$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/F8CE85E2B30211EBA63AE482C4F9AE02.roa File: F8CE85E2B30211EBA63AE482C4F9AE02.roa (raw, json) Hash identifier: JNO//UyjyCwtO6c12uk/NjDfBJbKa4UXXgFo1EP+Qts= Subject key identifier: 10:8C:35:38:A8:0B:79:63:B0:AD:3F:33:2B:DA:8C:AC:74:C4:70:BA Certificate issuer: /CN=A917B4DF/serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Certificate serial: 05E5 Authority key identifier: 1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/F8CE85E2B30211EBA63AE482C4F9AE02.roa Signing time: Thu 10 Apr 2025 23:04:08 +0000 ROA not before: Thu 10 Apr 2025 23:04:08 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142027 IP address blocks: 103.166.72.0/24 maxlen: 24 103.166.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1509 (0x5e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4DF, serialNumber=1FD8EC7C6547AEC52AD7E0E0BC32CF7CAA221E37 Validity Not Before: Apr 10 23:04:08 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f84e68-6e67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:af:59:91:cb:e7:46:9f:61:d9:7c:bd:29:62: 15:a2:e2:87:1e:5f:da:2b:ef:6c:64:11:14:f0:9a: 3d:d8:d6:f3:78:c7:d2:62:96:18:aa:06:60:f3:03: ec:82:a0:20:4b:55:75:64:42:78:5b:80:20:7e:6c: a8:84:b0:0e:20:bb:65:82:f7:84:56:2e:2b:f2:97: 21:e5:0a:19:8f:a3:06:7e:a3:67:2f:46:79:55:2c: 4a:33:61:61:48:3c:bd:6f:39:c4:01:57:7a:d9:f8: b4:8a:a9:6b:31:e7:99:25:2c:bc:ea:3e:63:bc:89: 0e:91:91:bb:28:3a:fa:23:39:9d:b6:4c:ae:7b:15: 3c:a9:11:a9:ac:b1:15:f7:22:87:c5:11:6e:bd:23: ef:5b:b5:fc:a7:29:08:06:a5:b0:ba:5c:29:8e:16: 64:c8:37:4d:86:ab:35:c5:4e:79:6d:fa:c6:f2:56: b6:a5:25:a8:81:52:68:54:89:4f:e7:75:e9:7c:09: 02:b0:19:bc:d6:3c:20:1b:8a:5f:ed:32:76:9b:31: 95:80:77:38:9f:ff:fd:3b:64:48:00:84:75:89:89: ee:f7:08:b4:05:df:eb:aa:eb:bd:c9:3c:47:d4:35: a4:f3:aa:e5:d2:55:1f:e3:7a:11:ab:92:4d:70:79: c0:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:8C:35:38:A8:0B:79:63:B0:AD:3F:33:2B:DA:8C:AC:74:C4:70:BA X509v3 Authority Key Identifier: keyid:1F:D8:EC:7C:65:47:AE:C5:2A:D7:E0:E0:BC:32:CF:7C:AA:22:1E:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/H9jsfGVHrsUq1-DgvDLPfKoiHjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H9jsfGVHrsUq1-DgvDLPfKoiHjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4DF/5CF1F7A2AD5E11EBADD90579C4F9AE02/F8CE85E2B30211EBA63AE482C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.72.0/23 Signature Algorithm: sha256WithRSAEncryption b0:e6:24:da:45:d2:a5:28:37:b1:5c:e1:c3:4c:8f:23:52:ee: 3e:d5:18:f2:8b:a5:89:aa:9a:3c:f0:3d:54:da:30:be:d8:a0: 7d:04:ce:56:be:9a:eb:b0:4b:d8:ff:5d:76:0c:0b:3f:30:c3: 0a:0d:ed:3a:6b:fd:58:64:40:ec:d7:f4:1d:71:1a:70:06:30: 6a:aa:a5:21:3e:67:4e:bc:e6:dd:5c:46:b8:2f:a0:d3:ea:79: 5a:e5:db:b1:3d:2f:af:5e:be:fb:39:83:20:27:9b:10:c1:d8: 50:b9:cf:ff:8b:d2:35:4e:66:91:fd:e6:32:9d:b5:cd:82:7b: 1e:48:f5:61:f3:e4:ac:20:67:22:65:6f:4b:7c:ec:8d:40:25: 64:99:d2:e2:1d:b9:9d:c5:23:0f:ca:9f:d0:72:38:ca:19:2c: 74:85:01:20:de:ff:b7:f5:5b:c1:c0:45:91:03:46:15:e3:85: 2d:6d:32:8c:de:29:08:f9:f0:c5:25:fd:26:04:ce:9d:a9:6e: 4a:60:53:f8:1a:ee:7b:5e:08:07:77:e3:69:ec:ad:ca:4a:94: 40:65:42:eb:77:a3:be:76:59:74:ec:87:6a:40:4f:41:ea:c7: e9:21:ae:d0:0d:5c:95:d9:e9:e2:f5:fa:5b:22:38:aa:89:79: 83:a7:ff:71 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0REYxMTAvBgNVBAUTKDFGRDhFQzdDNjU0N0FFQzUyQUQ3RTBFMEJDMzJDRjdD QUEyMjFFMzcwHhcNMjUwNDEwMjMwNDA4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y4NGU2OC02ZTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAya9ZkcvnRp9h2Xy9KWIVouKHHl/aK+9sZBEU8Jo92NbzeMfSYpYYqgZg8wPs gqAgS1V1ZEJ4W4AgfmyohLAOILtlgveEVi4r8pch5QoZj6MGfqNnL0Z5VSxKM2Fh SDy9bznEAVd62fi0iqlrMeeZJSy86j5jvIkOkZG7KDr6IzmdtkyuexU8qRGprLEV 9yKHxRFuvSPvW7X8pykIBqWwulwpjhZkyDdNhqs1xU55bfrG8la2pSWogVJoVIlP 53XpfAkCsBm81jwgG4pf7TJ2mzGVgHc4n//9O2RIAIR1iYnu9wi0Bd/rquu9yTxH 1DWk86rl0lUf43oRq5JNcHnAbQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBCMNTio C3ljsK0/MyvajKx0xHC6MB8GA1UdIwQYMBaAFB/Y7HxlR67FKtfg4Lwyz3yqIh43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRERi81Q0YxRjdBMkFE NUUxMUVCQUREOTA1NzlDNEY5QUUwMi9IOWpzZkdWSHJzVXExLURndkRMUGZLb2lI amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g5anNmR1ZIcnNVcTEtRGd2RExQZktvaUhqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I0REYvNUNGMUY3QTJBRDVFMTFFQkFERDkwNTc5QzRGOUFFMDIvRjhDRTg1RTJC MzAyMTFFQkE2M0FFNDgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnpkgwDQYJKoZIhvcNAQELBQADggEBALDmJNpF0qUoN7Fc 4cNMjyNS7j7VGPKLpYmqmjzwPVTaML7YoH0Ezla+muuwS9j/XXYMCz8wwwoN7Tpr /VhkQOzX9B1xGnAGMGqqpSE+Z0685t1cRrgvoNPqeVrl27E9L69evvs5gyAnmxDB 2FC5z/+L0jVOZpH95jKdtc2Cex5I9WHz5KwgZyJlb0t87I1AJWSZ0uIduZ3FIw/K n9ByOMoZLHSFASDe/7f1W8HARZEDRhXjhS1tMozeKQj58MUl/SYEzp2pbkpgU/ga 7nteCAd342nsrcpKlEBlQut3o752WXTsh2pAT0Hqx+khrtANXJXZ6eL1+lsiOKqJ eYOn/3E= -----END CERTIFICATE-----Generated at Sat Apr 26 18:02:12 2025 by rpki-client