$ rpki-client -vvf rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/F33FD8F8EA5611EF8C0DD984C4F9AE02.roa File: F33FD8F8EA5611EF8C0DD984C4F9AE02.roa (raw, json) Hash identifier: CyE/igdPfW2RYSF3wOEJ7cJivf90Ng4geSYtO0ZaU/4= Subject key identifier: 59:A3:5F:10:B7:B9:52:1D:28:BD:92:8A:25:C8:97:91:CA:B8:DF:34 Certificate issuer: /CN=A912185F/serialNumber=D1F1DA97D8EDF99C65DFAF6ECA9F3B526C60AB41 Certificate serial: 66 Authority key identifier: D1:F1:DA:97:D8:ED:F9:9C:65:DF:AF:6E:CA:9F:3B:52:6C:60:AB:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fHal9jt-Zxl369uyp87Umxgq0E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/F33FD8F8EA5611EF8C0DD984C4F9AE02.roa Signing time: Wed 05 Mar 2025 07:53:01 +0000 ROA not before: Wed 05 Mar 2025 07:53:01 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 132906 IP address blocks: 103.148.240.0/24 maxlen: 24 103.164.7.0/24 maxlen: 24 2001:df2:fe80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/0fHal9jt-Zxl369uyp87Umxgq0E.crl rsync://rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/0fHal9jt-Zxl369uyp87Umxgq0E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fHal9jt-Zxl369uyp87Umxgq0E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 06:12:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 102 (0x66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912185F Validity Not Before: Mar 5 07:53:01 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c802dc-6fe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d0:5e:00:c4:24:14:06:9b:af:4b:70:3f:35: e1:3c:62:f2:bb:f5:55:4c:7e:96:87:2f:a1:1b:b9: 96:43:29:19:a0:7e:31:7b:40:b8:b3:10:60:11:7d: 8b:4e:6d:8d:21:4a:54:46:dd:fe:3c:f2:b0:84:64: 65:50:6a:99:02:1d:a6:c2:bc:1b:39:99:d0:bd:d2: 51:74:33:1b:cf:b6:b6:88:76:83:0c:06:2c:1a:8b: 9a:1d:61:dd:7b:d0:f8:c5:a5:78:fe:96:e3:0a:c0: 06:01:a4:0c:98:90:3d:2b:e7:dc:55:8d:77:8f:02: 0d:c9:9d:52:2e:1e:c1:03:a9:11:f2:70:b5:88:ff: f5:8a:7c:4b:42:f0:e7:6d:50:0d:17:2f:ab:bb:c6: 10:6b:28:5d:b9:77:ce:e3:27:59:e5:39:7c:2d:35: a0:7d:cb:d2:18:4f:1b:18:d5:69:9a:77:d6:82:d5: f2:65:9d:b6:fc:b8:d9:05:4f:d3:be:b4:b8:74:ca: 20:59:33:66:3c:46:a0:c6:3f:07:df:04:0d:56:bf: 97:da:0f:bc:a1:ae:6a:50:94:1a:95:54:24:9b:2f: a1:72:70:10:b3:06:65:ac:17:3a:0d:5d:30:3d:36: 3c:1b:81:8e:95:fd:ab:b2:f2:f2:6a:01:a5:9b:89: 45:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:A3:5F:10:B7:B9:52:1D:28:BD:92:8A:25:C8:97:91:CA:B8:DF:34 X509v3 Authority Key Identifier: keyid:D1:F1:DA:97:D8:ED:F9:9C:65:DF:AF:6E:CA:9F:3B:52:6C:60:AB:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/0fHal9jt-Zxl369uyp87Umxgq0E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0fHal9jt-Zxl369uyp87Umxgq0E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912185F/20FB6D26754E11EF9C79AF6EC4F9AE02/F33FD8F8EA5611EF8C0DD984C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.240.0/24 103.164.7.0/24 IPv6: 2001:df2:fe80::/48 Signature Algorithm: sha256WithRSAEncryption a1:9f:1d:45:a2:fb:0f:ee:1e:a2:f4:b9:3a:aa:dc:77:67:d7: 8f:a1:84:e9:1e:35:39:58:4e:2e:1d:b3:1a:81:5f:30:7e:a4: d7:85:50:78:07:e7:c2:8a:e2:09:ce:7e:d1:68:ac:cc:1c:5e: 67:ab:69:f0:cc:93:fc:51:fc:94:b3:46:a4:fe:76:11:c4:32: 8f:4c:c4:00:80:67:a7:3c:2d:eb:c2:fa:18:24:e5:65:50:40: 98:20:0f:5f:01:90:6a:04:ae:e6:11:aa:2d:e2:41:ba:41:e5: 6d:3f:07:ed:71:1d:67:e0:5e:42:9e:43:84:29:1a:fc:6e:d9: cc:f2:e4:39:b6:b4:05:a4:59:c7:75:53:63:36:53:99:a2:6e: ab:3f:a2:52:93:f1:6d:f7:ae:05:48:82:fe:0a:e2:08:a1:54: b7:43:1c:e6:8c:7b:55:89:0f:f0:85:cc:7c:a3:ea:7b:d2:a8: f3:08:ae:2a:7a:6b:44:a1:86:8a:28:3f:c9:fc:25:49:30:d1: ee:8d:58:62:2c:e3:92:d0:22:a3:19:ce:f2:ab:af:d6:08:65: ec:9d:87:b1:cd:e1:00:38:f7:c8:21:34:51:8c:a2:b5:1b:1f: 4b:d5:84:a0:30:47:58:da:d4:66:1a:2a:ad:6e:78:fa:00:80: db:f1:78:52 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIBZjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MTg1RjExMC8GA1UEBRMoRDFGMURBOTdEOEVERjk5QzY1REZBRjZFQ0E5RjNCNTI2 QzYwQUI0MTAeFw0yNTAzMDUwNzUzMDFaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YzgwMmRjLTZmZTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDO0F4AxCQUBpuvS3A/NeE8YvK79VVMfpaHL6EbuZZDKRmgfjF7QLizEGARfYtO bY0hSlRG3f488rCEZGVQapkCHabCvBs5mdC90lF0MxvPtraIdoMMBiwai5odYd17 0PjFpXj+luMKwAYBpAyYkD0r59xVjXePAg3JnVIuHsEDqRHycLWI//WKfEtC8Odt UA0XL6u7xhBrKF25d87jJ1nlOXwtNaB9y9IYTxsY1Wmad9aC1fJlnbb8uNkFT9O+ tLh0yiBZM2Y8RqDGPwffBA1Wv5faD7yhrmpQlBqVVCSbL6FycBCzBmWsFzoNXTA9 NjwbgY6V/auy8vJqAaWbiUWpAgMBAAGjggKsMIICqDAdBgNVHQ4EFgQUWaNfELe5 Uh0ovZKKJciXkcq43zQwHwYDVR0jBBgwFoAU0fHal9jt+Zxl369uyp87Umxgq0Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIxODVGLzIwRkI2RDI2NzU0 RTExRUY5Qzc5QUY2RUM0RjlBRTAyLzBmSGFsOWp0LVp4bDM2OXV5cDg3VW14Z3Ew RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMGZIYWw5anQtWnhsMzY5dXlwODdVbXhncTBFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MTg1Ri8yMEZCNkQyNjc1NEUxMUVGOUM3OUFGNkVDNEY5QUUwMi9GMzNGRDhGOEVB NTYxMUVGOEMwREQ5ODRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA2BggrBgEFBQcBBwEB/wQn MCUwEgQCAAEwDAMEAGeU8AMEAGekBzAPBAIAAjAJAwcAIAEN8v6AMA0GCSqGSIb3 DQEBCwUAA4IBAQChnx1FovsP7h6i9Lk6qtx3Z9ePoYTpHjU5WE4uHbMagV8wfqTX hVB4B+fCiuIJzn7RaKzMHF5nq2nwzJP8UfyUs0ak/nYRxDKPTMQAgGenPC3rwvoY JOVlUECYIA9fAZBqBK7mEaot4kG6QeVtPwftcR1n4F5CnkOEKRr8btnM8uQ5trQF pFnHdVNjNlOZom6rP6JSk/Ft964FSIL+CuIIoVS3QxzmjHtViQ/whcx8o+p70qjz CK4qemtEoYaKKD/J/CVJMNHujVhiLOOS0CKjGc7yq6/WCGXsnYexzeEAOPfIITRR jKK1Gx9L1YSgMEdY2tRmGiqtbnj6AIDb8XhS -----END CERTIFICATE-----Generated at Sat Apr 5 03:54:06 2025 by rpki-client