$ rpki-client -vvf rpki.apnic.net/member_repository/A919F46B/56EEBAE8592811E99FFF7A21C4F9AE02/CB6BD978592811E9AD7CEF21C4F9AE02.roa File: CB6BD978592811E9AD7CEF21C4F9AE02.roa (raw, json) Hash identifier: Zze9TlbBres1fvJuhmxxkKTa+lNOrwdMt9mFrIPRgU4= Subject key identifier: B9:83:6F:FD:2F:0D:A9:01:2F:E3:98:B7:25:40:63:F0:B5:7E:57:6E Certificate issuer: /CN=A919F46B/serialNumber=14BFAB79426E3D22BEC3FC61EE432FEA08272946 Certificate serial: 0F9C Authority key identifier: 14:BF:AB:79:42:6E:3D:22:BE:C3:FC:61:EE:43:2F:EA:08:27:29:46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FL-reUJuPSK-w_xh7kMv6ggnKUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F46B/56EEBAE8592811E99FFF7A21C4F9AE02/CB6BD978592811E9AD7CEF21C4F9AE02.roa Signing time: Mon 24 Mar 2025 17:56:23 +0000 ROA not before: Mon 24 Mar 2025 17:56:23 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138601 IP address blocks: 103.134.88.0/22 maxlen: 24 103.244.247.0/24 maxlen: 24 123.176.58.0/24 maxlen: 24 2404:61c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F46B/56EEBAE8592811E99FFF7A21C4F9AE02/FL-reUJuPSK-w_xh7kMv6ggnKUY.crl rsync://rpki.apnic.net/member_repository/A919F46B/56EEBAE8592811E99FFF7A21C4F9AE02/FL-reUJuPSK-w_xh7kMv6ggnKUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FL-reUJuPSK-w_xh7kMv6ggnKUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 17:27:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3996 (0xf9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F46B, serialNumber=14BFAB79426E3D22BEC3FC61EE432FEA08272946 Validity Not Before: Mar 24 17:56:23 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e19cc7-ab71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:2d:b2:b4:00:c4:e0:5e:a1:87:8b:30:4b:50: d4:93:f2:42:b4:ef:71:20:4c:23:25:09:3c:06:94: 06:49:d9:4c:9a:a4:0a:cb:18:e8:6f:8a:65:34:32: ed:42:f0:c7:88:e8:e2:4a:0a:dc:d4:e5:81:d4:51: e1:4f:eb:c0:ea:9e:9b:16:1f:fe:43:9d:eb:d8:3a: 9d:d4:36:b1:1e:e4:4e:6b:10:52:ac:62:e5:18:4f: 03:15:38:fd:11:3c:4d:d0:79:f4:81:e1:58:39:96: 69:41:46:72:0e:11:4b:ac:df:bf:89:cc:7a:26:6c: 63:f8:ae:05:28:3c:fe:9e:96:cf:05:3b:20:54:d5: 45:c0:27:2e:ce:23:c7:a8:03:b9:a8:c1:d3:70:31: bc:4f:39:1f:a0:0d:1f:d5:fa:57:4a:0b:cf:05:5e: 52:3b:eb:e5:48:b5:e5:8c:2e:d0:58:b9:2b:8a:85: 8a:e0:3e:5d:aa:23:3e:27:71:81:11:40:6a:0e:15: a7:9a:56:7d:e5:8f:07:c8:2f:4e:b6:49:3b:2a:75: 49:a5:2f:d5:46:8b:71:a7:ce:eb:c5:6b:55:25:18: d9:11:f7:22:50:1a:80:2d:0c:36:53:2e:06:64:ff: ac:c4:2a:cb:f9:30:c6:cd:9e:71:5e:9c:7d:08:13: ca:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:83:6F:FD:2F:0D:A9:01:2F:E3:98:B7:25:40:63:F0:B5:7E:57:6E X509v3 Authority Key Identifier: keyid:14:BF:AB:79:42:6E:3D:22:BE:C3:FC:61:EE:43:2F:EA:08:27:29:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F46B/56EEBAE8592811E99FFF7A21C4F9AE02/FL-reUJuPSK-w_xh7kMv6ggnKUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FL-reUJuPSK-w_xh7kMv6ggnKUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F46B/56EEBAE8592811E99FFF7A21C4F9AE02/CB6BD978592811E9AD7CEF21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.134.88.0/22 103.244.247.0/24 123.176.58.0/24 IPv6: 2404:61c0::/32 Signature Algorithm: sha256WithRSAEncryption 15:03:dc:55:58:9a:58:0e:d5:61:f4:5f:76:e9:86:b0:85:04: a4:e1:0a:f5:c3:0d:15:fb:a1:2d:ef:49:16:74:6f:b4:ec:a3: 06:56:6a:27:f1:4b:a8:2c:62:04:ff:f1:a4:7f:83:0d:b5:51: 87:84:8d:3c:44:84:a6:1e:9b:4d:63:31:f6:28:ab:55:aa:9d: fc:2d:6a:8c:95:22:71:1d:2a:87:18:0d:e1:cf:df:58:50:ee: da:8c:d4:36:46:07:1b:62:a7:93:0f:23:af:d7:67:86:57:86: 90:77:85:10:f7:5c:58:1f:80:16:c5:bc:48:9e:34:89:d7:68: eb:2f:da:d0:20:cf:c3:4b:aa:cf:6a:20:c5:2a:63:7a:e4:44: 66:46:ac:94:c5:67:5b:04:10:81:30:01:f7:d8:a0:c3:93:72: 5f:0a:43:2b:0c:e9:08:28:81:88:0c:00:cf:9f:b7:4c:25:76: 71:0f:9f:ac:65:f1:90:01:45:63:58:fb:a1:20:19:8e:85:ba: ea:89:78:99:da:6b:22:ba:f3:92:9c:d1:fa:23:c7:ab:f8:e0: b5:aa:a0:5b:2d:e1:da:1a:2a:09:37:d5:aa:64:95:6e:33:d5: 19:3b:29:c9:a9:5a:05:51:8e:fb:c3:66:07:5f:b4:f8:44:a0: e8:de:2a:e5 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICD5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY0NkIxMTAvBgNVBAUTKDE0QkZBQjc5NDI2RTNEMjJCRUMzRkM2MUVFNDMyRkVB MDgyNzI5NDYwHhcNMjUwMzI0MTc1NjIzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2UxOWNjNy1hYjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsS2ytADE4F6hh4swS1DUk/JCtO9xIEwjJQk8BpQGSdlMmqQKyxjob4plNDLt QvDHiOjiSgrc1OWB1FHhT+vA6p6bFh/+Q53r2Dqd1DaxHuROaxBSrGLlGE8DFTj9 ETxN0Hn0geFYOZZpQUZyDhFLrN+/icx6Jmxj+K4FKDz+npbPBTsgVNVFwCcuziPH qAO5qMHTcDG8TzkfoA0f1fpXSgvPBV5SO+vlSLXljC7QWLkrioWK4D5dqiM+J3GB EUBqDhWnmlZ95Y8HyC9Otkk7KnVJpS/VRotxp87rxWtVJRjZEfciUBqALQw2Uy4G ZP+sxCrL+TDGzZ5xXpx9CBPKcwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFLmDb/0v DakBL+OYtyVAY/C1flduMB8GA1UdIwQYMBaAFBS/q3lCbj0ivsP8Ye5DL+oIJylG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjQ2Qi81NkVFQkFFODU5 MjgxMUU5OUZGRjdBMjFDNEY5QUUwMi9GTC1yZVVKdVBTSy13X3hoN2tNdjZnZ25L VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZMLXJlVUp1UFNLLXdfeGg3a012NmdnbktVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUY0NkIvNTZFRUJBRTg1OTI4MTFFOTlGRkY3QTIxQzRGOUFFMDIvQ0I2QkQ5Nzg1 OTI4MTFFOUFEN0NFRjIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJnhlgDBABn9PcDBAB7sDowDQQCAAIwBwMFACQEYcAwDQYJ KoZIhvcNAQELBQADggEBABUD3FVYmlgO1WH0X3bphrCFBKThCvXDDRX7oS3vSRZ0 b7TsowZWaifxS6gsYgT/8aR/gw21UYeEjTxEhKYem01jMfYoq1WqnfwtaoyVInEd KocYDeHP31hQ7tqM1DZGBxtip5MPI6/XZ4ZXhpB3hRD3XFgfgBbFvEieNInXaOsv 2tAgz8NLqs9qIMUqY3rkRGZGrJTFZ1sEEIEwAffYoMOTcl8KQysM6QgogYgMAM+f t0wldnEPn6xl8ZABRWNY+6EgGY6FuuqJeJnaayK685Kc0fojx6v44LWqoFst4doa Kgk31apklW4z1Rk7KcmpWgVRjvvDZgdftPhEoOjeKuU= -----END CERTIFICATE-----Generated at Sun Apr 13 02:32:41 2025 by rpki-client