$ rpki-client -vvf rpki.apnic.net/member_repository/A91192A0/4F1EAE84135611EA992B115AC4F9AE02/38FA1FDE135711EAACF3565BC4F9AE02.roa File: 38FA1FDE135711EAACF3565BC4F9AE02.roa (raw, json) Hash identifier: OPjG40JnviQSdGzeh3MzikJWn6EFssAQI18BDij86Aw= Subject key identifier: B7:CF:25:4C:7F:B4:5F:EF:97:ED:3A:AC:BB:84:FF:19:11:38:7B:D3 Certificate issuer: /CN=A91192A0/serialNumber=0DF6330115EC45F531FF56131EB8455AAFB776CC Certificate serial: 0BF0 Authority key identifier: 0D:F6:33:01:15:EC:45:F5:31:FF:56:13:1E:B8:45:5A:AF:B7:76:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfYzARXsRfUx_1YTHrhFWq-3dsw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91192A0/4F1EAE84135611EA992B115AC4F9AE02/38FA1FDE135711EAACF3565BC4F9AE02.roa Signing time: Wed 02 Apr 2025 19:18:13 +0000 ROA not before: Wed 02 Apr 2025 19:18:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137554 IP address blocks: 103.113.12.0/22 maxlen: 22 103.113.12.0/23 maxlen: 23 103.113.12.0/24 maxlen: 24 103.113.13.0/24 maxlen: 24 103.113.14.0/23 maxlen: 23 103.113.14.0/24 maxlen: 24 103.113.15.0/24 maxlen: 24 2402:b540::/32 maxlen: 32 2402:b540:1::/48 maxlen: 48 2402:b540:2::/48 maxlen: 48 2402:b540:3::/48 maxlen: 48 2402:b540:4::/48 maxlen: 48 2402:b540:5::/48 maxlen: 48 2402:b540:6::/48 maxlen: 48 2402:b540:7::/48 maxlen: 48 2402:b540:8::/48 maxlen: 48 2402:b540:9::/48 maxlen: 48 2402:b540:a::/48 maxlen: 48 2402:b540:b::/48 maxlen: 48 2402:b540:c::/48 maxlen: 48 2402:b540:d::/48 maxlen: 48 2402:b540:e::/48 maxlen: 48 2402:b540:f::/48 maxlen: 48 2402:b540:2a::/48 maxlen: 48 2402:b540:2b::/48 maxlen: 48 2402:b540:2c::/48 maxlen: 48 2402:b540:2d::/48 maxlen: 48 2402:b540:2e::/48 maxlen: 48 2402:b540:2f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91192A0/4F1EAE84135611EA992B115AC4F9AE02/DfYzARXsRfUx_1YTHrhFWq-3dsw.crl rsync://rpki.apnic.net/member_repository/A91192A0/4F1EAE84135611EA992B115AC4F9AE02/DfYzARXsRfUx_1YTHrhFWq-3dsw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfYzARXsRfUx_1YTHrhFWq-3dsw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:53:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3056 (0xbf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91192A0 Validity Not Before: Apr 2 19:18:13 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ed8d75-2ff6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:fb:73:6d:da:b9:ab:f2:81:9a:68:fc:f4:4a: ef:a9:2a:2c:72:f9:67:fb:4a:24:99:2c:3d:90:51: f2:92:42:92:12:46:3f:d1:67:6e:cc:31:90:f8:5b: 5d:6b:6d:78:85:fa:12:c4:8a:a0:76:27:7d:cb:c6: 3b:58:49:f5:94:74:32:b6:80:08:9a:4e:32:62:ed: bb:8d:4f:bf:37:f0:c5:ea:51:23:3b:14:e4:a6:16: 06:07:09:d3:a0:7b:84:ad:88:27:ad:3b:01:9a:eb: 39:0a:af:04:13:ac:db:2b:93:da:b4:a8:e6:53:43: fd:c5:53:ed:b5:44:35:60:aa:77:7d:1d:53:f8:29: be:e2:a3:b9:14:cd:be:99:a0:a2:3b:9a:59:0d:84: 11:72:a0:09:27:16:18:6a:6f:22:87:b2:97:ed:1d: 6e:ed:e1:55:07:ef:00:15:30:cd:22:e9:f3:1c:7e: d8:0b:72:ab:bd:64:89:16:4f:ef:6c:e2:c7:09:a2: 64:f4:f9:8e:2f:66:41:da:9b:0c:e0:24:72:98:ee: d1:e8:d9:50:96:40:d5:3e:f7:13:0b:16:ed:8d:4d: 54:95:09:0b:55:04:6b:ee:1d:ad:16:05:f0:0b:c2: 26:a5:e8:52:ea:26:92:f8:a9:78:17:e7:5f:11:9f: 46:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:CF:25:4C:7F:B4:5F:EF:97:ED:3A:AC:BB:84:FF:19:11:38:7B:D3 X509v3 Authority Key Identifier: keyid:0D:F6:33:01:15:EC:45:F5:31:FF:56:13:1E:B8:45:5A:AF:B7:76:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91192A0/4F1EAE84135611EA992B115AC4F9AE02/DfYzARXsRfUx_1YTHrhFWq-3dsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DfYzARXsRfUx_1YTHrhFWq-3dsw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91192A0/4F1EAE84135611EA992B115AC4F9AE02/38FA1FDE135711EAACF3565BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.12.0/22 IPv6: 2402:b540::/32 Signature Algorithm: sha256WithRSAEncryption 37:be:42:49:f2:09:f4:ac:9a:c2:bf:2a:c9:10:2e:c1:af:b1: f6:7d:ef:5b:48:30:6e:56:c5:3e:a1:87:be:3a:d9:8e:a0:b6: 94:56:20:26:65:84:60:ad:cb:e8:e7:4e:56:51:7f:2f:dd:b9: b6:ee:7c:7b:90:fc:2d:3d:c2:72:36:56:12:ee:c2:5d:43:1c: 10:1d:07:89:eb:25:a7:5e:81:40:5e:7d:f5:bc:68:d9:a9:eb: fc:2e:5c:13:df:1c:0c:d3:45:c2:ff:ed:b6:15:12:c0:71:97: a3:cb:a4:07:ee:37:4f:59:c3:97:f7:e8:4e:ca:74:cd:12:62: b1:a8:cd:c3:8e:e0:9a:48:fe:4d:5e:b5:d8:a4:32:49:85:a4: 3c:1e:f6:c7:fa:29:a4:fb:a8:71:b8:69:e2:33:6a:05:5b:08: 76:dd:f8:d9:75:af:29:26:32:ef:e3:28:d8:83:03:b6:bb:4e: d3:76:60:5b:16:97:b6:6a:ce:5f:3d:84:97:a2:15:61:22:28: 7e:33:47:bf:4c:4d:da:16:09:00:d1:44:9d:5b:89:49:7e:06: 2f:ec:91:87:3c:9f:24:2d:ce:8b:9b:8d:e3:08:55:66:d5:af: 01:f2:2c:58:ff:8f:63:20:0c:bd:8f:6b:c4:3a:89:48:d3:a2: 43:00:14:65 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkyQTAxMTAvBgNVBAUTKDBERjYzMzAxMTVFQzQ1RjUzMUZGNTYxMzFFQjg0NTVB QUZCNzc2Q0MwHhcNMjUwNDAyMTkxODEzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkOGQ3NS0yZmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1vtzbdq5q/KBmmj89ErvqSoscvln+0okmSw9kFHykkKSEkY/0WduzDGQ+Ftd a214hfoSxIqgdid9y8Y7WEn1lHQytoAImk4yYu27jU+/N/DF6lEjOxTkphYGBwnT oHuErYgnrTsBmus5Cq8EE6zbK5PatKjmU0P9xVPttUQ1YKp3fR1T+Cm+4qO5FM2+ maCiO5pZDYQRcqAJJxYYam8ih7KX7R1u7eFVB+8AFTDNIunzHH7YC3KrvWSJFk/v bOLHCaJk9PmOL2ZB2psM4CRymO7R6NlQlkDVPvcTCxbtjU1UlQkLVQRr7h2tFgXw C8ImpehS6iaS+Kl4F+dfEZ9GCwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLfPJUx/ tF/vl+06rLuE/xkROHvTMB8GA1UdIwQYMBaAFA32MwEV7EX1Mf9WEx64RVqvt3bM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTJBMC80RjFFQUU4NDEz NTYxMUVBOTkyQjExNUFDNEY5QUUwMi9EZll6QVJYc1JmVXhfMVlUSHJoRldxLTNk c3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RmWXpBUlhzUmZVeF8xWVRIcmhGV3EtM2Rzdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTkyQTAvNEYxRUFFODQxMzU2MTFFQTk5MkIxMTVBQzRGOUFFMDIvMzhGQTFGREUx MzU3MTFFQUFDRjM1NjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJncQwwDQQCAAIwBwMFACQCtUAwDQYJKoZIhvcNAQELBQAD ggEBADe+QknyCfSsmsK/KskQLsGvsfZ971tIMG5WxT6hh7462Y6gtpRWICZlhGCt y+jnTlZRfy/dubbufHuQ/C09wnI2VhLuwl1DHBAdB4nrJadegUBeffW8aNmp6/wu XBPfHAzTRcL/7bYVEsBxl6PLpAfuN09Zw5f36E7KdM0SYrGozcOO4JpI/k1etdik MkmFpDwe9sf6KaT7qHG4aeIzagVbCHbd+Nl1rykmMu/jKNiDA7a7TtN2YFsWl7Zq zl89hJeiFWEiKH4zR79MTdoWCQDRRJ1biUl+Bi/skYc8nyQtzoubjeMIVWbVrwHy LFj/j2MgDL2Pa8Q6iUjTokMAFGU= -----END CERTIFICATE-----Generated at Sat Apr 5 07:19:14 2025 by rpki-client