$ rpki-client -vvf rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/B37405A2471511F09FBEF658C4F9AE02.roa File: B37405A2471511F09FBEF658C4F9AE02.roa (raw, json) Hash identifier: spiY1S4xmXMWxSqgBgjtmH8oE6DA/8KCGZHvFE8s5XI= Subject key identifier: D2:79:39:7E:B9:29:70:F9:A7:5B:70:36:1F:33:07:5A:48:07:14:FA Certificate issuer: /CN=A916B0A3/serialNumber=DA8DBC3B099742D3ABD2A895DD1339893B9A8F5F Certificate serial: 0B86 Authority key identifier: DA:8D:BC:3B:09:97:42:D3:AB:D2:A8:95:DD:13:39:89:3B:9A:8F:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2o28OwmXQtOr0qiV3RM5iTuaj18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/B37405A2471511F09FBEF658C4F9AE02.roa Signing time: Wed 11 Jun 2025 22:45:46 +0000 ROA not before: Wed 11 Jun 2025 22:45:46 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 55785 IP address blocks: 43.252.68.0/22 maxlen: 24 103.247.152.0/22 maxlen: 24 2403:4d00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.crl rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2o28OwmXQtOr0qiV3RM5iTuaj18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 15:39:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2950 (0xb86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B0A3, serialNumber=DA8DBC3B099742D3ABD2A895DD1339893B9A8F5F Validity Not Before: Jun 11 22:45:46 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=684a0719-92df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:58:e6:1b:5f:c3:63:9e:fd:07:16:48:bb:88: a3:a7:9f:b9:5b:7a:54:35:0d:4a:c4:1b:fe:e2:28: fa:9f:9f:c2:3f:5b:89:3e:1d:c3:99:cc:88:c6:51: 3f:44:f3:5c:83:a1:df:a6:ca:4d:ad:04:47:d4:06: d4:60:30:3e:4a:64:25:e3:09:58:11:e8:23:1a:0a: f5:eb:2d:75:d0:44:65:d5:92:6b:c5:f4:a1:d8:c8: e8:8a:43:74:a5:ca:1f:d6:e1:c6:68:0c:15:a4:cb: d6:83:d8:4d:b2:6c:13:47:42:83:3c:eb:3b:a1:ac: dd:db:b5:55:cf:14:2e:bc:92:c9:52:ef:be:8c:7b: 4b:d6:ce:b3:69:b5:f4:cb:78:3e:8f:cd:f0:c4:67: cf:06:a9:52:dd:c7:9c:2e:03:08:7d:fb:11:bc:76: 79:c2:ee:11:0c:3c:e2:2f:e3:01:13:7b:bd:07:0d: c6:15:54:8b:ce:55:7c:07:eb:b2:13:40:69:62:70: 4c:49:67:17:63:91:27:4c:c7:ae:6d:6a:c8:8d:9b: 67:7d:a0:a4:d8:8e:cb:c0:30:d3:e3:df:90:a2:56: 21:31:44:33:e7:b4:f0:a8:87:c6:36:ea:2b:3e:1e: f4:f4:f9:f6:c4:4e:36:81:dd:5d:85:7e:65:1a:07: eb:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:79:39:7E:B9:29:70:F9:A7:5B:70:36:1F:33:07:5A:48:07:14:FA X509v3 Authority Key Identifier: keyid:DA:8D:BC:3B:09:97:42:D3:AB:D2:A8:95:DD:13:39:89:3B:9A:8F:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/2o28OwmXQtOr0qiV3RM5iTuaj18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2o28OwmXQtOr0qiV3RM5iTuaj18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B0A3/71ADE1FED82811E4AA7C8A47C4F9AE02/B37405A2471511F09FBEF658C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.252.68.0/22 103.247.152.0/22 IPv6: 2403:4d00::/32 Signature Algorithm: sha256WithRSAEncryption 03:dc:21:bb:06:15:d3:f9:ae:97:35:2d:1d:26:a3:d5:51:cf: 76:8a:48:5f:c6:64:17:3d:35:71:1e:01:fe:77:d6:b8:b4:55: ae:ee:ba:66:69:3e:7b:7c:a9:c6:45:a1:1b:14:3d:c2:f7:5e: 50:cb:c3:bb:e1:f8:f1:6c:40:90:08:a4:cf:32:28:42:69:e4: 7a:39:81:d4:a0:ef:1a:a8:9b:bf:37:84:ea:17:83:c9:48:09: 30:b5:4d:c9:34:be:16:64:d8:f4:76:d0:6c:c8:2f:f7:14:90: 55:e9:b3:81:5b:35:fc:50:9b:f5:52:bb:f1:fc:a6:80:31:28: a1:4d:04:4d:0e:7f:24:fd:3d:aa:96:96:bc:5b:14:e0:51:41: ae:5e:40:97:86:66:f4:99:b4:f6:1c:c1:ca:8b:0c:87:a5:95: e2:24:7a:bd:97:86:3f:a4:3a:cf:ae:ce:a9:d5:a6:c0:c0:70: 7a:fd:62:86:0c:ec:6d:98:29:b3:5a:01:d8:6b:c9:d0:82:a0: cf:7f:db:27:6b:0e:7c:03:88:7a:61:b2:55:b5:d0:78:cb:ca: 43:c1:76:0b:20:6e:3e:63:dd:df:12:8b:f9:37:51:d9:fa:8c: a0:e1:44:53:02:db:d5:64:dd:31:e9:c2:82:0a:48:69:cd:55: 01:43:13:c5 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICC4YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwQTMxMTAvBgNVBAUTKERBOERCQzNCMDk5NzQyRDNBQkQyQTg5NUREMTMzOTg5 M0I5QThGNUYwHhcNMjUwNjExMjI0NTQ2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRhMDcxOS05MmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8FjmG1/DY579BxZIu4ijp5+5W3pUNQ1KxBv+4ij6n5/CP1uJPh3DmcyIxlE/ RPNcg6HfpspNrQRH1AbUYDA+SmQl4wlYEegjGgr16y110ERl1ZJrxfSh2MjoikN0 pcof1uHGaAwVpMvWg9hNsmwTR0KDPOs7oazd27VVzxQuvJLJUu++jHtL1s6zabX0 y3g+j83wxGfPBqlS3cecLgMIffsRvHZ5wu4RDDziL+MBE3u9Bw3GFVSLzlV8B+uy E0BpYnBMSWcXY5EnTMeubWrIjZtnfaCk2I7LwDDT49+QolYhMUQz57TwqIfGNuor Ph709Pn2xE42gd1dhX5lGgfr7wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFNJ5OX65 KXD5p1twNh8zB1pIBxT6MB8GA1UdIwQYMBaAFNqNvDsJl0LTq9Kold0TOYk7mo9f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjBBMy83MUFERTFGRUQ4 MjgxMUU0QUE3QzhBNDdDNEY5QUUwMi8ybzI4T3dtWFF0T3IwcWlWM1JNNWlUdWFq MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJvMjhPd21YUXRPcjBxaVYzUk01aVR1YWoxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkIwQTMvNzFBREUxRkVEODI4MTFFNEFBN0M4QTQ3QzRGOUFFMDIvQjM3NDA1QTI0 NzE1MTFGMDlGQkVGNjU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIr/EQDBAJn95gwDQQCAAIwBwMFACQDTQAwDQYJKoZIhvcN AQELBQADggEBAAPcIbsGFdP5rpc1LR0mo9VRz3aKSF/GZBc9NXEeAf531ri0Va7u umZpPnt8qcZFoRsUPcL3XlDLw7vh+PFsQJAIpM8yKEJp5Ho5gdSg7xqom783hOoX g8lICTC1Tck0vhZk2PR20GzIL/cUkFXps4FbNfxQm/VSu/H8poAxKKFNBE0OfyT9 PaqWlrxbFOBRQa5eQJeGZvSZtPYcwcqLDIelleIker2Xhj+kOs+uzqnVpsDAcHr9 YoYM7G2YKbNaAdhrydCCoM9/2ydrDnwDiHphslW10HjLykPBdgsgbj5j3d8Si/k3 Udn6jKDhRFMC29Vk3THpwoIKSGnNVQFDE8U= -----END CERTIFICATE-----Generated at Sun Jun 15 08:35:24 2025 by rpki-client