$ rpki-client -vvf rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/498B6EFE942411EA816FC855C4F9AE02.roa File: 498B6EFE942411EA816FC855C4F9AE02.roa (raw, json) Hash identifier: AU3Frw6p1SnNaYVLPNPNSlHZdunuBupMTCIgXK+Ojng= Subject key identifier: C6:2F:F1:DE:E2:9E:37:A8:2A:A1:FB:C5:C6:8C:DC:0A:F2:38:16:58 Certificate issuer: /CN=A917B413/serialNumber=21CFE1499BA36E9416B7FEBC813C3C2EA916BC46 Certificate serial: 0A87 Authority key identifier: 21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/498B6EFE942411EA816FC855C4F9AE02.roa Signing time: Thu 30 Jan 2025 20:09:19 +0000 ROA not before: Thu 30 Jan 2025 20:09:19 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 136217 IP address blocks: 103.83.240.0/24 maxlen: 24 103.83.241.0/24 maxlen: 24 103.83.242.0/24 maxlen: 24 103.83.243.0/24 maxlen: 24 2400:9840::/32 maxlen: 32 2400:9840::/48 maxlen: 48 2400:9840:1::/48 maxlen: 48 2400:9840:2::/48 maxlen: 48 2400:9840:3::/48 maxlen: 48 2400:9840:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:39:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2695 (0xa87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B413 Validity Not Before: Jan 30 20:09:19 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=679bdc6f-dbb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5c:c7:73:6f:bf:3c:c1:c9:91:d1:0b:fc:78: 08:02:0f:fe:43:d9:6c:65:e1:30:5e:21:a9:3e:68: 5b:cb:0e:a4:b1:e0:a7:fc:aa:1d:ef:8a:4e:cd:cb: 3b:0a:da:f4:56:da:04:a0:65:72:e6:9d:53:fe:93: 8b:ec:06:72:91:c4:b7:41:27:a5:12:9b:68:f7:e2: 0a:8e:85:29:89:9f:77:b0:e1:6f:14:d4:1d:bc:6f: bd:7b:06:87:fa:e9:d6:60:ae:a6:67:1f:38:8d:b4: 19:c6:cd:3c:fb:7e:39:d3:49:39:f1:24:7e:46:e8: 74:8e:ec:11:18:87:2f:89:f0:d4:ba:a8:40:d4:b5: d1:51:6f:17:46:b4:e4:d8:7e:82:a3:2f:ce:e9:2a: e2:bd:2b:34:f7:82:c0:1c:c7:55:e6:63:0d:ad:b5: 55:fb:22:9d:13:33:ef:b6:b2:1c:e8:cb:b8:69:64: 88:18:e8:d8:d4:c2:c6:5e:03:8b:46:d1:8b:44:e9: 4e:f1:5c:ee:51:10:ea:f0:d3:31:bb:9e:c4:9e:b2: 38:0f:9b:50:9d:37:0e:2b:1f:11:e8:39:1d:08:64: a1:97:7a:cf:37:f8:99:a0:7e:23:1b:71:e3:4b:8a: 53:21:3e:d7:c1:0d:3a:19:c3:dc:99:8c:20:54:2e: e6:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:2F:F1:DE:E2:9E:37:A8:2A:A1:FB:C5:C6:8C:DC:0A:F2:38:16:58 X509v3 Authority Key Identifier: keyid:21:CF:E1:49:9B:A3:6E:94:16:B7:FE:BC:81:3C:3C:2E:A9:16:BC:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/Ic_hSZujbpQWt_68gTw8LqkWvEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ic_hSZujbpQWt_68gTw8LqkWvEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B413/B8FCA7BA516E11EA980A287EC4F9AE02/498B6EFE942411EA816FC855C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.83.240.0/22 IPv6: 2400:9840::/32 Signature Algorithm: sha256WithRSAEncryption 34:b5:35:b7:11:4c:dc:a6:4e:7a:08:a3:a7:14:7a:3e:0c:a7: 20:0f:14:6d:ca:ac:84:95:1a:da:a9:0b:cb:6e:f8:82:10:c2: 85:47:e9:02:88:02:68:60:b8:2d:25:44:06:16:7e:ed:ec:14: 82:d2:ae:66:87:67:09:1e:fc:40:46:be:f8:eb:22:44:4d:62: e8:30:a1:4f:df:f9:d3:60:99:ec:70:db:06:51:a4:1f:f1:d8: f4:8e:c0:05:f8:21:02:e3:b5:5d:d3:ad:51:fd:3d:58:2a:eb: 0f:61:c8:14:d8:d6:41:78:09:42:ad:03:ac:86:b5:a9:0f:b6: ba:bd:63:fc:c4:28:a4:e1:ad:c2:87:d1:35:a0:b4:e0:f3:80: 58:77:a2:b8:d2:0d:51:a9:0e:15:43:e2:7b:18:e3:dd:9a:80: 53:74:2b:2e:ec:2b:4d:c8:20:88:e4:9f:a2:e6:4a:d8:65:3d: d1:68:82:6c:48:62:2d:e4:8d:dc:bb:20:38:c4:a5:23:1a:a7: 43:df:9e:b8:fe:ca:6c:f6:73:57:2c:69:a1:65:65:d6:e8:bb: 66:3e:9c:96:61:55:3d:3f:23:91:59:71:31:64:de:d2:0f:09: b1:0b:d4:39:83:df:c2:aa:fa:10:29:ef:e9:7b:32:91:07:bf: 4b:a4:2e:95 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0MTMxMTAvBgNVBAUTKDIxQ0ZFMTQ5OUJBMzZFOTQxNkI3RkVCQzgxM0MzQzJF QTkxNkJDNDYwHhcNMjUwMTMwMjAwOTE5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzliZGM2Zi1kYmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAslzHc2+/PMHJkdEL/HgIAg/+Q9lsZeEwXiGpPmhbyw6kseCn/Kod74pOzcs7 Ctr0VtoEoGVy5p1T/pOL7AZykcS3QSelEpto9+IKjoUpiZ93sOFvFNQdvG+9ewaH +unWYK6mZx84jbQZxs08+34500k58SR+Ruh0juwRGIcvifDUuqhA1LXRUW8XRrTk 2H6Coy/O6SrivSs094LAHMdV5mMNrbVV+yKdEzPvtrIc6Mu4aWSIGOjY1MLGXgOL RtGLROlO8VzuURDq8NMxu57EnrI4D5tQnTcOKx8R6DkdCGShl3rPN/iZoH4jG3Hj S4pTIT7XwQ06GcPcmYwgVC7mYQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMYv8d7i njeoKqH7xcaM3AryOBZYMB8GA1UdIwQYMBaAFCHP4Umbo26UFrf+vIE8PC6pFrxG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjQxMy9COEZDQTdCQTUx NkUxMUVBOTgwQTI4N0VDNEY5QUUwMi9JY19oU1p1amJwUVd0XzY4Z1R3OExxa1d2 RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljX2hTWnVqYnBRV3RfNjhnVHc4THFrV3ZFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I0MTMvQjhGQ0E3QkE1MTZFMTFFQTk4MEEyODdFQzRGOUFFMDIvNDk4QjZFRkU5 NDI0MTFFQTgxNkZDODU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnU/AwDQQCAAIwBwMFACQAmEAwDQYJKoZIhvcNAQELBQAD ggEBADS1NbcRTNymTnoIo6cUej4MpyAPFG3KrISVGtqpC8tu+IIQwoVH6QKIAmhg uC0lRAYWfu3sFILSrmaHZwke/EBGvvjrIkRNYugwoU/f+dNgmexw2wZRpB/x2PSO wAX4IQLjtV3TrVH9PVgq6w9hyBTY1kF4CUKtA6yGtakPtrq9Y/zEKKThrcKH0TWg tODzgFh3orjSDVGpDhVD4nsY492agFN0Ky7sK03IIIjkn6LmSthlPdFogmxIYi3k jdy7IDjEpSMap0Pfnrj+ymz2c1csaaFlZdbou2Y+nJZhVT0/I5FZcTFk3tIPCbEL 1DmD38Kq+hAp7+l7MpEHv0ukLpU= -----END CERTIFICATE-----Generated at Sat Apr 5 02:22:43 2025 by rpki-client