$ rpki-client -vvf rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/1A8553B831F011EAA18AC76AC4F9AE02.roa File: 1A8553B831F011EAA18AC76AC4F9AE02.roa (raw, json) Hash identifier: 2QDvhbtMSuUMKkHjiP/BzPb8Yd8fGPxfNmWlpQE2e54= Subject key identifier: 06:F4:4D:68:AD:5D:38:C7:59:A4:0E:01:7E:45:C2:9A:0D:E6:BB:57 Certificate issuer: /CN=A916C7B6/serialNumber=493D3EAFE040572841E9FAB256D0C6044CB858C8 Certificate serial: 0B34 Authority key identifier: 49:3D:3E:AF:E0:40:57:28:41:E9:FA:B2:56:D0:C6:04:4C:B8:58:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ST0-r-BAVyhB6fqyVtDGBEy4WMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/1A8553B831F011EAA18AC76AC4F9AE02.roa Signing time: Wed 26 Feb 2025 19:48:05 +0000 ROA not before: Wed 26 Feb 2025 19:48:05 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 137511 IP address blocks: 103.111.68.0/24 maxlen: 29 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.crl rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ST0-r-BAVyhB6fqyVtDGBEy4WMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:02:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2868 (0xb34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C7B6, serialNumber=493D3EAFE040572841E9FAB256D0C6044CB858C8 Validity Not Before: Feb 26 19:48:05 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67bf6ff5-d864 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ed:3c:29:e6:a9:29:03:68:f5:f6:c0:be:1f: ce:32:38:a2:56:c5:01:97:1d:4e:1d:2b:d8:27:70: f9:87:fc:52:dd:bc:61:53:4b:e1:07:23:a7:1b:07: f8:66:78:67:0c:30:89:4c:8a:dc:5b:c0:97:e9:0e: 7b:6b:ac:c7:75:b5:bb:70:77:df:71:08:ca:14:c1: 7f:f0:7b:5c:40:c6:c5:a8:e8:4b:be:c8:1d:37:ae: 89:e5:f4:9c:50:6b:f9:0a:46:64:5f:59:c4:6a:b9: a8:5d:13:b1:76:5b:07:5c:46:2b:55:fc:00:00:b2: fd:9d:2a:f3:19:d9:25:39:6c:88:0b:14:38:5c:84: e9:50:99:ea:bc:1d:9f:c2:2c:4a:4f:33:06:3c:3c: a4:69:2a:56:fa:40:14:bd:96:0d:30:53:94:5c:31: 1c:76:80:e6:5f:c7:bd:f6:2f:ff:91:f1:3b:d4:20: 1b:6e:29:6b:a4:66:cd:6b:7f:4f:6d:de:36:45:00: cf:90:e5:e4:39:ba:2a:4e:c9:15:ad:75:08:1b:ee: ec:58:16:59:8f:14:3e:8e:aa:8e:76:94:66:a3:6d: 99:a7:fc:12:63:9e:41:b2:a1:45:fa:27:f7:62:35: bf:2e:35:c0:a7:86:b6:81:12:7c:6e:95:6b:91:59: 69:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:F4:4D:68:AD:5D:38:C7:59:A4:0E:01:7E:45:C2:9A:0D:E6:BB:57 X509v3 Authority Key Identifier: keyid:49:3D:3E:AF:E0:40:57:28:41:E9:FA:B2:56:D0:C6:04:4C:B8:58:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ST0-r-BAVyhB6fqyVtDGBEy4WMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/1A8553B831F011EAA18AC76AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.111.68.0/24 Signature Algorithm: sha256WithRSAEncryption a5:ff:a2:7a:d8:1e:c2:f1:c2:cb:50:07:d8:1b:1e:f3:d4:d1: 18:f2:76:b1:c3:8a:69:37:87:e6:21:5f:2a:86:a3:30:66:82: de:6f:c3:ed:40:9a:15:1b:2b:c2:f9:16:da:3f:dc:0c:b1:b9: f0:33:ca:a6:fb:9a:3b:ff:41:b1:db:16:e9:ea:4d:35:88:8b: fe:20:0e:eb:b5:9c:96:ae:07:d3:87:bc:b5:25:b5:34:5d:17: 0f:98:47:6c:73:0c:51:f1:db:ff:e6:6d:6b:68:08:b8:4d:84: de:61:1a:f8:e7:e3:74:90:3d:e4:d4:2f:7d:cc:93:bd:bc:32: 31:b3:4b:79:29:b5:b6:b8:cc:31:ca:86:e3:74:1a:0c:cb:ba: 87:44:5c:2f:f0:c1:5d:22:2d:46:e2:5a:b4:44:96:b2:e3:4a: ad:1e:38:72:a4:bf:63:22:09:ac:2c:7d:f7:85:86:e1:bd:1b: ef:46:ee:ad:b9:5b:09:7d:ec:35:69:86:7d:28:2d:37:2b:84: cc:b4:54:f4:cd:42:5f:6e:7a:13:de:3e:f3:55:41:ca:d3:72: a1:d2:1e:a6:42:2c:29:b0:15:35:df:dd:62:14:8c:6f:2a:6a: 27:1a:da:73:09:59:d4:6e:d0:41:0c:6c:a7:a2:5c:c5:5e:ff: 66:2c:65:36 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCzQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM3QjYxMTAvBgNVBAUTKDQ5M0QzRUFGRTA0MDU3Mjg0MUU5RkFCMjU2RDBDNjA0 NENCODU4QzgwHhcNMjUwMjI2MTk0ODA1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2JmNmZmNS1kODY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7e08KeapKQNo9fbAvh/OMjiiVsUBlx1OHSvYJ3D5h/xS3bxhU0vhByOnGwf4 ZnhnDDCJTIrcW8CX6Q57a6zHdbW7cHffcQjKFMF/8HtcQMbFqOhLvsgdN66J5fSc UGv5CkZkX1nEarmoXROxdlsHXEYrVfwAALL9nSrzGdklOWyICxQ4XITpUJnqvB2f wixKTzMGPDykaSpW+kAUvZYNMFOUXDEcdoDmX8e99i//kfE71CAbbilrpGbNa39P bd42RQDPkOXkOboqTskVrXUIG+7sWBZZjxQ+jqqOdpRmo22Zp/wSY55BsqFF+if3 YjW/LjXAp4a2gRJ8bpVrkVlpZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAb0TWit XTjHWaQOAX5FwpoN5rtXMB8GA1UdIwQYMBaAFEk9Pq/gQFcoQen6slbQxgRMuFjI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzdCNi80M0Y2QTU3ODMx RUUxMUVBQUIwMUU3NjdDNEY5QUUwMi9TVDAtci1CQVZ5aEI2ZnF5VnRER0JFeTRX TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUMC1yLUJBVnloQjZmcXlWdERHQkV5NFdNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkM3QjYvNDNGNkE1NzgzMUVFMTFFQUFCMDFFNzY3QzRGOUFFMDIvMUE4NTUzQjgz MUYwMTFFQUExOEFDNzZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnb0QwDQYJKoZIhvcNAQELBQADggEBAKX/onrYHsLxwstQ B9gbHvPU0RjydrHDimk3h+YhXyqGozBmgt5vw+1AmhUbK8L5Fto/3AyxufAzyqb7 mjv/QbHbFunqTTWIi/4gDuu1nJauB9OHvLUltTRdFw+YR2xzDFHx2//mbWtoCLhN hN5hGvjn43SQPeTUL33Mk728MjGzS3kptba4zDHKhuN0GgzLuodEXC/wwV0iLUbi WrRElrLjSq0eOHKkv2MiCawsffeFhuG9G+9G7q25Wwl97DVphn0oLTcrhMy0VPTN Ql9uehPePvNVQcrTcqHSHqZCLCmwFTXf3WIUjG8qaica2nMJWdRu0EEMbKeiXMVe /2YsZTY= -----END CERTIFICATE-----Generated at Sat Apr 26 07:49:20 2025 by rpki-client