$ rpki-client -vvf rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/A48F17F6406411EF96445E28C4F9AE02.roa File: A48F17F6406411EF96445E28C4F9AE02.roa (raw, json) Hash identifier: dU6ZhGBTE9jsEZ9VkhD8M1OiGZ+Y8waNKYfclqDZAjs= Subject key identifier: B4:A9:C7:F9:0D:38:D2:A4:9D:69:DA:D8:10:95:E1:13:C1:9F:9C:E0 Certificate issuer: /CN=A919D530/serialNumber=82E42386CD01F88680DD300DFBFFA2B6D2E7E4E6 Certificate serial: 7D Authority key identifier: 82:E4:23:86:CD:01:F8:86:80:DD:30:0D:FB:FF:A2:B6:D2:E7:E4:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/guQjhs0B-IaA3TAN-_-ittLn5OY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/A48F17F6406411EF96445E28C4F9AE02.roa Signing time: Sat 01 Mar 2025 09:09:31 +0000 ROA not before: Sat 01 Mar 2025 09:09:31 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 56067 IP address blocks: 103.30.124.0/22 maxlen: 22 103.30.124.0/24 maxlen: 24 103.30.125.0/24 maxlen: 24 103.30.126.0/24 maxlen: 24 103.30.127.0/24 maxlen: 24 2404:8240::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/guQjhs0B-IaA3TAN-_-ittLn5OY.crl rsync://rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/guQjhs0B-IaA3TAN-_-ittLn5OY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/guQjhs0B-IaA3TAN-_-ittLn5OY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:22:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D530, serialNumber=82E42386CD01F88680DD300DFBFFA2B6D2E7E4E6 Validity Not Before: Mar 1 09:09:31 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c2cecb-e32f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d6:e6:1b:16:a0:b6:8b:4f:57:a8:5c:50:7d: e5:2e:ba:39:cc:e4:fe:c4:16:69:bf:ab:76:9d:90: df:71:fc:12:7a:25:5d:23:7f:e7:c3:4d:eb:cf:4a: a4:9b:0d:eb:2a:cd:b7:1c:12:10:69:a5:e4:30:76: 7e:5d:c4:68:c8:25:6e:2f:ef:e3:d7:5f:7a:26:6b: 1c:ea:bc:8a:35:84:fb:93:d9:66:bb:ed:58:0b:86: 9f:b1:3d:6d:e5:35:70:d8:78:1b:0f:58:04:7f:84: 0d:71:18:82:58:06:ef:e8:91:74:29:fb:cb:e8:7f: 4e:48:0c:af:29:7d:7f:1d:b0:cf:16:db:1a:78:e0: 91:96:db:d6:da:0f:98:83:7c:ac:c7:9a:4d:df:a7: 1b:32:b9:00:41:eb:cc:b4:6e:d7:7f:1c:25:1f:1f: 2d:53:1f:7c:20:49:a6:d0:25:6e:61:b6:e3:76:57: 7e:57:a8:b9:99:93:1d:dc:79:60:29:69:39:b2:4e: 7c:32:9f:3c:59:2a:10:8f:62:57:ea:24:1a:76:b9: 85:5a:5b:00:e0:f4:30:66:cd:45:88:ed:e2:fa:e6: 4f:14:74:84:da:7d:c5:c3:9e:9a:ea:e3:78:42:f6: 26:4c:b8:bc:02:8f:a3:99:58:16:c6:58:78:e3:9d: 3a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:A9:C7:F9:0D:38:D2:A4:9D:69:DA:D8:10:95:E1:13:C1:9F:9C:E0 X509v3 Authority Key Identifier: keyid:82:E4:23:86:CD:01:F8:86:80:DD:30:0D:FB:FF:A2:B6:D2:E7:E4:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/guQjhs0B-IaA3TAN-_-ittLn5OY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/guQjhs0B-IaA3TAN-_-ittLn5OY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D530/5E55F656406411EFA3C5B827C4F9AE02/A48F17F6406411EF96445E28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.30.124.0/22 IPv6: 2404:8240::/32 Signature Algorithm: sha256WithRSAEncryption 20:71:c4:0f:f9:6e:46:a2:75:fc:a5:28:73:f1:43:f3:4c:30: 58:91:81:3f:f2:ee:fb:72:e3:57:75:36:bd:28:17:e7:0f:02: 97:42:b8:a6:83:bf:ce:2e:d8:f6:55:59:52:d3:ed:ea:09:43: df:43:75:ea:ad:94:a6:53:33:95:8f:96:c7:14:cb:dd:b6:30: 66:08:e7:1c:da:b8:3b:5f:91:cb:b5:04:11:2e:55:5c:2b:23: f4:3e:f6:71:fe:fb:fe:17:c8:d8:c1:7a:74:3c:a4:98:45:38: c0:54:84:eb:9b:aa:2e:f9:aa:d3:c4:bb:93:97:91:60:68:3f: 8f:73:72:fb:7b:e9:02:e2:16:02:7e:df:9a:dc:e2:8c:47:f9: f7:55:d0:95:01:74:3c:3e:89:09:5b:de:08:ad:11:2d:ee:3b: 61:fd:b0:69:11:09:3b:09:b1:d2:75:1a:2c:5e:c3:25:72:7f: ff:de:00:6c:52:4a:45:d1:21:bb:b5:35:80:68:41:8e:8c:fe: 05:5a:b6:30:23:53:54:5c:3b:64:5a:87:6f:31:71:49:b9:80: 7d:d0:c8:6a:8d:0a:72:0a:90:ae:9d:ae:a5:ba:4d:5e:8d:76: b9:80:90:99:4f:c1:8c:66:7d:05:00:f9:95:95:c2:c0:07:d0: 08:c4:ba:48 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDUzMDExMC8GA1UEBRMoODJFNDIzODZDRDAxRjg4NjgwREQzMDBERkJGRkEyQjZE MkU3RTRFNjAeFw0yNTAzMDEwOTA5MzFaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YzJjZWNiLWUzMmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCz1uYbFqC2i09XqFxQfeUuujnM5P7EFmm/q3adkN9x/BJ6JV0jf+fDTevPSqSb DesqzbccEhBppeQwdn5dxGjIJW4v7+PXX3omaxzqvIo1hPuT2Wa77VgLhp+xPW3l NXDYeBsPWAR/hA1xGIJYBu/okXQp+8vof05IDK8pfX8dsM8W2xp44JGW29baD5iD fKzHmk3fpxsyuQBB68y0btd/HCUfHy1TH3wgSabQJW5htuN2V35XqLmZkx3ceWAp aTmyTnwynzxZKhCPYlfqJBp2uYVaWwDg9DBmzUWI7eL65k8UdITafcXDnprq43hC 9iZMuLwCj6OZWBbGWHjjnTqRAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUtKnH+Q04 0qSdadrYEJXhE8GfnOAwHwYDVR0jBBgwFoAUguQjhs0B+IaA3TAN+/+ittLn5OYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlENTMwLzVFNTVGNjU2NDA2 NDExRUZBM0M1QjgyN0M0RjlBRTAyL2d1UWpoczBCLUlhQTNUQU4tXy1pdHRMbjVP WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ3VRamhzMEItSWFBM1RBTi1fLWl0dExuNU9ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDUzMC81RTU1RjY1NjQwNjQxMUVGQTNDNUI4MjdDNEY5QUUwMi9BNDhGMTdGNjQw NjQxMUVGOTY0NDVFMjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAmcefDANBAIAAjAHAwUAJASCQDANBgkqhkiG9w0BAQsFAAOC AQEAIHHED/luRqJ1/KUoc/FD80wwWJGBP/Lu+3LjV3U2vSgX5w8Cl0K4poO/zi7Y 9lVZUtPt6glD30N16q2UplMzlY+WxxTL3bYwZgjnHNq4O1+Ry7UEES5VXCsj9D72 cf77/hfI2MF6dDykmEU4wFSE65uqLvmq08S7k5eRYGg/j3Ny+3vpAuIWAn7fmtzi jEf591XQlQF0PD6JCVveCK0RLe47Yf2waREJOwmx0nUaLF7DJXJ//94AbFJKRdEh u7U1gGhBjoz+BVq2MCNTVFw7ZFqHbzFxSbmAfdDIao0KcgqQrp2upbpNXo12uYCQ mU/BjGZ9BQD5lZXCwAfQCMS6SA== -----END CERTIFICATE-----Generated at Sat Apr 26 16:33:15 2025 by rpki-client