$ rpki-client -vvf rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/8855436C8D8211EDA256994DC4F9AE02.roa File: 8855436C8D8211EDA256994DC4F9AE02.roa (raw, json) Hash identifier: IdLV8ev1bk3SMNrUNcXLTjZFnNWPuht5nSlgoFuFkgw= Subject key identifier: 2C:55:02:E3:11:5B:9E:6B:A1:2F:4D:E6:37:30:2A:21:87:25:C3:4E Certificate issuer: /CN=A918FE4B/serialNumber=876240C17425E0F3E2E1576CDF4B79DBBFAB55EE Certificate serial: 0198 Authority key identifier: 87:62:40:C1:74:25:E0:F3:E2:E1:57:6C:DF:4B:79:DB:BF:AB:55:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2JAwXQl4PPi4Vds30t527-rVe4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/8855436C8D8211EDA256994DC4F9AE02.roa Signing time: Sat 01 Mar 2025 05:06:09 +0000 ROA not before: Sat 01 Mar 2025 05:06:09 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 150811 IP address blocks: 103.65.240.0/23 maxlen: 23 103.65.240.0/24 maxlen: 24 103.65.241.0/24 maxlen: 24 2001:df1:c9c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/h2JAwXQl4PPi4Vds30t527-rVe4.crl rsync://rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/h2JAwXQl4PPi4Vds30t527-rVe4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2JAwXQl4PPi4Vds30t527-rVe4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:45:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FE4B Validity Not Before: Mar 1 05:06:09 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67c295c0-2fc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:e5:75:b5:aa:ad:7d:0f:27:89:fe:5e:b0:d2: 3b:cb:38:78:48:08:41:5e:13:5a:65:42:d9:54:8a: b5:72:70:86:99:9d:24:d1:89:6c:24:89:72:4b:70: a7:c1:6a:f9:e3:50:d3:a0:c3:3d:11:b0:95:ed:cb: 97:57:e2:0e:23:40:e1:a8:08:24:36:e3:df:4b:04: 34:c4:ae:50:69:21:2b:ab:45:4e:a7:c0:af:eb:9a: df:46:e6:2f:a5:b4:69:ba:fd:16:69:1c:81:83:b1: 20:41:d7:fc:3a:1a:d0:e7:89:62:88:c1:f7:cc:8e: 3c:7a:be:8b:96:61:56:5b:0f:4e:cd:19:6e:ef:cc: e0:0b:be:fb:2f:e5:75:81:36:8f:65:78:18:1b:92: ad:71:b7:47:af:0d:2b:8e:6d:95:25:62:27:68:3d: b3:f3:fa:85:e9:3a:20:f9:e6:68:51:73:ae:58:8b: 05:69:99:f7:3f:14:19:53:61:a4:e9:84:96:0f:c9: 89:a5:04:2f:8d:7d:4b:8e:e9:2d:cd:ac:ba:71:a0: f0:da:14:26:ea:31:df:35:73:e9:6f:70:42:86:b4: 99:a6:89:ed:ee:3d:df:d8:f9:f9:7b:1e:1c:0d:96: 87:ed:d4:50:41:d0:ed:c3:2e:c5:35:a1:c1:56:0b: d1:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:55:02:E3:11:5B:9E:6B:A1:2F:4D:E6:37:30:2A:21:87:25:C3:4E X509v3 Authority Key Identifier: keyid:87:62:40:C1:74:25:E0:F3:E2:E1:57:6C:DF:4B:79:DB:BF:AB:55:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/h2JAwXQl4PPi4Vds30t527-rVe4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2JAwXQl4PPi4Vds30t527-rVe4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/8855436C8D8211EDA256994DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.240.0/23 IPv6: 2001:df1:c9c0::/48 Signature Algorithm: sha256WithRSAEncryption 5f:05:00:46:d9:8f:a5:2e:9c:f0:73:7e:9b:11:78:e5:79:93: 06:2e:a7:57:dc:1b:b1:39:82:8c:21:7c:34:41:a8:84:c1:7f: d6:10:00:83:ea:15:9f:34:34:14:fc:42:ec:d1:e6:9e:a7:e9: 49:3d:46:eb:a2:56:e5:55:6f:26:a3:b6:40:b7:8a:94:94:ec: 53:0f:a8:1a:cb:3e:9f:66:bf:3d:ae:95:60:06:0b:30:b6:ae: 01:bb:38:56:8c:a4:01:76:53:06:3e:2a:c5:7f:21:06:23:30: ea:8d:29:4e:ed:20:32:9e:ca:78:e7:87:21:6a:58:e6:d0:6c: 51:a0:51:45:a6:57:a8:1b:3d:7f:29:89:33:fa:2b:3d:e3:28: 7b:c9:13:fc:40:98:84:14:55:fb:42:1c:7d:54:dd:f3:c3:05: c7:a6:86:18:2b:24:e3:fd:dc:6e:10:f0:ff:b2:35:ec:8e:e6: c6:bf:8e:38:45:90:f5:cd:3a:56:a9:e3:41:a1:c9:f4:e8:36: f1:c1:08:ad:98:3f:31:68:00:3c:ec:29:b4:1d:d3:c0:39:a9: 4b:d6:48:35:b0:07:dc:15:90:a1:af:da:56:ce:9a:c4:a2:2e: 88:81:82:21:03:65:f4:7e:52:37:5f:f4:1a:a2:39:a0:66:b9: c7:b3:d3:fc -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZFNEIxMTAvBgNVBAUTKDg3NjI0MEMxNzQyNUUwRjNFMkUxNTc2Q0RGNEI3OURC QkZBQjU1RUUwHhcNMjUwMzAxMDUwNjA5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MyOTVjMC0yZmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5uV1taqtfQ8nif5esNI7yzh4SAhBXhNaZULZVIq1cnCGmZ0k0YlsJIlyS3Cn wWr541DToMM9EbCV7cuXV+IOI0DhqAgkNuPfSwQ0xK5QaSErq0VOp8Cv65rfRuYv pbRpuv0WaRyBg7EgQdf8OhrQ54liiMH3zI48er6LlmFWWw9OzRlu78zgC777L+V1 gTaPZXgYG5KtcbdHrw0rjm2VJWInaD2z8/qF6Tog+eZoUXOuWIsFaZn3PxQZU2Gk 6YSWD8mJpQQvjX1Ljuktzay6caDw2hQm6jHfNXPpb3BChrSZpont7j3f2Pn5ex4c DZaH7dRQQdDtwy7FNaHBVgvRUQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCxVAuMR W55roS9N5jcwKiGHJcNOMB8GA1UdIwQYMBaAFIdiQMF0JeDz4uFXbN9Ledu/q1Xu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkU0Qi9DMTQwMTZCNDhE N0YxMUVEQjdEQjg1NENDNEY5QUUwMi9oMkpBd1hRbDRQUGk0VmRzMzB0NTI3LXJW ZTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gySkF3WFFsNFBQaTRWZHMzMHQ1MjctclZlNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZFNEIvQzE0MDE2QjQ4RDdGMTFFREI3REI4NTRDQzRGOUFFMDIvODg1NTQzNkM4 RDgyMTFFREEyNTY5OTREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnQfAwDwQCAAIwCQMHACABDfHJwDANBgkqhkiG9w0BAQsF AAOCAQEAXwUARtmPpS6c8HN+mxF45XmTBi6nV9wbsTmCjCF8NEGohMF/1hAAg+oV nzQ0FPxC7NHmnqfpST1G66JW5VVvJqO2QLeKlJTsUw+oGss+n2a/Pa6VYAYLMLau Abs4VoykAXZTBj4qxX8hBiMw6o0pTu0gMp7KeOeHIWpY5tBsUaBRRaZXqBs9fymJ M/orPeMoe8kT/ECYhBRV+0IcfVTd88MFx6aGGCsk4/3cbhDw/7I17I7mxr+OOEWQ 9c06VqnjQaHJ9Og28cEIrZg/MWgAPOwptB3TwDmpS9ZINbAH3BWQoa/aVs6axKIu iIGCIQNl9H5SN1/0GqI5oGa5x7PT/A== -----END CERTIFICATE-----Generated at Sat Apr 5 21:55:28 2025 by rpki-client