$ rpki-client -vvf rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/207C45B0CC2F11EDABE25F72C4F9AE02.roa File: 207C45B0CC2F11EDABE25F72C4F9AE02.roa (raw, json) Hash identifier: 445y7dnFbGIJcED/nA18M8HZ1X9DaCKTToZbs8yrxpI= Subject key identifier: 65:C0:2B:C5:0D:85:2F:80:7C:46:E1:7E:68:86:C2:D4:4A:17:E5:3E Certificate issuer: /CN=A915F2B8/serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Certificate serial: 017D Authority key identifier: D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/207C45B0CC2F11EDABE25F72C4F9AE02.roa Signing time: Mon 31 Mar 2025 02:59:05 +0000 ROA not before: Mon 31 Mar 2025 02:59:05 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 151047 IP address blocks: 103.224.126.0/24 maxlen: 24 2001:df2:2d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 02:31:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F2B8, serialNumber=D5FA336334F99AE363EA5867D28E8A50231E4220 Validity Not Before: Mar 31 02:59:05 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ea04f9-fffc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c4:e4:8d:5d:e1:32:4a:87:e9:d8:88:c8:ed: c0:08:63:f9:ac:cf:6e:4d:a5:a6:a3:61:31:2a:95: a4:04:a7:e3:fb:a0:20:d8:d8:da:a1:8b:05:91:bf: ac:e8:67:5d:11:66:7e:7f:9e:ce:a8:26:93:22:c6: fe:30:1b:c7:3d:5c:5a:75:40:68:8d:bf:0a:96:76: 90:92:9e:3f:62:d8:37:67:68:00:1d:8a:4f:84:bc: 50:db:e2:f9:1e:7d:13:2b:04:f0:3a:b6:6e:7c:8e: 49:ff:ef:c8:dd:ef:e4:a4:35:6a:2b:e5:70:f9:f8: 26:73:ed:95:5f:29:81:79:54:3e:4b:0d:bc:c6:80: 0c:7c:f3:55:79:fc:6e:f5:0e:3b:d8:48:aa:4b:cf: cd:60:9a:7a:ab:25:91:4f:17:ae:6e:c0:f6:04:af: 3d:ae:f3:da:65:91:16:30:6b:df:f6:10:84:79:15: 6b:68:95:48:13:80:bd:20:fb:38:7c:93:64:77:8a: e5:d1:08:ea:03:65:a8:1a:f6:98:75:51:46:de:6b: 0c:92:c1:02:a5:9c:f1:cc:e2:7d:61:8c:1d:8b:5a: e9:47:ac:1e:24:8d:42:5f:c8:aa:92:c9:74:1b:c0: 92:03:4d:13:cb:cd:78:bc:f7:98:b7:2c:85:c3:c3: a7:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:C0:2B:C5:0D:85:2F:80:7C:46:E1:7E:68:86:C2:D4:4A:17:E5:3E X509v3 Authority Key Identifier: keyid:D5:FA:33:63:34:F9:9A:E3:63:EA:58:67:D2:8E:8A:50:23:1E:42:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/1fozYzT5muNj6lhn0o6KUCMeQiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1fozYzT5muNj6lhn0o6KUCMeQiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F2B8/2F17608ACC2C11EDB9860571C4F9AE02/207C45B0CC2F11EDABE25F72C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.224.126.0/24 IPv6: 2001:df2:2d40::/48 Signature Algorithm: sha256WithRSAEncryption 07:82:52:a0:de:e4:c5:b2:03:b2:f6:68:b8:76:c1:b7:08:4e: d1:b7:3e:15:8f:8d:3e:0d:8c:74:ee:d4:f0:e8:af:53:53:f9: 1d:ad:b7:70:6b:1d:86:1e:c4:a3:70:ab:44:42:8c:8b:f1:97: 63:1b:aa:36:c5:eb:3e:f7:ff:a1:d8:0b:98:05:64:75:2c:53: a8:70:db:0e:97:d2:17:c8:82:29:b5:d8:2e:dd:cc:a2:06:72: a4:87:eb:fb:76:e2:f0:07:19:e7:2d:e7:dd:af:bf:f3:35:35: 0e:5b:8e:f1:0d:26:05:cb:98:8b:b2:ce:25:d5:71:7d:11:37: c8:fc:24:e4:9d:75:6a:3f:d8:3d:f7:f1:45:7f:65:f7:7f:59: f3:e4:5c:0a:a3:64:f7:84:8e:dc:46:d2:d5:c3:51:a1:3d:60: b4:cc:96:c0:24:b5:fe:47:54:c8:c7:9f:28:92:6c:83:8c:2c: 86:53:90:78:a3:ec:37:dd:04:85:75:85:82:90:96:40:1d:e8: f5:4a:36:f1:68:1b:81:f8:69:9d:e9:c5:33:64:65:a1:9c:7d: 1e:29:15:9d:bd:b8:97:42:a1:ba:bb:8f:35:18:c1:6f:55:74: 78:66:15:77:e6:45:31:fd:5b:5a:37:e0:38:c0:f1:70:46:8c: 23:ea:b5:ff -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUYyQjgxMTAvBgNVBAUTKEQ1RkEzMzYzMzRGOTlBRTM2M0VBNTg2N0QyOEU4QTUw MjMxRTQyMjAwHhcNMjUwMzMxMDI1OTA1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VhMDRmOS1mZmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8TkjV3hMkqH6diIyO3ACGP5rM9uTaWmo2ExKpWkBKfj+6Ag2NjaoYsFkb+s 6GddEWZ+f57OqCaTIsb+MBvHPVxadUBojb8KlnaQkp4/Ytg3Z2gAHYpPhLxQ2+L5 Hn0TKwTwOrZufI5J/+/I3e/kpDVqK+Vw+fgmc+2VXymBeVQ+Sw28xoAMfPNVefxu 9Q472EiqS8/NYJp6qyWRTxeubsD2BK89rvPaZZEWMGvf9hCEeRVraJVIE4C9IPs4 fJNkd4rl0QjqA2WoGvaYdVFG3msMksECpZzxzOJ9YYwdi1rpR6weJI1CX8iqksl0 G8CSA00Ty814vPeYtyyFw8OnNwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGXAK8UN hS+AfEbhfmiGwtRKF+U+MB8GA1UdIwQYMBaAFNX6M2M0+ZrjY+pYZ9KOilAjHkIg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjJCOC8yRjE3NjA4QUND MkMxMUVEQjk4NjA1NzFDNEY5QUUwMi8xZm96WXpUNW11Tmo2bGhuMG82S1VDTWVR aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFmb3pZelQ1bXVOajZsaG4wbzZLVUNNZVFpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUYyQjgvMkYxNzYwOEFDQzJDMTFFREI5ODYwNTcxQzRGOUFFMDIvMjA3QzQ1QjBD QzJGMTFFREFCRTI1RjcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn4H4wDwQCAAIwCQMHACABDfItQDANBgkqhkiG9w0BAQsF AAOCAQEAB4JSoN7kxbIDsvZouHbBtwhO0bc+FY+NPg2MdO7U8OivU1P5Ha23cGsd hh7Eo3CrREKMi/GXYxuqNsXrPvf/odgLmAVkdSxTqHDbDpfSF8iCKbXYLt3MogZy pIfr+3bi8AcZ5y3n3a+/8zU1DluO8Q0mBcuYi7LOJdVxfRE3yPwk5J11aj/YPffx RX9l939Z8+RcCqNk94SO3EbS1cNRoT1gtMyWwCS1/kdUyMefKJJsg4wshlOQeKPs N90EhXWFgpCWQB3o9Uo28WgbgfhpnenFM2RloZx9HikVnb24l0KhuruPNRjBb1V0 eGYVd+ZFMf1bWjfgOMDxcEaMI+q1/w== -----END CERTIFICATE-----Generated at Mon May 5 04:47:33 2025 by rpki-client