$ rpki-client -vvf rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/A0BD00DEF5B311EFA334BB67C4F9AE02.roa File: A0BD00DEF5B311EFA334BB67C4F9AE02.roa (raw, json) Hash identifier: VGbwSs+xYuuT82QPTEDjBRASIfWEGELF9LE6WDBK6Cw= Subject key identifier: 62:69:43:D9:E5:50:95:A6:2D:5E:9F:D4:5D:65:D7:81:79:9C:8F:5E Certificate issuer: /CN=A917A66F/serialNumber=B22C3D0ABCD3919486A3E61E8D788923922BF6A5 Certificate serial: FB Authority key identifier: B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/A0BD00DEF5B311EFA334BB67C4F9AE02.roa Signing time: Fri 28 Feb 2025 09:08:52 +0000 ROA not before: Fri 28 Feb 2025 09:08:52 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 976 IP address blocks: 103.118.40.0/22 maxlen: 22 103.118.40.0/23 maxlen: 23 103.118.40.0/24 maxlen: 24 103.118.41.0/24 maxlen: 24 103.118.42.0/23 maxlen: 23 103.118.42.0/24 maxlen: 24 103.118.43.0/24 maxlen: 24 2403:27c0::/32 maxlen: 32 2403:27c0:1000::/48 maxlen: 48 2403:27c0:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:52:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A66F Validity Not Before: Feb 28 09:08:52 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=67c17d23-862c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9b:c8:d1:1c:b0:6e:9f:a0:75:ba:69:8c:03: 78:ac:5d:f9:b7:26:c8:28:e5:da:9b:c9:af:b1:cc: e9:f2:2c:a4:c5:e6:18:20:2d:52:c8:b4:95:7d:5c: 20:0b:b1:0e:c5:b8:d7:e7:8d:ac:60:8c:f9:c1:71: 30:7c:b3:ac:fc:5a:37:d3:1a:20:c7:02:c3:e7:fd: eb:8c:16:e8:12:d3:87:c7:ac:28:fe:2d:d9:a5:7f: 5c:3d:1a:bc:3b:80:08:bf:3a:22:43:37:07:ef:e1: d0:06:08:4d:ac:20:47:05:0c:74:69:91:44:b2:1f: ca:40:b7:1f:37:b0:eb:4c:67:0a:e9:49:60:6b:58: 45:7c:15:af:33:12:b2:78:e3:b9:40:cd:64:b7:8a: 9c:20:57:16:53:83:12:27:0f:03:31:7b:2b:ce:8c: a8:4d:bd:c8:8b:30:6b:97:2b:c4:bd:7d:33:04:06: 89:50:ca:28:f3:b5:dd:8b:2e:09:08:73:5b:de:bd: cc:5c:ee:fe:3b:b8:00:49:03:2a:ca:03:ae:40:c2: e7:4a:c1:cc:cc:1d:7b:e5:fe:a3:aa:b6:c9:15:1b: 84:51:72:80:81:7e:53:5b:66:26:bb:5f:9e:59:fd: 25:a1:81:80:e4:d5:92:48:3d:65:cb:0d:01:c9:33: 54:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:69:43:D9:E5:50:95:A6:2D:5E:9F:D4:5D:65:D7:81:79:9C:8F:5E X509v3 Authority Key Identifier: keyid:B2:2C:3D:0A:BC:D3:91:94:86:A3:E6:1E:8D:78:89:23:92:2B:F6:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/siw9CrzTkZSGo-YejXiJI5Ir9qU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/siw9CrzTkZSGo-YejXiJI5Ir9qU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A66F/8FCC9D28C6F911EE97E6FB1DC4F9AE02/A0BD00DEF5B311EFA334BB67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.40.0/22 IPv6: 2403:27c0::/32 Signature Algorithm: sha256WithRSAEncryption bc:ad:c2:3a:a9:6e:d9:ef:d9:84:19:4a:7b:ae:5c:58:f1:f6: 6f:de:47:83:c4:d0:b2:80:05:85:7e:7f:12:00:8d:37:c3:4a: d2:7f:c0:63:58:2e:66:89:f6:ec:35:03:c6:44:70:29:a6:81: 66:e8:99:a6:40:89:1c:ce:7d:29:e8:cb:41:af:68:92:67:67: 31:bb:10:be:c1:8f:58:aa:bd:7b:09:37:ea:c6:13:e1:f5:11: 14:61:c9:af:74:79:67:d8:64:94:70:61:01:ae:d5:4b:0c:c1: f2:9e:ba:fd:32:8f:d2:3e:13:09:46:d2:f3:2d:91:9c:e6:16: 16:65:ed:0e:7b:cd:16:33:25:10:cb:4f:0d:3c:c2:7c:34:16: 9f:49:13:65:6c:61:b9:6c:58:8f:f9:38:04:65:e6:4f:24:37: 91:d8:d3:c0:da:ae:cf:bb:8c:8f:0d:01:50:bd:61:7b:2e:37: 5e:ad:15:57:a8:91:3b:7a:4c:a3:32:5c:b3:27:ce:2e:ec:79: 25:a1:bf:95:ae:e2:fb:28:1c:c8:7c:e3:cc:96:00:a3:8b:84: 42:b2:b4:8b:d6:02:cc:bf:f8:f9:29:34:b7:31:24:86:82:20: 9d:f6:31:ba:52:e9:79:82:e7:cf:36:11:54:e0:b6:75:ca:85: c8:c5:32:b5 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E2NkYxMTAvBgNVBAUTKEIyMkMzRDBBQkNEMzkxOTQ4NkEzRTYxRThENzg4OTIz OTIyQkY2QTUwHhcNMjUwMjI4MDkwODUyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MxN2QyMy04NjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr5vI0Rywbp+gdbppjAN4rF35tybIKOXam8mvsczp8iykxeYYIC1SyLSVfVwg C7EOxbjX542sYIz5wXEwfLOs/Fo30xogxwLD5/3rjBboEtOHx6wo/i3ZpX9cPRq8 O4AIvzoiQzcH7+HQBghNrCBHBQx0aZFEsh/KQLcfN7DrTGcK6Ulga1hFfBWvMxKy eOO5QM1kt4qcIFcWU4MSJw8DMXsrzoyoTb3IizBrlyvEvX0zBAaJUMoo87Xdiy4J CHNb3r3MXO7+O7gASQMqygOuQMLnSsHMzB175f6jqrbJFRuEUXKAgX5TW2Ymu1+e Wf0loYGA5NWSSD1lyw0ByTNUBQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGJpQ9nl UJWmLV6f1F1l14F5nI9eMB8GA1UdIwQYMBaAFLIsPQq805GUhqPmHo14iSOSK/al MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTY2Ri84RkNDOUQyOEM2 RjkxMUVFOTdFNkZCMURDNEY5QUUwMi9zaXc5Q3J6VGtaU0dvLVllalhpSkk1SXI5 cVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NpdzlDcnpUa1pTR28tWWVqWGlKSTVJcjlxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E2NkYvOEZDQzlEMjhDNkY5MTFFRTk3RTZGQjFEQzRGOUFFMDIvQTBCRDAwREVG NUIzMTFFRkEzMzRCQjY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJndigwDQQCAAIwBwMFACQDJ8AwDQYJKoZIhvcNAQELBQAD ggEBALytwjqpbtnv2YQZSnuuXFjx9m/eR4PE0LKABYV+fxIAjTfDStJ/wGNYLmaJ 9uw1A8ZEcCmmgWbomaZAiRzOfSnoy0GvaJJnZzG7EL7Bj1iqvXsJN+rGE+H1ERRh ya90eWfYZJRwYQGu1UsMwfKeuv0yj9I+EwlG0vMtkZzmFhZl7Q57zRYzJRDLTw08 wnw0Fp9JE2VsYblsWI/5OARl5k8kN5HY08Dars+7jI8NAVC9YXsuN16tFVeokTt6 TKMyXLMnzi7seSWhv5Wu4vsoHMh848yWAKOLhEKytIvWAsy/+PkpNLcxJIaCIJ32 MbpS6XmC5882EVTgtnXKhcjFMrU= -----END CERTIFICATE-----Generated at Sun Apr 6 06:39:49 2025 by rpki-client