$ rpki-client -vvf rpki.apnic.net/member_repository/A9127AE0/DD6587AC0F4C11EAA014267BC4F9AE02/6DB16BB40F4D11EAA6E7A17BC4F9AE02.roa File: 6DB16BB40F4D11EAA6E7A17BC4F9AE02.roa (raw, json) Hash identifier: OAnDbpXpqj53nUK26ywgZEPTuuA4/o8QEENllBabbSs= Subject key identifier: 7D:93:05:60:C7:52:1C:25:16:C3:57:39:17:E4:7D:E0:CE:60:E2:0F Certificate issuer: /CN=A9127AE0/serialNumber=ED55DFA0EC69D964B85B86D78B40051DEA129673 Certificate serial: 0B41 Authority key identifier: ED:55:DF:A0:EC:69:D9:64:B8:5B:86:D7:8B:40:05:1D:EA:12:96:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7VXfoOxp2WS4W4bXi0AFHeoSlnM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127AE0/DD6587AC0F4C11EAA014267BC4F9AE02/6DB16BB40F4D11EAA6E7A17BC4F9AE02.roa Signing time: Tue 02 Apr 2024 19:58:14 +0000 ROA not before: Tue 02 Apr 2024 19:58:14 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 137501 IP address blocks: 103.110.224.0/22 maxlen: 22 103.110.224.0/23 maxlen: 23 103.110.224.0/24 maxlen: 24 103.110.225.0/24 maxlen: 24 103.110.226.0/23 maxlen: 23 103.110.226.0/24 maxlen: 24 103.110.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127AE0/DD6587AC0F4C11EAA014267BC4F9AE02/7VXfoOxp2WS4W4bXi0AFHeoSlnM.crl rsync://rpki.apnic.net/member_repository/A9127AE0/DD6587AC0F4C11EAA014267BC4F9AE02/7VXfoOxp2WS4W4bXi0AFHeoSlnM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7VXfoOxp2WS4W4bXi0AFHeoSlnM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 18:35:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2881 (0xb41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127AE0, serialNumber=ED55DFA0EC69D964B85B86D78B40051DEA129673 Validity Not Before: Apr 2 19:58:14 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660c6355-d278 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:89:66:bb:2d:25:cc:8c:d3:56:fd:a0:3d:c3: a8:d5:6b:3d:e6:8a:c2:05:45:02:8b:df:f4:75:2d: 88:31:c2:7c:ed:56:3c:7c:39:fc:b9:fc:38:f4:c9: ca:17:33:23:a6:2f:08:ee:4b:58:00:9d:f8:20:99: 70:7e:6a:7a:85:93:ef:f1:6b:6f:5e:04:21:60:9a: 83:74:2d:af:38:7f:ec:3d:1d:9b:6f:a5:d8:a7:37: 69:79:79:4b:d0:5d:1e:bc:ea:a8:86:14:f9:c7:4c: 71:90:7c:fb:70:e1:bc:a9:13:8d:fe:75:d7:17:46: ee:d5:54:da:35:51:fb:8a:d2:f4:d2:4f:3c:fc:2d: 9c:0f:6f:89:37:b5:47:33:32:8d:50:9c:4a:e3:0c: d8:3d:54:39:8e:61:7d:12:18:9c:cd:5a:a7:cf:6e: 1e:da:a0:03:05:32:7a:1c:68:8d:ee:c6:d9:7a:5a: 15:97:18:91:52:b3:a3:17:fd:79:1f:3d:3b:6b:31: a0:3f:cc:e6:cb:e8:32:11:45:21:9d:63:cd:78:c0: 42:5c:07:c3:60:8a:32:34:13:64:4d:14:f9:35:4a: 4a:62:81:10:08:79:19:6f:6a:89:ab:d7:87:60:b0: 83:2c:4d:18:e4:2f:4d:7f:76:f4:da:34:6f:42:35: 12:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:93:05:60:C7:52:1C:25:16:C3:57:39:17:E4:7D:E0:CE:60:E2:0F X509v3 Authority Key Identifier: keyid:ED:55:DF:A0:EC:69:D9:64:B8:5B:86:D7:8B:40:05:1D:EA:12:96:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127AE0/DD6587AC0F4C11EAA014267BC4F9AE02/7VXfoOxp2WS4W4bXi0AFHeoSlnM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7VXfoOxp2WS4W4bXi0AFHeoSlnM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127AE0/DD6587AC0F4C11EAA014267BC4F9AE02/6DB16BB40F4D11EAA6E7A17BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.224.0/22 Signature Algorithm: sha256WithRSAEncryption 16:e0:60:f8:87:44:a4:78:4c:65:4d:ad:b8:ef:15:3f:3b:8b: 7b:54:6b:7e:8f:ba:74:08:ad:7d:cb:26:8a:56:cf:5e:c4:88: a8:d6:6e:4d:93:8a:6a:05:37:76:ac:03:68:7a:4f:dd:2f:b0: f8:3a:1c:2d:de:88:3b:b0:f3:d3:e3:d4:b8:eb:8e:76:40:3d: 26:f1:6f:b7:a3:13:64:fa:c2:4b:49:79:2f:41:f1:c1:9f:90: 0e:4c:9d:51:61:ad:10:50:dc:ae:66:e0:e3:94:9d:1c:ed:e8: 46:c6:61:d8:a5:77:a6:96:7e:76:82:4f:33:23:27:97:c6:60: ee:b9:bb:3c:65:81:1a:83:b9:f0:46:c5:48:ea:dd:0b:b5:2f: 66:e6:17:04:f0:6b:63:6c:13:1a:63:71:1d:29:74:3f:8a:6f: eb:8e:58:f1:ea:a0:53:be:31:29:d9:43:b8:5a:1c:5d:6e:7b: 6f:75:d9:40:f9:5b:14:3e:82:3d:9b:ca:4e:0a:28:cd:c8:45: 21:fd:6e:60:c2:a2:5b:20:cb:3f:fa:a9:45:6f:a7:3c:d3:c3: 83:38:3c:bf:23:b4:6e:4f:d5:66:c8:9b:fe:89:ad:14:60:56: 81:a6:fe:74:76:43:56:2f:37:e2:93:00:48:27:13:4b:46:bf: a8:1f:0f:07 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdBRTAxMTAvBgNVBAUTKEVENTVERkEwRUM2OUQ5NjRCODVCODZENzhCNDAwNTFE RUExMjk2NzMwHhcNMjQwNDAyMTk1ODE0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjNjM1NS1kMjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Ylmuy0lzIzTVv2gPcOo1Ws95orCBUUCi9/0dS2IMcJ87VY8fDn8ufw49MnK FzMjpi8I7ktYAJ34IJlwfmp6hZPv8WtvXgQhYJqDdC2vOH/sPR2bb6XYpzdpeXlL 0F0evOqohhT5x0xxkHz7cOG8qRON/nXXF0bu1VTaNVH7itL00k88/C2cD2+JN7VH MzKNUJxK4wzYPVQ5jmF9EhiczVqnz24e2qADBTJ6HGiN7sbZeloVlxiRUrOjF/15 Hz07azGgP8zmy+gyEUUhnWPNeMBCXAfDYIoyNBNkTRT5NUpKYoEQCHkZb2qJq9eH YLCDLE0Y5C9Nf3b02jRvQjUStwIDAQABo4IClTCCApEwHQYDVR0OBBYEFH2TBWDH UhwlFsNXORfkfeDOYOIPMB8GA1UdIwQYMBaAFO1V36DsadlkuFuG14tABR3qEpZz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0FFMC9ERDY1ODdBQzBG NEMxMUVBQTAxNDI2N0JDNEY5QUUwMi83Vlhmb094cDJXUzRXNGJYaTBBRkhlb1Ns bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdWWGZvT3hwMldTNFc0YlhpMEFGSGVvU2xuTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjdBRTAvREQ2NTg3QUMwRjRDMTFFQUEwMTQyNjdCQzRGOUFFMDIvNkRCMTZCQjQw RjREMTFFQUE2RTdBMTdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnbuAwDQYJKoZIhvcNAQELBQADggEBABbgYPiHRKR4TGVN rbjvFT87i3tUa36PunQIrX3LJopWz17EiKjWbk2TimoFN3asA2h6T90vsPg6HC3e iDuw89Pj1LjrjnZAPSbxb7ejE2T6wktJeS9B8cGfkA5MnVFhrRBQ3K5m4OOUnRzt 6EbGYdild6aWfnaCTzMjJ5fGYO65uzxlgRqDufBGxUjq3Qu1L2bmFwTwa2NsExpj cR0pdD+Kb+uOWPHqoFO+MSnZQ7haHF1ue2912UD5WxQ+gj2byk4KKM3IRSH9bmDC olsgyz/6qUVvpzzTw4M4PL8jtG5P1WbIm/6JrRRgVoGm/nR2Q1YvN+KTAEgnE0tG v6gfDwc= -----END CERTIFICATE-----Generated at Fri Apr 18 08:27:10 2025 by rpki-client