$ rpki-client -vvf rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/DAAB94840EC911EBA913852BC4F9AE02.roa File: DAAB94840EC911EBA913852BC4F9AE02.roa (raw, json) Hash identifier: 5bBWhpUzFVVFApumie9XG8UpL1cOYbfpPDdsz7OV/tg= Subject key identifier: D9:CD:EA:B1:42:3F:31:6A:20:F4:63:DD:6A:E1:D2:EE:8D:44:11:1A Certificate issuer: /CN=A917D121/serialNumber=72A51F4EEAA218B7336EEFF7A7A58CB1AE544239 Certificate serial: 0775 Authority key identifier: 72:A5:1F:4E:EA:A2:18:B7:33:6E:EF:F7:A7:A5:8C:B1:AE:54:42:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqUfTuqiGLczbu_3p6WMsa5UQjk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/DAAB94840EC911EBA913852BC4F9AE02.roa Signing time: Tue 08 Apr 2025 08:52:27 +0000 ROA not before: Tue 08 Apr 2025 08:52:27 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 23729 IP address blocks: 103.100.92.0/22 maxlen: 22 103.100.92.0/24 maxlen: 24 103.100.93.0/24 maxlen: 24 103.100.94.0/24 maxlen: 24 103.100.95.0/24 maxlen: 24 118.179.0.0/21 maxlen: 24 2401:bac0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.crl rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqUfTuqiGLczbu_3p6WMsa5UQjk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 17:48:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1909 (0x775) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D121, serialNumber=72A51F4EEAA218B7336EEFF7A7A58CB1AE544239 Validity Not Before: Apr 8 08:52:27 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67f4e3cb-5b5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:9e:00:7a:75:1e:22:f2:45:58:00:49:54:ad: be:5e:26:ef:63:f7:06:8b:4a:af:b8:e8:2d:e4:b6: c2:8b:ea:bb:03:bc:b0:46:f7:4d:ce:48:c2:25:63: 5d:9a:1d:98:ec:41:b9:6c:ef:7e:c9:17:94:7a:51: 34:a3:f0:bf:e8:4d:f1:71:8e:e1:4d:29:0a:78:db: 52:28:22:e6:50:4d:6a:dd:10:e1:fa:48:2c:c1:5d: 3e:ef:2e:aa:7f:16:ba:42:90:c7:bd:2d:34:3f:91: b4:3b:42:67:f7:11:ef:cc:79:57:c0:ff:3a:ca:5f: f4:b9:6d:28:29:21:89:90:28:5d:a0:9a:ae:1b:be: a6:2a:77:4f:34:59:30:09:af:a7:7f:2c:24:dd:6a: ee:38:2e:30:9e:3e:d9:24:34:5b:7b:94:98:40:64: 47:da:10:d5:f4:14:0a:15:47:07:33:37:e5:02:36: 7d:2f:0e:90:10:5e:89:86:79:21:d3:7d:3a:da:26: 24:63:e3:73:81:fc:78:af:1b:7a:73:8f:65:07:74: b6:91:cf:86:d9:b8:32:c3:1d:b8:5d:03:4c:85:4c: 38:26:46:af:f7:96:77:b6:89:1c:cc:a0:a6:4e:54: 2c:68:81:85:8e:86:b9:55:c0:da:db:61:5b:dd:bb: 43:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:CD:EA:B1:42:3F:31:6A:20:F4:63:DD:6A:E1:D2:EE:8D:44:11:1A X509v3 Authority Key Identifier: keyid:72:A5:1F:4E:EA:A2:18:B7:33:6E:EF:F7:A7:A5:8C:B1:AE:54:42:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqUfTuqiGLczbu_3p6WMsa5UQjk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/DAAB94840EC911EBA913852BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.92.0/22 118.179.0.0/21 IPv6: 2401:bac0::/32 Signature Algorithm: sha256WithRSAEncryption a2:4e:63:b8:9a:85:5b:4e:a1:5c:bd:f9:ac:e2:07:09:31:db: 0d:a0:5c:d8:84:af:72:d5:17:92:5a:6f:39:9e:61:7e:71:4a: 29:40:01:51:dc:22:46:cd:ec:3b:d3:65:a2:8c:9a:95:f3:07: 67:11:bf:e8:06:39:12:36:fa:21:37:9a:9a:a2:b5:9b:8f:3e: 87:22:d4:7d:04:b6:61:aa:f9:51:cd:7b:d8:ae:a9:2d:01:75: 6e:4b:c8:3e:4f:61:8d:af:52:f1:ef:83:6a:9e:a9:9d:5e:65: a6:d1:9e:da:57:ed:6d:1b:f6:f2:2a:45:fd:b6:b3:e6:e5:ec: bf:cb:4f:ec:43:c0:b9:de:01:15:14:02:31:2a:91:3b:31:fc: db:90:14:23:be:7f:6e:c1:a8:2e:a3:49:7b:9a:c1:92:67:0d: 8b:4f:dd:ca:ec:17:a4:3c:c2:22:50:ac:69:33:2d:af:fc:4d: 27:97:6c:32:8d:3d:a9:b9:51:64:c0:54:92:6e:bb:d5:df:6a: 90:01:e0:64:5d:60:9f:86:37:fc:8e:fa:5b:0b:80:70:50:d1: 45:f9:8d:ba:d0:cd:90:ea:96:5e:fe:3a:21:39:30:af:80:30: bc:42:b2:db:92:3b:6a:1e:b5:c2:bd:c8:7d:f8:9a:e5:ec:30: a3:a1:ba:ed -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICB3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QxMjExMTAvBgNVBAUTKDcyQTUxRjRFRUFBMjE4QjczMzZFRUZGN0E3QTU4Q0Ix QUU1NDQyMzkwHhcNMjUwNDA4MDg1MjI3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y0ZTNjYi01YjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJ4AenUeIvJFWABJVK2+XibvY/cGi0qvuOgt5LbCi+q7A7ywRvdNzkjCJWNd mh2Y7EG5bO9+yReUelE0o/C/6E3xcY7hTSkKeNtSKCLmUE1q3RDh+kgswV0+7y6q fxa6QpDHvS00P5G0O0Jn9xHvzHlXwP86yl/0uW0oKSGJkChdoJquG76mKndPNFkw Ca+nfywk3WruOC4wnj7ZJDRbe5SYQGRH2hDV9BQKFUcHMzflAjZ9Lw6QEF6Jhnkh 03062iYkY+Nzgfx4rxt6c49lB3S2kc+G2bgywx24XQNMhUw4Jkav95Z3tokczKCm TlQsaIGFjoa5VcDa22Fb3btD2QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFNnN6rFC PzFqIPRj3Wrh0u6NRBEaMB8GA1UdIwQYMBaAFHKlH07qohi3M27v96eljLGuVEI5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDEyMS84QjBGOEIwQzBF QzgxMUVCQTUwNDJDMkFDNEY5QUUwMi9jcVVmVHVxaUdMY3pidV8zcDZXTXNhNVVR amsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NxVWZUdXFpR0xjemJ1XzNwNldNc2E1VVFqay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0QxMjEvOEIwRjhCMEMwRUM4MTFFQkE1MDQyQzJBQzRGOUFFMDIvREFBQjk0ODQw RUM5MTFFQkE5MTM4NTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnZFwDBAN2swAwDQQCAAIwBwMFACQBusAwDQYJKoZIhvcN AQELBQADggEBAKJOY7iahVtOoVy9+aziBwkx2w2gXNiEr3LVF5JabzmeYX5xSilA AVHcIkbN7DvTZaKMmpXzB2cRv+gGORI2+iE3mpqitZuPPoci1H0EtmGq+VHNe9iu qS0BdW5LyD5PYY2vUvHvg2qeqZ1eZabRntpX7W0b9vIqRf22s+bl7L/LT+xDwLne ARUUAjEqkTsx/NuQFCO+f27BqC6jSXuawZJnDYtP3crsF6Q8wiJQrGkzLa/8TSeX bDKNPam5UWTAVJJuu9XfapAB4GRdYJ+GN/yO+lsLgHBQ0UX5jbrQzZDqll7+OiE5 MK+AMLxCstuSO2oetcK9yH34muXsMKOhuu0= -----END CERTIFICATE-----Generated at Sun Apr 13 02:19:08 2025 by rpki-client