$ rpki-client -vvf rpki.apnic.net/member_repository/A9199371/36FEE7EA38BD11EC9DD4EB50C4F9AE02/5FC6CEFC38BF11EC9BA51E52C4F9AE02.roa File: 5FC6CEFC38BF11EC9BA51E52C4F9AE02.roa (raw, json) Hash identifier: O5o2WM89g2GajktjirO4l7am93YdomSAoRe9/bA2z6k= Subject key identifier: F4:D5:10:B1:BF:5D:4E:51:58:4E:D2:F1:95:8E:38:5F:CA:D8:65:15 Certificate issuer: /CN=A9199371/serialNumber=32F8900D3856BE43A72D6C7F93E904B5B83CC34D Certificate serial: 0487 Authority key identifier: 32:F8:90:0D:38:56:BE:43:A7:2D:6C:7F:93:E9:04:B5:B8:3C:C3:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MviQDThWvkOnLWx_k-kEtbg8w00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199371/36FEE7EA38BD11EC9DD4EB50C4F9AE02/5FC6CEFC38BF11EC9BA51E52C4F9AE02.roa Signing time: Tue 15 Apr 2025 00:04:42 +0000 ROA not before: Tue 15 Apr 2025 00:04:42 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 135123 IP address blocks: 103.210.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199371/36FEE7EA38BD11EC9DD4EB50C4F9AE02/MviQDThWvkOnLWx_k-kEtbg8w00.crl rsync://rpki.apnic.net/member_repository/A9199371/36FEE7EA38BD11EC9DD4EB50C4F9AE02/MviQDThWvkOnLWx_k-kEtbg8w00.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MviQDThWvkOnLWx_k-kEtbg8w00.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 07 May 2025 23:36:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1159 (0x487) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199371, serialNumber=32F8900D3856BE43A72D6C7F93E904B5B83CC34D Validity Not Before: Apr 15 00:04:42 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67fda29a-1f3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2f:f8:eb:18:b3:d7:53:4f:70:80:47:80:68: bc:c7:cc:1f:15:45:c5:ae:0b:0e:bd:da:89:5d:d3: d0:48:f7:19:71:88:20:de:f7:51:a5:a1:e5:a7:0c: a4:8c:72:53:44:6e:af:b2:fd:b5:39:8d:b7:a8:00: da:1b:f2:47:f5:77:c6:6e:c4:31:9a:d2:86:6b:be: fb:d6:51:ff:de:ce:61:74:e2:63:67:57:b1:da:80: 14:ff:d0:7a:7a:00:28:b3:a2:69:d5:4c:ad:f6:61: b1:55:ec:74:9a:f5:dc:51:25:d9:bc:8c:96:b5:3e: 35:6e:4d:ba:bd:b9:38:01:b1:83:25:73:e5:31:4e: c2:59:38:d2:f1:cf:24:51:7b:2d:eb:11:4f:fb:07: a9:e7:a2:ec:89:aa:0b:a3:52:90:c9:ac:23:ad:c9: 65:ee:ee:f1:4e:7b:8c:6b:8a:8a:20:eb:28:13:8c: f9:de:8d:5d:0d:df:84:d8:c5:0d:83:0e:23:32:b9: ca:31:ed:35:9c:3b:c0:fc:f3:bc:cd:41:3c:0a:e3: f0:ba:a5:c9:81:95:3c:76:26:c6:ca:5f:a8:1c:36: 47:67:ee:56:79:1a:29:f0:38:0f:f5:fa:34:07:cf: 0d:82:dd:0c:57:4d:db:15:40:e4:6f:65:16:5a:7e: ed:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D5:10:B1:BF:5D:4E:51:58:4E:D2:F1:95:8E:38:5F:CA:D8:65:15 X509v3 Authority Key Identifier: keyid:32:F8:90:0D:38:56:BE:43:A7:2D:6C:7F:93:E9:04:B5:B8:3C:C3:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199371/36FEE7EA38BD11EC9DD4EB50C4F9AE02/MviQDThWvkOnLWx_k-kEtbg8w00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MviQDThWvkOnLWx_k-kEtbg8w00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199371/36FEE7EA38BD11EC9DD4EB50C4F9AE02/5FC6CEFC38BF11EC9BA51E52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.210.4.0/22 Signature Algorithm: sha256WithRSAEncryption 3f:95:0d:db:d4:75:d5:a0:5f:b5:95:f5:1a:79:b6:67:a9:0a: fc:6d:59:ba:6f:a3:b7:44:de:8a:80:bd:7a:24:d5:1c:1e:94: 04:72:c3:a9:a2:90:07:7d:49:74:18:b3:cf:4c:31:5c:27:6a: 88:1f:68:da:d6:9a:ef:3b:bf:13:90:be:3c:11:58:65:a6:67: cf:09:67:56:65:40:8c:0d:e6:0c:68:da:81:16:ed:97:8b:eb: d2:22:f9:e9:ef:f1:ee:3e:8a:31:bf:e6:47:45:66:fa:1e:d9: 80:d0:32:4d:86:07:8c:74:85:dc:14:29:a9:33:39:e1:48:ed: ad:4e:80:86:2f:ad:ec:cf:ad:e1:fc:d8:48:35:4b:23:bb:a2: 3c:ce:8a:b0:a9:d6:0a:e4:86:d6:3b:60:93:fd:88:c6:b1:3f: 03:4e:22:e2:1d:02:00:fc:fe:7a:f3:a5:98:eb:58:fa:44:b6: 6f:4e:48:20:b7:2b:74:d6:83:b6:84:02:b9:ad:41:65:57:0b: 4c:de:3d:95:7b:1f:6e:e0:07:81:e2:a2:44:db:65:47:a7:7d: 44:b6:28:72:ad:d5:4c:cd:3c:fa:d1:b3:dc:9d:fd:0c:b2:70: 63:f4:3c:b8:9f:46:b6:3c:07:2c:34:2e:df:e5:e2:52:9a:be: af:60:c9:46 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkzNzExMTAvBgNVBAUTKDMyRjg5MDBEMzg1NkJFNDNBNzJENkM3RjkzRTkwNEI1 QjgzQ0MzNEQwHhcNMjUwNDE1MDAwNDQyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZkYTI5YS0xZjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzi/46xiz11NPcIBHgGi8x8wfFUXFrgsOvdqJXdPQSPcZcYgg3vdRpaHlpwyk jHJTRG6vsv21OY23qADaG/JH9XfGbsQxmtKGa7771lH/3s5hdOJjZ1ex2oAU/9B6 egAos6Jp1Uyt9mGxVex0mvXcUSXZvIyWtT41bk26vbk4AbGDJXPlMU7CWTjS8c8k UXst6xFP+wep56LsiaoLo1KQyawjrcll7u7xTnuMa4qKIOsoE4z53o1dDd+E2MUN gw4jMrnKMe01nDvA/PO8zUE8CuPwuqXJgZU8dibGyl+oHDZHZ+5WeRop8DgP9fo0 B88Ngt0MV03bFUDkb2UWWn7twQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPTVELG/ XU5RWE7S8ZWOOF/K2GUVMB8GA1UdIwQYMBaAFDL4kA04Vr5Dpy1sf5PpBLW4PMNN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTM3MS8zNkZFRTdFQTM4 QkQxMUVDOURENEVCNTBDNEY5QUUwMi9NdmlRRFRoV3ZrT25MV3hfay1rRXRiZzh3 MDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL012aVFEVGhXdmtPbkxXeF9rLWtFdGJnOHcwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkzNzEvMzZGRUU3RUEzOEJEMTFFQzlERDRFQjUwQzRGOUFFMDIvNUZDNkNFRkMz OEJGMTFFQzlCQTUxRTUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn0gQwDQYJKoZIhvcNAQELBQADggEBAD+VDdvUddWgX7WV 9Rp5tmepCvxtWbpvo7dE3oqAvXok1RwelARyw6mikAd9SXQYs89MMVwnaogfaNrW mu87vxOQvjwRWGWmZ88JZ1ZlQIwN5gxo2oEW7ZeL69Ii+env8e4+ijG/5kdFZvoe 2YDQMk2GB4x0hdwUKakzOeFI7a1OgIYvrezPreH82Eg1SyO7ojzOirCp1grkhtY7 YJP9iMaxPwNOIuIdAgD8/nrzpZjrWPpEtm9OSCC3K3TWg7aEArmtQWVXC0zePZV7 H27gB4HiokTbZUenfUS2KHKt1UzNPPrRs9yd/QyycGP0PLifRrY8Byw0Lt/l4lKa vq9gyUY= -----END CERTIFICATE-----Generated at Fri May 2 22:44:58 2025 by rpki-client