$ rpki-client -vvf rpki.apnic.net/member_repository/A919CAB7/64698BD47CD611EB9A2A606BC4F9AE02/ED905CE8CF6E11ED915AD729C4F9AE02.roa File: ED905CE8CF6E11ED915AD729C4F9AE02.roa (raw, json) Hash identifier: ZtaTFSSlx3BNPtl2NS8jj6tuefu3ipeS22qgxArYPSk= Subject key identifier: A6:46:06:D1:2B:E0:B4:E7:55:05:CA:28:43:72:38:F6:F0:A5:FB:E8 Certificate issuer: /CN=A919CAB7/serialNumber=DC7381043E36433DBA6C8295321077A02E8E8787 Certificate serial: 0648 Authority key identifier: DC:73:81:04:3E:36:43:3D:BA:6C:82:95:32:10:77:A0:2E:8E:87:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HOBBD42Qz26bIKVMhB3oC6Oh4c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CAB7/64698BD47CD611EB9A2A606BC4F9AE02/ED905CE8CF6E11ED915AD729C4F9AE02.roa Signing time: Fri 14 Feb 2025 23:41:02 +0000 ROA not before: Fri 14 Feb 2025 23:41:02 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 141753 IP address blocks: 103.163.165.0/24 maxlen: 24 2407:2a40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CAB7/64698BD47CD611EB9A2A606BC4F9AE02/3HOBBD42Qz26bIKVMhB3oC6Oh4c.crl rsync://rpki.apnic.net/member_repository/A919CAB7/64698BD47CD611EB9A2A606BC4F9AE02/3HOBBD42Qz26bIKVMhB3oC6Oh4c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HOBBD42Qz26bIKVMhB3oC6Oh4c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 22:12:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1608 (0x648) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CAB7, serialNumber=DC7381043E36433DBA6C8295321077A02E8E8787 Validity Not Before: Feb 14 23:41:02 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67afd48e-c423 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:af:a5:6f:5d:70:4a:62:01:9d:35:42:97:a9: 90:33:3f:46:33:f7:dd:b8:c3:5f:9f:a2:38:0e:f3: 11:5e:db:41:7d:d3:d6:f2:5d:8a:d1:47:41:c0:62: d5:bd:52:fe:d2:e0:dc:87:7e:c3:dc:7d:49:58:b8: b7:6f:2a:88:73:d0:f4:42:e4:28:11:01:76:0e:e5: 51:a3:f0:e9:aa:cb:e5:89:e2:1c:a5:9c:8b:e5:55: 99:02:99:d2:b9:ee:5a:cd:98:d0:e5:29:0c:7f:7e: f8:06:9c:b2:0d:43:fc:8d:21:01:6f:9b:02:cc:16: 0e:54:5b:fb:4c:86:74:8c:08:be:f4:2b:22:52:f8: e8:4b:e0:f7:01:72:b5:63:42:fa:39:30:1b:74:d7: f0:61:95:f0:f0:a9:10:70:c8:4f:27:79:1b:69:bf: f3:cd:82:fa:d0:67:c7:3f:a8:f4:8c:cb:36:a7:78: 78:f3:f0:4b:6f:b7:1c:08:12:d1:b8:61:22:34:09: 5d:9c:86:19:6d:26:fa:f0:33:1f:e2:48:b6:cb:d5: 53:13:82:27:d3:ea:f8:b7:1f:46:51:de:12:96:bf: 57:e3:c5:9b:c6:7b:ad:1a:b9:63:3a:5a:db:18:78: ae:f4:45:44:35:e9:45:53:ac:1f:a0:87:af:cf:af: 51:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:46:06:D1:2B:E0:B4:E7:55:05:CA:28:43:72:38:F6:F0:A5:FB:E8 X509v3 Authority Key Identifier: keyid:DC:73:81:04:3E:36:43:3D:BA:6C:82:95:32:10:77:A0:2E:8E:87:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CAB7/64698BD47CD611EB9A2A606BC4F9AE02/3HOBBD42Qz26bIKVMhB3oC6Oh4c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3HOBBD42Qz26bIKVMhB3oC6Oh4c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CAB7/64698BD47CD611EB9A2A606BC4F9AE02/ED905CE8CF6E11ED915AD729C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.165.0/24 IPv6: 2407:2a40::/32 Signature Algorithm: sha256WithRSAEncryption c0:f3:eb:60:2d:3a:fe:9e:6d:14:62:4a:c6:82:58:b4:dd:d5: e4:fc:ff:10:01:ec:5a:7a:83:99:53:73:57:b5:c4:f2:47:23: 45:ed:84:a8:db:b1:fe:b1:d6:bf:6d:c5:8d:82:7d:d2:8b:2b: 37:92:a7:d0:fe:6b:81:fc:c1:33:22:32:57:81:8e:79:29:3b: e1:ab:60:8e:2c:eb:d2:47:8f:f7:88:d9:c4:71:2a:4b:8c:64: 37:db:21:1d:3d:4e:1c:33:f8:43:1b:b6:be:b9:14:f3:27:4e: e7:35:5b:2c:84:a0:df:3c:de:c5:4d:16:7b:f2:d1:34:73:1a: 92:d2:4a:8b:b1:51:34:85:73:d6:d3:d0:04:cf:4d:93:01:89: fc:d9:2c:25:d7:fa:9c:f0:95:9b:f4:e5:2e:50:08:a6:9f:b7: ac:d2:b8:6b:26:b6:01:8a:da:11:16:dd:1d:e8:a8:e1:a0:f9: 2f:f0:e1:b1:9d:5b:af:00:fd:de:68:04:ee:3e:bc:c3:58:28: 42:9f:a7:59:a5:e5:6c:81:98:47:0f:49:d3:18:4a:26:fe:85: 15:ba:bc:c1:57:69:61:b4:e4:0f:f5:3f:e2:9e:9b:8a:66:5d: e3:c1:7c:b4:e3:96:0b:2e:53:f6:1e:69:c1:ef:60:5b:97:db: 9d:db:5a:38 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNBQjcxMTAvBgNVBAUTKERDNzM4MTA0M0UzNjQzM0RCQTZDODI5NTMyMTA3N0Ew MkU4RTg3ODcwHhcNMjUwMjE0MjM0MTAyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FmZDQ4ZS1jNDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqa+lb11wSmIBnTVCl6mQMz9GM/fduMNfn6I4DvMRXttBfdPW8l2K0UdBwGLV vVL+0uDch37D3H1JWLi3byqIc9D0QuQoEQF2DuVRo/DpqsvlieIcpZyL5VWZApnS ue5azZjQ5SkMf374BpyyDUP8jSEBb5sCzBYOVFv7TIZ0jAi+9CsiUvjoS+D3AXK1 Y0L6OTAbdNfwYZXw8KkQcMhPJ3kbab/zzYL60GfHP6j0jMs2p3h48/BLb7ccCBLR uGEiNAldnIYZbSb68DMf4ki2y9VTE4In0+r4tx9GUd4Slr9X48WbxnutGrljOlrb GHiu9EVENelFU6wfoIevz69RXQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKZGBtEr 4LTnVQXKKENyOPbwpfvoMB8GA1UdIwQYMBaAFNxzgQQ+NkM9umyClTIQd6AujoeH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0FCNy82NDY5OEJENDdD RDYxMUVCOUEyQTYwNkJDNEY5QUUwMi8zSE9CQkQ0MlF6MjZiSUtWTWhCM29DNk9o NGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNIT0JCRDQyUXoyNmJJS1ZNaEIzb0M2T2g0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUNBQjcvNjQ2OThCRDQ3Q0Q2MTFFQjlBMkE2MDZCQzRGOUFFMDIvRUQ5MDVDRThD RjZFMTFFRDkxNUFENzI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABno6UwDQQCAAIwBwMFACQHKkAwDQYJKoZIhvcNAQELBQAD ggEBAMDz62AtOv6ebRRiSsaCWLTd1eT8/xAB7Fp6g5lTc1e1xPJHI0XthKjbsf6x 1r9txY2CfdKLKzeSp9D+a4H8wTMiMleBjnkpO+GrYI4s69JHj/eI2cRxKkuMZDfb IR09Thwz+EMbtr65FPMnTuc1WyyEoN883sVNFnvy0TRzGpLSSouxUTSFc9bT0ATP TZMBifzZLCXX+pzwlZv05S5QCKaft6zSuGsmtgGK2hEW3R3oqOGg+S/w4bGdW68A /d5oBO4+vMNYKEKfp1ml5WyBmEcPSdMYSib+hRW6vMFXaWG05A/1P+Kem4pmXePB fLTjlgsuU/YeacHvYFuX253bWjg= -----END CERTIFICATE-----Generated at Sat Apr 26 08:09:34 2025 by rpki-client