$ rpki-client -vvf rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/16745A82B1CD11EA9A31DA7DC4F9AE02.roa File: 16745A82B1CD11EA9A31DA7DC4F9AE02.roa (raw, json) Hash identifier: glSctB67kcgRNgcA0b3/jW6A3plk8SZgtFK9qI9gKIo= Subject key identifier: EF:6F:FA:4B:FB:AB:3E:45:FA:54:A2:A0:2A:95:68:88:00:EB:FE:00 Certificate issuer: /CN=A918E80E/serialNumber=5BBD66E86334E99817E2C6D5BCEB7DAD020FCA8A Certificate serial: 08BF Authority key identifier: 5B:BD:66:E8:63:34:E9:98:17:E2:C6:D5:BC:EB:7D:AD:02:0F:CA:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W71m6GM06ZgX4sbVvOt9rQIPyoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/16745A82B1CD11EA9A31DA7DC4F9AE02.roa Signing time: Fri 04 Apr 2025 21:02:49 +0000 ROA not before: Fri 04 Apr 2025 21:02:49 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 56081 IP address blocks: 103.5.89.0/24 maxlen: 24 103.5.90.0/23 maxlen: 24 202.90.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/W71m6GM06ZgX4sbVvOt9rQIPyoo.crl rsync://rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/W71m6GM06ZgX4sbVvOt9rQIPyoo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W71m6GM06ZgX4sbVvOt9rQIPyoo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 20:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2239 (0x8bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E80E Validity Not Before: Apr 4 21:02:49 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f048f8-0f7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7b:2b:62:7f:00:3f:ac:77:43:2c:c2:2b:2e: 2c:3d:a9:81:1e:3f:69:d4:53:90:29:a4:c1:8d:f0: 4b:0e:c1:72:d7:5a:c9:22:1e:9d:52:c4:a6:1e:e5: 43:b0:3f:34:f9:1b:2e:c4:59:48:51:15:bc:56:cf: 9c:e1:5a:0b:fd:0b:78:ee:d6:c8:d5:b5:eb:c8:10: b4:3a:bf:55:7c:6d:08:4c:a5:1b:d0:99:4d:b7:c1: 8e:68:e4:7d:f6:59:3b:02:a2:b9:60:97:3b:fa:ce: 0a:42:4f:69:87:9f:b2:ba:36:f6:25:88:f9:0e:45: 44:64:3a:0a:cb:d6:95:aa:4f:10:f1:84:64:1b:d3: d6:ff:75:67:d8:ac:09:3e:3f:d5:43:f4:38:dd:c1: 17:40:eb:d1:01:50:55:1b:54:a7:f5:3a:26:98:32: 60:76:ad:73:fe:6b:4f:30:c6:e8:fc:6b:49:ef:52: 67:fb:89:94:64:ef:50:76:76:64:17:5e:02:ae:55: d2:a4:3e:9f:8f:51:aa:1a:e6:4a:4e:0c:f1:19:16: 98:30:8d:f7:19:40:1f:26:c4:83:af:71:22:f9:2b: e1:23:1e:c2:e3:e4:11:b5:e1:84:f1:b8:aa:08:92: 64:1c:b6:91:00:60:54:9f:94:d5:cf:19:cd:1a:48: 71:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:6F:FA:4B:FB:AB:3E:45:FA:54:A2:A0:2A:95:68:88:00:EB:FE:00 X509v3 Authority Key Identifier: keyid:5B:BD:66:E8:63:34:E9:98:17:E2:C6:D5:BC:EB:7D:AD:02:0F:CA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/W71m6GM06ZgX4sbVvOt9rQIPyoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W71m6GM06ZgX4sbVvOt9rQIPyoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/16745A82B1CD11EA9A31DA7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.89.0-103.5.91.255 202.90.41.0/24 Signature Algorithm: sha256WithRSAEncryption 52:d0:c8:4c:db:f8:63:0c:5d:38:3e:a1:ad:6a:02:77:bd:8d: c8:42:ef:67:79:a0:b6:4c:13:fd:67:66:3d:0e:ac:d2:db:87: e3:14:60:71:3f:92:57:b7:87:41:86:dd:ac:52:44:62:c6:7c: 83:86:20:26:0d:2c:65:7f:17:63:fc:30:00:6c:86:84:f1:8f: 7c:f5:1f:2d:54:f4:0d:a8:74:6a:1d:2d:ca:56:08:4d:0f:2e: 18:e5:9d:f7:86:13:78:00:56:6a:34:90:11:61:31:5b:30:11: 25:3b:06:76:f3:44:5b:76:08:1d:75:81:65:4e:ec:8d:a2:81: 42:d9:e2:3d:dc:0c:ac:5a:3e:de:43:c0:7c:e9:7b:a9:c8:84: 2c:e0:35:15:dc:54:97:46:ac:59:c0:ec:86:b2:07:61:87:48: c6:16:44:f6:6c:b2:64:42:24:3a:0c:24:23:d2:8a:33:c6:96: bb:09:b0:b1:ed:6c:be:6c:cf:53:43:f8:1b:8f:d3:dd:5a:60: e1:e5:3d:20:47:54:af:6a:f8:9d:a2:cf:7d:25:fd:22:e0:a6: b4:e6:9c:51:81:ef:3a:7f:73:d6:46:12:c1:05:ba:5c:1c:ae: 05:f6:2b:57:dc:69:78:13:02:b8:ee:a0:79:53:2d:23:b8:5c: fb:bf:c2:4c -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICCL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4MEUxMTAvBgNVBAUTKDVCQkQ2NkU4NjMzNEU5OTgxN0UyQzZENUJDRUI3REFE MDIwRkNBOEEwHhcNMjUwNDA0MjEwMjQ5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwNDhmOC0wZjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXsrYn8AP6x3QyzCKy4sPamBHj9p1FOQKaTBjfBLDsFy11rJIh6dUsSmHuVD sD80+RsuxFlIURW8Vs+c4VoL/Qt47tbI1bXryBC0Or9VfG0ITKUb0JlNt8GOaOR9 9lk7AqK5YJc7+s4KQk9ph5+yujb2JYj5DkVEZDoKy9aVqk8Q8YRkG9PW/3Vn2KwJ Pj/VQ/Q43cEXQOvRAVBVG1Sn9TommDJgdq1z/mtPMMbo/GtJ71Jn+4mUZO9QdnZk F14CrlXSpD6fj1GqGuZKTgzxGRaYMI33GUAfJsSDr3Ei+SvhIx7C4+QRteGE8biq CJJkHLaRAGBUn5TVzxnNGkhx8QIDAQABo4ICozCCAp8wHQYDVR0OBBYEFO9v+kv7 qz5F+lSioCqVaIgA6/4AMB8GA1UdIwQYMBaAFFu9ZuhjNOmYF+LG1bzrfa0CD8qK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTgwRS8wMEU5MjUwNEIx Q0MxMUVBQTZBM0NEN0NDNEY5QUUwMi9XNzFtNkdNMDZaZ1g0c2JWdk90OXJRSVB5 b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1c3MW02R00wNlpnWDRzYlZ2T3Q5clFJUHlvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU4MEUvMDBFOTI1MDRCMUNDMTFFQUE2QTNDRDdDQzRGOUFFMDIvMTY3NDVBODJC MUNEMTFFQTlBMzFEQTdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAGcFWQMEAmcFWAMEAMpaKTANBgkqhkiG9w0BAQsFAAOC AQEAUtDITNv4YwxdOD6hrWoCd72NyELvZ3mgtkwT/WdmPQ6s0tuH4xRgcT+SV7eH QYbdrFJEYsZ8g4YgJg0sZX8XY/wwAGyGhPGPfPUfLVT0Dah0ah0tylYITQ8uGOWd 94YTeABWajSQEWExWzARJTsGdvNEW3YIHXWBZU7sjaKBQtniPdwMrFo+3kPAfOl7 qciELOA1FdxUl0asWcDshrIHYYdIxhZE9myyZEIkOgwkI9KKM8aWuwmwse1svmzP U0P4G4/T3Vpg4eU9IEdUr2r4naLPfSX9IuCmtOacUYHvOn9z1kYSwQW6XByuBfYr V9xpeBMCuO6geVMtI7hc+7/CTA== -----END CERTIFICATE-----Generated at Sat Apr 12 09:08:19 2025 by rpki-client