$ rpki-client -vvf rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/A9321C0A1B2A11EE84F40B3AC4F9AE02.roa File: A9321C0A1B2A11EE84F40B3AC4F9AE02.roa (raw, json) Hash identifier: p81EH8N+mq+tuXFMTqadpbhtGnx8x8sovmy9swXxzCM= Subject key identifier: E5:80:1A:6D:5F:DE:B8:BF:86:2E:93:3A:53:30:85:5F:76:B7:5A:C8 Certificate issuer: /CN=A913FBB2/serialNumber=AD85B7E18B3A16F53E92938A334EC6BB3EB8B630 Certificate serial: 0152 Authority key identifier: AD:85:B7:E1:8B:3A:16:F5:3E:92:93:8A:33:4E:C6:BB:3E:B8:B6:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYW34Ys6FvU-kpOKM07Guz64tjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/A9321C0A1B2A11EE84F40B3AC4F9AE02.roa Signing time: Tue 25 Mar 2025 03:39:34 +0000 ROA not before: Tue 25 Mar 2025 03:39:34 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 51170 IP address blocks: 103.73.186.0/24 maxlen: 24 103.73.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.crl rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYW34Ys6FvU-kpOKM07Guz64tjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913FBB2 Validity Not Before: Mar 25 03:39:34 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67e22575-92c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:bc:f8:59:b9:80:30:6d:55:28:49:23:0e:2d: c5:5a:e5:a6:43:1d:c7:35:9e:8c:20:b2:d1:36:d8: 1a:c6:7b:ad:f7:84:bf:29:ca:c3:5b:f9:16:53:76: 2c:01:49:e8:3c:6e:be:28:b4:bd:57:2f:7a:2d:20: fc:f8:ea:8e:21:19:fb:fb:5c:85:a9:a6:ba:30:0e: cd:f5:74:b9:3b:29:e1:2f:8e:90:d5:07:23:2c:cc: d1:35:13:21:5a:11:26:74:9b:87:93:20:70:09:1f: 02:fe:37:c1:bf:b4:10:e5:c3:be:d5:61:0a:2d:15: 8c:61:4b:56:f2:8b:be:6d:15:dd:82:54:d5:9f:19: e3:e6:58:57:d2:f7:0c:6c:66:c1:b6:2e:4a:86:ba: 5c:d7:13:73:3a:a3:c9:53:b3:3d:c8:76:b5:29:9a: fc:0c:be:25:5a:41:b6:bb:e7:ea:9f:31:2f:a9:34: 59:3c:44:d1:20:55:00:9b:3e:8e:91:ec:9a:0f:50: 06:e6:eb:a4:a2:dd:8c:ae:e6:bd:fa:6a:08:67:49: 09:66:cf:c4:f3:43:20:0d:04:2b:56:9d:0c:ee:b4: e3:df:e3:7c:7a:14:b4:99:04:21:9b:9d:8c:fc:5c: 8e:53:ee:7b:1f:b3:50:0b:70:3e:c6:0a:7a:dc:97: fd:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:80:1A:6D:5F:DE:B8:BF:86:2E:93:3A:53:30:85:5F:76:B7:5A:C8 X509v3 Authority Key Identifier: keyid:AD:85:B7:E1:8B:3A:16:F5:3E:92:93:8A:33:4E:C6:BB:3E:B8:B6:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/rYW34Ys6FvU-kpOKM07Guz64tjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYW34Ys6FvU-kpOKM07Guz64tjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913FBB2/0E2705441A8611EEA0AA8716C4F9AE02/A9321C0A1B2A11EE84F40B3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.186.0/23 Signature Algorithm: sha256WithRSAEncryption 55:bd:0e:bb:12:fb:1e:dc:2e:89:fc:f6:97:35:04:4f:1f:f5: ce:b2:1a:a1:51:c2:e7:e0:12:d9:37:28:27:d7:a6:e9:9a:21: 21:e5:ac:92:c1:1b:7b:e2:a7:51:3c:01:20:a8:ce:16:b6:6d: 7c:fb:86:d7:68:51:ad:f1:28:94:54:7b:f3:d4:8a:c7:aa:a6: b0:75:60:13:f9:df:11:6c:0d:65:66:d7:01:f5:99:48:86:6b: 25:a9:88:94:d2:e9:ed:09:8c:83:06:c4:72:84:f9:c8:5c:f7: 1b:e9:03:c9:34:00:21:8e:01:27:c1:e4:5d:ea:d1:35:ec:04: e0:4a:da:d4:af:73:88:46:35:8f:07:1d:34:96:ac:39:e5:cc: 97:60:e1:b8:b1:01:18:7a:74:95:d8:21:ff:f0:81:7b:33:d1: 07:25:35:9b:3b:89:56:b0:af:53:b5:a8:16:d3:00:b8:0e:af: e9:d8:ab:a8:cb:df:7e:59:d0:05:31:c7:ef:24:5f:3b:d7:e8: de:c1:86:d9:97:6c:be:df:dc:93:28:14:cf:6a:b8:17:fe:88: a0:52:47:57:eb:5f:8b:b8:ee:be:f8:12:c0:95:73:4b:54:97: 11:09:70:1d:86:1f:ce:c0:8a:0b:9f:b9:f2:ac:ff:26:0f:48: 91:d7:c4:79 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0ZCQjIxMTAvBgNVBAUTKEFEODVCN0UxOEIzQTE2RjUzRTkyOTM4QTMzNEVDNkJC M0VCOEI2MzAwHhcNMjUwMzI1MDMzOTM0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2UyMjU3NS05MmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5rz4WbmAMG1VKEkjDi3FWuWmQx3HNZ6MILLRNtgaxnut94S/KcrDW/kWU3Ys AUnoPG6+KLS9Vy96LSD8+OqOIRn7+1yFqaa6MA7N9XS5OynhL46Q1QcjLMzRNRMh WhEmdJuHkyBwCR8C/jfBv7QQ5cO+1WEKLRWMYUtW8ou+bRXdglTVnxnj5lhX0vcM bGbBti5Khrpc1xNzOqPJU7M9yHa1KZr8DL4lWkG2u+fqnzEvqTRZPETRIFUAmz6O keyaD1AG5uukot2Mrua9+moIZ0kJZs/E80MgDQQrVp0M7rTj3+N8ehS0mQQhm52M /FyOU+57H7NQC3A+xgp63Jf9qQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOWAGm1f 3ri/hi6TOlMwhV92t1rIMB8GA1UdIwQYMBaAFK2Ft+GLOhb1PpKTijNOxrs+uLYw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRkJCMi8wRTI3MDU0NDFB ODYxMUVFQTBBQTg3MTZDNEY5QUUwMi9yWVczNFlzNkZ2VS1rcE9LTTA3R3V6NjR0 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JZVzM0WXM2RnZVLWtwT0tNMDdHdXo2NHRqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0ZCQjIvMEUyNzA1NDQxQTg2MTFFRUEwQUE4NzE2QzRGOUFFMDIvQTkzMjFDMEEx QjJBMTFFRTg0RjQwQjNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnSbowDQYJKoZIhvcNAQELBQADggEBAFW9DrsS+x7cLon8 9pc1BE8f9c6yGqFRwufgEtk3KCfXpumaISHlrJLBG3vip1E8ASCozha2bXz7htdo Ua3xKJRUe/PUiseqprB1YBP53xFsDWVm1wH1mUiGayWpiJTS6e0JjIMGxHKE+chc 9xvpA8k0ACGOASfB5F3q0TXsBOBK2tSvc4hGNY8HHTSWrDnlzJdg4bixARh6dJXY If/wgXsz0QclNZs7iVawr1O1qBbTALgOr+nYq6jL335Z0AUxx+8kXzvX6N7BhtmX bL7f3JMoFM9quBf+iKBSR1frX4u47r74EsCVc0tUlxEJcB2GH87AigufufKs/yYP SJHXxHk= -----END CERTIFICATE-----Generated at Sat Apr 5 06:13:58 2025 by rpki-client