$ rpki-client -vvf rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/BD34B926367911F083BF6873C4F9AE02.roa File: BD34B926367911F083BF6873C4F9AE02.roa (raw, json) Hash identifier: m+EkNRFDxHj1FPyZ5U1ENnB32M/tNvWOK6leRT4D3kc= Subject key identifier: 18:D6:C1:7E:3B:0A:7E:F8:AD:8A:EF:80:94:08:D6:BE:0F:3C:A5:88 Certificate issuer: /CN=A915DA5A/serialNumber=B1177B2B4C2DF8B306D14A643007286F89D69CC0 Certificate serial: 0C68 Authority key identifier: B1:17:7B:2B:4C:2D:F8:B3:06:D1:4A:64:30:07:28:6F:89:D6:9C:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sRd7K0wt-LMG0UpkMAcob4nWnMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/BD34B926367911F083BF6873C4F9AE02.roa Signing time: Thu 22 May 2025 20:50:23 +0000 ROA not before: Thu 22 May 2025 20:50:23 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139735 IP address blocks: 103.143.254.0/24 maxlen: 24 103.143.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.crl rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sRd7K0wt-LMG0UpkMAcob4nWnMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 18:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3176 (0xc68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DA5A, serialNumber=B1177B2B4C2DF8B306D14A643007286F89D69CC0 Validity Not Before: May 22 20:50:23 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=682f8e0f-860a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:65:43:d6:1e:fd:45:bb:16:ac:25:13:24:21: fd:f6:d5:c8:1f:e2:6c:89:3f:49:55:36:46:51:5e: 27:b4:35:18:ad:2c:9a:15:cf:d1:1f:4d:44:09:43: 45:9c:77:29:5c:b1:9b:c1:68:e3:50:b0:b6:62:2f: 90:5c:10:44:11:e3:fd:0f:72:91:e1:c6:f8:cb:3c: 75:ec:67:be:31:f4:1d:d4:3f:fd:21:ce:1b:be:19: be:ab:ae:db:7a:9e:27:27:18:c2:4c:21:d9:d3:29: b4:fe:c4:26:e7:9d:d3:0c:bc:be:f8:25:cc:aa:1a: e8:e2:4f:de:aa:1a:0a:e6:30:0f:24:f1:ec:9b:83: 9f:da:9f:09:e9:a3:b0:b9:bf:85:29:35:00:86:0f: a9:d7:38:1c:d2:9b:bf:80:a0:df:c6:0c:3a:ea:63: 1d:91:42:52:3c:96:7c:38:10:69:e0:0e:ef:41:5a: 38:4d:fa:a1:d9:0e:af:1a:88:11:09:83:60:4f:62: 51:5b:3b:73:5e:81:b0:fd:45:c4:a8:78:43:01:4f: 2c:d7:e1:e2:a0:89:0a:42:2c:29:34:24:81:0b:e5: 26:3f:f3:8f:e8:dc:46:89:8f:a3:60:8a:26:b9:cb: f6:b3:2d:d1:a0:f7:ee:94:dd:26:98:5a:0b:f8:52: 5b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D6:C1:7E:3B:0A:7E:F8:AD:8A:EF:80:94:08:D6:BE:0F:3C:A5:88 X509v3 Authority Key Identifier: keyid:B1:17:7B:2B:4C:2D:F8:B3:06:D1:4A:64:30:07:28:6F:89:D6:9C:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sRd7K0wt-LMG0UpkMAcob4nWnMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/BD34B926367911F083BF6873C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.254.0/23 Signature Algorithm: sha256WithRSAEncryption 52:47:47:40:a6:aa:c1:0e:6b:ca:4d:e4:a6:8f:7c:3c:60:fe: 83:b0:06:84:ec:7f:39:9d:ae:66:38:07:f7:30:f6:eb:fd:3a: a7:61:48:bf:e6:d2:01:e8:6f:67:5c:67:3c:04:b8:82:9d:e2: 39:1e:23:e4:1e:7c:52:ba:1e:ce:9a:ab:7d:6b:c5:0e:83:ff: af:3f:90:7c:99:0c:02:55:41:90:df:9b:4e:30:0a:fb:74:40: 9b:f6:4a:a5:7f:80:1f:08:8e:a1:ae:1a:f1:3e:27:7c:f3:da: b7:af:57:8b:3e:71:9a:7b:08:63:70:1c:ce:f7:28:c7:89:73: b9:4a:59:9f:13:24:78:ad:84:38:53:f0:cd:6c:d3:6b:67:7a: 29:69:a2:07:e2:f6:6d:40:9e:45:cc:d6:0a:53:0d:d7:77:f5: ff:06:d0:72:0f:b9:11:c5:87:4d:e3:11:f1:50:c3:e4:61:27: fe:15:3f:c2:b1:6e:f6:42:37:c4:ff:2f:f1:82:fa:77:a8:d3: bf:f1:47:2f:b1:6c:bd:01:f2:73:2e:13:17:b3:23:9f:34:77: d0:a2:9c:1a:64:20:46:d3:9b:27:bf:1b:02:87:8e:7c:a4:bc: a7:b0:b3:0c:03:34:e3:ef:27:1c:96:40:e6:25:df:ae:bd:5b: e7:3a:70:c2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURBNUExMTAvBgNVBAUTKEIxMTc3QjJCNEMyREY4QjMwNkQxNEE2NDMwMDcyODZG ODlENjlDQzAwHhcNMjUwNTIyMjA1MDIzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmOGUwZi04NjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1GVD1h79RbsWrCUTJCH99tXIH+JsiT9JVTZGUV4ntDUYrSyaFc/RH01ECUNF nHcpXLGbwWjjULC2Yi+QXBBEEeP9D3KR4cb4yzx17Ge+MfQd1D/9Ic4bvhm+q67b ep4nJxjCTCHZ0ym0/sQm553TDLy++CXMqhro4k/eqhoK5jAPJPHsm4Of2p8J6aOw ub+FKTUAhg+p1zgc0pu/gKDfxgw66mMdkUJSPJZ8OBBp4A7vQVo4Tfqh2Q6vGogR CYNgT2JRWztzXoGw/UXEqHhDAU8s1+HioIkKQiwpNCSBC+UmP/OP6NxGiY+jYIom ucv2sy3RoPfulN0mmFoL+FJbOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBjWwX47 Cn74rYrvgJQI1r4PPKWIMB8GA1UdIwQYMBaAFLEXeytMLfizBtFKZDAHKG+J1pzA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REE1QS80NEU3NzBCMjAz RUUxMUVBQkNBMUExNkVDNEY5QUUwMi9zUmQ3SzB3dC1MTUcwVXBrTUFjb2I0bldu TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NSZDdLMHd0LUxNRzBVcGtNQWNvYjRuV25NQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NURBNUEvNDRFNzcwQjIwM0VFMTFFQUJDQTFBMTZFQzRGOUFFMDIvQkQzNEI5MjYz Njc5MTFGMDgzQkY2ODczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnj/4wDQYJKoZIhvcNAQELBQADggEBAFJHR0CmqsEOa8pN 5KaPfDxg/oOwBoTsfzmdrmY4B/cw9uv9OqdhSL/m0gHob2dcZzwEuIKd4jkeI+Qe fFK6Hs6aq31rxQ6D/68/kHyZDAJVQZDfm04wCvt0QJv2SqV/gB8IjqGuGvE+J3zz 2revV4s+cZp7CGNwHM73KMeJc7lKWZ8TJHithDhT8M1s02tneilpogfi9m1AnkXM 1gpTDdd39f8G0HIPuRHFh03jEfFQw+RhJ/4VP8KxbvZCN8T/L/GC+neo07/xRy+x bL0B8nMuExezI580d9CinBpkIEbTmye/GwKHjnykvKewswwDNOPvJxyWQOYl3669 W+c6cMI= -----END CERTIFICATE-----Generated at Thu Jun 19 02:41:47 2025 by rpki-client