$ rpki-client -vvf rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/65E02670C83E11ED9FAAFA22C4F9AE02.roa File: 65E02670C83E11ED9FAAFA22C4F9AE02.roa (raw, json) Hash identifier: YyW2MZscKA/3QJ0o9lXLLeVy1S1F2mX9Ri00sryZxdc= Subject key identifier: F1:A1:DD:AE:24:ED:68:E8:DC:E2:B5:9B:ED:D7:6C:44:1E:DB:A7:83 Certificate issuer: /CN=A917A442/serialNumber=476C2B96A518F357F6D97682A871C3E48BB9E123 Certificate serial: 018E Authority key identifier: 47:6C:2B:96:A5:18:F3:57:F6:D9:76:82:A8:71:C3:E4:8B:B9:E1:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/65E02670C83E11ED9FAAFA22C4F9AE02.roa Signing time: Fri 11 Apr 2025 03:08:13 +0000 ROA not before: Fri 11 Apr 2025 03:08:13 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136463 IP address blocks: 103.89.18.0/24 maxlen: 24 103.89.19.0/24 maxlen: 24 103.105.140.0/24 maxlen: 24 103.105.141.0/24 maxlen: 24 2400:e940::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.crl rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 02:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A442, serialNumber=476C2B96A518F357F6D97682A871C3E48BB9E123 Validity Not Before: Apr 11 03:08:13 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f8879d-8b57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3f:40:f0:7c:aa:8b:8e:12:fd:02:e1:5a:28: 5b:76:71:bd:97:81:38:21:e1:b5:b7:70:16:18:6d: d6:22:a7:9a:81:79:f7:15:88:52:c5:05:ae:38:b6: ae:fb:f2:40:1d:8e:72:24:60:61:07:dd:9f:01:21: 83:18:d0:ae:c4:28:2f:24:80:8e:53:08:f5:3b:7e: f1:75:93:85:65:7c:76:a4:b5:dd:a8:5d:16:04:60: 65:92:cb:3a:b3:cf:f9:a1:79:cc:25:e8:b3:53:38: 59:df:ed:b7:d1:2a:7e:d9:0e:a9:85:a0:ff:8e:ca: 84:3d:37:bf:69:b9:be:3c:10:cf:6f:6d:47:73:a3: f0:12:2b:5e:4d:f6:00:6d:70:82:a1:3a:58:a8:5f: 26:3e:d7:18:2a:06:bd:c6:14:64:58:d5:b2:18:f3: 06:08:9f:a6:48:00:87:bf:2f:45:86:94:32:7d:9c: 4a:14:14:17:a1:86:c2:ed:04:c1:7d:78:1b:b0:61: 92:4a:f9:49:3a:66:8b:20:bf:34:10:ba:09:aa:94: f3:8f:a7:13:ac:04:56:8c:03:00:24:37:0b:a1:35: 44:0e:b8:72:da:85:9c:4a:a3:e6:3e:ea:f0:7d:80: b9:fc:f1:3a:10:ea:97:49:f3:a5:71:7b:9d:36:04: ba:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:A1:DD:AE:24:ED:68:E8:DC:E2:B5:9B:ED:D7:6C:44:1E:DB:A7:83 X509v3 Authority Key Identifier: keyid:47:6C:2B:96:A5:18:F3:57:F6:D9:76:82:A8:71:C3:E4:8B:B9:E1:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/65E02670C83E11ED9FAAFA22C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.89.18.0/23 103.105.140.0/23 IPv6: 2400:e940::/32 Signature Algorithm: sha256WithRSAEncryption 91:66:43:64:1c:49:7f:26:77:48:34:62:65:ad:4a:9e:e6:10: 9e:f0:20:6b:42:08:fa:03:b3:04:ae:f4:96:0e:0c:d0:ea:3d: 75:96:6c:40:66:89:d1:7c:3e:62:89:16:88:6e:f3:c6:04:08: d0:ab:81:51:2a:5d:8f:b0:fe:2f:d8:80:d9:2c:d2:96:d1:7e: 04:50:8d:df:bb:09:02:28:ca:06:4d:52:38:43:b6:07:99:5e: 76:67:1d:b3:ca:c4:4e:58:c9:29:7c:11:b2:12:f8:bc:2e:36: d5:8d:c2:4d:6f:ab:ff:b5:84:97:4e:97:cb:7f:89:c1:7d:f6: 8b:b8:2d:ab:d9:5a:56:d9:71:18:9f:ce:b7:ed:e5:cc:99:0a: a7:51:a8:f7:36:b9:ad:6a:09:45:07:d7:57:5b:0e:ae:6d:35: 68:97:69:9d:96:f0:da:67:67:3c:f4:64:e1:e1:3f:25:00:3d: c9:38:88:6d:71:91:1b:7a:d7:65:00:d7:1f:90:85:9a:a0:d4: ef:c8:f4:92:5e:45:f0:80:85:a6:50:fc:8c:c5:0a:ca:f7:d3: ed:29:d0:3d:80:17:f1:08:c0:09:43:17:7a:f5:a4:fa:c8:83: 66:9a:11:1b:33:37:e5:1f:01:e6:a8:f9:de:30:dd:56:fc:ed: 81:24:a1:84 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0NDIxMTAvBgNVBAUTKDQ3NkMyQjk2QTUxOEYzNTdGNkQ5NzY4MkE4NzFDM0U0 OEJCOUUxMjMwHhcNMjUwNDExMDMwODEzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y4ODc5ZC04YjU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwj9A8Hyqi44S/QLhWihbdnG9l4E4IeG1t3AWGG3WIqeagXn3FYhSxQWuOLau +/JAHY5yJGBhB92fASGDGNCuxCgvJICOUwj1O37xdZOFZXx2pLXdqF0WBGBlkss6 s8/5oXnMJeizUzhZ3+230Sp+2Q6phaD/jsqEPTe/abm+PBDPb21Hc6PwEiteTfYA bXCCoTpYqF8mPtcYKga9xhRkWNWyGPMGCJ+mSACHvy9FhpQyfZxKFBQXoYbC7QTB fXgbsGGSSvlJOmaLIL80ELoJqpTzj6cTrARWjAMAJDcLoTVEDrhy2oWcSqPmPurw fYC5/PE6EOqXSfOlcXudNgS6FQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFPGh3a4k 7Wjo3OK1m+3XbEQe26eDMB8GA1UdIwQYMBaAFEdsK5alGPNX9tl2gqhxw+SLueEj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTQ0Mi9FMEU3REI1NkM4 MzkxMUVEQUM3MkIxMUNDNEY5QUUwMi9SMndybHFVWTgxZjIyWGFDcUhIRDVJdTU0 U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Iyd3JscVVZODFmMjJYYUNxSEhENUl1NTRTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E0NDIvRTBFN0RCNTZDODM5MTFFREFDNzJCMTFDQzRGOUFFMDIvNjVFMDI2NzBD ODNFMTFFRDlGQUFGQTIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnWRIDBAFnaYwwDQQCAAIwBwMFACQA6UAwDQYJKoZIhvcN AQELBQADggEBAJFmQ2QcSX8md0g0YmWtSp7mEJ7wIGtCCPoDswSu9JYODNDqPXWW bEBmidF8PmKJFohu88YECNCrgVEqXY+w/i/YgNks0pbRfgRQjd+7CQIoygZNUjhD tgeZXnZnHbPKxE5YySl8EbIS+LwuNtWNwk1vq/+1hJdOl8t/icF99ou4LavZWlbZ cRifzrft5cyZCqdRqPc2ua1qCUUH11dbDq5tNWiXaZ2W8NpnZzz0ZOHhPyUAPck4 iG1xkRt612UA1x+QhZqg1O/I9JJeRfCAhaZQ/IzFCsr30+0p0D2AF/EIwAlDF3r1 pPrIg2aaERszN+UfAeao+d4w3Vb87YEkoYQ= -----END CERTIFICATE-----Generated at Tue Apr 22 02:09:34 2025 by rpki-client