$ rpki-client -vvf rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/F66D3E4C175911EA9D8EF44FC4F9AE02.roa File: F66D3E4C175911EA9D8EF44FC4F9AE02.roa (raw, json) Hash identifier: QTmQ+b0TWigH3ktAvPS5L4JGC6TmpCstJJc/am/VnB0= Subject key identifier: 72:D5:29:BD:75:F8:F5:3E:8C:9D:FC:68:F0:D7:D8:E7:81:E7:D2:E0 Certificate issuer: /CN=A911C8B7/serialNumber=DC032C5DD042ED3E8DE2A710FB26818A95734266 Certificate serial: 0BAC Authority key identifier: DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/F66D3E4C175911EA9D8EF44FC4F9AE02.roa Signing time: Sat 04 Jan 2025 18:37:24 +0000 ROA not before: Sat 04 Jan 2025 18:37:24 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 139841 IP address blocks: 103.146.16.0/24 maxlen: 24 103.146.17.0/24 maxlen: 24 2406:fb40::/32 maxlen: 40 2406:fb40:1::/48 maxlen: 48 2406:fb40:2::/48 maxlen: 48 2406:fb40:3::/48 maxlen: 48 2406:fb40:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:56:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2988 (0xbac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C8B7 Validity Not Before: Jan 4 18:37:24 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67797fe4-8184 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:9c:20:b7:55:f0:60:29:13:5c:de:25:4b:06: 17:00:82:8c:09:df:e4:c4:43:38:8c:63:f9:45:d2: ca:2a:3d:aa:f9:4b:26:ce:6f:33:97:a2:a7:e8:c4: e1:5c:ca:cd:92:50:b9:d7:e3:5d:de:d8:87:e1:6c: 8d:c8:2f:db:a5:8f:1f:30:c6:82:cb:03:3b:e8:32: 59:e9:7f:6f:00:be:f4:3a:36:6e:cb:5a:f5:cf:ba: 03:d2:28:3e:d2:b4:c9:e4:e7:29:af:20:6f:a5:43: af:08:89:dc:3a:18:a7:e2:00:56:6f:2d:ae:a4:2c: e0:f4:0c:a4:cf:05:e6:3a:a0:fe:6c:39:54:1a:cc: 93:f7:d2:c2:ed:91:a4:ba:49:44:12:88:0e:b7:5a: 28:57:2d:ae:2b:cb:91:8a:21:31:c1:28:ee:e7:6a: 18:96:ea:06:b6:de:a2:98:bc:a7:67:7f:a2:10:47: 12:95:a5:98:6b:8c:3d:81:4f:bf:c6:ab:c4:9f:33: e7:f7:25:83:bd:89:7c:c7:d0:63:be:09:8a:21:eb: 5f:67:22:74:56:ae:9d:03:3c:70:64:76:2e:15:86: 58:0f:8e:16:d5:23:aa:e9:53:2f:2d:61:13:4e:60: fc:40:fa:d6:35:60:b0:c0:82:af:c8:74:0c:7c:40: b4:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:D5:29:BD:75:F8:F5:3E:8C:9D:FC:68:F0:D7:D8:E7:81:E7:D2:E0 X509v3 Authority Key Identifier: keyid:DC:03:2C:5D:D0:42:ED:3E:8D:E2:A7:10:FB:26:81:8A:95:73:42:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/3AMsXdBC7T6N4qcQ-yaBipVzQmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3AMsXdBC7T6N4qcQ-yaBipVzQmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C8B7/669B4552175911EA8B4A804FC4F9AE02/F66D3E4C175911EA9D8EF44FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.16.0/23 IPv6: 2406:fb40::/32 Signature Algorithm: sha256WithRSAEncryption 52:ff:d7:43:96:a4:bd:64:2d:09:da:00:02:ca:9c:a2:e8:88: 57:49:00:a6:53:a7:8a:e5:b7:f5:8a:72:ac:6f:94:3f:ea:a7: a9:2c:db:9b:0f:a0:e2:39:f7:a2:7c:49:a0:3f:d7:8b:b1:96: 9c:2f:ce:59:2f:16:3f:6f:a3:c9:38:c6:ec:b4:bd:2c:2d:79: ae:95:fd:91:5f:f9:91:f2:21:ed:2e:5c:6b:25:63:dc:b5:27: 2b:00:d3:c8:ed:32:41:19:5d:e3:67:84:20:1f:02:f1:e2:99: 02:4a:e3:b2:5a:6c:96:6e:5f:15:d7:d1:8f:25:92:59:e0:84: 2e:88:e3:3b:05:3b:7e:0d:5f:b9:4d:60:50:10:ff:cb:95:1b: ea:72:74:be:00:fa:09:cf:35:0d:c0:92:56:32:e2:86:b6:de: 6d:11:a4:a0:96:b0:d3:7e:b0:76:40:0d:40:e2:07:e1:e6:e3: a8:ea:bf:35:81:6a:80:3e:92:20:f8:f9:f5:e0:0d:87:4c:64: d6:e2:b7:1f:e2:01:5d:5f:24:c9:42:bd:f7:e6:3b:d7:ce:35: 81:ca:b4:b2:66:db:8f:bb:78:c1:ab:fc:95:e4:10:6c:6c:f3: fc:2a:9e:15:0d:19:c2:a7:d7:7b:d0:0e:3d:1a:8b:55:6e:ac: a1:72:f0:01 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM4QjcxMTAvBgNVBAUTKERDMDMyQzVERDA0MkVEM0U4REUyQTcxMEZCMjY4MThB OTU3MzQyNjYwHhcNMjUwMTA0MTgzNzI0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc5N2ZlNC04MTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoZwgt1XwYCkTXN4lSwYXAIKMCd/kxEM4jGP5RdLKKj2q+Usmzm8zl6Kn6MTh XMrNklC51+Nd3tiH4WyNyC/bpY8fMMaCywM76DJZ6X9vAL70OjZuy1r1z7oD0ig+ 0rTJ5OcpryBvpUOvCIncOhin4gBWby2upCzg9AykzwXmOqD+bDlUGsyT99LC7ZGk uklEEogOt1ooVy2uK8uRiiExwSju52oYluoGtt6imLynZ3+iEEcSlaWYa4w9gU+/ xqvEnzPn9yWDvYl8x9BjvgmKIetfZyJ0Vq6dAzxwZHYuFYZYD44W1SOq6VMvLWET TmD8QPrWNWCwwIKvyHQMfEC0CQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHLVKb11 +PU+jJ38aPDX2OeB59LgMB8GA1UdIwQYMBaAFNwDLF3QQu0+jeKnEPsmgYqVc0Jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzhCNy82NjlCNDU1MjE3 NTkxMUVBOEI0QTgwNEZDNEY5QUUwMi8zQU1zWGRCQzdUNk40cWNRLXlhQmlwVnpR bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNBTXNYZEJDN1Q2TjRxY1EteWFCaXBWelFtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM4QjcvNjY5QjQ1NTIxNzU5MTFFQThCNEE4MDRGQzRGOUFFMDIvRjY2RDNFNEMx NzU5MTFFQTlEOEVGNDRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnkhAwDQQCAAIwBwMFACQG+0AwDQYJKoZIhvcNAQELBQAD ggEBAFL/10OWpL1kLQnaAALKnKLoiFdJAKZTp4rlt/WKcqxvlD/qp6ks25sPoOI5 96J8SaA/14uxlpwvzlkvFj9vo8k4xuy0vSwtea6V/ZFf+ZHyIe0uXGslY9y1JysA 08jtMkEZXeNnhCAfAvHimQJK47JabJZuXxXX0Y8lklnghC6I4zsFO34NX7lNYFAQ /8uVG+pydL4A+gnPNQ3AklYy4oa23m0RpKCWsNN+sHZADUDiB+Hm46jqvzWBaoA+ kiD4+fXgDYdMZNbitx/iAV1fJMlCvffmO9fONYHKtLJm24+7eMGr/JXkEGxs8/wq nhUNGcKn13vQDj0ai1VurKFy8AE= -----END CERTIFICATE-----Generated at Sat Apr 5 06:06:56 2025 by rpki-client