$ rpki-client -vvf rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/22639692E6FC11EEB3BCD10EC4F9AE02.roa File: 22639692E6FC11EEB3BCD10EC4F9AE02.roa (raw, json) Hash identifier: MezHZiP7Ru8seZ060InpEpEJV9FnDzBoEJ7GFAcZfh4= Subject key identifier: BB:7E:D0:F8:C5:AA:36:6B:64:D8:4E:96:F7:08:4C:DE:EF:E2:75:88 Certificate issuer: /CN=A918E2AC/serialNumber=F47D0FBB6E8B64ECD991168D8F730F7891E4F44E Certificate serial: 0D57 Authority key identifier: F4:7D:0F:BB:6E:8B:64:EC:D9:91:16:8D:8F:73:0F:78:91:E4:F4:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9H0Pu26LZOzZkRaNj3MPeJHk9E4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/22639692E6FC11EEB3BCD10EC4F9AE02.roa Signing time: Wed 12 Feb 2025 18:36:21 +0000 ROA not before: Wed 12 Feb 2025 18:36:21 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 138581 IP address blocks: 103.133.204.0/22 maxlen: 23 103.133.205.0/24 maxlen: 24 2404:5340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/9H0Pu26LZOzZkRaNj3MPeJHk9E4.crl rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/9H0Pu26LZOzZkRaNj3MPeJHk9E4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9H0Pu26LZOzZkRaNj3MPeJHk9E4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:06:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3415 (0xd57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E2AC Validity Not Before: Feb 12 18:36:21 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67acea25-6573 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e9:52:5a:d0:8f:f9:e9:5b:52:c5:a8:1b:06: 6e:4e:a3:a0:e7:90:ec:92:d2:0b:0e:15:be:68:cd: d2:ff:0b:f0:16:98:74:27:ca:4b:f2:e6:d9:d5:a3: f0:8e:98:5c:39:1e:58:0b:1a:8c:a3:ac:df:91:fe: 5c:9e:a4:c6:92:a0:40:a5:31:a8:c0:5d:d4:ec:a9: 97:28:84:b7:74:cb:cd:29:97:08:f5:66:03:ac:bf: 3b:b0:c4:bf:96:bd:7b:18:4f:e6:95:d6:49:47:f4: 89:62:13:cd:6c:8b:7d:80:cb:ed:3a:9b:3d:1a:a4: 53:3b:45:f3:51:ca:2b:52:35:ff:6b:88:17:6e:00: 80:fc:13:8a:2d:10:03:2d:d7:48:3b:7c:e6:77:fe: 55:b5:7a:8e:89:90:1a:1b:8c:89:1e:42:13:56:fe: 5e:3f:da:99:f7:37:04:13:b9:71:ce:db:92:3b:71: d9:f9:b7:77:53:69:f0:45:87:6a:c2:e5:17:52:55: 82:c1:e7:55:02:a2:34:b8:39:f0:bc:a4:73:8f:6f: b7:27:ca:6d:e9:34:6f:6c:b3:a5:49:4c:07:2d:ff: ff:e9:33:7d:10:4b:c1:b0:5c:0b:1f:6a:d9:2e:3b: 5d:db:e2:1d:c7:7c:fb:0b:2d:fa:45:28:1e:d7:d1: db:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:7E:D0:F8:C5:AA:36:6B:64:D8:4E:96:F7:08:4C:DE:EF:E2:75:88 X509v3 Authority Key Identifier: keyid:F4:7D:0F:BB:6E:8B:64:EC:D9:91:16:8D:8F:73:0F:78:91:E4:F4:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/9H0Pu26LZOzZkRaNj3MPeJHk9E4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9H0Pu26LZOzZkRaNj3MPeJHk9E4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/22639692E6FC11EEB3BCD10EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.204.0/22 IPv6: 2404:5340::/32 Signature Algorithm: sha256WithRSAEncryption 8c:55:24:e5:57:87:27:88:ce:f8:2a:47:d6:2c:72:b2:b2:bc: 55:bf:97:74:ec:db:a8:ca:d3:65:a3:50:45:13:48:bd:31:d3: 1b:ef:24:4f:18:af:4f:fc:42:e2:61:f8:67:47:90:92:4b:b4: 4d:7e:77:ac:6b:ff:18:ae:f0:a9:ef:25:39:bf:26:d7:20:b8: 43:c8:53:77:e9:ae:05:62:32:cc:7e:a0:94:cd:b1:44:65:bd: 97:e2:37:28:e7:d0:44:9f:39:5b:bb:5f:0d:02:26:a7:31:d4: 12:24:ae:37:bd:8b:73:23:44:f8:54:6f:fc:a5:d1:88:96:1b: 30:cd:ee:22:f8:c6:09:2d:ce:5b:db:96:96:61:dc:1f:8b:e5: a6:55:bc:51:82:14:15:68:00:26:35:82:13:77:f7:34:ab:d4: df:c9:9c:51:46:0c:74:32:9e:52:ce:1e:1a:ac:cc:ba:a2:b0: 3c:35:aa:b9:9c:df:46:68:39:f5:93:87:3e:e1:af:00:1d:da: 93:87:1c:c0:a1:c4:e4:74:42:22:de:7d:14:77:02:fe:19:d9: 85:4b:d9:4d:21:85:ac:d6:11:c0:12:26:a7:87:0a:b9:4d:d8: 49:70:87:e3:fb:24:fa:b1:d6:d0:d7:f3:4f:1a:d2:ae:ab:3a: 5c:22:5b:db -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyQUMxMTAvBgNVBAUTKEY0N0QwRkJCNkU4QjY0RUNEOTkxMTY4RDhGNzMwRjc4 OTFFNEY0NEUwHhcNMjUwMjEyMTgzNjIxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FjZWEyNS02NTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+lSWtCP+elbUsWoGwZuTqOg55DsktILDhW+aM3S/wvwFph0J8pL8ubZ1aPw jphcOR5YCxqMo6zfkf5cnqTGkqBApTGowF3U7KmXKIS3dMvNKZcI9WYDrL87sMS/ lr17GE/mldZJR/SJYhPNbIt9gMvtOps9GqRTO0XzUcorUjX/a4gXbgCA/BOKLRAD LddIO3zmd/5VtXqOiZAaG4yJHkITVv5eP9qZ9zcEE7lxztuSO3HZ+bd3U2nwRYdq wuUXUlWCwedVAqI0uDnwvKRzj2+3J8pt6TRvbLOlSUwHLf//6TN9EEvBsFwLH2rZ Ljtd2+Idx3z7Cy36RSge19Hb7QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLt+0PjF qjZrZNhOlvcITN7v4nWIMB8GA1UdIwQYMBaAFPR9D7tui2Ts2ZEWjY9zD3iR5PRO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTJBQy82NDE3MTMxNkNB MzIxMUU5OEJGQ0QzNTJDNEY5QUUwMi85SDBQdTI2TFpPelprUmFOajNNUGVKSGs5 RTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlIMFB1MjZMWk96WmtSYU5qM01QZUpIazlFNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEUyQUMvNjQxNzEzMTZDQTMyMTFFOThCRkNEMzUyQzRGOUFFMDIvMjI2Mzk2OTJF NkZDMTFFRUIzQkNEMTBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnhcwwDQQCAAIwBwMFACQEU0AwDQYJKoZIhvcNAQELBQAD ggEBAIxVJOVXhyeIzvgqR9YscrKyvFW/l3Ts26jK02WjUEUTSL0x0xvvJE8Yr0/8 QuJh+GdHkJJLtE1+d6xr/xiu8KnvJTm/JtcguEPIU3fprgViMsx+oJTNsURlvZfi Nyjn0ESfOVu7Xw0CJqcx1BIkrje9i3MjRPhUb/yl0YiWGzDN7iL4xgktzlvblpZh 3B+L5aZVvFGCFBVoACY1ghN39zSr1N/JnFFGDHQynlLOHhqszLqisDw1qrmc30Zo OfWThz7hrwAd2pOHHMChxOR0QiLefRR3Av4Z2YVL2U0hhazWEcASJqeHCrlN2Elw h+P7JPqx1tDX808a0q6rOlwiW9s= -----END CERTIFICATE-----Generated at Sat Apr 5 04:15:29 2025 by rpki-client