$ rpki-client -vvf rpki.apnic.net/member_repository/A91816BD/98A5DF9C658111E9AA83335DC4F9AE02/D3378C20171D11EAAA15E818C4F9AE02.roa File: D3378C20171D11EAAA15E818C4F9AE02.roa (raw, json) Hash identifier: brx75mAIZcLmrMrMmInTA2Jwy5WbjMuVgkiLF5aIeqM= Subject key identifier: D3:6E:CA:60:DB:BA:D2:4C:FA:20:54:1F:87:F2:C8:2A:6C:8F:62:BD Certificate issuer: /CN=A91816BD/serialNumber=C24C51BDB02B7136C0F25AF195B37037997B17E8 Certificate serial: 0F7A Authority key identifier: C2:4C:51:BD:B0:2B:71:36:C0:F2:5A:F1:95:B3:70:37:99:7B:17:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wkxRvbArcTbA8lrxlbNwN5l7F-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91816BD/98A5DF9C658111E9AA83335DC4F9AE02/D3378C20171D11EAAA15E818C4F9AE02.roa Signing time: Tue 08 Apr 2025 17:56:28 +0000 ROA not before: Tue 08 Apr 2025 17:56:28 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135300 IP address blocks: 103.116.12.0/24 maxlen: 24 103.133.242.0/23 maxlen: 23 103.133.242.0/24 maxlen: 24 103.133.243.0/24 maxlen: 24 103.213.30.0/24 maxlen: 24 117.55.248.0/22 maxlen: 22 117.55.248.0/23 maxlen: 23 117.55.248.0/24 maxlen: 24 117.55.249.0/24 maxlen: 24 117.55.250.0/23 maxlen: 23 117.55.250.0/24 maxlen: 24 117.55.251.0/24 maxlen: 24 117.55.252.0/23 maxlen: 23 117.55.252.0/24 maxlen: 24 117.55.253.0/24 maxlen: 24 2001:df1:7e00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91816BD/98A5DF9C658111E9AA83335DC4F9AE02/wkxRvbArcTbA8lrxlbNwN5l7F-g.crl rsync://rpki.apnic.net/member_repository/A91816BD/98A5DF9C658111E9AA83335DC4F9AE02/wkxRvbArcTbA8lrxlbNwN5l7F-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wkxRvbArcTbA8lrxlbNwN5l7F-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 17:29:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3962 (0xf7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91816BD, serialNumber=C24C51BDB02B7136C0F25AF195B37037997B17E8 Validity Not Before: Apr 8 17:56:28 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=67f5634b-0445 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fa:c3:66:81:68:5b:6a:ab:19:6a:31:41:68: 9b:6c:80:12:02:17:96:1e:26:3d:a6:0f:a8:02:5d: 6c:67:ba:2e:08:ea:c3:04:bb:7f:66:d9:83:4b:d8: 48:f2:e0:3a:94:e7:9f:52:59:aa:ed:03:81:00:78: b9:1a:cc:d9:c7:5a:97:78:3d:58:53:95:bd:1b:49: ea:72:94:bc:83:60:f0:65:68:60:0b:77:b1:68:c9: 87:28:c4:22:21:cb:73:18:f9:79:48:23:ed:98:ba: 52:52:03:9a:8f:8d:67:cc:f8:69:7d:32:08:86:07: 7a:4e:4e:dd:ed:7c:9e:7b:ee:9b:e7:42:b1:62:cd: 04:b3:1d:9e:4c:74:8a:7c:eb:0e:08:ab:3c:9d:a5: 09:97:75:f9:7a:c3:e8:d5:4b:ed:fa:bd:dc:59:44: 74:d7:7d:9c:5e:ab:08:6b:de:84:d1:09:f9:4d:e5: 3c:4d:3d:6d:a7:01:84:73:60:db:29:2f:ce:9c:e0: d6:00:c3:b0:6c:f6:f1:45:7a:b8:84:e5:87:7d:a1: 75:15:e7:40:2c:fc:e5:a6:5a:c9:26:b2:01:01:54: 32:72:3d:96:2b:f9:0f:f9:ef:f4:e7:e8:9e:b8:78: e6:8e:24:87:93:cd:f2:7a:4c:fc:0e:00:3e:2b:11: 86:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:6E:CA:60:DB:BA:D2:4C:FA:20:54:1F:87:F2:C8:2A:6C:8F:62:BD X509v3 Authority Key Identifier: keyid:C2:4C:51:BD:B0:2B:71:36:C0:F2:5A:F1:95:B3:70:37:99:7B:17:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91816BD/98A5DF9C658111E9AA83335DC4F9AE02/wkxRvbArcTbA8lrxlbNwN5l7F-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wkxRvbArcTbA8lrxlbNwN5l7F-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91816BD/98A5DF9C658111E9AA83335DC4F9AE02/D3378C20171D11EAAA15E818C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.12.0/24 103.133.242.0/23 103.213.30.0/24 117.55.248.0-117.55.253.255 IPv6: 2001:df1:7e00::/48 Signature Algorithm: sha256WithRSAEncryption 47:79:1b:6f:9d:48:34:4b:25:eb:13:77:fe:fc:56:fb:9a:da: c7:b6:88:8f:35:8a:35:ad:84:8c:e1:f7:56:82:a3:29:48:d5: 92:52:5e:37:34:8b:f1:be:88:b6:5b:77:ff:bd:a0:88:7c:ee: 06:ec:9f:75:b7:08:6a:24:88:23:e3:b7:01:3c:14:78:e6:4b: a4:1b:ca:e9:c3:ce:08:70:ef:5e:68:d9:49:4d:c6:57:de:39: 6c:9e:ce:84:d7:e9:5b:f1:48:2e:c5:eb:d0:f3:f5:f3:5b:4a: db:35:80:c8:35:58:61:69:7d:26:82:6d:d3:d1:90:2f:15:59: 1f:c7:a2:17:33:39:bc:0c:f8:0c:3a:a4:d9:97:36:0b:86:48: 29:57:fd:9c:47:c9:08:6f:46:e2:da:6f:4f:65:db:70:db:a0: ea:09:b7:a7:b0:9d:7b:69:55:c2:98:c1:49:b6:81:36:7c:e3: 8f:cb:27:fb:37:20:22:b5:30:09:c3:81:0d:5c:8d:a3:1f:b4: fa:d1:55:f3:6a:26:0f:69:8e:71:79:72:4f:92:73:bc:64:7b: 4b:72:7f:cb:11:d1:41:e7:56:16:17:ae:68:9b:76:c8:63:61: d5:79:5e:8b:82:ec:ca:37:76:48:3a:de:67:dd:d9:99:73:9b: 2d:bc:87:05 -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgICD3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE2QkQxMTAvBgNVBAUTKEMyNEM1MUJEQjAyQjcxMzZDMEYyNUFGMTk1QjM3MDM3 OTk3QjE3RTgwHhcNMjUwNDA4MTc1NjI4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NjM0Yi0wNDQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPrDZoFoW2qrGWoxQWibbIASAheWHiY9pg+oAl1sZ7ouCOrDBLt/ZtmDS9hI 8uA6lOefUlmq7QOBAHi5GszZx1qXeD1YU5W9G0nqcpS8g2DwZWhgC3exaMmHKMQi IctzGPl5SCPtmLpSUgOaj41nzPhpfTIIhgd6Tk7d7Xyee+6b50KxYs0Esx2eTHSK fOsOCKs8naUJl3X5esPo1Uvt+r3cWUR0132cXqsIa96E0Qn5TeU8TT1tpwGEc2Db KS/OnODWAMOwbPbxRXq4hOWHfaF1FedALPzlplrJJrIBAVQycj2WK/kP+e/05+ie uHjmjiSHk83yekz8DgA+KxGGBwIDAQABo4ICwDCCArwwHQYDVR0OBBYEFNNuymDb utJM+iBUH4fyyCpsj2K9MB8GA1UdIwQYMBaAFMJMUb2wK3E2wPJa8ZWzcDeZexfo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTZCRC85OEE1REY5QzY1 ODExMUU5QUE4MzMzNURDNEY5QUUwMi93a3hSdmJBcmNUYkE4bHJ4bGJOd041bDdG LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dreFJ2YkFyY1RiQThscnhsYk53TjVsN0YtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODE2QkQvOThBNURGOUM2NTgxMTFFOUFBODMzMzVEQzRGOUFFMDIvRDMzNzhDMjAx NzFEMTFFQUFBMTVFODE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSgYIKwYBBQUHAQcBAf8E OzA5MCYEAgABMCADBABndAwDBAFnhfIDBABn1R4wDAMEA3U3+AMEAXU3/DAPBAIA AjAJAwcAIAEN8X4AMA0GCSqGSIb3DQEBCwUAA4IBAQBHeRtvnUg0SyXrE3f+/Fb7 mtrHtoiPNYo1rYSM4fdWgqMpSNWSUl43NIvxvoi2W3f/vaCIfO4G7J91twhqJIgj 47cBPBR45kukG8rpw84IcO9eaNlJTcZX3jlsns6E1+lb8UguxevQ8/XzW0rbNYDI NVhhaX0mgm3T0ZAvFVkfx6IXMzm8DPgMOqTZlzYLhkgpV/2cR8kIb0bi2m9PZdtw 26DqCbensJ17aVXCmMFJtoE2fOOPyyf7NyAitTAJw4ENXI2jH7T60VXzaiYPaY5x eXJPknO8ZHtLcn/LEdFB51YWF65om3bIY2HVeV6LguzKN3ZIOt5n3dmZc5stvIcF -----END CERTIFICATE-----Generated at Sun Apr 13 04:53:00 2025 by rpki-client