$ rpki-client -vvf rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/6E1519E8E1B211EEB4706E18C4F9AE02.roa File: 6E1519E8E1B211EEB4706E18C4F9AE02.roa (raw, json) Hash identifier: xaEZeRSS7SPLQpFTKRrqHdI+Z44FtJElJm/n+VPX6m4= Subject key identifier: DE:E0:6E:A8:F1:7C:D9:52:18:F3:76:15:3D:FC:14:9A:6A:65:C3:34 Certificate issuer: /CN=A917A66F/serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Certificate serial: C8 Authority key identifier: B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/6E1519E8E1B211EEB4706E18C4F9AE02.roa Signing time: Thu 12 Dec 2024 13:06:28 +0000 ROA not before: Thu 12 Dec 2024 13:06:28 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 134176 IP address blocks: 103.118.40.0/22 maxlen: 22 103.118.40.0/23 maxlen: 23 103.118.40.0/24 maxlen: 24 103.118.41.0/24 maxlen: 24 103.118.42.0/23 maxlen: 23 103.118.42.0/24 maxlen: 24 103.118.43.0/24 maxlen: 24 103.236.224.0/24 maxlen: 24 103.236.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A66F, serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Validity Not Before: Dec 12 13:06:28 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=675adfd4-1707 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:82:81:2a:0f:d7:69:c3:b3:fd:64:5f:cc:ec: 24:1b:35:d6:53:f2:a6:d9:fd:d8:db:70:33:00:2e: 70:d7:60:31:85:df:77:5d:89:34:95:22:9b:9c:7a: 07:e1:99:e3:81:f1:2e:65:16:2c:ee:07:2f:24:3a: b5:ec:68:51:43:16:f4:af:f4:c0:66:d6:b5:c9:a5: 03:33:d5:8f:3d:ac:74:8f:16:6f:7f:73:66:af:13: 46:86:33:0f:bf:79:3e:fa:62:2d:a9:26:09:b2:01: 82:be:42:5a:69:e3:d7:c6:3b:df:44:a8:c2:f4:2c: 4c:4a:6d:4a:5d:fc:8c:a4:db:14:a8:20:9c:a6:3f: b5:1e:82:e3:03:11:97:30:7a:03:2e:98:5d:b0:0d: 66:43:a9:54:a9:b9:cf:99:4d:cf:23:9e:16:fe:4d: 72:de:b5:18:4c:13:24:f5:69:d6:3e:1d:83:69:d1: a3:05:6e:43:47:58:ab:05:5e:be:d1:7c:45:b6:e3: c0:0f:5e:f7:11:23:61:0a:1e:d0:3a:ff:df:38:40: af:c8:79:38:3f:72:b6:7c:05:17:94:6d:69:ad:fe: af:2d:d3:a0:9e:38:7e:f5:38:40:17:44:77:6b:b1: 0c:db:88:2d:a2:61:fb:c1:b4:01:b1:04:a6:f2:fc: 2f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E0:6E:A8:F1:7C:D9:52:18:F3:76:15:3D:FC:14:9A:6A:65:C3:34 X509v3 Authority Key Identifier: keyid:B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/6E1519E8E1B211EEB4706E18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.40.0/22 103.236.224.0/23 Signature Algorithm: sha256WithRSAEncryption b2:17:a4:36:59:52:16:ff:f5:f8:8c:9e:a0:16:fb:a6:a5:30: e5:b8:ae:5e:43:0a:bf:d3:c8:08:a3:4e:ac:1a:92:7a:79:45: 1a:be:e7:3a:36:86:35:ce:a9:1b:01:c6:1f:01:47:04:84:8a: a3:5f:50:0f:68:c6:a6:29:fe:94:47:42:02:d3:93:93:59:a7: 62:49:5a:7f:89:c4:d6:c2:55:6f:f2:73:55:98:d1:e4:53:93: 9e:0a:67:f1:17:d8:2f:4b:58:f9:d4:20:10:85:e9:69:ab:be: ec:e7:59:12:9e:a7:cb:50:a9:9c:31:0b:34:92:e1:7d:0f:c3: be:b0:b2:ec:84:87:61:e7:55:0b:26:ef:e0:b1:1f:cf:c4:f0: 8d:30:67:a9:18:6f:57:25:b2:ea:a8:17:df:15:42:5d:8a:7e: c0:26:8d:35:94:3c:e2:71:22:70:f8:d0:2b:a7:d1:e0:c3:2a: 8a:fd:1b:d0:ed:ed:ae:69:08:d0:11:7e:2f:f1:9b:8c:1e:9d: 4a:f3:51:13:0e:1d:a1:d6:d8:33:24:e5:c0:dd:4d:ed:d5:34: 4b:99:78:12:41:61:ed:4f:ac:63:64:0e:9a:2c:b1:76:5b:b1: ef:03:03:f5:bc:e8:7c:a2:e9:57:2b:bd:25:29:a1:12:5b:1f: 45:41:25:ec -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2NkYxMTAvBgNVBAUTKEIyMkMzRDBBQkNEMzkxOTQ4NkEzRTYxRThENzg4OTIz OTIyQkY2QTUwHhcNMjQxMjEyMTMwNjI4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzVhZGZkNC0xNzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5IKBKg/XacOz/WRfzOwkGzXWU/Km2f3Y23AzAC5w12Axhd93XYk0lSKbnHoH 4ZnjgfEuZRYs7gcvJDq17GhRQxb0r/TAZta1yaUDM9WPPax0jxZvf3NmrxNGhjMP v3k++mItqSYJsgGCvkJaaePXxjvfRKjC9CxMSm1KXfyMpNsUqCCcpj+1HoLjAxGX MHoDLphdsA1mQ6lUqbnPmU3PI54W/k1y3rUYTBMk9WnWPh2DadGjBW5DR1irBV6+ 0XxFtuPAD173ESNhCh7QOv/fOECvyHk4P3K2fAUXlG1prf6vLdOgnjh+9ThAF0R3 a7EM24gtomH7wbQBsQSm8vwvwQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFN7gbqjx fNlSGPN2FT38FJpqZcM0MB8GA1UdIwQYMBaAFLIsPQq805GUhqPmHo14iSOSK/al MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY2Ri84RkNDOUQyOEM2 RjkxMUVFOTdFNkZCMURDNEY5QUUwMi9zaXc5Q3J6VGtaU0dvLVllalhpSkk1SXI5 cVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NpdzlDcnpUa1pTR28tWWVqWGlKSTVJcjlxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E2NkYvOEZDQzlEMjhDNkY5MTFFRTk3RTZGQjFEQzRGOUFFMDIvNkUxNTE5RThF MUIyMTFFRUI0NzA2RTE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJndigDBAFn7OAwDQYJKoZIhvcNAQELBQADggEBALIXpDZZ Uhb/9fiMnqAW+6alMOW4rl5DCr/TyAijTqwaknp5RRq+5zo2hjXOqRsBxh8BRwSE iqNfUA9oxqYp/pRHQgLTk5NZp2JJWn+JxNbCVW/yc1WY0eRTk54KZ/EX2C9LWPnU IBCF6WmrvuznWRKep8tQqZwxCzSS4X0Pw76wsuyEh2HnVQsm7+CxH8/E8I0wZ6kY b1clsuqoF98VQl2KfsAmjTWUPOJxInD40Cun0eDDKor9G9Dt7a5pCNARfi/xm4we nUrzURMOHaHW2DMk5cDdTe3VNEuZeBJBYe1PrGNkDpossXZbse8DA/W86Hyi6Vcr vSUpoRJbH0VBJew= -----END CERTIFICATE-----Generated at Sat Apr 26 05:58:33 2025 by rpki-client