$ rpki-client -vvf rpki.apnic.net/member_repository/A91F018E/FA568E5E9E1511E99015364AC4F9AE02/7214B0AA9E1711E9B3710950C4F9AE02.roa File: 7214B0AA9E1711E9B3710950C4F9AE02.roa (raw, json) Hash identifier: c4C00IYUahMg/MQNhIkPwEgft6IPuKV052m4LGanBW0= Subject key identifier: AD:9B:25:B2:DB:7B:AC:B9:85:AB:51:34:A9:19:47:A6:76:37:FD:6B Certificate issuer: /CN=A91F018E/serialNumber=D3038BA4490EA815ADB09F1A38658BCD8B17F482 Certificate serial: 0E2A Authority key identifier: D3:03:8B:A4:49:0E:A8:15:AD:B0:9F:1A:38:65:8B:CD:8B:17:F4:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0wOLpEkOqBWtsJ8aOGWLzYsX9II.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F018E/FA568E5E9E1511E99015364AC4F9AE02/7214B0AA9E1711E9B3710950C4F9AE02.roa Signing time: Mon 10 Mar 2025 18:07:21 +0000 ROA not before: Mon 10 Mar 2025 18:07:21 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 132688 IP address blocks: 103.18.0.0/22 maxlen: 22 103.18.0.0/24 maxlen: 24 103.18.1.0/24 maxlen: 24 103.18.2.0/24 maxlen: 24 103.18.3.0/24 maxlen: 24 2001:df3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F018E/FA568E5E9E1511E99015364AC4F9AE02/0wOLpEkOqBWtsJ8aOGWLzYsX9II.crl rsync://rpki.apnic.net/member_repository/A91F018E/FA568E5E9E1511E99015364AC4F9AE02/0wOLpEkOqBWtsJ8aOGWLzYsX9II.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0wOLpEkOqBWtsJ8aOGWLzYsX9II.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 17:40:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3626 (0xe2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F018E, serialNumber=D3038BA4490EA815ADB09F1A38658BCD8B17F482 Validity Not Before: Mar 10 18:07:21 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67cf2a58-5a97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7b:8d:8f:ad:f8:27:de:80:37:dc:55:43:4c: 52:d1:8f:a1:7c:a0:0b:6b:aa:7d:10:97:88:f1:93: 85:09:22:8a:2e:a7:bc:3a:3c:e7:bd:96:ce:33:1d: d8:42:74:f4:8d:68:40:ed:60:48:30:d8:ff:c1:30: be:a7:c5:89:2b:4a:2f:fe:14:9f:79:c9:24:5e:66: ba:d5:54:7a:85:0d:45:4d:bb:07:9e:09:d5:8d:f0: 83:ac:a5:84:83:46:a5:20:86:07:59:0f:aa:4d:99: 30:39:47:42:3f:30:9d:c0:88:d1:c3:be:8b:fa:35: a1:1c:16:91:d4:9f:06:bf:bc:15:e4:b3:6a:20:a0: 99:89:87:ae:a6:07:78:5c:7b:0b:a8:83:7f:a3:cf: 19:7a:81:b8:53:82:9b:83:c3:c4:34:13:aa:53:41: 6d:6e:44:09:b3:cd:a7:b6:79:47:3a:dd:e3:79:41: d1:cd:7c:64:15:6e:88:4c:19:a7:59:20:3d:42:4b: 11:4c:bf:b0:72:85:99:84:9b:3f:ef:cd:58:49:1a: 3d:40:50:75:8d:16:6c:1b:89:9f:07:46:2f:e3:59: 18:77:01:cc:9a:7f:1a:cc:9a:b5:19:18:51:d5:ce: d5:83:31:7c:f4:8a:eb:96:25:e8:aa:01:22:27:7a: dd:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:9B:25:B2:DB:7B:AC:B9:85:AB:51:34:A9:19:47:A6:76:37:FD:6B X509v3 Authority Key Identifier: keyid:D3:03:8B:A4:49:0E:A8:15:AD:B0:9F:1A:38:65:8B:CD:8B:17:F4:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F018E/FA568E5E9E1511E99015364AC4F9AE02/0wOLpEkOqBWtsJ8aOGWLzYsX9II.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0wOLpEkOqBWtsJ8aOGWLzYsX9II.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F018E/FA568E5E9E1511E99015364AC4F9AE02/7214B0AA9E1711E9B3710950C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.18.0.0/22 IPv6: 2001:df3::/48 Signature Algorithm: sha256WithRSAEncryption 3d:ec:c3:f7:89:f4:d8:5a:38:d9:a4:55:45:20:27:a4:9d:fd: c1:89:01:28:60:6f:ed:04:3e:2a:fd:c0:cc:bc:8c:13:79:b7: a2:e1:63:bd:27:3f:56:9d:9a:04:7e:38:24:13:f8:de:39:84: 72:55:a1:23:98:81:41:eb:26:c3:e6:25:25:9a:26:de:43:63: c4:7f:d5:e3:b6:1f:8a:89:f3:8e:4b:61:99:f2:b0:c0:31:61: 15:b4:42:47:f2:17:20:6c:90:e2:0a:e9:f6:32:be:b5:8d:55: 43:4f:f9:1a:6d:54:88:f9:2f:79:39:d6:d4:18:70:44:46:be: 0b:7e:0e:30:bc:ae:cb:cd:25:77:88:e5:5d:5d:c1:e1:41:21: 88:0c:ea:e3:5c:20:62:6c:50:6c:c1:ae:60:ad:6f:60:ce:59: c5:8a:94:50:a1:3f:35:ad:17:99:33:4c:cf:b1:27:33:0b:9c: 66:40:74:05:11:33:58:7c:65:3f:09:36:fe:53:c9:63:97:a0: f0:f9:8e:a6:3b:58:51:5b:ca:be:a1:6a:6a:3e:5e:2f:fb:f7: 55:27:ac:33:bd:09:cd:8b:6e:c9:e5:99:e9:ee:6a:ff:e1:a2: a8:dc:a8:7f:09:f7:3d:0d:8f:93:08:39:03:68:49:fc:3e:44: df:84:0f:12 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjAxOEUxMTAvBgNVBAUTKEQzMDM4QkE0NDkwRUE4MTVBREIwOUYxQTM4NjU4QkNE OEIxN0Y0ODIwHhcNMjUwMzEwMTgwNzIxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2NmMmE1OC01YTk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvHuNj634J96AN9xVQ0xS0Y+hfKALa6p9EJeI8ZOFCSKKLqe8OjznvZbOMx3Y QnT0jWhA7WBIMNj/wTC+p8WJK0ov/hSfeckkXma61VR6hQ1FTbsHngnVjfCDrKWE g0alIIYHWQ+qTZkwOUdCPzCdwIjRw76L+jWhHBaR1J8Gv7wV5LNqIKCZiYeupgd4 XHsLqIN/o88ZeoG4U4Kbg8PENBOqU0FtbkQJs82ntnlHOt3jeUHRzXxkFW6ITBmn WSA9QksRTL+wcoWZhJs/781YSRo9QFB1jRZsG4mfB0Yv41kYdwHMmn8azJq1GRhR 1c7VgzF89IrrliXoqgEiJ3rdCwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFK2bJbLb e6y5hatRNKkZR6Z2N/1rMB8GA1UdIwQYMBaAFNMDi6RJDqgVrbCfGjhli82LF/SC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMDE4RS9GQTU2OEU1RTlF MTUxMUU5OTAxNTM2NEFDNEY5QUUwMi8wd09McEVrT3FCV3RzSjhhT0dXTHpZc1g5 SUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB3T0xwRWtPcUJXdHNKOGFPR1dMellzWDlJSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjAxOEUvRkE1NjhFNUU5RTE1MTFFOTkwMTUzNjRBQzRGOUFFMDIvNzIxNEIwQUE5 RTE3MTFFOUIzNzEwOTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnEgAwDwQCAAIwCQMHACABDfMAADANBgkqhkiG9w0BAQsF AAOCAQEAPezD94n02Fo42aRVRSAnpJ39wYkBKGBv7QQ+Kv3AzLyME3m3ouFjvSc/ Vp2aBH44JBP43jmEclWhI5iBQesmw+YlJZom3kNjxH/V47YfionzjkthmfKwwDFh FbRCR/IXIGyQ4grp9jK+tY1VQ0/5Gm1UiPkveTnW1BhwREa+C34OMLyuy80ld4jl XV3B4UEhiAzq41wgYmxQbMGuYK1vYM5ZxYqUUKE/Na0XmTNMz7EnMwucZkB0BREz WHxlPwk2/lPJY5eg8PmOpjtYUVvKvqFqaj5eL/v3VSesM70JzYtuyeWZ6e5q/+Gi qNyofwn3PQ2Pkwg5A2hJ/D5E34QPEg== -----END CERTIFICATE-----Generated at Sat Apr 12 20:19:36 2025 by rpki-client