$ rpki-client -vvf rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/1953EB90FF1B11EBA5CEF970C4F9AE02.roa File: 1953EB90FF1B11EBA5CEF970C4F9AE02.roa (raw, json) Hash identifier: GyNWMA5uS2CM++CZD9BiRxHkePo3mscOl1IpeulPgT0= Subject key identifier: 82:05:E3:C8:84:5E:2A:74:41:37:22:94:45:E9:B7:47:FA:94:26:B7 Certificate issuer: /CN=A917C81C/serialNumber=3F3B2F5B3BAE52A6B5692CAF92A2554B06DA863D Certificate serial: 050B Authority key identifier: 3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/1953EB90FF1B11EBA5CEF970C4F9AE02.roa Signing time: Wed 02 Apr 2025 23:55:12 +0000 ROA not before: Wed 02 Apr 2025 23:55:12 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141727 IP address blocks: 103.162.204.0/24 maxlen: 24 2001:df5:fb80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 23:43:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1291 (0x50b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C81C Validity Not Before: Apr 2 23:55:12 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67edce5f-734e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ef:3f:94:0b:5e:f1:5a:55:5f:40:9f:96:8c: 8f:2e:be:45:55:20:42:e7:bc:a2:be:37:72:13:59: 6d:88:24:bc:99:6b:a0:b1:e3:42:99:23:99:c8:10: 64:b0:c8:d4:6f:84:bb:69:1d:20:25:27:76:84:fb: fd:c8:49:1d:cc:d3:df:1d:bc:a8:f0:2f:1e:33:b2: 8d:8f:48:b9:84:20:ff:92:6e:0b:ad:74:6c:68:01: ee:73:f7:85:05:28:ea:81:de:3d:ec:76:51:30:7d: 90:f9:a6:6d:9f:f2:23:34:1d:00:71:e0:5f:7f:b4: 18:a6:e3:40:a2:fc:86:9a:0c:b0:e7:8c:07:b4:a3: 2d:e7:b5:3b:e2:3f:e3:4f:c1:69:1b:d6:fc:53:07: 95:12:41:26:14:3d:d6:bf:f8:07:99:55:4d:70:ea: 3f:af:62:40:1a:83:6a:41:a9:e1:88:a8:5d:ff:ee: 0b:37:a8:32:11:cf:56:6c:dc:f8:51:50:09:ea:af: 85:cb:96:dc:3a:de:9b:63:37:00:8d:51:cb:8d:71: 4b:41:65:b2:d3:63:48:85:36:6d:01:15:fc:fc:13: da:97:ec:d0:86:e2:cb:53:14:64:ca:12:af:f7:9c: ca:a7:3a:16:32:7c:42:db:63:b4:3c:5c:fc:08:7e: 8d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:05:E3:C8:84:5E:2A:74:41:37:22:94:45:E9:B7:47:FA:94:26:B7 X509v3 Authority Key Identifier: keyid:3F:3B:2F:5B:3B:AE:52:A6:B5:69:2C:AF:92:A2:55:4B:06:DA:86:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/PzsvWzuuUqa1aSyvkqJVSwbahj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PzsvWzuuUqa1aSyvkqJVSwbahj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C81C/D19AEE3EFF1011EB9BD13D6CC4F9AE02/1953EB90FF1B11EBA5CEF970C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.204.0/24 IPv6: 2001:df5:fb80::/48 Signature Algorithm: sha256WithRSAEncryption 74:5d:00:c5:b5:7f:17:18:b7:33:f0:4a:10:81:b8:8e:b5:f4: 6e:5b:ef:f4:51:91:c0:48:e0:c8:97:e3:ca:00:3c:51:91:98: 79:81:d7:11:1f:cb:de:d2:cf:70:3c:4a:f3:6a:ce:4e:43:71: a3:0d:32:7a:c0:e0:3e:8f:22:0a:49:8e:87:cc:24:da:7c:5f: c4:cc:b9:9e:e7:78:b3:9f:24:14:c9:2e:95:73:30:28:09:36: 35:7f:e8:d1:cc:bb:a2:cc:dd:06:36:4f:fe:13:1a:cc:f3:31: 48:0c:a1:03:98:5c:81:db:a0:84:01:be:d7:6f:9c:3b:3c:57: 9c:f5:ab:04:59:06:c0:60:46:e2:67:05:76:b2:7a:64:60:90: d3:20:b1:87:96:44:0b:7f:53:e4:c5:ca:9f:c0:9a:b9:04:81: 2a:6d:59:34:0f:df:fb:09:de:5b:78:53:3f:77:3a:01:3e:48: 68:8f:93:bf:74:65:55:a4:54:5b:c0:0f:26:9f:65:53:36:98: 40:c9:00:f4:68:59:d6:94:b7:48:71:75:d5:8d:96:b2:f3:4a: a8:0a:c9:cc:55:15:f4:89:44:47:3b:23:c2:2b:c2:17:9c:bb: 0a:8e:09:d7:a6:5d:66:a4:ad:d3:19:1d:de:d8:8b:b7:aa:0a: 67:d4:1e:6a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M4MUMxMTAvBgNVBAUTKDNGM0IyRjVCM0JBRTUyQTZCNTY5MkNBRjkyQTI1NTRC MDZEQTg2M0QwHhcNMjUwNDAyMjM1NTEyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkY2U1Zi03MzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqe8/lAte8VpVX0CfloyPLr5FVSBC57yivjdyE1ltiCS8mWugseNCmSOZyBBk sMjUb4S7aR0gJSd2hPv9yEkdzNPfHbyo8C8eM7KNj0i5hCD/km4LrXRsaAHuc/eF BSjqgd497HZRMH2Q+aZtn/IjNB0AceBff7QYpuNAovyGmgyw54wHtKMt57U74j/j T8FpG9b8UweVEkEmFD3Wv/gHmVVNcOo/r2JAGoNqQanhiKhd/+4LN6gyEc9WbNz4 UVAJ6q+Fy5bcOt6bYzcAjVHLjXFLQWWy02NIhTZtARX8/BPal+zQhuLLUxRkyhKv 95zKpzoWMnxC22O0PFz8CH6NvQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIIF48iE Xip0QTcilEXpt0f6lCa3MB8GA1UdIwQYMBaAFD87L1s7rlKmtWksr5KiVUsG2oY9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzgxQy9EMTlBRUUzRUZG MTAxMUVCOUJEMTNENkNDNEY5QUUwMi9QenN2V3p1dVVxYTFhU3l2a3FKVlN3YmFo ajAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B6c3ZXenV1VXFhMWFTeXZrcUpWU3diYWhqMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M4MUMvRDE5QUVFM0VGRjEwMTFFQjlCRDEzRDZDQzRGOUFFMDIvMTk1M0VCOTBG RjFCMTFFQkE1Q0VGOTcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnoswwDwQCAAIwCQMHACABDfX7gDANBgkqhkiG9w0BAQsF AAOCAQEAdF0AxbV/Fxi3M/BKEIG4jrX0blvv9FGRwEjgyJfjygA8UZGYeYHXER/L 3tLPcDxK82rOTkNxow0yesDgPo8iCkmOh8wk2nxfxMy5nud4s58kFMkulXMwKAk2 NX/o0cy7oszdBjZP/hMazPMxSAyhA5hcgdughAG+12+cOzxXnPWrBFkGwGBG4mcF drJ6ZGCQ0yCxh5ZEC39T5MXKn8CauQSBKm1ZNA/f+wneW3hTP3c6AT5IaI+Tv3Rl VaRUW8APJp9lUzaYQMkA9GhZ1pS3SHF11Y2WsvNKqArJzFUV9IlERzsjwivCF5y7 Co4J16ZdZqSt0xkd3tiLt6oKZ9Qeag== -----END CERTIFICATE-----Generated at Sun Apr 6 10:10:36 2025 by rpki-client