$ rpki-client -vvf rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/81FC16A6B46511EF86BEAC6BC4F9AE02.roa File: 81FC16A6B46511EF86BEAC6BC4F9AE02.roa (raw, json) Hash identifier: 3WNjmfHJVoQBd0rENGvmjv5pVSXIpaYmoJ+4Year8YI= Subject key identifier: 56:E8:31:88:DF:3F:4A:BB:55:80:F8:B1:FB:1B:3D:82:DA:12:36:CC Certificate issuer: /CN=A917FACB/serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Certificate serial: 16 Authority key identifier: 35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/81FC16A6B46511EF86BEAC6BC4F9AE02.roa Signing time: Mon 13 Jan 2025 00:57:11 +0000 ROA not before: Mon 13 Jan 2025 00:57:11 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 139020 IP address blocks: 103.138.152.0/23 maxlen: 23 2404:d0c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:22:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FACB, serialNumber=35814B15FB834939EEA85CC4A67C4E1A6A85A4F5 Validity Not Before: Jan 13 00:57:11 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=678464e7-2cac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:a1:b9:94:55:91:4c:12:b1:b3:1b:9a:86:f8: 10:52:2f:34:8a:23:6f:bc:c1:0d:0f:eb:37:78:7c: d7:2c:bf:03:9f:13:b2:f6:68:c8:b1:66:b1:3a:fe: c5:c6:a3:97:52:20:68:51:fd:55:ea:0a:2a:6c:9a: 13:3b:ac:33:10:e7:b6:14:f4:95:44:14:cc:f7:b3: 40:5b:f8:f4:f6:13:1b:ab:ae:ce:2c:82:ae:8a:28: 6e:b9:2f:b9:14:42:62:5c:bc:2e:d9:c6:67:cb:f6: 60:e1:8b:0c:b6:7f:98:a6:b1:34:f3:13:31:d7:48: 59:f1:10:4d:30:fe:c3:97:da:03:98:4e:ea:96:96: 0c:c0:bf:4f:55:f3:2c:22:0d:9d:bd:bc:2c:2f:05: 89:1d:4c:93:30:89:54:65:c3:7f:9f:9b:f5:cb:8a: 00:03:c2:ff:45:4b:f8:1e:98:78:b5:05:c1:e3:66: fa:06:b0:64:5a:13:a5:9c:e7:3b:fa:4c:43:20:04: 0c:07:34:4c:29:65:95:bc:75:eb:55:c2:ae:a3:ef: fc:42:80:19:c2:58:6e:be:b2:d2:4b:9f:ee:59:ce: 7c:a4:41:88:b4:e4:c9:fa:1b:49:7d:ff:aa:ac:6b: 06:a5:3a:e5:4e:44:a9:82:0a:69:42:83:97:7e:47: 38:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:E8:31:88:DF:3F:4A:BB:55:80:F8:B1:FB:1B:3D:82:DA:12:36:CC X509v3 Authority Key Identifier: keyid:35:81:4B:15:FB:83:49:39:EE:A8:5C:C4:A6:7C:4E:1A:6A:85:A4:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/NYFLFfuDSTnuqFzEpnxOGmqFpPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NYFLFfuDSTnuqFzEpnxOGmqFpPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FACB/25D11886B46511EF9BFBAA67C4F9AE02/81FC16A6B46511EF86BEAC6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.152.0/23 IPv6: 2404:d0c0::/32 Signature Algorithm: sha256WithRSAEncryption bb:7f:69:c7:c8:62:81:b7:1c:51:0b:ac:2e:c3:06:2f:fd:cc: 3f:c4:be:50:cb:ed:2d:85:7e:b3:42:6e:87:6f:11:8a:d3:e0: 6e:7b:85:9e:99:4a:31:72:26:43:ca:81:45:b3:ac:a6:b3:e6: e7:ea:75:42:e9:b4:c2:d7:60:95:46:8d:ef:60:df:5a:8b:c4: 86:d2:22:e0:9c:68:25:40:4c:fd:ee:d7:cb:df:d6:52:b7:43: 00:c8:bb:96:b3:50:67:9b:96:2f:77:95:2f:db:17:6f:06:f8: ed:26:be:18:7f:94:2e:57:5a:cd:59:6c:a7:ac:5d:02:f9:ce: 68:b0:ce:2c:43:bd:f7:73:d7:78:b6:b3:41:2b:0e:9c:5f:c7: 2b:2f:ac:88:d2:e6:2d:a5:67:f3:01:02:3e:a6:0f:13:97:3f: 28:a4:95:cd:26:5f:89:8b:0f:36:12:b0:e6:4d:f9:96:8e:ec: a7:f9:fc:f9:a8:9e:86:83:12:c2:f8:ac:ba:43:71:eb:85:f1: 8d:98:b3:11:67:77:95:75:17:13:bd:e8:62:f7:5e:ff:73:b0: 3e:7c:1a:c9:58:76:e6:4e:53:83:e7:5d:84:b2:3a:a7:5c:f9: 0b:a1:b8:09:02:43:ca:c5:45:45:fd:75:ec:8c:cc:39:b8:5a: 29:35:1f:f3 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RkFDQjExMC8GA1UEBRMoMzU4MTRCMTVGQjgzNDkzOUVFQTg1Q0M0QTY3QzRFMUE2 QTg1QTRGNTAeFw0yNTAxMTMwMDU3MTFaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ODQ2NGU3LTJjYWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDmobmUVZFMErGzG5qG+BBSLzSKI2+8wQ0P6zd4fNcsvwOfE7L2aMixZrE6/sXG o5dSIGhR/VXqCipsmhM7rDMQ57YU9JVEFMz3s0Bb+PT2Exurrs4sgq6KKG65L7kU QmJcvC7ZxmfL9mDhiwy2f5imsTTzEzHXSFnxEE0w/sOX2gOYTuqWlgzAv09V8ywi DZ29vCwvBYkdTJMwiVRlw3+fm/XLigADwv9FS/gemHi1BcHjZvoGsGRaE6Wc5zv6 TEMgBAwHNEwpZZW8detVwq6j7/xCgBnCWG6+stJLn+5ZznykQYi05Mn6G0l9/6qs awalOuVORKmCCmlCg5d+RzgDAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUVugxiN8/ SrtVgPix+xs9gtoSNswwHwYDVR0jBBgwFoAUNYFLFfuDSTnuqFzEpnxOGmqFpPUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGQUNCLzI1RDExODg2QjQ2 NTExRUY5QkZCQUE2N0M0RjlBRTAyL05ZRkxGZnVEU1RudXFGekVwbnhPR21xRnBQ VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTllGTEZmdURTVG51cUZ6RXBueE9HbXFGcFBVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RkFDQi8yNUQxMTg4NkI0NjUxMUVGOUJGQkFBNjdDNEY5QUUwMi84MUZDMTZBNkI0 NjUxMUVGODZCRUFDNkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWeKmDANBAIAAjAHAwUAJATQwDANBgkqhkiG9w0BAQsFAAOC AQEAu39px8higbccUQusLsMGL/3MP8S+UMvtLYV+s0Juh28RitPgbnuFnplKMXIm Q8qBRbOsprPm5+p1Qum0wtdglUaN72DfWovEhtIi4JxoJUBM/e7Xy9/WUrdDAMi7 lrNQZ5uWL3eVL9sXbwb47Sa+GH+ULldazVlsp6xdAvnOaLDOLEO993PXeLazQSsO nF/HKy+siNLmLaVn8wECPqYPE5c/KKSVzSZfiYsPNhKw5k35lo7sp/n8+aiehoMS wvisukNx64XxjZizEWd3lXUXE73oYvde/3OwPnwayVh25k5Tg+ddhLI6p1z5C6G4 CQJDysVFRf117IzMObhaKTUf8w== -----END CERTIFICATE-----Generated at Sat Apr 26 09:29:53 2025 by rpki-client