$ rpki-client -vvf rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/A842EEAA880E11ED9BE52B17C4F9AE02.roa File: A842EEAA880E11ED9BE52B17C4F9AE02.roa (raw, json) Hash identifier: 4Q6EmcPQKZH/+9z09btDyZRmVTuV1a4n3djNOV7Om64= Subject key identifier: 2A:9D:1E:62:8D:D4:C8:93:9B:A5:05:A3:24:D7:05:BF:72:4A:25:D1 Certificate issuer: /CN=A919BEDB/serialNumber=1EDE5C6E008028BCD2AE33651381BDE1FD07C5D4 Certificate serial: 1B0C Authority key identifier: 1E:DE:5C:6E:00:80:28:BC:D2:AE:33:65:13:81:BD:E1:FD:07:C5:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/A842EEAA880E11ED9BE52B17C4F9AE02.roa Signing time: Mon 06 Jan 2025 16:33:51 +0000 ROA not before: Mon 06 Jan 2025 16:33:51 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 136162 IP address blocks: 103.82.128.0/23 maxlen: 24 103.82.130.0/23 maxlen: 24 125.62.64.0/22 maxlen: 22 125.62.64.0/23 maxlen: 23 125.62.64.0/24 maxlen: 24 125.62.65.0/24 maxlen: 24 125.62.66.0/23 maxlen: 23 125.62.66.0/24 maxlen: 24 125.62.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:21:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6924 (0x1b0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BEDB Validity Not Before: Jan 6 16:33:51 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=677c05ef-ed59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:75:a5:43:4e:e6:c2:cf:2b:d6:bd:ac:cd:8a: c9:5d:37:7e:2c:51:61:31:ee:ae:88:c5:9a:01:5d: af:60:c2:f8:b9:13:76:9c:d0:db:95:c4:1d:cc:c0: 3a:d9:05:5a:19:3d:7d:c5:c6:10:e8:86:a6:f1:bd: 34:91:70:6f:43:68:07:87:77:e0:52:6d:42:9b:0c: b8:40:57:13:7f:ed:ec:df:76:f4:c6:c2:aa:ad:58: c0:14:33:d3:cd:2a:d9:26:f8:02:f5:0f:f6:c1:5a: 02:a4:5a:cf:e2:0b:57:4b:30:16:7a:5b:45:4e:f3: dd:5a:a3:68:33:a2:e1:78:b1:3c:73:36:dd:57:e3: c8:29:15:23:da:d8:85:43:91:f8:9e:fe:0f:eb:6f: 37:d9:f9:66:53:e1:07:15:b5:64:41:5b:cf:e5:74: bf:b7:b8:60:d5:bb:58:21:bd:e3:9a:c6:63:14:84: c9:51:0d:d4:fd:5f:ed:f5:70:af:5c:ba:f7:3c:15: 44:0a:d4:bc:c8:24:46:e2:7e:4e:a3:8d:24:ae:4a: aa:3b:6b:25:73:ce:d7:82:5e:db:6c:5a:a6:23:e4: eb:ea:78:e8:30:32:68:7f:8c:65:e6:4c:7b:f0:00: f8:0d:01:31:93:4d:d2:64:22:00:46:84:36:2a:7a: 7f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:9D:1E:62:8D:D4:C8:93:9B:A5:05:A3:24:D7:05:BF:72:4A:25:D1 X509v3 Authority Key Identifier: keyid:1E:DE:5C:6E:00:80:28:BC:D2:AE:33:65:13:81:BD:E1:FD:07:C5:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ht5cbgCAKLzSrjNlE4G94f0HxdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BEDB/5D867EBC1F8311E7B57E6053C4F9AE02/A842EEAA880E11ED9BE52B17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.128.0/22 125.62.64.0/22 Signature Algorithm: sha256WithRSAEncryption 29:73:0b:79:b7:91:4c:b4:c3:71:b7:85:f8:dd:ec:ee:f6:31: f4:00:57:a5:47:87:9c:74:68:8e:0a:fd:2f:7f:98:34:b1:ba: d9:de:cd:a6:89:c0:f2:c4:40:2d:60:e2:1f:22:00:7f:b5:15: c2:7d:b4:fb:23:9b:12:df:f8:f4:7d:aa:5d:26:44:ce:67:58: 50:fd:1a:1a:7f:44:d1:2b:ac:bf:fe:a2:95:f7:7a:95:90:e3: 1e:63:10:12:bf:45:36:55:41:45:61:77:8d:13:ca:30:a4:54: 5c:b5:c7:85:d4:af:69:c4:99:2c:a1:54:91:d4:22:93:7d:70: d7:62:b2:8e:2d:c3:26:96:02:de:12:84:90:0e:6d:e2:57:f7: f0:c5:f8:f3:6a:e9:2e:81:4c:d6:00:74:6d:35:08:b4:97:de: e7:ce:c9:7f:eb:53:53:81:92:02:7c:56:c3:1b:fd:90:bf:dc: c5:45:d0:e8:23:93:69:25:ed:8a:48:14:97:80:c9:b1:38:18: dd:2d:b8:88:4e:95:ed:13:04:71:3a:fe:1f:fc:36:e0:b2:0f: 57:92:d2:fe:7a:6f:63:b7:ae:2b:a3:db:9e:23:ba:5d:c4:bb: 61:35:19:d9:a2:e6:e9:68:cf:74:eb:bf:b5:79:20:06:f1:47: a7:9c:32:96 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUJFREIxMTAvBgNVBAUTKDFFREU1QzZFMDA4MDI4QkNEMkFFMzM2NTEzODFCREUx RkQwN0M1RDQwHhcNMjUwMTA2MTYzMzUxWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdjMDVlZi1lZDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3WlQ07mws8r1r2szYrJXTd+LFFhMe6uiMWaAV2vYML4uRN2nNDblcQdzMA6 2QVaGT19xcYQ6Iam8b00kXBvQ2gHh3fgUm1Cmwy4QFcTf+3s33b0xsKqrVjAFDPT zSrZJvgC9Q/2wVoCpFrP4gtXSzAWeltFTvPdWqNoM6LheLE8czbdV+PIKRUj2tiF Q5H4nv4P62832flmU+EHFbVkQVvP5XS/t7hg1btYIb3jmsZjFITJUQ3U/V/t9XCv XLr3PBVECtS8yCRG4n5Oo40krkqqO2slc87Xgl7bbFqmI+Tr6njoMDJof4xl5kx7 8AD4DQExk03SZCIARoQ2Knp/CwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCqdHmKN 1MiTm6UFoyTXBb9ySiXRMB8GA1UdIwQYMBaAFB7eXG4AgCi80q4zZROBveH9B8XU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QkVEQi81RDg2N0VCQzFG ODMxMUU3QjU3RTYwNTNDNEY5QUUwMi9IdDVjYmdDQUtMelNyak5sRTRHOTRmMEh4 ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h0NWNiZ0NBS0x6U3JqTmxFNEc5NGYwSHhkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUJFREIvNUQ4NjdFQkMxRjgzMTFFN0I1N0U2MDUzQzRGOUFFMDIvQTg0MkVFQUE4 ODBFMTFFRDlCRTUyQjE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnUoADBAJ9PkAwDQYJKoZIhvcNAQELBQADggEBAClzC3m3 kUy0w3G3hfjd7O72MfQAV6VHh5x0aI4K/S9/mDSxutnezaaJwPLEQC1g4h8iAH+1 FcJ9tPsjmxLf+PR9ql0mRM5nWFD9Ghp/RNErrL/+opX3epWQ4x5jEBK/RTZVQUVh d40TyjCkVFy1x4XUr2nEmSyhVJHUIpN9cNdiso4twyaWAt4ShJAObeJX9/DF+PNq 6S6BTNYAdG01CLSX3ufOyX/rU1OBkgJ8VsMb/ZC/3MVF0Ogjk2kl7YpIFJeAybE4 GN0tuIhOle0TBHE6/h/8NuCyD1eS0v56b2O3riuj254jul3Eu2E1Gdmi5uloz3Tr v7V5IAbxR6ecMpY= -----END CERTIFICATE-----Generated at Sat Apr 5 07:14:16 2025 by rpki-client