$ rpki-client -vvf rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/606EB6AE240911EDBFA59C27C4F9AE02.roa File: 606EB6AE240911EDBFA59C27C4F9AE02.roa (raw, json) Hash identifier: NNo4SAwO23W3h7iwFhvtQVGgAhn5LQhxSRbEa+xKr7I= Subject key identifier: DC:97:03:FB:0E:0E:30:6E:A5:BD:9C:27:EC:76:11:46:C1:0E:87:63 Certificate issuer: /CN=A914E488/serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Certificate serial: 021F Authority key identifier: 90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/606EB6AE240911EDBFA59C27C4F9AE02.roa Signing time: Fri 21 Mar 2025 02:08:21 +0000 ROA not before: Fri 21 Mar 2025 02:08:21 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 132330 IP address blocks: 103.12.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:05:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 543 (0x21f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E488 Validity Not Before: Mar 21 02:08:21 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67dcca15-2990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:58:ed:d5:b0:98:40:7b:fd:0a:16:7e:de:c3: 30:fb:6e:2b:24:ed:96:8f:26:a5:50:27:e0:3f:b0: 4b:5f:58:80:9d:88:5f:ee:e1:e0:ae:fa:69:1c:17: bf:a7:32:0b:81:b9:28:bd:aa:33:21:69:3c:ed:bd: 52:91:23:40:c7:3e:2d:98:4e:2f:4e:5d:f2:83:76: 1f:cd:02:45:78:99:00:75:57:77:71:70:1e:47:f3: 48:45:91:96:dc:ec:50:89:98:ef:85:10:0f:b5:e8: 10:10:41:ac:77:fd:e2:a0:af:77:ae:31:ba:58:86: 56:09:4e:26:9c:a4:43:6e:e3:7a:d7:27:b5:d6:e7: 60:a3:73:8d:06:a5:2a:15:77:6b:6a:e0:a4:1e:ed: b9:4a:93:5c:d6:d2:1e:4a:a8:2b:af:94:95:4e:08: 7c:28:c1:7b:9b:ce:b7:00:a1:c0:54:d6:a0:4b:41: 16:49:d1:40:c2:5c:2c:e3:a2:c7:ff:f2:6a:3b:62: c0:a2:cf:43:99:85:27:6a:67:df:4c:1c:25:a1:54: 2a:19:92:6b:49:4d:d0:92:29:dc:b5:6f:3b:bd:4a: 06:d8:f2:86:14:d4:09:a3:3a:ae:3a:c4:2a:10:4e: 97:58:34:74:0f:31:50:ea:e0:b1:53:0a:22:bd:14: f4:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:97:03:FB:0E:0E:30:6E:A5:BD:9C:27:EC:76:11:46:C1:0E:87:63 X509v3 Authority Key Identifier: keyid:90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/606EB6AE240911EDBFA59C27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.165.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:c1:0d:cf:03:2a:fe:88:54:ad:4b:c0:80:ec:ac:74:9b:fe: 66:c9:dd:f6:e6:97:b8:9d:65:58:ba:61:40:46:af:04:fd:7a: cd:f1:db:3d:86:f2:b1:d1:14:be:af:b6:f2:73:65:a1:0e:19: a4:3a:97:93:bf:e5:60:ab:36:3c:67:c9:88:af:e8:cc:9f:36: c5:d2:6e:57:96:1f:c0:7d:5a:16:5c:c9:05:5d:cb:12:6f:e6: e4:93:4f:23:f2:89:55:a4:9d:ac:7e:41:ad:35:db:03:19:14: 27:44:e2:a1:92:cc:98:bd:85:9b:d1:9e:98:f4:86:c7:a6:e5: 85:70:cd:f3:37:43:a2:40:d5:f5:6d:05:a5:78:85:ab:0c:ce: b6:e0:32:26:31:e8:c0:e1:e6:2d:f7:c5:a1:cc:3c:2f:52:98: 33:00:31:d8:24:1b:e9:26:10:63:a1:8d:15:fa:8f:11:de:d0: 72:5b:49:51:3d:87:c8:76:e1:b7:e1:d6:2e:8e:05:59:e1:04: a5:37:c1:60:5c:92:c1:0b:99:c0:d6:61:51:d5:5a:fa:bd:20: 9c:32:13:62:29:4c:a1:93:37:fe:a0:a3:d5:d7:a7:01:cf:bc: f2:31:50:35:7a:bb:47:0a:dd:92:7d:a1:0d:7f:30:18:c9:d5: 77:5b:d9:f4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU0ODgxMTAvBgNVBAUTKDkwM0EzODQzNjc5QTBCMTA1RENBNDg1QzNENjQ4RjNE MTEyNzJGQjcwHhcNMjUwMzIxMDIwODIxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RjY2ExNS0yOTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+ljt1bCYQHv9ChZ+3sMw+24rJO2WjyalUCfgP7BLX1iAnYhf7uHgrvppHBe/ pzILgbkovaozIWk87b1SkSNAxz4tmE4vTl3yg3YfzQJFeJkAdVd3cXAeR/NIRZGW 3OxQiZjvhRAPtegQEEGsd/3ioK93rjG6WIZWCU4mnKRDbuN61ye11udgo3ONBqUq FXdrauCkHu25SpNc1tIeSqgrr5SVTgh8KMF7m863AKHAVNagS0EWSdFAwlws46LH //JqO2LAos9DmYUnamffTBwloVQqGZJrSU3QkinctW87vUoG2PKGFNQJozquOsQq EE6XWDR0DzFQ6uCxUwoivRT0zQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNyXA/sO DjBupb2cJ+x2EUbBDodjMB8GA1UdIwQYMBaAFJA6OENnmgsQXcpIXD1kjz0RJy+3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTQ4OC9GODg2OThDQTI0 MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4QmR5a2hjUFdTUFBSRW5M N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEbzRRMmVhQ3hCZHlraGNQV1NQUFJFbkw3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU0ODgvRjg4Njk4Q0EyNDA1MTFFREI5ODdCODIzQzRGOUFFMDIvNjA2RUI2QUUy NDA5MTFFREJGQTU5QzI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnDKUwDQYJKoZIhvcNAQELBQADggEBACrBDc8DKv6IVK1L wIDsrHSb/mbJ3fbml7idZVi6YUBGrwT9es3x2z2G8rHRFL6vtvJzZaEOGaQ6l5O/ 5WCrNjxnyYiv6MyfNsXSbleWH8B9WhZcyQVdyxJv5uSTTyPyiVWknax+Qa012wMZ FCdE4qGSzJi9hZvRnpj0hsem5YVwzfM3Q6JA1fVtBaV4hasMzrbgMiYx6MDh5i33 xaHMPC9SmDMAMdgkG+kmEGOhjRX6jxHe0HJbSVE9h8h24bfh1i6OBVnhBKU3wWBc ksELmcDWYVHVWvq9IJwyE2IpTKGTN/6go9XXpwHPvPIxUDV6u0cK3ZJ9oQ1/MBjJ 1Xdb2fQ= -----END CERTIFICATE-----Generated at Sun Apr 6 02:57:22 2025 by rpki-client