$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/64BC11FCFE4A11EFA95F9073C4F9AE02.roa File: 64BC11FCFE4A11EFA95F9073C4F9AE02.roa (raw, json) Hash identifier: PC7NU1wUa0gU6G9DZVKmg3nZ2nIFWMrp0Yi6w5wQv78= Subject key identifier: 7F:8C:E3:1F:20:17:D2:DE:57:93:13:BC:30:63:5B:4B:57:FD:7B:B9 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: AA08 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/64BC11FCFE4A11EFA95F9073C4F9AE02.roa Signing time: Tue 11 Mar 2025 07:28:14 +0000 ROA not before: Tue 11 Mar 2025 07:28:14 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 139524 IP address blocks: 103.142.114.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43528 (0xaa08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Mar 11 07:28:14 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67cfe60e-0db0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9a:a5:d6:07:eb:84:5e:90:df:d5:59:e2:6a: 54:45:a4:96:f8:8f:89:3f:97:a6:2d:7e:a2:c9:44: ba:dd:a8:6f:75:09:86:a2:11:7a:d0:fe:10:29:17: 5e:af:9b:b2:78:ad:20:9b:0f:40:ff:0e:e1:59:6e: 5d:f4:58:8f:1a:81:46:34:a1:89:08:33:51:d9:3c: 14:f5:f8:3c:a0:ec:75:0e:fb:16:b7:a4:ec:1e:3b: bf:be:bf:bd:7d:e7:1f:03:ac:f5:3f:80:6a:5a:72: f9:b3:f5:1c:2b:18:66:a6:32:c3:84:f5:de:88:a3: d1:76:70:38:34:ed:22:96:d6:96:ef:3e:85:0a:0a: 91:95:c6:d5:fc:32:01:09:c9:f6:f2:40:ac:2a:b0: c5:9a:89:39:07:9d:75:bc:62:69:90:08:2e:79:9a: 3b:9b:57:5d:bf:71:d5:b1:66:65:19:08:62:9f:d9: 60:65:fa:ca:c9:11:0a:cf:56:0e:d8:ec:68:4b:70: 30:78:06:3c:10:24:b4:ba:c2:5c:93:bf:7e:20:35: 89:07:4d:a8:68:db:54:4c:0d:67:08:16:48:9f:dc: 20:6e:f9:c9:1e:d3:8f:5b:a7:88:4e:20:3c:2c:55: 0d:0a:f3:ac:1b:81:5c:10:96:ba:f4:96:6a:a3:64: fa:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:8C:E3:1F:20:17:D2:DE:57:93:13:BC:30:63:5B:4B:57:FD:7B:B9 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/64BC11FCFE4A11EFA95F9073C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.114.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:7b:25:36:79:54:56:c0:72:2e:46:ae:e6:cd:52:b2:1d:37: 40:36:66:77:3b:ec:ea:38:be:ad:95:d3:f1:d1:e8:68:33:e6: 8c:fa:fd:fc:11:ba:3d:1d:85:4a:59:f3:3b:fc:0f:99:59:c0: 6c:34:05:c5:34:c8:43:fa:5e:e9:6e:a2:90:9c:19:44:77:99: b3:fc:c8:d0:90:05:68:e9:1f:33:8d:02:aa:2c:f1:e4:e3:58: 5e:4d:1a:59:53:35:6a:f2:72:ee:19:7c:c1:32:e4:db:19:8d: 95:4d:10:e8:02:9b:4c:b4:17:e7:04:02:9d:36:c0:a2:05:2d: ae:92:d8:30:58:6a:eb:ab:28:8e:34:58:05:f6:d9:24:24:4f: 32:f3:ac:19:94:01:ee:67:a1:20:92:12:65:8b:a8:69:8c:fa: 3c:ef:f2:5c:69:32:36:47:62:7c:37:90:fb:82:e4:03:fa:0d: 91:08:ff:61:ec:f7:e0:8c:ea:71:ca:7e:68:90:a5:f2:ce:94: bf:26:fa:93:aa:82:30:7a:17:20:e9:12:cd:d8:37:27:9a:59: 8e:7d:56:35:09:3b:67:ca:bf:9e:e4:fd:00:47:0e:b8:9d:e9: c2:73:d8:96:68:84:ea:8b:18:8c:c0:0d:ea:9a:63:83:e6:30: ea:42:8d:fd -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgIDAKoIMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDMxMTA3MjgxNFoXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjdjZmU2MGUtMGRiMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMOapdYH64RekN/VWeJqVEWklviPiT+Xpi1+oslEut2ob3UJhqIRetD+ECkX Xq+bsnitIJsPQP8O4VluXfRYjxqBRjShiQgzUdk8FPX4PKDsdQ77Frek7B47v76/ vX3nHwOs9T+Aalpy+bP1HCsYZqYyw4T13oij0XZwODTtIpbWlu8+hQoKkZXG1fwy AQnJ9vJArCqwxZqJOQeddbxiaZAILnmaO5tXXb9x1bFmZRkIYp/ZYGX6yskRCs9W DtjsaEtwMHgGPBAktLrCXJO/fiA1iQdNqGjbVEwNZwgWSJ/cIG75yR7Tj1uniE4g PCxVDQrzrBuBXBCWuvSWaqNk+vcCAwEAAaOCApUwggKRMB0GA1UdDgQWBBR/jOMf IBfS3leTE7wwY1tLV/17uTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzY0QkMxMUZD RkU0QTExRUZBOTVGOTA3M0M0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMB8GCCsGAQUFBwEHAQH/ BBAwDjAMBAIAATAGAwQBZ45yMA0GCSqGSIb3DQEBCwUAA4IBAQANeyU2eVRWwHIu Rq7mzVKyHTdANmZ3O+zqOL6tldPx0ehoM+aM+v38Ebo9HYVKWfM7/A+ZWcBsNAXF NMhD+l7pbqKQnBlEd5mz/MjQkAVo6R8zjQKqLPHk41heTRpZUzVq8nLuGXzBMuTb GY2VTRDoAptMtBfnBAKdNsCiBS2uktgwWGrrqyiONFgF9tkkJE8y86wZlAHuZ6Eg khJli6hpjPo87/JcaTI2R2J8N5D7guQD+g2RCP9h7PfgjOpxyn5okKXyzpS/JvqT qoIwehcg6RLN2DcnmlmOfVY1CTtnyr+e5P0ARw64nenCc9iWaITqixiMwA3qmmOD 5jDqQo39 -----END CERTIFICATE-----Generated at Sat Apr 5 10:37:00 2025 by rpki-client