$ rpki-client -vvf rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/72603CD6D28811EAB7D79A47C4F9AE02.roa File: 72603CD6D28811EAB7D79A47C4F9AE02.roa (raw, json) Hash identifier: 6Bc7j8sUdc3lR92uuO8CWG9pkmoXFTsfXQekCJg3xcI= Subject key identifier: 63:69:86:1E:3B:D2:F7:AD:C3:81:49:F9:91:61:28:28:CB:AC:08:89 Certificate issuer: /CN=A915D3E8/serialNumber=24BFA36352F84F1A8FA469DEB0E836E8035AE466 Certificate serial: 0820 Authority key identifier: 24:BF:A3:63:52:F8:4F:1A:8F:A4:69:DE:B0:E8:36:E8:03:5A:E4:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/72603CD6D28811EAB7D79A47C4F9AE02.roa Signing time: Wed 16 Apr 2025 21:00:49 +0000 ROA not before: Wed 16 Apr 2025 21:00:49 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 55781 IP address blocks: 103.71.132.0/24 maxlen: 24 202.68.209.0/24 maxlen: 24 202.68.210.0/24 maxlen: 24 202.68.211.0/24 maxlen: 24 202.68.220.0/24 maxlen: 24 202.68.222.0/24 maxlen: 24 202.68.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.crl rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 20:42:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2080 (0x820) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D3E8, serialNumber=24BFA36352F84F1A8FA469DEB0E836E8035AE466 Validity Not Before: Apr 16 21:00:49 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68001a81-d13f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:fb:52:d2:34:53:3e:ed:5d:3c:71:de:ec:79: 62:2c:03:71:66:08:8b:cb:42:89:64:1e:55:03:85: 67:e5:50:0f:55:31:83:f5:fb:e9:49:6c:0b:c3:52: f9:da:40:f4:18:8a:be:bb:4c:1d:52:31:f1:dd:28: 4a:b5:6e:5a:8b:f0:10:f0:59:f0:eb:3f:3f:a1:56: 10:82:65:14:94:64:7b:1f:61:1c:45:1f:a3:02:80: 6d:a0:9d:49:1f:1d:b1:57:72:ed:ed:af:69:98:cb: a9:2e:1d:10:9e:a9:a9:6c:a3:41:77:8c:22:41:bb: cb:d5:1b:70:08:7a:be:89:94:28:a3:3e:1b:82:93: 68:e0:41:1b:26:c0:57:69:03:43:d2:07:e1:cc:28: 64:4f:73:56:4b:1a:0e:29:d7:1a:b3:dd:8a:23:3a: 66:c0:ba:99:c0:85:2f:83:26:ec:a7:9f:83:a9:00: 37:8d:7c:2a:27:b7:d0:3d:d2:3e:dc:cd:d2:f5:e3: 2f:7e:5d:32:89:20:d6:e0:88:a0:e5:f3:ba:28:b3: 8a:21:0f:5c:6a:5d:21:47:db:48:ff:51:a4:d3:d8: 4f:87:08:fe:21:23:38:3f:a5:de:f1:59:77:c7:dc: 09:b0:52:57:bd:17:a7:b4:41:51:c0:91:ce:f3:a7: 9f:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:69:86:1E:3B:D2:F7:AD:C3:81:49:F9:91:61:28:28:CB:AC:08:89 X509v3 Authority Key Identifier: keyid:24:BF:A3:63:52:F8:4F:1A:8F:A4:69:DE:B0:E8:36:E8:03:5A:E4:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/JL-jY1L4TxqPpGnesOg26ANa5GY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JL-jY1L4TxqPpGnesOg26ANa5GY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D3E8/3F1F0DDAD28711EA9E73E646C4F9AE02/72603CD6D28811EAB7D79A47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.71.132.0/24 202.68.209.0-202.68.211.255 202.68.220.0/24 202.68.222.0/23 Signature Algorithm: sha256WithRSAEncryption 6b:68:ee:e3:81:88:07:77:a5:4d:a2:c7:c9:b1:97:f4:eb:68: ac:fd:c8:1c:e8:2f:f1:d2:36:b1:b5:d9:28:29:a9:00:bd:d5: 85:81:c3:19:1d:a4:32:5c:24:de:93:5c:22:a4:cf:f2:ed:ef: fa:b1:b1:55:be:92:e7:58:a8:da:3b:98:cc:83:69:e7:ba:df: a9:2c:67:21:7c:db:33:92:39:07:e5:ff:e2:68:ab:6b:d6:ef: 84:60:9c:b4:f7:77:b6:5a:04:f2:ef:df:2f:57:7b:11:b6:d9: 01:40:33:f6:2d:f6:7c:b5:0a:5d:0d:57:17:3f:a1:d9:36:14: ff:81:4b:25:1c:24:83:b9:ec:cf:aa:ae:2e:a2:e6:4a:f0:31: f0:2f:67:62:f2:d1:86:8a:ab:bd:bb:9b:2e:bb:e5:6b:d6:9a: bd:6d:0a:d2:24:02:81:fb:c6:82:36:7a:d9:bd:2e:c7:63:50: 9b:2c:1a:f3:e6:d5:2d:65:c4:5a:ae:02:c2:81:da:9c:2b:08: ad:31:d1:63:e5:b3:a1:3e:e4:73:75:65:4f:3f:df:5e:bc:a6: 16:52:7b:24:3d:9d:f4:54:f3:23:2f:c7:35:cb:3a:a5:d1:16: 07:41:68:11:40:cf:c7:54:6c:3c:93:6b:88:59:64:c8:8e:b2: af:04:94:be -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICCCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQzRTgxMTAvBgNVBAUTKDI0QkZBMzYzNTJGODRGMUE4RkE0NjlERUIwRTgzNkU4 MDM1QUU0NjYwHhcNMjUwNDE2MjEwMDQ5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODAwMWE4MS1kMTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ftS0jRTPu1dPHHe7HliLANxZgiLy0KJZB5VA4Vn5VAPVTGD9fvpSWwLw1L5 2kD0GIq+u0wdUjHx3ShKtW5ai/AQ8Fnw6z8/oVYQgmUUlGR7H2EcRR+jAoBtoJ1J Hx2xV3Lt7a9pmMupLh0QnqmpbKNBd4wiQbvL1RtwCHq+iZQooz4bgpNo4EEbJsBX aQND0gfhzChkT3NWSxoOKdcas92KIzpmwLqZwIUvgybsp5+DqQA3jXwqJ7fQPdI+ 3M3S9eMvfl0yiSDW4Iig5fO6KLOKIQ9cal0hR9tI/1Gk09hPhwj+ISM4P6Xe8Vl3 x9wJsFJXvRentEFRwJHO86efAwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFGNphh47 0vetw4FJ+ZFhKCjLrAiJMB8GA1UdIwQYMBaAFCS/o2NS+E8aj6Rp3rDoNugDWuRm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDNFOC8zRjFGMEREQUQy ODcxMUVBOUU3M0U2NDZDNEY5QUUwMi9KTC1qWTFMNFR4cVBwR25lc09nMjZBTmE1 R1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pMLWpZMUw0VHhxUHBHbmVzT2cyNkFOYTVHWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQzRTgvM0YxRjBEREFEMjg3MTFFQTlFNzNFNjQ2QzRGOUFFMDIvNzI2MDNDRDZE Mjg4MTFFQUI3RDc5QTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBABnR4QwDAMEAMpE0QMEAspE0AMEAMpE3AMEAcpE3jANBgkq hkiG9w0BAQsFAAOCAQEAa2ju44GIB3elTaLHybGX9OtorP3IHOgv8dI2sbXZKCmp AL3VhYHDGR2kMlwk3pNcIqTP8u3v+rGxVb6S51io2juYzINp57rfqSxnIXzbM5I5 B+X/4mira9bvhGCctPd3tloE8u/fL1d7EbbZAUAz9i32fLUKXQ1XFz+h2TYU/4FL JRwkg7nsz6quLqLmSvAx8C9nYvLRhoqrvbubLrvla9aavW0K0iQCgfvGgjZ62b0u x2NQmywa8+bVLWXEWq4CwoHanCsIrTHRY+WzoT7kc3VlTz/fXrymFlJ7JD2d9FTz Iy/HNcs6pdEWB0FoEUDPx1RsPJNriFlkyI6yrwSUvg== -----END CERTIFICATE-----Generated at Sat Apr 26 17:02:36 2025 by rpki-client