7B:89:BF:CD:69:2C:5E:32:62:33:47:35:E4:D4:BB:6E Certificate issuer: /CN=A915BE00/serialNumber=80ED20F7FC07DE0C9F3C1B8E2AE9CD3FCE6EDB21 Certificate serial: 052B Authority key identifier: 80:ED:20:F7:FC:07:DE:0C:9F:3C:1B:8E:2A:E9:CD:3F:CE:6E:DB:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gO0g9_wH3gyfPBuOKunNP85u2yE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/513D702E112511F081CC4E49C4F9AE02.roa Signing time: Fri 04 Apr 2025 07:20:42 +0000 ROA not before: Fri 04 Apr 2025 07:20:42 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 138453 IP address blocks: 103.125.240.0/24 maxlen: 24 103.125.241.0/24 maxlen: 24 103.125.243.0/24 maxlen: 24 2403:fcc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.crl rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gO0g9_wH3gyfPBuOKunNP85u2yE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:17:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1323 (0x52b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BE00, serialNumber=80ED20F7FC07DE0C9F3C1B8E2AE9CD3FCE6EDB21 Validity Not Before: Apr 4 07:20:42 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67ef884a-5e3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:17:f8:cd:68:94:54:6a:9c:a2:7a:30:65:79: 43:81:33:9e:85:e0:2f:9c:be:25:00:03:a4:bf:58: 6a:e0:2f:b9:2c:fa:3c:17:14:4c:4f:dc:d6:b5:53: 7a:e5:b4:9d:9f:2e:75:a2:82:2f:ee:80:fe:80:51: 73:84:7a:9a:61:70:8a:60:1a:64:cf:e7:fb:4a:9a: 70:07:c7:4f:30:79:39:92:d0:34:af:af:d9:50:9c: ff:48:9c:39:1b:65:58:5c:b7:56:0a:cc:2b:52:a2: 9f:0e:48:59:8b:2e:90:0f:5a:7e:cd:7c:c1:e6:e7: 9f:76:74:70:42:65:8c:ad:57:21:50:4a:44:3f:9d: 16:1f:65:fa:8b:2c:c0:5f:ed:4a:26:9c:54:f5:e3: fe:fa:a7:a3:67:88:dd:43:92:70:c0:25:d5:e7:7c: e1:7d:af:e7:a1:f9:69:04:23:c0:00:2b:5c:a5:8c: fa:4b:97:b9:76:46:a4:45:1c:15:91:00:c0:2c:a8: 78:f7:15:55:66:aa:81:09:a8:e5:d3:1e:d3:5d:88: 7d:13:6b:3f:c3:45:6f:7c:4b:9b:ed:c9:59:7a:ba: 7b:c9:8f:c2:0a:4a:76:2f:26:bd:3b:95:57:80:cf: ba:fa:0d:98:08:6f:48:42:a7:c3:96:2d:34:c2:21: 9b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:98:DF:06:7B:89:BF:CD:69:2C:5E:32:62:33:47:35:E4:D4:BB:6E X509v3 Authority Key Identifier: keyid:80:ED:20:F7:FC:07:DE:0C:9F:3C:1B:8E:2A:E9:CD:3F:CE:6E:DB:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/gO0g9_wH3gyfPBuOKunNP85u2yE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gO0g9_wH3gyfPBuOKunNP85u2yE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BE00/3D0B212AF4FD11EBA52CE211C4F9AE02/513D702E112511F081CC4E49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.240.0/23 103.125.243.0/24 IPv6: 2403:fcc0::/32 Signature Algorithm: sha256WithRSAEncryption 0e:71:8b:19:21:64:42:05:00:15:4c:ef:c6:70:84:be:77:dc: ba:6d:7e:b0:7c:de:37:70:bb:10:78:76:19:a3:d5:67:52:8d: 35:cb:b8:66:21:ff:5b:f4:ca:b9:8f:92:e4:8c:c1:17:80:af: a2:2f:9d:b3:01:ba:e8:f7:a2:4d:e0:40:4f:a5:ee:a2:25:d9: 6a:e4:95:45:e2:6e:bf:88:4c:09:59:52:bb:7a:63:6c:37:49: 50:14:87:51:bf:bb:44:b9:1b:3a:80:fd:b1:87:6e:9f:e8:a7: 6f:67:bc:46:ae:02:65:19:e2:4e:f8:79:54:11:50:e9:c0:b1: 2a:51:42:0d:8a:83:f8:2d:06:80:08:4f:79:36:43:ba:cf:6f: 2d:3b:84:24:a8:0d:b4:2f:5d:b3:5b:98:86:ab:42:6e:c1:31: 75:89:2d:3f:d0:f0:20:4c:7d:e0:1f:4c:10:df:19:ea:e0:e0: 14:2f:3a:25:3f:2f:90:10:28:c1:26:5e:42:c0:44:74:4c:88: e4:df:8f:87:d4:27:3f:e6:7b:0b:ae:fe:47:80:15:e0:35:c3: bb:6f:d9:19:6a:f8:90:87:f6:2d:56:2b:ce:a4:96:62:41:14: 2b:8c:7f:31:78:95:c1:bc:2e:fc:83:f4:3e:a0:0a:74:6b:5f: e2:14:bd:03 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBSswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJFMDAxMTAvBgNVBAUTKDgwRUQyMEY3RkMwN0RFMEM5RjNDMUI4RTJBRTlDRDNG Q0U2RURCMjEwHhcNMjUwNDA0MDcyMDQyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VmODg0YS01ZTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0hf4zWiUVGqconowZXlDgTOeheAvnL4lAAOkv1hq4C+5LPo8FxRMT9zWtVN6 5bSdny51ooIv7oD+gFFzhHqaYXCKYBpkz+f7SppwB8dPMHk5ktA0r6/ZUJz/SJw5 G2VYXLdWCswrUqKfDkhZiy6QD1p+zXzB5uefdnRwQmWMrVchUEpEP50WH2X6iyzA X+1KJpxU9eP++qejZ4jdQ5JwwCXV53zhfa/noflpBCPAACtcpYz6S5e5dkakRRwV kQDALKh49xVVZqqBCajl0x7TXYh9E2s/w0VvfEub7clZerp7yY/CCkp2Lya9O5VX gM+6+g2YCG9IQqfDli00wiGb+QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFFKY3wZ7 ib/NaSxeMmIzRzXk1LtuMB8GA1UdIwQYMBaAFIDtIPf8B94MnzwbjirpzT/Obtsh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkUwMC8zRDBCMjEyQUY0 RkQxMUVCQTUyQ0UyMTFDNEY5QUUwMi9nTzBnOV93SDNneWZQQnVPS3VuTlA4NXUy eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dPMGc5X3dIM2d5ZlBCdU9LdW5OUDg1dTJ5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUJFMDAvM0QwQjIxMkFGNEZEMTFFQkE1MkNFMjExQzRGOUFFMDIvNTEzRDcwMkUx MTI1MTFGMDgxQ0M0RTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnffADBABnffMwDQQCAAIwBwMFACQD/MAwDQYJKoZIhvcN AQELBQADggEBAA5xixkhZEIFABVM78ZwhL533LptfrB83jdwuxB4dhmj1WdSjTXL uGYh/1v0yrmPkuSMwReAr6IvnbMBuuj3ok3gQE+l7qIl2WrklUXibr+ITAlZUrt6 Y2w3SVAUh1G/u0S5GzqA/bGHbp/op29nvEauAmUZ4k74eVQRUOnAsSpRQg2Kg/gt BoAIT3k2Q7rPby07hCSoDbQvXbNbmIarQm7BMXWJLT/Q8CBMfeAfTBDfGerg4BQv OiU/L5AQKMEmXkLARHRMiOTfj4fUJz/mewuu/keAFeA1w7tv2Rlq+JCH9i1WK86k lmJBFCuMfzF4lcG8LvyD9D6gCnRrX+IUvQM= -----END CERTIFICATE-----Generated at Sat Apr 26 12:36:50 2025 by rpki-client