$ rpki-client -vvf rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/5D35DEC8B13411EDB6BEF584C4F9AE02.roa File: 5D35DEC8B13411EDB6BEF584C4F9AE02.roa (raw, json) Hash identifier: g7Iu0qsIgHA2DsVqzJPZwAHsWDw0BvGfzGeWjQmEdZA= Subject key identifier: FB:02:F5:D7:30:C2:7A:A0:63:5D:E3:26:E9:3A:95:08:4F:94:30:15 Certificate issuer: /CN=A914E1A8/serialNumber=8BECC3638070A6B79F6DCE22A0E65BB21E0D7729 Certificate serial: 018A Authority key identifier: 8B:EC:C3:63:80:70:A6:B7:9F:6D:CE:22:A0:E6:5B:B2:1E:0D:77:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/5D35DEC8B13411EDB6BEF584C4F9AE02.roa Signing time: Tue 25 Feb 2025 11:09:34 +0000 ROA not before: Tue 25 Feb 2025 11:09:34 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 18187 IP address blocks: 103.73.68.0/22 maxlen: 22 103.73.68.0/23 maxlen: 23 103.73.68.0/24 maxlen: 24 103.73.69.0/24 maxlen: 24 103.73.70.0/23 maxlen: 23 103.73.70.0/24 maxlen: 24 103.73.71.0/24 maxlen: 24 122.49.208.0/20 maxlen: 20 122.49.223.0/24 maxlen: 24 203.82.32.0/20 maxlen: 20 216.250.100.0/22 maxlen: 22 2401:8e80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.crl rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 02:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 394 (0x18a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E1A8, serialNumber=8BECC3638070A6B79F6DCE22A0E65BB21E0D7729 Validity Not Before: Feb 25 11:09:34 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67bda4ee-cd44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d5:87:bc:e1:e7:3a:87:80:c9:91:6e:0f:ed: 80:20:84:ba:82:19:ce:a6:13:c6:c3:36:15:97:d9: bd:3c:1d:5b:ec:25:80:a0:18:9f:2b:17:22:0e:66: de:3b:fb:f2:78:a0:84:6d:28:54:5c:53:c4:36:2d: c3:39:c5:a6:29:fe:ad:69:47:f5:8e:e2:d3:86:31: 49:a4:89:32:27:7a:01:e1:c2:9a:e6:7f:03:cf:08: 73:b3:34:72:79:7a:d0:c2:89:56:c9:05:f3:7d:56: af:c4:1a:ec:9b:2c:2a:39:c1:9c:7b:8b:0d:c8:e1: 3a:22:c3:9e:1d:14:20:58:89:e8:b9:78:55:6b:2f: dc:18:5a:71:3a:bf:0a:31:09:eb:69:8e:40:0e:3e: 7f:6f:07:f0:15:f0:26:13:4c:7e:f9:f5:b6:48:9b: 59:a3:6f:c5:8e:cc:f7:5d:27:8d:1c:fb:17:fd:ef: 2d:c1:61:ae:27:d7:52:82:50:e5:90:59:eb:aa:c6: aa:4e:1a:9b:49:bb:d9:47:dc:6b:c7:82:f8:a0:ea: 4a:2f:84:ae:ac:9f:92:e7:73:bb:e8:64:3b:e5:4f: 4a:d9:9e:88:0a:9c:7b:f5:1b:20:ad:87:65:a7:1f: 7a:07:de:ca:c4:a3:89:81:bf:75:a0:17:99:41:60: fd:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:02:F5:D7:30:C2:7A:A0:63:5D:E3:26:E9:3A:95:08:4F:94:30:15 X509v3 Authority Key Identifier: keyid:8B:EC:C3:63:80:70:A6:B7:9F:6D:CE:22:A0:E6:5B:B2:1E:0D:77:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/5D35DEC8B13411EDB6BEF584C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.68.0/22 122.49.208.0/20 203.82.32.0/20 216.250.100.0/22 IPv6: 2401:8e80::/32 Signature Algorithm: sha256WithRSAEncryption 0f:ed:2a:f4:c8:a6:42:16:5a:04:9f:70:ae:9c:be:55:fb:e0: f1:ce:9f:ee:89:19:dd:4e:12:15:78:94:17:3c:43:e0:3a:f4: ee:0d:c6:58:16:eb:86:33:35:6a:e5:d5:3f:c2:8e:0f:2c:37: 01:c6:dc:77:f9:fc:8b:d6:92:fe:9b:dd:4a:93:af:78:e3:7d: 67:33:65:1b:1b:d6:c9:55:dc:cb:2b:ef:2d:c4:bd:e8:6f:a3: d2:b0:38:f5:4a:5b:53:d8:2b:eb:93:dc:b7:26:f3:6f:1a:65: af:fe:d2:8f:d3:c9:41:d3:dc:31:97:d0:87:6c:04:89:a3:7e: fd:b5:1c:20:ab:e6:12:80:d3:38:53:16:ed:d3:6f:79:1b:a5: f5:3a:8b:a4:c1:b8:9d:e3:fc:32:32:f7:07:65:fd:40:73:ea: 3a:ba:1d:0e:ed:38:ff:b7:0f:86:84:e5:82:22:6d:db:2a:44: ee:c2:26:4e:f0:57:64:c1:c2:6c:e9:20:b2:a3:9d:02:68:3f: b5:0e:d4:8b:96:20:e0:41:68:bc:50:14:e5:83:1d:db:48:ff: df:aa:0d:37:4e:72:18:54:5a:6b:d5:2f:af:1d:de:5c:d6:a1: f6:c1:79:8c:90:5a:7d:3e:fb:cf:99:07:c9:71:24:0f:4d:25: b9:e1:36:17 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICAYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUxQTgxMTAvBgNVBAUTKDhCRUNDMzYzODA3MEE2Qjc5RjZEQ0UyMkEwRTY1QkIy MUUwRDc3MjkwHhcNMjUwMjI1MTEwOTM0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JkYTRlZS1jZDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdWHvOHnOoeAyZFuD+2AIIS6ghnOphPGwzYVl9m9PB1b7CWAoBifKxciDmbe O/vyeKCEbShUXFPENi3DOcWmKf6taUf1juLThjFJpIkyJ3oB4cKa5n8DzwhzszRy eXrQwolWyQXzfVavxBrsmywqOcGce4sNyOE6IsOeHRQgWInouXhVay/cGFpxOr8K MQnraY5ADj5/bwfwFfAmE0x++fW2SJtZo2/Fjsz3XSeNHPsX/e8twWGuJ9dSglDl kFnrqsaqThqbSbvZR9xrx4L4oOpKL4SurJ+S53O76GQ75U9K2Z6ICpx79RsgrYdl px96B97KxKOJgb91oBeZQWD95wIDAQABo4ICtjCCArIwHQYDVR0OBBYEFPsC9dcw wnqgY13jJuk6lQhPlDAVMB8GA1UdIwQYMBaAFIvsw2OAcKa3n23OIqDmW7IeDXcp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTFBOC9BNDBBNzI0QUIx MzAxMUVEODQ3RDQ5ODFDNEY5QUUwMi9pLXpEWTRCd3ByZWZiYzRpb09aYnNoNE5k eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ktekRZNEJ3cHJlZmJjNGlvT1pic2g0TmR5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEUxQTgvQTQwQTcyNEFCMTMwMTFFRDg0N0Q0OTgxQzRGOUFFMDIvNUQzNURFQzhC MTM0MTFFREI2QkVGNTg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAJnSUQDBAR6MdADBATLUiADBALY+mQwDQQCAAIwBwMFACQB joAwDQYJKoZIhvcNAQELBQADggEBAA/tKvTIpkIWWgSfcK6cvlX74PHOn+6JGd1O EhV4lBc8Q+A69O4NxlgW64YzNWrl1T/Cjg8sNwHG3Hf5/IvWkv6b3UqTr3jjfWcz ZRsb1slV3Msr7y3Evehvo9KwOPVKW1PYK+uT3Lcm828aZa/+0o/TyUHT3DGX0Ids BImjfv21HCCr5hKA0zhTFu3Tb3kbpfU6i6TBuJ3j/DIy9wdl/UBz6jq6HQ7tOP+3 D4aE5YIibdsqRO7CJk7wV2TBwmzpILKjnQJoP7UO1IuWIOBBaLxQFOWDHdtI/9+q DTdOchhUWmvVL68d3lzWofbBeYyQWn0++8+ZB8lxJA9NJbnhNhc= -----END CERTIFICATE-----Generated at Tue Apr 22 19:02:20 2025 by rpki-client