$ rpki-client -vvf rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/F5257E60FD4111ED947CD631C4F9AE02.roa File: F5257E60FD4111ED947CD631C4F9AE02.roa (raw, json) Hash identifier: e4tQVidUhYeVOQueW5SrNgjm3m0qmH9C2+LHfapMlI0= Subject key identifier: 9E:48:24:94:71:CF:4A:C4:CF:01:91:AD:61:29:60:EF:11:52:51:4C Certificate issuer: /CN=A919F6A8/serialNumber=F7D74C7FB8B0BAEFC3635CD4E35048AF88E39EEF Certificate serial: 1A85 Authority key identifier: F7:D7:4C:7F:B8:B0:BA:EF:C3:63:5C:D4:E3:50:48:AF:88:E3:9E:EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99dMf7iwuu_DY1zU41BIr4jjnu8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/F5257E60FD4111ED947CD631C4F9AE02.roa Signing time: Fri 04 Apr 2025 16:45:10 +0000 ROA not before: Fri 04 Apr 2025 16:45:10 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 997 IP address blocks: 103.19.8.0/23 maxlen: 24 103.93.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/99dMf7iwuu_DY1zU41BIr4jjnu8.crl rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/99dMf7iwuu_DY1zU41BIr4jjnu8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99dMf7iwuu_DY1zU41BIr4jjnu8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 16:45:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6789 (0x1a85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F6A8 Validity Not Before: Apr 4 16:45:10 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f00c95-09a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:48:ca:22:5a:e1:c2:83:c7:b2:26:9e:19:d2: 9e:5f:0b:c8:70:cc:b7:d3:08:11:d9:e6:bf:2d:a6: 9f:a5:a0:7e:02:e8:55:0c:eb:65:73:39:01:9e:aa: 60:0d:ef:0f:47:20:df:82:82:90:f7:4a:42:b9:44: 82:0c:12:aa:3d:12:23:94:56:33:b4:72:71:2e:bd: 15:a9:75:f8:f8:93:3a:10:fc:67:e4:d0:df:dd:42: e3:6e:78:1a:9a:97:40:3f:48:4e:84:8d:18:2b:28: c6:74:76:aa:b6:b9:c9:87:28:48:d3:fb:4b:30:7f: e8:ec:48:c7:5d:03:4e:45:48:9a:1f:5b:57:69:2a: 0f:58:95:c8:d6:7a:97:bc:c0:18:4e:5a:37:4a:81: 90:5c:ec:0c:50:1b:4b:ac:9a:f9:c3:d6:2e:3b:a6: 0d:e2:07:73:c5:87:0a:09:d9:c2:16:20:dd:df:3d: 09:db:b9:5a:63:69:b8:07:d7:9f:a3:05:0b:5b:8c: 6f:71:12:13:37:f6:9a:ea:c0:95:25:7d:29:24:64: 98:29:7f:cd:3f:fc:fa:65:41:28:b3:b1:c8:e0:cb: e0:9b:82:5c:e9:53:4d:85:0a:19:eb:a2:f8:bf:4e: 35:18:f9:be:83:72:61:07:cd:15:57:9f:b5:0a:da: 59:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:48:24:94:71:CF:4A:C4:CF:01:91:AD:61:29:60:EF:11:52:51:4C X509v3 Authority Key Identifier: keyid:F7:D7:4C:7F:B8:B0:BA:EF:C3:63:5C:D4:E3:50:48:AF:88:E3:9E:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/99dMf7iwuu_DY1zU41BIr4jjnu8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99dMf7iwuu_DY1zU41BIr4jjnu8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F6A8/F3BD4C3649CB11E7A4A87C7BC4F9AE02/F5257E60FD4111ED947CD631C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.19.8.0/23 103.93.252.0/23 Signature Algorithm: sha256WithRSAEncryption 91:5a:d1:ef:b3:4d:4f:74:ae:6f:4b:1c:1d:5e:d4:86:8c:86: 24:ed:ad:fa:8d:a5:55:3e:d4:fa:33:ef:8a:45:4b:03:e2:80: f0:1a:b8:a2:12:31:0f:f0:71:1f:6b:8c:c5:a7:d4:ce:b6:21: dc:44:8a:af:fb:ab:a1:e5:ed:9c:0d:1b:92:c9:9a:77:b9:8c: f5:ff:53:23:83:46:f6:2a:f4:55:ed:ea:e6:2f:d0:47:2a:39: d8:98:b2:10:7a:f3:d7:81:27:1f:c8:91:cb:72:28:72:e4:63: 2c:b6:a5:c3:50:c2:df:cc:73:eb:21:08:45:5d:8d:b7:b4:2a: 2f:9b:d8:5a:11:0e:16:ba:68:3c:97:2e:1b:38:97:4d:5b:0d: 4d:5a:f1:5d:ee:9e:2a:36:57:4a:89:44:d1:21:b9:b0:34:7f: 3c:44:2c:1c:93:22:77:b3:ca:ba:0c:01:90:f8:79:3d:4e:14: 6f:f5:c6:db:5a:62:6a:85:0b:ae:1f:70:17:61:39:63:ec:a7: 0a:22:14:90:8a:52:1f:64:3a:09:e3:25:bf:a0:2a:0c:55:8b: 1c:b9:15:76:b6:a8:ba:4a:cf:56:7d:c2:21:31:17:80:e1:e3: 66:d0:be:3e:4f:d9:f1:72:45:5d:54:8a:40:97:14:f5:35:75: 33:40:15:f7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY2QTgxMTAvBgNVBAUTKEY3RDc0QzdGQjhCMEJBRUZDMzYzNUNENEUzNTA0OEFG ODhFMzlFRUYwHhcNMjUwNDA0MTY0NTEwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwMGM5NS0wOWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEjKIlrhwoPHsiaeGdKeXwvIcMy30wgR2ea/LaafpaB+AuhVDOtlczkBnqpg De8PRyDfgoKQ90pCuUSCDBKqPRIjlFYztHJxLr0VqXX4+JM6EPxn5NDf3ULjbnga mpdAP0hOhI0YKyjGdHaqtrnJhyhI0/tLMH/o7EjHXQNORUiaH1tXaSoPWJXI1nqX vMAYTlo3SoGQXOwMUBtLrJr5w9YuO6YN4gdzxYcKCdnCFiDd3z0J27laY2m4B9ef owULW4xvcRITN/aa6sCVJX0pJGSYKX/NP/z6ZUEos7HI4Mvgm4Jc6VNNhQoZ66L4 v041GPm+g3JhB80VV5+1CtpZjwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJ5IJJRx z0rEzwGRrWEpYO8RUlFMMB8GA1UdIwQYMBaAFPfXTH+4sLrvw2Nc1ONQSK+I457v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjZBOC9GM0JENEMzNjQ5 Q0IxMUU3QTRBODdDN0JDNEY5QUUwMi85OWRNZjdpd3V1X0RZMXpVNDFCSXI0ampu dTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzk5ZE1mN2l3dXVfRFkxelU0MUJJcjRqam51OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUY2QTgvRjNCRDRDMzY0OUNCMTFFN0E0QTg3QzdCQzRGOUFFMDIvRjUyNTdFNjBG RDQxMTFFRDk0N0NENjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnEwgDBAFnXfwwDQYJKoZIhvcNAQELBQADggEBAJFa0e+z TU90rm9LHB1e1IaMhiTtrfqNpVU+1Poz74pFSwPigPAauKISMQ/wcR9rjMWn1M62 IdxEiq/7q6Hl7ZwNG5LJmne5jPX/UyODRvYq9FXt6uYv0EcqOdiYshB689eBJx/I kctyKHLkYyy2pcNQwt/Mc+shCEVdjbe0Ki+b2FoRDha6aDyXLhs4l01bDU1a8V3u nio2V0qJRNEhubA0fzxELByTInezyroMAZD4eT1OFG/1xttaYmqFC64fcBdhOWPs pwoiFJCKUh9kOgnjJb+gKgxVixy5FXa2qLpKz1Z9wiExF4Dh42bQvj5P2fFyRV1U ikCXFPU1dTNAFfc= -----END CERTIFICATE-----Generated at Sat Apr 5 02:10:27 2025 by rpki-client