$ rpki-client -vvf rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/F56B35708C0011ED836F0539C4F9AE02.roa File: F56B35708C0011ED836F0539C4F9AE02.roa (raw, json) Hash identifier: UfZMrxaB0qz4pcGB9q6XltymVUTNDZVQp2pT7h14Zqo= Subject key identifier: 52:35:27:A0:D5:8F:93:A3:DF:82:16:A4:1A:A1:AB:43:3B:AF:03:70 Certificate issuer: /CN=A913CB8B/serialNumber=3E1F6265E9D214C9E16CB3382540D46223602158 Certificate serial: 0182 Authority key identifier: 3E:1F:62:65:E9:D2:14:C9:E1:6C:B3:38:25:40:D4:62:23:60:21:58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ph9iZenSFMnhbLM4JUDUYiNgIVg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/F56B35708C0011ED836F0539C4F9AE02.roa Signing time: Wed 15 Jan 2025 02:28:33 +0000 ROA not before: Wed 15 Jan 2025 02:28:33 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 150704 IP address blocks: 103.65.116.0/23 maxlen: 23 103.65.116.0/24 maxlen: 24 103.65.117.0/24 maxlen: 24 2400:d120::/36 maxlen: 36 2400:d120:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.crl rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ph9iZenSFMnhbLM4JUDUYiNgIVg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 02:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 386 (0x182) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CB8B, serialNumber=3E1F6265E9D214C9E16CB3382540D46223602158 Validity Not Before: Jan 15 02:28:33 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67871d51-2998 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:33:df:8c:d1:fe:25:0f:1c:15:75:d7:26:7d: 4e:0e:30:9f:a9:e3:17:27:76:7e:b8:50:46:7a:eb: 7e:75:f3:fe:13:58:ce:61:8e:8b:49:a5:68:fc:17: 28:b4:d9:32:51:af:ec:12:d3:d6:3a:54:0f:45:35: 41:60:7d:c8:21:34:cc:ac:16:92:c5:f4:03:cc:40: 8f:34:06:b6:a9:26:c1:7b:3e:d5:50:ad:f4:73:8d: 98:6c:82:2f:57:d2:0b:c8:a6:18:73:e8:f9:0b:88: 31:91:52:ad:39:0e:2a:0e:ff:20:2e:0a:0d:41:e6: 09:78:19:76:5b:4f:8c:09:f8:b5:2b:01:ad:94:ad: b6:61:e8:d8:dd:d4:74:b6:eb:dc:97:ab:b8:41:25: bb:39:37:b3:6b:01:59:92:66:00:c2:d9:a3:1d:ca: 6d:f1:84:98:5f:c4:d7:90:f1:f7:76:d5:bf:23:65: 2b:cb:15:32:f0:8e:6f:b1:52:f5:a5:43:20:1d:2b: 37:71:a9:2c:29:0a:9f:c2:3a:68:a5:0b:10:bb:07: cb:9d:fa:86:1b:94:95:2d:b9:cf:78:6b:41:3d:11: b8:1d:80:c2:ac:5e:78:da:43:97:9f:39:43:b2:b3: c4:ad:c5:e9:a8:c5:ad:97:c8:f0:dd:3d:a6:2a:de: 58:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:35:27:A0:D5:8F:93:A3:DF:82:16:A4:1A:A1:AB:43:3B:AF:03:70 X509v3 Authority Key Identifier: keyid:3E:1F:62:65:E9:D2:14:C9:E1:6C:B3:38:25:40:D4:62:23:60:21:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/Ph9iZenSFMnhbLM4JUDUYiNgIVg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ph9iZenSFMnhbLM4JUDUYiNgIVg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CB8B/DD0473FA8BFD11ED983E5C32C4F9AE02/F56B35708C0011ED836F0539C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.116.0/23 IPv6: 2400:d120::/35 Signature Algorithm: sha256WithRSAEncryption c7:e5:8d:bd:83:98:eb:69:9f:3b:72:a2:cb:a7:d4:dc:9c:06: f7:6b:e5:6f:49:34:f9:58:d6:86:7a:08:ac:06:f3:35:55:63: 64:bd:48:79:e9:ce:e6:44:4d:91:d8:89:42:1a:72:a2:e7:f6: 90:25:00:88:33:f2:1a:23:c8:fd:55:82:57:f5:98:11:4e:27: 19:ff:a4:9f:44:d2:10:ad:ce:c5:88:67:aa:b2:7a:4e:0b:53: 5b:58:a4:e8:4d:84:55:a8:c1:ce:43:07:67:dd:3c:73:90:8e: ce:36:ff:a6:71:ae:c0:b3:64:76:34:1d:04:13:c4:13:64:ed: 91:89:39:1f:85:36:83:38:6a:ad:4e:5d:ce:c6:8a:c9:8b:17: c6:4b:7f:5a:09:20:39:fd:1c:ea:2a:bb:d4:48:e8:85:fd:c8: e7:1c:3a:95:2a:54:e0:4d:65:95:08:e6:74:ba:49:37:97:5a: b2:0e:33:39:79:61:c1:ee:15:11:07:40:f5:ca:c0:ea:4a:a8: e2:52:35:17:a7:b4:de:9c:a7:1b:bc:f7:d5:6c:00:19:37:1f: 71:cf:a8:b7:2a:28:e9:f5:62:8f:92:03:bf:a8:e0:16:47:65: de:71:22:79:dc:74:a4:21:58:05:1b:39:cb:7e:39:81:e7:b2: eb:bb:7f:3c -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICAYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NCOEIxMTAvBgNVBAUTKDNFMUY2MjY1RTlEMjE0QzlFMTZDQjMzODI1NDBENDYy MjM2MDIxNTgwHhcNMjUwMTE1MDIyODMzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg3MWQ1MS0yOTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDPfjNH+JQ8cFXXXJn1ODjCfqeMXJ3Z+uFBGeut+dfP+E1jOYY6LSaVo/Bco tNkyUa/sEtPWOlQPRTVBYH3IITTMrBaSxfQDzECPNAa2qSbBez7VUK30c42YbIIv V9ILyKYYc+j5C4gxkVKtOQ4qDv8gLgoNQeYJeBl2W0+MCfi1KwGtlK22YejY3dR0 tuvcl6u4QSW7OTezawFZkmYAwtmjHcpt8YSYX8TXkPH3dtW/I2UryxUy8I5vsVL1 pUMgHSs3caksKQqfwjpopQsQuwfLnfqGG5SVLbnPeGtBPRG4HYDCrF542kOXnzlD srPErcXpqMWtl8jw3T2mKt5YlQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFFI1J6DV j5Oj34IWpBqhq0M7rwNwMB8GA1UdIwQYMBaAFD4fYmXp0hTJ4WyzOCVA1GIjYCFY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0I4Qi9ERDA0NzNGQThC RkQxMUVEOTgzRTVDMzJDNEY5QUUwMi9QaDlpWmVuU0ZNbmhiTE00SlVEVVlpTmdJ VmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BoOWlaZW5TRk1uaGJMTTRKVURVWWlOZ0lWZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0NCOEIvREQwNDczRkE4QkZEMTFFRDk4M0U1QzMyQzRGOUFFMDIvRjU2QjM1NzA4 QzAwMTFFRDgzNkYwNTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBAFnQXQwDgQCAAIwCAMGBSQA0SAAMA0GCSqGSIb3DQEBCwUA A4IBAQDH5Y29g5jraZ87cqLLp9TcnAb3a+VvSTT5WNaGegisBvM1VWNkvUh56c7m RE2R2IlCGnKi5/aQJQCIM/IaI8j9VYJX9ZgRTicZ/6SfRNIQrc7FiGeqsnpOC1Nb WKToTYRVqMHOQwdn3TxzkI7ONv+mca7As2R2NB0EE8QTZO2RiTkfhTaDOGqtTl3O xorJixfGS39aCSA5/RzqKrvUSOiF/cjnHDqVKlTgTWWVCOZ0ukk3l1qyDjM5eWHB 7hURB0D1ysDqSqjiUjUXp7TenKcbvPfVbAAZNx9xz6i3Kijp9WKPkgO/qOAWR2Xe cSJ53HSkIVgFGznLfjmB57Lru388 -----END CERTIFICATE-----Generated at Sun Apr 13 04:43:15 2025 by rpki-client