$ rpki-client -vvf rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/65C8C388EAFB11ED9F4DC557C4F9AE02.roa File: 65C8C388EAFB11ED9F4DC557C4F9AE02.roa (raw, json) Hash identifier: WVZ1/uIyOSqp7Em7YlQqzkYloU6mxq2B8kLksLfxIF8= Subject key identifier: CD:5E:2A:6B:E7:13:AD:B2:E0:BB:09:35:5D:D4:3C:4C:90:91:C2:B7 Certificate issuer: /CN=A919CF42/serialNumber=3F556BC0251033BCE572FC6C8AB760ACC4970593 Certificate serial: 151F Authority key identifier: 3F:55:6B:C0:25:10:33:BC:E5:72:FC:6C:8A:B7:60:AC:C4:97:05:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P1VrwCUQM7zlcvxsirdgrMSXBZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/65C8C388EAFB11ED9F4DC557C4F9AE02.roa Signing time: Thu 24 Apr 2025 17:15:21 +0000 ROA not before: Thu 24 Apr 2025 17:15:21 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150388 IP address blocks: 103.100.140.0/24 maxlen: 24 2402:b740:15:388::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/P1VrwCUQM7zlcvxsirdgrMSXBZM.crl rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/P1VrwCUQM7zlcvxsirdgrMSXBZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P1VrwCUQM7zlcvxsirdgrMSXBZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:15:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5407 (0x151f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919CF42, serialNumber=3F556BC0251033BCE572FC6C8AB760ACC4970593 Validity Not Before: Apr 24 17:15:21 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680a71a8-a9ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:51:27:fd:15:7d:b5:db:c6:6b:8e:54:4c:45: de:ce:e7:15:d0:54:f7:be:ff:2f:41:d7:11:36:4b: 63:b6:d9:d2:02:9f:b8:f7:69:59:73:2e:6c:d7:79: 26:a8:93:fd:f7:62:5b:3a:f9:3f:c3:d2:05:cf:c9: 98:53:8f:28:a0:42:7c:b8:dc:bc:e0:53:f2:e2:08: 62:e8:d2:f4:51:7b:b2:13:c0:8a:fb:ab:b6:ce:5b: e6:be:6f:2b:69:d8:a2:ea:c8:cb:cf:1a:a1:ef:26: 0a:ed:12:96:c4:b0:85:55:b6:ae:0f:b3:8e:1e:da: 6c:0e:a0:b9:82:f9:37:31:40:b0:1b:a2:f0:ce:1d: 8d:11:f5:c3:b4:5a:ec:da:03:a5:9d:9e:9b:8e:22: 93:26:f6:5f:e0:91:39:2b:51:24:fc:17:43:d4:0c: 0f:0e:c3:50:38:5a:d0:2c:57:d4:52:c8:a4:0c:8c: 91:d3:f8:c0:03:dc:ff:03:ef:71:19:6f:d5:21:af: 7b:91:47:c9:54:2c:ee:d6:00:fd:ca:98:33:cb:35: 4b:cf:52:69:32:db:72:12:f1:2d:a5:e9:f1:19:57: 25:9e:33:0b:b7:8b:a8:38:f3:2b:0a:16:66:f6:b7: b0:ca:44:9c:23:b1:ae:7c:57:af:97:b2:cc:83:b3: 95:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:5E:2A:6B:E7:13:AD:B2:E0:BB:09:35:5D:D4:3C:4C:90:91:C2:B7 X509v3 Authority Key Identifier: keyid:3F:55:6B:C0:25:10:33:BC:E5:72:FC:6C:8A:B7:60:AC:C4:97:05:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/P1VrwCUQM7zlcvxsirdgrMSXBZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P1VrwCUQM7zlcvxsirdgrMSXBZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919CF42/7A6ABFCC4CC611E8BEF03D75C4F9AE02/65C8C388EAFB11ED9F4DC557C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.140.0/24 IPv6: 2402:b740:15:388::/64 Signature Algorithm: sha256WithRSAEncryption 38:a5:ba:35:79:44:2b:81:ac:77:98:ae:7b:14:67:3a:4a:fb: b6:cc:8e:72:ee:3e:29:f4:77:5d:05:8d:02:f9:58:31:54:18: 19:fb:19:d3:3d:83:d5:e0:ab:c8:72:d5:65:bd:22:db:51:11: e6:69:a9:ff:a7:de:02:d0:30:7c:79:5d:0e:a7:3b:27:e6:b3: 78:d7:33:69:b6:9d:97:5e:be:94:d6:14:39:f5:4c:e7:86:03: f6:c7:29:0e:02:0a:8d:15:cc:41:d7:7f:c4:65:b2:47:7d:6b: 75:e3:34:aa:7e:d0:93:94:0a:a0:a0:26:53:96:34:9e:2f:88: 56:ac:e1:cc:aa:a4:38:87:28:46:b4:c9:ea:d9:41:59:da:66: dd:67:fa:a0:5e:32:72:2b:0b:35:36:7f:ec:68:a9:7a:c4:ab: 32:9c:d0:62:b4:65:17:15:bb:a0:a8:1a:8f:b7:16:35:69:87: 99:5a:1e:c6:b8:1a:48:15:53:3e:91:ff:68:26:f2:e3:ec:4d: e8:28:b2:d5:b5:12:08:5e:7e:b6:14:83:f8:e8:3f:b5:88:27: b1:cc:9f:09:55:a0:39:6c:c6:8a:d9:cb:2c:d6:79:42:c4:af: ef:7f:6e:f0:19:34:dd:aa:7f:97:08:5d:b1:f7:1d:f5:0b:21: 4f:e2:02:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUNGNDIxMTAvBgNVBAUTKDNGNTU2QkMwMjUxMDMzQkNFNTcyRkM2QzhBQjc2MEFD QzQ5NzA1OTMwHhcNMjUwNDI0MTcxNTIxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBhNzFhOC1hOWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5FEn/RV9tdvGa45UTEXezucV0FT3vv8vQdcRNktjttnSAp+492lZcy5s13km qJP992JbOvk/w9IFz8mYU48ooEJ8uNy84FPy4ghi6NL0UXuyE8CK+6u2zlvmvm8r adii6sjLzxqh7yYK7RKWxLCFVbauD7OOHtpsDqC5gvk3MUCwG6Lwzh2NEfXDtFrs 2gOlnZ6bjiKTJvZf4JE5K1Ek/BdD1AwPDsNQOFrQLFfUUsikDIyR0/jAA9z/A+9x GW/VIa97kUfJVCzu1gD9ypgzyzVLz1JpMttyEvEtpenxGVclnjMLt4uoOPMrChZm 9rewykScI7GufFevl7LMg7OVzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM1eKmvn E62y4LsJNV3UPEyQkcK3MB8GA1UdIwQYMBaAFD9Va8AlEDO85XL8bIq3YKzElwWT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Q0Y0Mi83QTZBQkZDQzRD QzYxMUU4QkVGMDNENzVDNEY5QUUwMi9QMVZyd0NVUU03emxjdnhzaXJkZ3JNU1hC Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AxVnJ3Q1VRTTd6bGN2eHNpcmRnck1TWEJaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUNGNDIvN0E2QUJGQ0M0Q0M2MTFFOEJFRjAzRDc1QzRGOUFFMDIvNjVDOEMzODhF QUZCMTFFRDlGNERDNTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMgYIKwYBBQUHAQcBAf8E IzAhMAwEAgABMAYDBABnZIwwEQQCAAIwCwMJACQCt0AAFQOIMA0GCSqGSIb3DQEB CwUAA4IBAQA4pbo1eUQrgax3mK57FGc6Svu2zI5y7j4p9HddBY0C+VgxVBgZ+xnT PYPV4KvIctVlvSLbURHmaan/p94C0DB8eV0Opzsn5rN41zNptp2XXr6U1hQ59Uzn hgP2xykOAgqNFcxB13/EZbJHfWt14zSqftCTlAqgoCZTljSeL4hWrOHMqqQ4hyhG tMnq2UFZ2mbdZ/qgXjJyKws1Nn/saKl6xKsynNBitGUXFbugqBqPtxY1aYeZWh7G uBpIFVM+kf9oJvLj7E3oKLLVtRIIXn62FIP46D+1iCexzJ8JVaA5bMaK2css1nlC xK/vf27wGTTdqn+XCF2x9x31CyFP4gLA -----END CERTIFICATE-----Generated at Sat Apr 26 12:24:22 2025 by rpki-client