$ rpki-client -vvf rpki.apnic.net/member_repository/A917EB0C/61375B6A222A11EA9A826D45C4F9AE02/FB2EC05CA3B111EE92169F16C4F9AE02.roa File: FB2EC05CA3B111EE92169F16C4F9AE02.roa (raw, json) Hash identifier: ZnbBQLWijX811JvZiE0GpFPKxpLE1gcXnN9dflC4yH4= Subject key identifier: 5E:5C:0B:DC:C7:99:27:A3:CB:4C:1B:A5:94:4A:25:62:31:67:06:15 Certificate issuer: /CN=A917EB0C/serialNumber=506D780ED1797480F15251347FC28443D72E9507 Certificate serial: 0BC4 Authority key identifier: 50:6D:78:0E:D1:79:74:80:F1:52:51:34:7F:C2:84:43:D7:2E:95:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UG14DtF5dIDxUlE0f8KEQ9culQc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EB0C/61375B6A222A11EA9A826D45C4F9AE02/FB2EC05CA3B111EE92169F16C4F9AE02.roa Signing time: Thu 20 Mar 2025 18:58:30 +0000 ROA not before: Thu 20 Mar 2025 18:58:30 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 139901 IP address blocks: 103.85.236.0/22 maxlen: 22 103.85.236.0/23 maxlen: 23 103.85.236.0/24 maxlen: 24 103.85.237.0/24 maxlen: 24 103.85.238.0/23 maxlen: 23 103.85.238.0/24 maxlen: 24 103.85.239.0/24 maxlen: 24 2400:b340::/32 maxlen: 40 2400:b340::/48 maxlen: 48 2400:b340:236::/48 maxlen: 48 2400:b340:237::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EB0C/61375B6A222A11EA9A826D45C4F9AE02/UG14DtF5dIDxUlE0f8KEQ9culQc.crl rsync://rpki.apnic.net/member_repository/A917EB0C/61375B6A222A11EA9A826D45C4F9AE02/UG14DtF5dIDxUlE0f8KEQ9culQc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UG14DtF5dIDxUlE0f8KEQ9culQc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 19:06:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3012 (0xbc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EB0C Validity Not Before: Mar 20 18:58:30 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67dc6556-7018 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8c:05:9c:0a:23:91:5d:7c:1a:ac:4f:6c:0c: da:ab:ee:7a:a0:d7:79:1a:57:b3:bc:2f:77:f9:d8: ae:27:85:e3:04:b4:eb:04:41:25:e4:9f:01:63:08: 6a:f0:f4:47:ea:34:48:eb:8c:09:cd:d6:c5:f6:6c: c7:aa:f5:22:2b:61:c0:b4:09:63:8f:09:71:a4:b6: 4a:79:5c:ba:f9:ec:d6:c7:a0:56:97:30:fe:d8:88: 25:ed:f5:f7:8f:77:c0:b3:55:7b:b1:4b:03:eb:c3: 85:a2:2a:0a:46:64:29:b4:2e:b6:4e:20:c8:d9:7c: 01:2c:89:2f:7d:c9:10:ce:9c:cb:9e:4b:fc:32:63: 38:6b:1b:0e:d5:49:69:9a:9d:0f:f6:20:d7:2b:7b: 19:0c:b6:bd:a1:01:ad:bd:9f:20:c9:8f:58:a4:c9: 30:78:9a:c4:70:ba:ff:c9:15:5e:0d:2c:44:a5:c6: 73:85:b8:5e:34:5f:d9:6c:86:e8:56:c3:12:18:53: 3c:a2:31:58:24:44:6a:8a:35:be:02:7d:2f:48:64: f3:d6:26:00:93:59:8b:c8:c9:4e:c3:0a:cd:3d:e5: eb:29:21:f4:2d:9b:97:3e:0f:be:e8:fc:08:3a:93: b5:5f:a9:04:16:0b:57:45:d3:6a:46:32:4a:b4:c7: 98:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:5C:0B:DC:C7:99:27:A3:CB:4C:1B:A5:94:4A:25:62:31:67:06:15 X509v3 Authority Key Identifier: keyid:50:6D:78:0E:D1:79:74:80:F1:52:51:34:7F:C2:84:43:D7:2E:95:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EB0C/61375B6A222A11EA9A826D45C4F9AE02/UG14DtF5dIDxUlE0f8KEQ9culQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UG14DtF5dIDxUlE0f8KEQ9culQc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EB0C/61375B6A222A11EA9A826D45C4F9AE02/FB2EC05CA3B111EE92169F16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.236.0/22 IPv6: 2400:b340::/32 Signature Algorithm: sha256WithRSAEncryption 54:bc:a4:5d:9d:7c:de:85:72:38:3a:90:e6:8c:04:33:1e:3e: 42:17:6b:ea:99:4a:de:3a:b6:c9:1a:21:9b:34:18:85:bc:da: 90:bd:40:2c:88:61:b8:e5:af:7a:34:e4:bc:52:8f:c9:b9:ce: e8:37:00:17:91:83:ff:ab:4d:44:09:57:6d:01:c3:e1:92:f1: 85:5b:31:c9:20:bd:49:c5:a4:c8:73:cc:22:1f:79:d5:36:52: f2:03:f2:57:35:e1:e4:7b:2a:70:52:6a:ea:f7:bb:86:c9:7a: 59:9d:a7:18:a1:07:02:29:97:3d:77:bd:ec:25:09:25:fe:8e: 6a:55:bc:07:43:b9:a1:38:86:17:83:4a:2c:a4:cc:5b:00:53: 7c:0f:ae:43:e4:c3:0e:1f:c6:bf:06:c5:58:1a:2f:f9:47:c9: 4e:32:a5:95:1a:25:c8:68:1e:31:3b:8e:3f:b0:be:50:97:1b: 4a:64:d3:47:8e:51:c5:55:d3:f5:7e:fe:f4:91:3f:42:6d:2f: 0e:00:f2:c7:a1:63:e0:e3:8d:41:48:07:25:96:7c:9b:e8:ed: 4f:a3:9a:fd:d6:27:03:bf:9b:cf:64:01:fe:50:79:32:2c:c1: a9:6a:9b:bd:5e:a0:03:73:2f:43:c1:de:16:46:cb:45:a8:70: 2f:4b:82:04 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VCMEMxMTAvBgNVBAUTKDUwNkQ3ODBFRDE3OTc0ODBGMTUyNTEzNDdGQzI4NDQz RDcyRTk1MDcwHhcNMjUwMzIwMTg1ODMwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2RjNjU1Ni03MDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYwFnAojkV18GqxPbAzaq+56oNd5GlezvC93+diuJ4XjBLTrBEEl5J8BYwhq 8PRH6jRI64wJzdbF9mzHqvUiK2HAtAljjwlxpLZKeVy6+ezWx6BWlzD+2Igl7fX3 j3fAs1V7sUsD68OFoioKRmQptC62TiDI2XwBLIkvfckQzpzLnkv8MmM4axsO1Ulp mp0P9iDXK3sZDLa9oQGtvZ8gyY9YpMkweJrEcLr/yRVeDSxEpcZzhbheNF/ZbIbo VsMSGFM8ojFYJERqijW+An0vSGTz1iYAk1mLyMlOwwrNPeXrKSH0LZuXPg++6PwI OpO1X6kEFgtXRdNqRjJKtMeYLwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFF5cC9zH mSejy0wbpZRKJWIxZwYVMB8GA1UdIwQYMBaAFFBteA7ReXSA8VJRNH/ChEPXLpUH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUIwQy82MTM3NUI2QTIy MkExMUVBOUE4MjZENDVDNEY5QUUwMi9VRzE0RHRGNWRJRHhVbEUwZjhLRVE5Y3Vs UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VHMTREdEY1ZElEeFVsRTBmOEtFUTljdWxRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VCMEMvNjEzNzVCNkEyMjJBMTFFQTlBODI2RDQ1QzRGOUFFMDIvRkIyRUMwNUNB M0IxMTFFRTkyMTY5RjE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnVewwDQQCAAIwBwMFACQAs0AwDQYJKoZIhvcNAQELBQAD ggEBAFS8pF2dfN6Fcjg6kOaMBDMePkIXa+qZSt46tskaIZs0GIW82pC9QCyIYbjl r3o05LxSj8m5zug3ABeRg/+rTUQJV20Bw+GS8YVbMckgvUnFpMhzzCIfedU2UvID 8lc14eR7KnBSaur3u4bJelmdpxihBwIplz13vewlCSX+jmpVvAdDuaE4hheDSiyk zFsAU3wPrkPkww4fxr8GxVgaL/lHyU4ypZUaJchoHjE7jj+wvlCXG0pk00eOUcVV 0/V+/vSRP0JtLw4A8sehY+DjjUFIByWWfJvo7U+jmv3WJwO/m89kAf5QeTIswalq m71eoANzL0PB3hZGy0WocC9LggQ= -----END CERTIFICATE-----Generated at Sat Apr 5 02:13:24 2025 by rpki-client