$ rpki-client -vvf rpki.apnic.net/member_repository/A917A2D1/CFEB8DAA45A811EF95C6FD2DC4F9AE02/29703A0645A911EF965B5A37C4F9AE02.roa File: 29703A0645A911EF965B5A37C4F9AE02.roa (raw, json) Hash identifier: rttfys3xf5DGoO8xT8j9r6Q4kgJ4GnHSyal9Ka16jwM= Subject key identifier: CA:E6:0B:25:71:95:20:7F:0D:F6:37:F4:EB:40:6D:42:5D:F8:37:10 Certificate issuer: /CN=A917A2D1/serialNumber=8E526123EF52CF84955826A2728A330757F1E80C Certificate serial: 9E Authority key identifier: 8E:52:61:23:EF:52:CF:84:95:58:26:A2:72:8A:33:07:57:F1:E8:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jlJhI-9Sz4SVWCaicoozB1fx6Aw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A2D1/CFEB8DAA45A811EF95C6FD2DC4F9AE02/29703A0645A911EF965B5A37C4F9AE02.roa Signing time: Sat 17 May 2025 05:57:13 +0000 ROA not before: Sat 17 May 2025 05:57:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140605 IP address blocks: 103.150.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A2D1/CFEB8DAA45A811EF95C6FD2DC4F9AE02/jlJhI-9Sz4SVWCaicoozB1fx6Aw.crl rsync://rpki.apnic.net/member_repository/A917A2D1/CFEB8DAA45A811EF95C6FD2DC4F9AE02/jlJhI-9Sz4SVWCaicoozB1fx6Aw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jlJhI-9Sz4SVWCaicoozB1fx6Aw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 05:13:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A2D1, serialNumber=8E526123EF52CF84955826A2728A330757F1E80C Validity Not Before: May 17 05:57:13 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68282539-4b34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:0f:3f:0a:94:23:b8:9e:4a:50:49:8a:75:b1: 99:47:e5:b4:19:eb:49:73:f2:8b:72:d6:9a:c7:e9: df:2f:e4:91:41:fd:a0:46:de:46:2c:a4:99:b9:93: b9:b7:0f:b7:84:0a:b3:e8:67:66:0f:9a:fa:38:76: 14:8e:e3:03:5d:a2:a9:50:99:78:b5:17:66:48:66: 56:5b:bd:0f:4f:6e:67:d9:84:c3:ca:2d:62:14:62: b7:c1:44:77:af:41:a1:c7:75:63:0c:9f:42:c7:4d: bc:8d:a7:90:54:1f:d1:78:dc:61:e2:a5:65:38:41: 7e:ab:4e:5b:70:7e:0b:c6:b5:f3:ab:46:07:c1:76: e0:1b:51:a4:94:62:c7:34:c4:7d:55:1d:1f:0b:f0: 37:d0:66:22:bd:e7:4f:06:72:a2:41:3f:3b:5a:b9: 34:02:14:97:2d:fc:1a:67:b3:ec:fc:8a:0a:e5:e5: c5:91:4b:24:03:54:7e:d7:b4:9f:56:fb:15:83:c0: 83:58:65:fa:1f:27:75:bd:4a:0a:db:a9:e6:45:3c: 98:8c:63:37:0c:74:18:46:21:e4:3b:da:07:6d:21: e8:b4:a6:4e:d1:c6:dd:a8:ff:e4:f7:a4:6d:e5:ef: a3:bc:3c:ab:cd:8d:a8:b4:05:00:8a:9a:62:ab:b4: 71:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:E6:0B:25:71:95:20:7F:0D:F6:37:F4:EB:40:6D:42:5D:F8:37:10 X509v3 Authority Key Identifier: keyid:8E:52:61:23:EF:52:CF:84:95:58:26:A2:72:8A:33:07:57:F1:E8:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A2D1/CFEB8DAA45A811EF95C6FD2DC4F9AE02/jlJhI-9Sz4SVWCaicoozB1fx6Aw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jlJhI-9Sz4SVWCaicoozB1fx6Aw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A2D1/CFEB8DAA45A811EF95C6FD2DC4F9AE02/29703A0645A911EF965B5A37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.232.0/24 Signature Algorithm: sha256WithRSAEncryption 34:05:b8:f4:7b:28:29:83:5f:37:8b:aa:f0:6a:1c:cd:6a:f6: 2b:63:e7:7a:5c:59:d4:d2:e4:1a:ad:2b:d2:0a:95:d7:3e:26: 72:b9:96:fd:ac:0f:e0:f5:3f:e1:9b:d5:b1:0a:4e:e6:a1:77: ff:17:2c:ab:48:4a:74:df:e1:8a:43:6a:ca:f3:c6:5f:8f:be: 33:77:66:6f:90:fe:a7:15:e0:39:01:8a:eb:e6:0e:98:61:3c: 81:5a:af:a1:16:d1:ca:89:1d:87:e8:63:24:fe:e7:87:c4:2f: ee:08:43:6a:60:11:b2:c4:15:d2:af:fc:14:9f:a5:a9:eb:fc: 47:db:fa:23:62:f9:3d:8b:84:74:26:16:28:b9:a1:de:1e:09: 60:9e:85:37:f3:39:85:74:17:39:40:71:26:2a:a8:7d:a8:73: 6f:fc:6d:06:5f:c0:94:ba:e8:bb:3a:ea:97:97:80:44:7e:2e: 20:49:76:ff:82:cc:9a:47:2c:3d:18:bd:99:3f:82:e8:d6:d7: a4:a4:18:3c:54:28:b6:27:62:fb:06:c4:75:38:67:7e:4a:16: af:73:ca:a3:c9:c7:eb:8c:00:36:52:17:c6:c1:1a:89:c8:49: 8b:c4:46:b5:f7:0b:0f:20:53:29:89:cc:54:cd:ca:ed:ca:82: 50:1c:25:32 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0EyRDExMTAvBgNVBAUTKDhFNTI2MTIzRUY1MkNGODQ5NTU4MjZBMjcyOEEzMzA3 NTdGMUU4MEMwHhcNMjUwNTE3MDU1NzEzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI4MjUzOS00YjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoA8/CpQjuJ5KUEmKdbGZR+W0GetJc/KLctaax+nfL+SRQf2gRt5GLKSZuZO5 tw+3hAqz6GdmD5r6OHYUjuMDXaKpUJl4tRdmSGZWW70PT25n2YTDyi1iFGK3wUR3 r0Ghx3VjDJ9Cx028jaeQVB/ReNxh4qVlOEF+q05bcH4LxrXzq0YHwXbgG1GklGLH NMR9VR0fC/A30GYivedPBnKiQT87Wrk0AhSXLfwaZ7Ps/IoK5eXFkUskA1R+17Sf VvsVg8CDWGX6Hyd1vUoK26nmRTyYjGM3DHQYRiHkO9oHbSHotKZO0cbdqP/k96Rt 5e+jvDyrzY2otAUAippiq7RxTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMrmCyVx lSB/DfY39OtAbUJd+DcQMB8GA1UdIwQYMBaAFI5SYSPvUs+ElVgmonKKMwdX8egM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTJEMS9DRkVCOERBQTQ1 QTgxMUVGOTVDNkZEMkRDNEY5QUUwMi9qbEpoSS05U3o0U1ZXQ2FpY29vekIxZng2 QXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2psSmhJLTlTejRTVldDYWljb296QjFmeDZBdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0EyRDEvQ0ZFQjhEQUE0NUE4MTFFRjk1QzZGRDJEQzRGOUFFMDIvMjk3MDNBMDY0 NUE5MTFFRjk2NUI1QTM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlugwDQYJKoZIhvcNAQELBQADggEBADQFuPR7KCmDXzeL qvBqHM1q9itj53pcWdTS5BqtK9IKldc+JnK5lv2sD+D1P+Gb1bEKTuahd/8XLKtI SnTf4YpDasrzxl+PvjN3Zm+Q/qcV4DkBiuvmDphhPIFar6EW0cqJHYfoYyT+54fE L+4IQ2pgEbLEFdKv/BSfpanr/Efb+iNi+T2LhHQmFii5od4eCWCehTfzOYV0FzlA cSYqqH2oc2/8bQZfwJS66Ls66peXgER+LiBJdv+CzJpHLD0YvZk/gujW16SkGDxU KLYnYvsGxHU4Z35KFq9zyqPJx+uMADZSF8bBGonISYvERrX3Cw8gUymJzFTNyu3K glAcJTI= -----END CERTIFICATE-----Generated at Mon Jun 16 01:56:58 2025 by rpki-client