$ rpki-client -vvf rpki.apnic.net/member_repository/A911A7D2/5BDB152CFEEC11EFAFA6917EC4F9AE02/C7FAB578FEEC11EFB40D667FC4F9AE02.roa File: C7FAB578FEEC11EFB40D667FC4F9AE02.roa (raw, json) Hash identifier: FLLpHbBTqnDBs40y47ZsimY2UyQLa+Oyfs+4Y2gV/9U= Subject key identifier: 2A:F1:28:BD:65:D6:24:4E:92:56:1B:43:A0:8F:98:DD:52:60:68:81 Certificate issuer: /CN=A911A7D2/serialNumber=B21C2B8BCF482F9D766D2A4D32598EE94BF665AC Certificate serial: 02 Authority key identifier: B2:1C:2B:8B:CF:48:2F:9D:76:6D:2A:4D:32:59:8E:E9:4B:F6:65:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/shwri89IL512bSpNMlmO6Uv2Zaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A7D2/5BDB152CFEEC11EFAFA6917EC4F9AE02/C7FAB578FEEC11EFB40D667FC4F9AE02.roa Signing time: Wed 12 Mar 2025 02:50:39 +0000 ROA not before: Wed 12 Mar 2025 02:50:39 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 398704 IP address blocks: 103.167.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A7D2/5BDB152CFEEC11EFAFA6917EC4F9AE02/shwri89IL512bSpNMlmO6Uv2Zaw.crl rsync://rpki.apnic.net/member_repository/A911A7D2/5BDB152CFEEC11EFAFA6917EC4F9AE02/shwri89IL512bSpNMlmO6Uv2Zaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/shwri89IL512bSpNMlmO6Uv2Zaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 05:08:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A7D2 Validity Not Before: Mar 12 02:50:39 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67d0f67f-bcdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:81:02:94:77:8c:ac:9e:cc:2c:22:b3:c3:8d: 42:b7:5a:ce:dc:59:67:17:ff:c1:c0:d2:be:9c:eb: 7c:19:f4:10:45:33:df:ee:e2:7b:7c:81:4e:77:7f: af:05:4b:bc:17:cb:f6:e8:59:fa:c3:0e:3c:c6:0d: 0e:39:a1:f4:36:cd:ea:c8:db:93:21:af:69:4e:7b: 42:0f:7e:4e:8c:86:b8:ef:cf:f4:70:3c:d1:03:8a: e5:52:3c:3c:20:b9:74:95:16:35:c9:91:9f:12:31: 1c:84:3d:6e:88:1c:f9:8a:76:bc:0a:bb:55:28:f9: 69:78:55:23:14:b3:16:67:1f:e6:97:60:69:72:15: 34:37:a3:d3:55:eb:42:e6:5f:03:e6:88:a3:05:0e: a6:9c:f0:48:94:6d:42:c3:66:7d:a3:20:4b:3a:94: 33:4f:57:82:ef:60:b4:93:93:f1:ac:3c:42:e4:d4: 9d:2f:5a:8f:18:04:72:db:f9:38:83:d2:83:46:40: 7b:02:fe:32:28:47:35:40:69:02:1c:0c:27:2d:3b: de:12:8c:0e:e9:f3:c7:63:5e:3d:6b:17:6b:90:7a: 34:18:08:32:3e:63:cd:4c:ac:29:05:a1:0b:e9:28: 32:e3:4e:fa:67:97:f1:f5:f0:ed:e8:6f:8b:08:50: 6d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:F1:28:BD:65:D6:24:4E:92:56:1B:43:A0:8F:98:DD:52:60:68:81 X509v3 Authority Key Identifier: keyid:B2:1C:2B:8B:CF:48:2F:9D:76:6D:2A:4D:32:59:8E:E9:4B:F6:65:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A7D2/5BDB152CFEEC11EFAFA6917EC4F9AE02/shwri89IL512bSpNMlmO6Uv2Zaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/shwri89IL512bSpNMlmO6Uv2Zaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A7D2/5BDB152CFEEC11EFAFA6917EC4F9AE02/C7FAB578FEEC11EFB40D667FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.60.0/23 Signature Algorithm: sha256WithRSAEncryption 28:1b:8b:15:9b:8c:2d:21:6f:20:d2:0b:fa:43:61:6e:e6:39: 5d:59:2b:4b:fa:cd:b6:75:2f:76:8e:32:78:70:8a:aa:5f:c4: ad:96:f1:78:78:13:a3:57:e4:d4:3f:be:2a:7b:c5:12:ab:3d: 16:77:1b:fc:98:6c:65:0f:bd:25:ba:28:58:9d:b4:3f:b9:94: a4:1e:3d:b5:15:9f:46:73:1d:47:51:8e:27:4c:41:56:74:a7: 4a:8c:78:4d:e0:50:11:c1:a5:eb:1c:64:bf:28:f5:45:9f:5a: 37:33:7c:6f:09:12:ca:71:95:8e:41:cc:00:ac:23:a8:0c:f6: 13:6f:d0:34:4b:7c:01:6e:9a:a9:07:33:78:94:0c:44:e0:4d: 14:df:d8:53:ea:2b:c1:b0:4e:ae:e0:b7:7e:dd:28:f6:f6:1f: 54:ce:07:02:5b:07:d3:a9:6c:e7:3a:9c:5f:7e:00:b5:bb:57: 56:85:9a:cc:50:3e:13:9f:06:df:25:5e:5d:e3:29:0c:4c:ba: ef:33:af:f7:dd:00:f8:45:8c:eb:d6:b7:85:12:00:37:d6:ae: 47:57:43:0f:9b:14:c9:53:10:91:55:95:06:c6:1b:cc:ce:d0: d6:a3:1e:28:99:8c:87:1c:cb:c5:55:9b:eb:fc:2b:3c:ae:cf: 99:47:76:f8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QTdEMjExMC8GA1UEBRMoQjIxQzJCOEJDRjQ4MkY5RDc2NkQyQTREMzI1OThFRTk0 QkY2NjVBQzAeFw0yNTAzMTIwMjUwMzlaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZDBmNjdmLWJjZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzgQKUd4ysnswsIrPDjUK3Ws7cWWcX/8HA0r6c63wZ9BBFM9/u4nt8gU53f68F S7wXy/boWfrDDjzGDQ45ofQ2zerI25Mhr2lOe0IPfk6Mhrjvz/RwPNEDiuVSPDwg uXSVFjXJkZ8SMRyEPW6IHPmKdrwKu1Uo+Wl4VSMUsxZnH+aXYGlyFTQ3o9NV60Lm XwPmiKMFDqac8EiUbULDZn2jIEs6lDNPV4LvYLSTk/GsPELk1J0vWo8YBHLb+TiD 0oNGQHsC/jIoRzVAaQIcDCctO94SjA7p88djXj1rF2uQejQYCDI+Y81MrCkFoQvp KDLjTvpnl/H18O3ob4sIUG2HAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUKvEovWXW JE6SVhtDoI+Y3VJgaIEwHwYDVR0jBBgwFoAUshwri89IL512bSpNMlmO6Uv2Zaww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBN0QyLzVCREIxNTJDRkVF QzExRUZBRkE2OTE3RUM0RjlBRTAyL3Nod3JpODlJTDUxMmJTcE5NbG1PNlV2Mlph dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2h3cmk4OUlMNTEyYlNwTk1sbU82VXYyWmF3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTdEMi81QkRCMTUyQ0ZFRUMxMUVGQUZBNjkxN0VDNEY5QUUwMi9DN0ZBQjU3OEZF RUMxMUVGQjQwRDY2N0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWenPDANBgkqhkiG9w0BAQsFAAOCAQEAKBuLFZuMLSFvINIL +kNhbuY5XVkrS/rNtnUvdo4yeHCKql/ErZbxeHgTo1fk1D++KnvFEqs9Fncb/Jhs ZQ+9JbooWJ20P7mUpB49tRWfRnMdR1GOJ0xBVnSnSox4TeBQEcGl6xxkvyj1RZ9a NzN8bwkSynGVjkHMAKwjqAz2E2/QNEt8AW6aqQczeJQMROBNFN/YU+orwbBOruC3 ft0o9vYfVM4HAlsH06ls5zqcX34AtbtXVoWazFA+E58G3yVeXeMpDEy67zOv990A +EWM69a3hRIAN9auR1dDD5sUyVMQkVWVBsYbzM7Q1qMeKJmMhxzLxVWb6/wrPK7P mUd2+A== -----END CERTIFICATE-----Generated at Sat Apr 5 01:50:43 2025 by rpki-client