$ rpki-client -vvf rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/AF3CEA305ADB11EEA96AE979C4F9AE02.roa File: AF3CEA305ADB11EEA96AE979C4F9AE02.roa (raw, json) Hash identifier: O+Syjtqn23Qr9c/D9JPic1jy/KjI63RsKq7ObP7Z1Pk= Subject key identifier: 49:2C:AF:9B:6B:B1:CD:C2:D5:E0:27:2F:EA:27:A0:11:1C:A3:85:56 Certificate issuer: /CN=A917E726/serialNumber=D74AC1B8A3335243FCB2F9905BC51DBDCB0E236D Certificate serial: 0AC0 Authority key identifier: D7:4A:C1:B8:A3:33:52:43:FC:B2:F9:90:5B:C5:1D:BD:CB:0E:23:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10rBuKMzUkP8svmQW8UdvcsOI20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/AF3CEA305ADB11EEA96AE979C4F9AE02.roa Signing time: Tue 22 Apr 2025 19:49:33 +0000 ROA not before: Tue 22 Apr 2025 19:49:33 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138623 IP address blocks: 103.148.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.crl rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10rBuKMzUkP8svmQW8UdvcsOI20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:25:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2752 (0xac0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E726, serialNumber=D74AC1B8A3335243FCB2F9905BC51DBDCB0E236D Validity Not Before: Apr 22 19:49:33 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6807f2cc-9fa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:72:62:2b:3c:c7:8a:dd:9c:6e:fb:e0:31:3e: 18:48:c1:f8:01:3c:9c:63:37:91:ce:bd:a3:eb:f3: d6:04:95:d9:b0:a6:74:04:ab:89:1c:32:ab:75:df: 75:9d:34:d3:6d:e8:29:a0:5d:e8:ae:fb:38:0b:f9: 55:fe:5e:1b:f7:03:49:9b:13:92:93:a5:8e:3b:8b: 95:73:f2:5f:fe:13:8c:da:85:7e:0d:85:23:d5:c4: 07:ce:dc:82:38:37:ef:91:8b:db:ee:bb:06:fc:b2: e2:54:c0:08:52:be:59:46:e8:01:c8:f2:8e:8a:a0: e9:66:b8:d7:77:0d:9a:14:d4:6a:d4:1a:d6:05:4b: 56:fe:22:bd:c9:13:79:62:62:3b:b5:6f:b0:3c:9a: 43:a6:a2:dc:22:81:b9:31:03:5b:6e:42:75:ca:4a: 96:d0:fd:5a:e3:f7:9a:18:08:ac:98:96:84:ef:dc: a3:2b:91:1b:17:d0:60:6a:ae:9a:94:d9:82:1f:04: 02:96:02:77:88:f6:85:88:f8:3a:7f:6d:16:10:21: c8:b8:e7:62:46:47:5f:0f:96:5a:d1:d3:b1:cf:7d: 79:33:d3:89:40:ca:f9:f7:b6:11:e2:a5:49:c2:bc: 9a:54:77:bd:74:a1:7a:80:2f:d9:d2:ee:70:3a:0e: 65:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:2C:AF:9B:6B:B1:CD:C2:D5:E0:27:2F:EA:27:A0:11:1C:A3:85:56 X509v3 Authority Key Identifier: keyid:D7:4A:C1:B8:A3:33:52:43:FC:B2:F9:90:5B:C5:1D:BD:CB:0E:23:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/10rBuKMzUkP8svmQW8UdvcsOI20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/10rBuKMzUkP8svmQW8UdvcsOI20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E726/6DBFA38A52D911EA827DD082C4F9AE02/AF3CEA305ADB11EEA96AE979C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.172.0/24 Signature Algorithm: sha256WithRSAEncryption 69:ef:99:1f:06:a4:59:c0:79:3d:65:a5:02:3f:05:32:9f:85: ea:89:42:b0:d8:49:0d:ef:ed:74:c5:63:a8:fb:a4:47:7c:9e: 89:4f:04:f9:97:96:2c:a9:ad:ce:ee:3c:87:e8:fc:cb:50:ca: 20:f0:da:c9:12:e5:41:6d:ce:e7:a5:2d:fd:3b:39:29:00:60: ac:a2:87:79:3b:db:0e:6c:c4:59:5a:4a:fd:1f:f3:0e:98:3b: 3c:dd:09:68:f6:4f:89:2d:f0:e4:17:da:5f:d3:37:73:cd:87: b6:8c:c3:ed:8c:8b:99:14:e3:3b:d6:86:c1:14:08:70:40:17: f3:24:ca:56:7f:6a:3c:72:0f:40:0c:b6:06:d8:ce:bb:b7:31: 8d:5c:46:dc:5f:69:3a:76:35:20:2b:ea:e6:64:e9:a6:c8:a6: d6:60:e5:6f:0f:5d:69:87:f7:d5:bf:6e:60:23:f2:27:8e:5d: cd:c0:4e:b2:38:f2:61:d6:15:2d:12:d3:5d:f8:b3:8a:47:4e: 92:e2:dd:19:58:f5:76:9c:96:97:a3:64:47:f1:5e:57:94:22: 36:d2:25:ca:1d:e7:8a:8f:3d:3f:b8:8c:24:85:ea:2a:51:9a: e5:9d:9a:a5:c8:cc:dd:12:b8:0a:41:31:94:cc:2a:e6:01:15: 3d:cd:c1:d5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U3MjYxMTAvBgNVBAUTKEQ3NEFDMUI4QTMzMzUyNDNGQ0IyRjk5MDVCQzUxREJE Q0IwRTIzNkQwHhcNMjUwNDIyMTk0OTMzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODA3ZjJjYy05ZmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXJiKzzHit2cbvvgMT4YSMH4ATycYzeRzr2j6/PWBJXZsKZ0BKuJHDKrdd91 nTTTbegpoF3orvs4C/lV/l4b9wNJmxOSk6WOO4uVc/Jf/hOM2oV+DYUj1cQHztyC ODfvkYvb7rsG/LLiVMAIUr5ZRugByPKOiqDpZrjXdw2aFNRq1BrWBUtW/iK9yRN5 YmI7tW+wPJpDpqLcIoG5MQNbbkJ1ykqW0P1a4/eaGAismJaE79yjK5EbF9Bgaq6a lNmCHwQClgJ3iPaFiPg6f20WECHIuOdiRkdfD5Za0dOxz315M9OJQMr597YR4qVJ wryaVHe9dKF6gC/Z0u5wOg5leQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEksr5tr sc3C1eAnL+onoBEco4VWMB8GA1UdIwQYMBaAFNdKwbijM1JD/LL5kFvFHb3LDiNt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTcyNi82REJGQTM4QTUy RDkxMUVBODI3REQwODJDNEY5QUUwMi8xMHJCdUtNelVrUDhzdm1RVzhVZHZjc09J MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzEwckJ1S016VWtQOHN2bVFXOFVkdmNzT0kyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U3MjYvNkRCRkEzOEE1MkQ5MTFFQTgyN0REMDgyQzRGOUFFMDIvQUYzQ0VBMzA1 QURCMTFFRUE5NkFFOTc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnlKwwDQYJKoZIhvcNAQELBQADggEBAGnvmR8GpFnAeT1l pQI/BTKfheqJQrDYSQ3v7XTFY6j7pEd8nolPBPmXliyprc7uPIfo/MtQyiDw2skS 5UFtzuelLf07OSkAYKyih3k72w5sxFlaSv0f8w6YOzzdCWj2T4kt8OQX2l/TN3PN h7aMw+2Mi5kU4zvWhsEUCHBAF/MkylZ/ajxyD0AMtgbYzru3MY1cRtxfaTp2NSAr 6uZk6abIptZg5W8PXWmH99W/bmAj8ieOXc3ATrI48mHWFS0S0134s4pHTpLi3RlY 9XaclpejZEfxXleUIjbSJcod54qPPT+4jCSF6ipRmuWdmqXIzN0SuApBMZTMKuYB FT3NwdU= -----END CERTIFICATE-----Generated at Sat Apr 26 17:05:15 2025 by rpki-client