$ rpki-client -vvf rpki.apnic.net/member_repository/A915D4EA/700FCF284E9C11ECAA488671C4F9AE02/B5A6646A4EA211EC9AEBA24CC4F9AE02.roa File: B5A6646A4EA211EC9AEBA24CC4F9AE02.roa (raw, json) Hash identifier: r7hd+udE0/uxVbv9WvLHX+58InN/53D6sx7FMyN6tO8= Subject key identifier: 31:5D:0C:51:1D:15:F7:AC:D2:48:05:F6:DE:1B:B8:7C:9E:49:D3:1D Certificate issuer: /CN=A915D4EA/serialNumber=0F804F17EC357CBF300D3BB2FA9CCD2A360AD5E2 Certificate serial: 041D Authority key identifier: 0F:80:4F:17:EC:35:7C:BF:30:0D:3B:B2:FA:9C:CD:2A:36:0A:D5:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D4BPF-w1fL8wDTuy-pzNKjYK1eI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D4EA/700FCF284E9C11ECAA488671C4F9AE02/B5A6646A4EA211EC9AEBA24CC4F9AE02.roa Signing time: Tue 07 Jan 2025 00:15:38 +0000 ROA not before: Tue 07 Jan 2025 00:15:38 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 149025 IP address blocks: 103.176.220.0/23 maxlen: 24 2400:3620::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D4EA/700FCF284E9C11ECAA488671C4F9AE02/D4BPF-w1fL8wDTuy-pzNKjYK1eI.crl rsync://rpki.apnic.net/member_repository/A915D4EA/700FCF284E9C11ECAA488671C4F9AE02/D4BPF-w1fL8wDTuy-pzNKjYK1eI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D4BPF-w1fL8wDTuy-pzNKjYK1eI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 00:11:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1053 (0x41d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D4EA, serialNumber=0F804F17EC357CBF300D3BB2FA9CCD2A360AD5E2 Validity Not Before: Jan 7 00:15:38 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=677c722a-7f99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2f:3a:9a:ff:18:b0:a1:f2:39:be:96:00:80: a7:a4:ea:76:3c:1e:53:74:31:ff:dd:06:08:00:b5: 40:ea:54:ae:77:84:0c:1b:7e:0c:63:9c:36:6f:57: 68:54:39:f3:6a:b4:c8:7b:8d:d9:ea:5a:3b:c0:72: 61:27:a6:a5:b3:57:69:2a:52:b0:d1:86:18:30:2c: d8:6b:68:6a:15:d9:a8:32:32:0f:e8:80:aa:f9:ae: 44:af:50:b2:89:98:2c:a5:6b:8c:9d:71:92:44:7c: b8:40:77:31:83:75:10:f7:20:0b:d9:01:29:63:4d: c8:ad:83:b9:85:ad:07:4f:fa:c0:c3:f2:5d:c4:1a: 1e:1a:72:b3:41:79:cb:85:9b:f0:f1:5e:fb:d0:e0: fd:b0:3a:96:a4:38:2c:2a:6f:d3:a2:b9:98:9d:0b: a0:df:81:91:a8:75:00:e5:59:f1:04:a7:8f:f3:ca: 2f:32:f3:fc:1b:71:08:b5:a7:eb:67:e2:67:10:9f: a8:a0:ba:09:66:ee:c3:fc:49:f4:6b:49:5d:ea:7e: 9d:d3:69:6e:18:72:6f:76:37:85:7b:ad:37:37:45: f7:43:35:4b:0b:ba:06:90:8b:7d:30:c9:05:b2:07: ef:ae:25:e8:e7:2e:5c:9e:56:96:39:e4:d3:59:5c: 68:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:5D:0C:51:1D:15:F7:AC:D2:48:05:F6:DE:1B:B8:7C:9E:49:D3:1D X509v3 Authority Key Identifier: keyid:0F:80:4F:17:EC:35:7C:BF:30:0D:3B:B2:FA:9C:CD:2A:36:0A:D5:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D4EA/700FCF284E9C11ECAA488671C4F9AE02/D4BPF-w1fL8wDTuy-pzNKjYK1eI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D4BPF-w1fL8wDTuy-pzNKjYK1eI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D4EA/700FCF284E9C11ECAA488671C4F9AE02/B5A6646A4EA211EC9AEBA24CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.220.0/23 IPv6: 2400:3620::/32 Signature Algorithm: sha256WithRSAEncryption 4d:f6:7c:42:26:4c:a9:9a:27:2c:18:44:b0:63:a4:af:6e:3c: 91:a8:72:bb:49:e9:cb:90:13:bb:35:22:e7:97:52:09:f8:aa: f6:0b:ee:1d:d5:87:52:ce:5d:bc:b0:24:52:50:c3:a2:d8:1e: 82:bf:5b:85:fe:89:11:1e:8c:ce:44:69:bb:13:ac:27:06:2a: 42:2e:0f:83:84:51:9b:ed:8e:b1:de:fc:8c:68:ba:ed:c1:0f: 5b:4d:b1:c8:27:89:3d:05:d1:6b:d8:53:4e:79:fd:77:02:41: 66:ad:d2:41:e6:9a:49:da:2d:1b:33:df:e4:cf:16:09:0b:3b: 7a:f5:15:28:b1:19:25:61:d8:80:45:eb:5e:b7:00:67:81:9d: 6a:de:1a:ca:a6:3f:58:66:ea:80:b9:32:84:f9:57:13:e9:d0: 0c:8b:9e:6c:1f:06:6c:21:cc:dd:f0:20:3e:f9:9a:3d:94:eb: 01:81:dd:f2:4e:43:f6:e2:90:3d:b4:c1:d8:52:6a:9f:37:ad: 4c:e1:2e:42:33:2b:e7:b9:92:9a:c8:62:1e:93:b9:4e:d1:bb: 40:14:77:c7:b7:3e:b6:7a:6c:38:c9:ab:dd:71:17:a7:30:e9: f1:d5:d8:88:85:54:8e:08:e8:2a:fe:da:2d:0e:81:23:07:f2: 5a:2e:f9:cc -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ0RUExMTAvBgNVBAUTKDBGODA0RjE3RUMzNTdDQkYzMDBEM0JCMkZBOUNDRDJB MzYwQUQ1RTIwHhcNMjUwMTA3MDAxNTM4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdjNzIyYS03Zjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtC86mv8YsKHyOb6WAICnpOp2PB5TdDH/3QYIALVA6lSud4QMG34MY5w2b1do VDnzarTIe43Z6lo7wHJhJ6als1dpKlKw0YYYMCzYa2hqFdmoMjIP6ICq+a5Er1Cy iZgspWuMnXGSRHy4QHcxg3UQ9yAL2QEpY03IrYO5ha0HT/rAw/JdxBoeGnKzQXnL hZvw8V770OD9sDqWpDgsKm/TormYnQug34GRqHUA5VnxBKeP88ovMvP8G3EItafr Z+JnEJ+ooLoJZu7D/En0a0ld6n6d02luGHJvdjeFe603N0X3QzVLC7oGkIt9MMkF sgfvriXo5y5cnlaWOeTTWVxonwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFDFdDFEd Ffes0kgF9t4buHyeSdMdMB8GA1UdIwQYMBaAFA+ATxfsNXy/MA07svqczSo2CtXi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDRFQS83MDBGQ0YyODRF OUMxMUVDQUE0ODg2NzFDNEY5QUUwMi9ENEJQRi13MWZMOHdEVHV5LXB6TktqWUsx ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0QlBGLXcxZkw4d0RUdXktcHpOS2pZSzFlSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQ0RUEvNzAwRkNGMjg0RTlDMTFFQ0FBNDg4NjcxQzRGOUFFMDIvQjVBNjY0NkE0 RUEyMTFFQzlBRUJBMjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnsNwwDQQCAAIwBwMFACQANiAwDQYJKoZIhvcNAQELBQAD ggEBAE32fEImTKmaJywYRLBjpK9uPJGocrtJ6cuQE7s1IueXUgn4qvYL7h3Vh1LO XbywJFJQw6LYHoK/W4X+iREejM5EabsTrCcGKkIuD4OEUZvtjrHe/Ixouu3BD1tN scgniT0F0WvYU055/XcCQWat0kHmmknaLRsz3+TPFgkLO3r1FSixGSVh2IBF6163 AGeBnWreGsqmP1hm6oC5MoT5VxPp0AyLnmwfBmwhzN3wID75mj2U6wGB3fJOQ/bi kD20wdhSap83rUzhLkIzK+e5kprIYh6TuU7Ru0AUd8e3PrZ6bDjJq91xF6cw6fHV 2IiFVI4I6Cr+2i0OgSMH8lou+cw= -----END CERTIFICATE-----Generated at Sun Apr 13 02:12:11 2025 by rpki-client