$ rpki-client -vvf rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/15C562A2B1CD11EA9A31DA7DC4F9AE02.roa File: 15C562A2B1CD11EA9A31DA7DC4F9AE02.roa (raw, json) Hash identifier: NkR/nF+Vmt/Gcc86ZcEETph8N4g/HWKaL5fwvV3ReJM= Subject key identifier: F0:02:4D:04:3A:3A:00:9C:04:2E:FC:04:1B:71:7B:CA:4F:77:68:F5 Certificate issuer: /CN=A918E80E/serialNumber=5BBD66E86334E99817E2C6D5BCEB7DAD020FCA8A Certificate serial: 08BE Authority key identifier: 5B:BD:66:E8:63:34:E9:98:17:E2:C6:D5:BC:EB:7D:AD:02:0F:CA:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W71m6GM06ZgX4sbVvOt9rQIPyoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/15C562A2B1CD11EA9A31DA7DC4F9AE02.roa Signing time: Fri 04 Apr 2025 21:02:48 +0000 ROA not before: Fri 04 Apr 2025 21:02:48 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 55707 IP address blocks: 103.5.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/W71m6GM06ZgX4sbVvOt9rQIPyoo.crl rsync://rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/W71m6GM06ZgX4sbVvOt9rQIPyoo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W71m6GM06ZgX4sbVvOt9rQIPyoo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 20:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2238 (0x8be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E80E Validity Not Before: Apr 4 21:02:48 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f048f7-bab0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:6f:5d:72:70:fa:a0:f1:2f:d0:48:dc:90:6c: 01:71:89:8d:09:b0:39:36:5a:27:5c:d5:bb:eb:8a: 81:37:37:b0:63:e0:c9:fb:e1:c8:66:6e:c2:d8:f1: cc:ce:78:b3:ae:26:b8:c4:ff:fc:62:b6:0c:f0:61: 28:d5:a3:37:d1:f6:fc:43:e2:8e:7a:21:ab:fb:af: 5f:ef:e4:a6:0f:2a:25:d8:2d:ca:a3:7e:30:3b:13: d9:c4:2a:15:93:12:c8:e6:35:a1:3b:5f:03:55:33: 12:5b:06:88:5a:96:ba:15:e9:37:b1:08:92:65:24: a4:47:94:5d:fe:b5:21:12:50:b0:7c:37:0d:15:78: a7:45:cd:b8:7b:52:37:46:ea:8f:50:22:fb:df:cf: df:69:ab:e7:0d:3a:8a:89:27:90:e5:28:c0:6e:81: f3:a3:fa:f9:53:84:b4:30:26:34:60:77:94:c0:d1: 62:79:ef:d9:dc:59:c9:0e:3c:15:2b:48:66:80:fe: 3c:b6:a9:50:fb:d5:ec:79:3e:39:69:27:92:db:27: 5b:b3:62:7f:cb:d0:c4:e9:05:46:1a:b0:44:0b:87: bf:34:a7:66:c2:87:0b:22:a3:73:bd:23:e5:f7:28: af:80:39:41:dd:ed:4b:a5:d1:f5:28:4c:98:e7:85: 88:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:02:4D:04:3A:3A:00:9C:04:2E:FC:04:1B:71:7B:CA:4F:77:68:F5 X509v3 Authority Key Identifier: keyid:5B:BD:66:E8:63:34:E9:98:17:E2:C6:D5:BC:EB:7D:AD:02:0F:CA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/W71m6GM06ZgX4sbVvOt9rQIPyoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W71m6GM06ZgX4sbVvOt9rQIPyoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/15C562A2B1CD11EA9A31DA7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.88.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:22:e3:89:71:97:62:75:2c:3c:c1:a3:1c:92:7c:a7:31:7f: 24:46:9f:0c:ed:5a:f9:a5:e3:fc:c2:81:ce:d5:6f:84:4e:e5: e8:c7:46:3a:10:42:4f:4a:93:85:17:3e:10:c9:9e:0e:d8:76: 1c:00:a4:11:c3:fd:89:d6:dc:67:3d:93:d7:87:6e:49:b3:4d: b2:4b:30:5a:7d:7b:45:42:09:af:a4:5d:40:46:25:62:50:bb: 37:74:90:d2:30:81:b4:11:d8:01:41:68:94:b2:35:4b:e8:d0: 6e:fd:d7:44:0c:ef:a8:83:8b:df:81:69:54:90:05:40:94:e1: 20:10:03:66:b9:e8:21:c8:a4:82:07:89:6a:96:f4:20:51:7d: 4e:05:78:16:0f:15:ce:a3:9e:99:05:4f:a5:82:31:f4:55:96: 14:34:27:cd:88:3a:91:9d:42:89:10:2a:9f:8c:fe:51:80:25: 4f:e1:0f:69:0e:29:4d:29:cd:31:53:3c:f5:b1:32:6e:56:95: b4:48:78:37:23:63:c7:b5:f0:ee:16:d5:21:74:a5:82:4b:35: e9:2d:42:34:1c:a6:33:91:8b:f1:91:bf:bf:27:ac:65:0f:ba: 9d:e2:cc:0a:89:51:76:7e:60:96:39:ba:e5:74:91:b9:ab:d1: 65:49:9c:a7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4MEUxMTAvBgNVBAUTKDVCQkQ2NkU4NjMzNEU5OTgxN0UyQzZENUJDRUI3REFE MDIwRkNBOEEwHhcNMjUwNDA0MjEwMjQ4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwNDhmNy1iYWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4W9dcnD6oPEv0EjckGwBcYmNCbA5NlonXNW764qBNzewY+DJ++HIZm7C2PHM znizria4xP/8YrYM8GEo1aM30fb8Q+KOeiGr+69f7+SmDyol2C3Ko34wOxPZxCoV kxLI5jWhO18DVTMSWwaIWpa6Fek3sQiSZSSkR5Rd/rUhElCwfDcNFXinRc24e1I3 RuqPUCL738/faavnDTqKiSeQ5SjAboHzo/r5U4S0MCY0YHeUwNFiee/Z3FnJDjwV K0hmgP48tqlQ+9XseT45aSeS2ydbs2J/y9DE6QVGGrBEC4e/NKdmwocLIqNzvSPl 9yivgDlB3e1LpdH1KEyY54WIdQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPACTQQ6 OgCcBC78BBtxe8pPd2j1MB8GA1UdIwQYMBaAFFu9ZuhjNOmYF+LG1bzrfa0CD8qK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTgwRS8wMEU5MjUwNEIx Q0MxMUVBQTZBM0NEN0NDNEY5QUUwMi9XNzFtNkdNMDZaZ1g0c2JWdk90OXJRSVB5 b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1c3MW02R00wNlpnWDRzYlZ2T3Q5clFJUHlvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU4MEUvMDBFOTI1MDRCMUNDMTFFQUE2QTNDRDdDQzRGOUFFMDIvMTVDNTYyQTJC MUNEMTFFQTlBMzFEQTdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnBVgwDQYJKoZIhvcNAQELBQADggEBAGsi44lxl2J1LDzB oxySfKcxfyRGnwztWvml4/zCgc7Vb4RO5ejHRjoQQk9Kk4UXPhDJng7YdhwApBHD /YnW3Gc9k9eHbkmzTbJLMFp9e0VCCa+kXUBGJWJQuzd0kNIwgbQR2AFBaJSyNUvo 0G7910QM76iDi9+BaVSQBUCU4SAQA2a56CHIpIIHiWqW9CBRfU4FeBYPFc6jnpkF T6WCMfRVlhQ0J82IOpGdQokQKp+M/lGAJU/hD2kOKU0pzTFTPPWxMm5WlbRIeDcj Y8e18O4W1SF0pYJLNektQjQcpjORi/GRv78nrGUPup3izAqJUXZ+YJY5uuV0kbmr 0WVJnKc= -----END CERTIFICATE-----Generated at Sat Apr 12 09:02:54 2025 by rpki-client