$ rpki-client -vvf rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/B824A78A941611EF9EE2A549C4F9AE02.roa File: B824A78A941611EF9EE2A549C4F9AE02.roa (raw, json) Hash identifier: BJM/Le9M0ASPfkceC2Fyfw6ETpjKLqTSOMR6Rnkm7wE= Subject key identifier: F0:02:37:72:0B:BB:D9:B4:67:B7:E8:DB:B3:E5:D8:AC:1D:25:3E:7D Certificate issuer: /CN=A915EFDF/serialNumber=E8C21B03B65083B21BFA37526D12B341F249CC8B Certificate serial: 07F2 Authority key identifier: E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/B824A78A941611EF9EE2A549C4F9AE02.roa Signing time: Sat 25 Jan 2025 04:29:33 +0000 ROA not before: Sat 25 Jan 2025 04:29:33 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 151106 IP address blocks: 103.72.100.0/24 maxlen: 24 103.72.101.0/24 maxlen: 24 103.72.102.0/24 maxlen: 24 103.72.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.crl rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 20:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2034 (0x7f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EFDF Validity Not Before: Jan 25 04:29:33 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=679468ad-edbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:78:63:c2:6e:6c:ab:ff:b6:fe:fd:18:a3:d4: 0b:d2:fe:c8:b9:3f:1a:f6:3d:3a:e8:f9:d5:d0:e1: 0d:7a:e8:57:04:8a:c2:9f:76:54:1a:14:36:91:4d: 6a:f0:a7:10:48:3b:fc:e7:3a:69:7a:0d:c5:ac:13: 83:07:12:46:ab:e6:9e:36:be:2e:0d:ea:09:36:71: d7:1d:e6:d1:5f:a5:08:e8:69:5f:a9:a0:25:d0:22: 4b:ff:77:d4:5b:16:d3:55:4d:a2:ca:9f:77:ab:5f: ea:c7:35:48:95:3f:b0:bd:9b:4d:ec:7e:5c:d4:95: 05:47:d2:99:d5:b8:61:88:c4:2f:04:c6:ea:5e:2a: e3:b4:e5:92:27:27:b6:03:c5:4e:3e:75:3f:f9:51: 43:f5:4d:02:2b:30:98:d5:91:65:c4:39:69:6d:32: 2e:20:ea:63:63:6c:16:b9:93:fb:4f:fe:c2:d6:e2: 5a:82:92:a8:a5:8f:bd:c0:41:55:ad:50:eb:1f:b3: b8:1f:7a:d0:2c:4f:c3:65:95:a8:7d:aa:75:2c:ec: c5:65:cf:50:6e:a8:54:02:eb:1e:f6:4e:09:7b:ef: ca:58:8c:d0:bd:fb:f5:e1:78:05:1a:da:c8:14:e3: d2:d2:1f:c6:4d:fa:2c:b2:33:cc:f6:60:24:71:cd: a8:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:02:37:72:0B:BB:D9:B4:67:B7:E8:DB:B3:E5:D8:AC:1D:25:3E:7D X509v3 Authority Key Identifier: keyid:E8:C2:1B:03:B6:50:83:B2:1B:FA:37:52:6D:12:B3:41:F2:49:CC:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6MIbA7ZQg7Ib-jdSbRKzQfJJzIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EFDF/0BDD7EA2E90C11EA965C2A2FC4F9AE02/B824A78A941611EF9EE2A549C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.100.0/22 Signature Algorithm: sha256WithRSAEncryption 11:96:22:2f:d7:46:1a:47:2b:e9:17:37:30:b5:83:e1:1a:3f: 4c:84:ae:30:0b:e7:72:c0:0c:b2:85:df:b2:2b:65:93:fd:5c: dd:69:06:0c:98:59:9d:30:50:96:65:04:06:cf:21:8f:cf:30: b4:a2:23:19:d8:8f:68:49:ff:d4:cd:15:52:dc:eb:74:4c:19: 60:77:99:ac:4c:43:0a:f2:b2:61:1b:7a:66:ce:e1:7f:09:f3: 59:f8:ee:1a:7d:fc:85:cc:8f:10:1c:b5:03:54:e1:3a:e4:9b: c7:8a:1f:7d:cc:57:e9:45:48:89:5e:a4:85:05:32:76:ba:1d: 83:2f:d0:08:fb:06:4e:62:19:0e:eb:cd:9c:7f:31:8d:bd:0d: b6:be:98:f8:84:14:c1:63:ee:54:02:5e:bc:32:0a:6b:98:19: 8b:ed:7c:b4:a6:2e:ae:65:0a:21:b6:18:8a:4a:04:21:04:19: e1:89:85:6d:66:7f:f7:50:8e:c8:16:cb:5c:ba:2a:10:da:bc: a8:d2:bf:8c:49:9b:34:a8:96:a9:6f:13:22:48:2a:63:47:e7: 36:e7:aa:8e:b6:26:28:18:4e:86:66:90:47:1f:62:d9:a0:f2: 48:ec:9d:1b:ed:3f:38:f5:8e:16:06:e9:a5:9b:29:4a:b0:c8: 71:e4:21:4e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVGREYxMTAvBgNVBAUTKEU4QzIxQjAzQjY1MDgzQjIxQkZBMzc1MjZEMTJCMzQx RjI0OUNDOEIwHhcNMjUwMTI1MDQyOTMzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk0NjhhZC1lZGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnhjwm5sq/+2/v0Yo9QL0v7IuT8a9j066PnV0OENeuhXBIrCn3ZUGhQ2kU1q 8KcQSDv85zppeg3FrBODBxJGq+aeNr4uDeoJNnHXHebRX6UI6GlfqaAl0CJL/3fU WxbTVU2iyp93q1/qxzVIlT+wvZtN7H5c1JUFR9KZ1bhhiMQvBMbqXirjtOWSJye2 A8VOPnU/+VFD9U0CKzCY1ZFlxDlpbTIuIOpjY2wWuZP7T/7C1uJagpKopY+9wEFV rVDrH7O4H3rQLE/DZZWofap1LOzFZc9QbqhUAuse9k4Je+/KWIzQvfv14XgFGtrI FOPS0h/GTfossjPM9mAkcc2o+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPACN3IL u9m0Z7fo27Pl2KwdJT59MB8GA1UdIwQYMBaAFOjCGwO2UIOyG/o3Um0Ss0HyScyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUZERi8wQkREN0VBMkU5 MEMxMUVBOTY1QzJBMkZDNEY5QUUwMi82TUliQTdaUWc3SWItamRTYlJLelFmSkp6 SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZNSWJBN1pRZzdJYi1qZFNiUkt6UWZKSnpJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUVGREYvMEJERDdFQTJFOTBDMTFFQTk2NUMyQTJGQzRGOUFFMDIvQjgyNEE3OEE5 NDE2MTFFRjlFRTJBNTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnSGQwDQYJKoZIhvcNAQELBQADggEBABGWIi/XRhpHK+kX NzC1g+EaP0yErjAL53LADLKF37IrZZP9XN1pBgyYWZ0wUJZlBAbPIY/PMLSiIxnY j2hJ/9TNFVLc63RMGWB3maxMQwrysmEbembO4X8J81n47hp9/IXMjxActQNU4Trk m8eKH33MV+lFSIlepIUFMna6HYMv0Aj7Bk5iGQ7rzZx/MY29Dba+mPiEFMFj7lQC XrwyCmuYGYvtfLSmLq5lCiG2GIpKBCEEGeGJhW1mf/dQjsgWy1y6KhDavKjSv4xJ mzSolqlvEyJIKmNH5zbnqo62JigYToZmkEcfYtmg8kjsnRvtPzj1jhYG6aWbKUqw yHHkIU4= -----END CERTIFICATE-----Generated at Fri Apr 11 19:11:23 2025 by rpki-client