$ rpki-client -vvf rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/8D655C9656A511EA8FAB974DC4F9AE02.roa File: 8D655C9656A511EA8FAB974DC4F9AE02.roa (raw, json) Hash identifier: 8zgED/u5BJ4UZdNgGr2psVcwZmXJQhr/Sce32Chr/as= Subject key identifier: 35:EA:35:C3:4D:8F:A1:2E:EE:81:E1:C9:35:12:45:80:32:9D:E2:81 Certificate issuer: /CN=A916D29F/serialNumber=AA85CCD2DD3E1C003BF72FF53E58C7200E7CF0A8 Certificate serial: 0E52 Authority key identifier: AA:85:CC:D2:DD:3E:1C:00:3B:F7:2F:F5:3E:58:C7:20:0E:7C:F0:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qoXM0t0-HAA79y_1PljHIA588Kg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/8D655C9656A511EA8FAB974DC4F9AE02.roa Signing time: Wed 22 Jan 2025 17:56:04 +0000 ROA not before: Wed 22 Jan 2025 17:56:04 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 64200 IP address blocks: 103.105.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/qoXM0t0-HAA79y_1PljHIA588Kg.crl rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/qoXM0t0-HAA79y_1PljHIA588Kg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qoXM0t0-HAA79y_1PljHIA588Kg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:51:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3666 (0xe52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D29F Validity Not Before: Jan 22 17:56:04 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67913133-0265 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:24:11:47:e9:ad:78:2c:64:80:23:6d:9e:61: 12:26:7c:84:96:ba:2f:ef:31:49:3a:e7:ee:3a:f2: 37:13:9c:ae:7a:35:59:5f:fc:8b:7c:3d:d1:60:1b: 62:f4:fd:7c:52:68:50:de:a9:61:33:0a:32:22:3a: 56:e2:a3:cf:61:7b:aa:05:94:7e:e5:a7:4f:64:ea: 0d:24:27:78:d8:ac:bb:34:42:48:0d:7b:4e:e2:ab: 32:e0:04:ba:0e:5b:71:a8:57:d0:94:04:58:6a:b0: db:fc:6b:1f:88:6d:c4:91:5e:72:0b:31:e4:ca:60: 42:83:e4:fb:12:fd:23:2b:e0:74:5b:9b:28:d6:3b: a5:86:28:91:25:7e:40:0c:30:c5:97:4e:ff:fe:34: a6:7f:c6:dc:ba:37:dd:3d:3e:91:9b:c4:cc:fa:fd: 37:f4:4e:30:9f:c9:f5:dc:8c:46:90:41:3b:20:03: 65:af:b4:ff:c8:bb:fd:4f:e3:ae:53:da:7f:92:d7: 05:d4:ae:fe:74:07:66:c7:b3:98:35:22:57:db:59: 7e:d3:fa:45:fd:00:cf:79:40:e2:e6:1e:6d:78:4f: 09:6c:8d:6d:c0:5a:84:02:69:2d:9a:f0:af:f0:16: 78:1b:ef:d0:6e:bb:f4:6b:ea:21:b1:56:22:9f:cd: f6:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:EA:35:C3:4D:8F:A1:2E:EE:81:E1:C9:35:12:45:80:32:9D:E2:81 X509v3 Authority Key Identifier: keyid:AA:85:CC:D2:DD:3E:1C:00:3B:F7:2F:F5:3E:58:C7:20:0E:7C:F0:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/qoXM0t0-HAA79y_1PljHIA588Kg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qoXM0t0-HAA79y_1PljHIA588Kg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/8D655C9656A511EA8FAB974DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.105.167.0/24 Signature Algorithm: sha256WithRSAEncryption a4:8c:a3:87:53:87:79:7c:a2:d0:63:a2:7d:e3:a6:18:cd:c8: cf:6d:2e:b8:12:11:91:b2:36:76:f8:d2:39:8f:1d:e6:a1:3c: ed:58:6e:98:24:51:20:23:c4:c5:a7:48:a5:0a:f8:93:9d:d9: 0c:20:34:1f:df:1f:0d:4e:11:e2:66:50:fb:de:cb:9a:6a:94: 70:31:a6:13:ca:83:ed:e6:da:bf:58:c4:20:0a:2f:ca:e1:8e: 66:f6:f2:74:96:c0:e1:ee:f1:35:c6:f9:e9:9b:bb:72:c1:45: 81:a0:bf:dc:8a:b1:2f:29:8b:89:32:f3:af:5a:d3:f1:8d:d5: 8c:34:f6:b7:af:88:2d:5f:f9:6b:98:02:91:f6:82:89:b1:89: f5:d7:7c:bb:ad:8d:7c:ec:3f:bc:63:0f:bd:87:12:88:d7:a0: 75:26:d9:2e:87:5f:57:01:ad:af:f7:58:51:6c:c2:43:d0:e0: 6c:b6:e5:76:af:49:f3:df:e3:10:2c:24:8c:54:6f:41:51:a4: 98:be:e1:4f:5d:de:1e:d4:25:4d:fb:01:df:99:e2:af:0a:a5: 16:a1:fe:4a:38:23:3e:a4:ef:cc:c8:27:d2:05:a9:60:59:37: 36:0b:17:14:cb:45:b3:63:c4:c4:6a:a9:81:a1:34:28:48:10: 1f:03:01:93 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQyOUYxMTAvBgNVBAUTKEFBODVDQ0QyREQzRTFDMDAzQkY3MkZGNTNFNThDNzIw MEU3Q0YwQTgwHhcNMjUwMTIyMTc1NjA0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkxMzEzMy0wMjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAziQRR+mteCxkgCNtnmESJnyElrov7zFJOufuOvI3E5yuejVZX/yLfD3RYBti 9P18UmhQ3qlhMwoyIjpW4qPPYXuqBZR+5adPZOoNJCd42Ky7NEJIDXtO4qsy4AS6 DltxqFfQlARYarDb/GsfiG3EkV5yCzHkymBCg+T7Ev0jK+B0W5so1julhiiRJX5A DDDFl07//jSmf8bcujfdPT6Rm8TM+v039E4wn8n13IxGkEE7IANlr7T/yLv9T+Ou U9p/ktcF1K7+dAdmx7OYNSJX21l+0/pF/QDPeUDi5h5teE8JbI1twFqEAmktmvCv 8BZ4G+/Qbrv0a+ohsVYin832aQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDXqNcNN j6Eu7oHhyTUSRYAyneKBMB8GA1UdIwQYMBaAFKqFzNLdPhwAO/cv9T5YxyAOfPCo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDI5Ri82OTFGNzRDNDk4 ODgxMUU5OTFBRjY2MzZDNEY5QUUwMi9xb1hNMHQwLUhBQTc5eV8xUGxqSElBNTg4 S2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FvWE0wdDAtSEFBNzl5XzFQbGpISUE1ODhLZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQyOUYvNjkxRjc0QzQ5ODg4MTFFOTkxQUY2NjM2QzRGOUFFMDIvOEQ2NTVDOTY1 NkE1MTFFQThGQUI5NzREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnaacwDQYJKoZIhvcNAQELBQADggEBAKSMo4dTh3l8otBj on3jphjNyM9tLrgSEZGyNnb40jmPHeahPO1YbpgkUSAjxMWnSKUK+JOd2QwgNB/f Hw1OEeJmUPvey5pqlHAxphPKg+3m2r9YxCAKL8rhjmb28nSWwOHu8TXG+embu3LB RYGgv9yKsS8pi4ky869a0/GN1Yw09reviC1f+WuYApH2gomxifXXfLutjXzsP7xj D72HEojXoHUm2S6HX1cBra/3WFFswkPQ4Gy25XavSfPf4xAsJIxUb0FRpJi+4U9d 3h7UJU37Ad+Z4q8KpRah/ko4Iz6k78zIJ9IFqWBZNzYLFxTLRbNjxMRqqYGhNChI EB8DAZM= -----END CERTIFICATE-----Generated at Sat Apr 5 01:50:40 2025 by rpki-client