$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/90C2DB768BA511EB92F5EF28C4F9AE02.roa File: 90C2DB768BA511EB92F5EF28C4F9AE02.roa (raw, json) Hash identifier: gj+Oy9+KDki8kOfM+r+SojbM+nE3f8SJkmVxfwZ0zoA= Subject key identifier: 94:6A:31:C2:E4:4F:6C:67:A9:3C:02:C3:F0:D9:6C:DD:96:E7:76:69 Certificate issuer: /CN=A918EDB2/serialNumber=296EDB64F3AF6E9D980932E816F95983E3ABC823 Certificate serial: A717 Authority key identifier: 29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/90C2DB768BA511EB92F5EF28C4F9AE02.roa Signing time: Thu 20 Feb 2025 11:48:26 +0000 ROA not before: Thu 20 Feb 2025 11:48:26 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135746 IP address blocks: 103.60.196.0/23 maxlen: 24 103.76.136.0/22 maxlen: 24 103.163.108.0/23 maxlen: 24 103.172.252.0/23 maxlen: 24 103.177.178.0/23 maxlen: 24 103.220.158.0/23 maxlen: 24 114.142.164.0/22 maxlen: 24 2001:df7:8080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 15:28:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42775 (0xa717) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Feb 20 11:48:26 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67b71689-648e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:4c:1f:8c:c3:3b:dc:b5:00:c4:96:40:84:7e: 5f:16:5a:56:6a:e2:15:f1:3a:9c:db:99:35:33:10: 48:fc:7a:a4:3c:a0:26:6f:1c:5d:ef:db:1b:23:1c: e7:80:8a:fb:f5:6a:d9:a8:24:d4:df:9c:c5:7b:67: 1a:50:08:e1:5b:fd:fe:91:1d:f7:69:0f:44:4f:ba: ca:be:f7:11:fd:1e:f2:db:e1:9b:15:c7:bc:d1:a0: 76:a4:a9:50:74:aa:5c:ea:5d:69:8e:b9:97:7c:cc: ec:ba:47:72:54:76:97:64:b6:a9:40:3a:0b:bf:ca: 97:ca:c6:71:69:67:0d:84:1f:ad:7e:d4:cd:82:36: f3:f4:04:e5:ce:17:a7:8b:3e:cc:86:b7:ae:14:e9: 80:bc:1c:e1:2e:9a:b3:31:7a:fd:d2:1e:24:6c:3b: 98:26:0d:6d:fb:45:be:17:05:5d:24:55:bd:0e:3e: dc:d3:d9:8a:87:b9:e0:19:47:dd:5c:bd:f2:7a:4e: 6a:0a:4d:d3:2f:f8:e6:e6:d3:7e:ac:14:d6:c7:49: ab:57:e5:f0:63:4f:b2:92:71:28:95:8f:ee:62:8a: bc:26:df:01:fb:0c:0c:4f:c3:84:cf:d9:05:22:f1: 45:20:5c:9c:4b:80:73:fd:72:f0:bc:ea:bc:86:9b: 53:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:6A:31:C2:E4:4F:6C:67:A9:3C:02:C3:F0:D9:6C:DD:96:E7:76:69 X509v3 Authority Key Identifier: keyid:29:6E:DB:64:F3:AF:6E:9D:98:09:32:E8:16:F9:59:83:E3:AB:C8:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/KW7bZPOvbp2YCTLoFvlZg-OryCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KW7bZPOvbp2YCTLoFvlZg-OryCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/2A43E30C70E911E2B36D4B6B2979BB20/90C2DB768BA511EB92F5EF28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.60.196.0/23 103.76.136.0/22 103.163.108.0/23 103.172.252.0/23 103.177.178.0/23 103.220.158.0/23 114.142.164.0/22 IPv6: 2001:df7:8080::/48 Signature Algorithm: sha256WithRSAEncryption 7c:6c:6c:09:36:27:f6:4b:1d:77:d2:5d:9b:6b:60:42:69:28: 4c:8d:1f:e5:b7:e6:3e:19:2f:7c:4c:4f:04:d1:68:78:af:c0: 52:84:ba:0b:43:dc:ce:5f:d7:48:b1:5f:f3:01:52:1d:b6:38: 0d:79:f5:ba:6c:38:ad:eb:47:5c:7a:f1:ff:05:df:87:65:f9: dd:2b:43:1e:43:47:fb:3d:49:c5:26:e2:be:52:e2:84:e6:98: 82:58:51:2f:74:78:88:44:a9:84:26:4c:81:48:76:21:eb:69: 68:fe:12:13:7a:99:1c:58:78:e8:10:48:78:d7:98:02:38:d7: eb:fe:d8:78:f6:82:23:d3:f5:47:9f:d8:96:0d:e6:67:13:0d: d6:c3:99:45:0b:a5:dd:7e:8c:6c:0e:29:7f:e7:62:76:19:54: a6:9a:f0:67:66:cf:77:bc:6f:08:c4:b2:62:04:78:c8:90:e9: 3f:14:d0:bc:a4:c3:59:b4:f5:ce:76:bd:c7:7b:e7:f8:8a:42: 26:40:5b:23:76:10:04:08:f2:21:64:62:e8:de:c0:b2:1e:34: d5:e5:ed:26:7b:3b:6d:a2:52:99:db:ef:47:15:36:00:b4:dc: e5:12:f1:e7:d3:f2:89:d7:19:40:4c:78:4d:33:cb:4e:a1:57: 44:4b:81:25 -----BEGIN CERTIFICATE----- MIIFpzCCBI+gAwIBAgIDAKcXMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MThFREIyMTEwLwYDVQQFEygyOTZFREI2NEYzQUY2RTlEOTgwOTMyRTgxNkY5NTk4 M0UzQUJDODIzMB4XDTI1MDIyMDExNDgyNloXDTI1MDcwMTAwMDAwMFowGDEWMBQG A1UEAxMNNjdiNzE2ODktNjQ4ZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKVMH4zDO9y1AMSWQIR+XxZaVmriFfE6nNuZNTMQSPx6pDygJm8cXe/bGyMc 54CK+/Vq2agk1N+cxXtnGlAI4Vv9/pEd92kPRE+6yr73Ef0e8tvhmxXHvNGgdqSp UHSqXOpdaY65l3zM7LpHclR2l2S2qUA6C7/Kl8rGcWlnDYQfrX7UzYI28/QE5c4X p4s+zIa3rhTpgLwc4S6aszF6/dIeJGw7mCYNbftFvhcFXSRVvQ4+3NPZioe54BlH 3Vy98npOagpN0y/45ubTfqwU1sdJq1fl8GNPspJxKJWP7mKKvCbfAfsMDE/DhM/Z BSLxRSBcnEuAc/1y8LzqvIabU2MCAwEAAaOCAsowggLGMB0GA1UdDgQWBBSUajHC 5E9sZ6k8AsPw2Wzdlud2aTAfBgNVHSMEGDAWgBQpbttk869unZgJMugW+VmD46vI IzAOBgNVHQ8BAf8EBAMCB4AwgYMGA1UdHwR8MHoweKB2oHSGcnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkxOEVEQjIvMkE0M0UzMEM3 MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvS1c3YlpQT3ZicDJZQ1RMb0Z2bFpnLU9y eUNNLmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBr aS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3 MkZEMUZGMi9LVzdiWlBPdmJwMllDVExvRnZsWmctT3J5Q00uY2VyMEoGA1UdIAEB /wRAMD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBu aWMubmV0L1JQS0kvQ1BTLnBkZjCBywYIKwYBBQUHAQsEgb4wgbswgYMGCCsGAQUF BzALhndyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MThFREIyLzJBNDNFMzBDNzBFOTExRTJCMzZENEI2QjI5NzlCQjIwLzkwQzJEQjc2 OEJBNTExRUI5MkY1RUYyOEM0RjlBRTAyLnJvYTAzBggrBgEFBQcwDYYnaHR0cHM6 Ly9ycmRwLmFwbmljLm5ldC9ub3RpZmljYXRpb24ueG1sMFQGCCsGAQUFBwEHAQH/ BEUwQzAwBAIAATAqAwQBZzzEAwQCZ0yIAwQBZ6NsAwQBZ6z8AwQBZ7GyAwQBZ9ye AwQCco6kMA8EAgACMAkDBwAgAQ33gIAwDQYJKoZIhvcNAQELBQADggEBAHxsbAk2 J/ZLHXfSXZtrYEJpKEyNH+W35j4ZL3xMTwTRaHivwFKEugtD3M5f10ixX/MBUh22 OA159bpsOK3rR1x68f8F34dl+d0rQx5DR/s9ScUm4r5S4oTmmIJYUS90eIhEqYQm TIFIdiHraWj+EhN6mRxYeOgQSHjXmAI41+v+2Hj2giPT9Uef2JYN5mcTDdbDmUUL pd1+jGwOKX/nYnYZVKaa8Gdmz3e8bwjEsmIEeMiQ6T8U0Lykw1m09c52vcd75/iK QiZAWyN2EAQI8iFkYujewLIeNNXl7SZ7O22iUpnb70cVNgC03OUS8efT8onXGUBM eE0zy06hV0RLgSU= -----END CERTIFICATE-----Generated at Fri Apr 4 01:44:28 2025 by rpki-client