$ rpki-client -vvf rpki.apnic.net/member_repository/A911A7D2/5BDB152CFEEC11EFAFA6917EC4F9AE02/C7FAB578FEEC11EFB40D667FC4F9AE02.roa File: C7FAB578FEEC11EFB40D667FC4F9AE02.roa (raw, json) Hash identifier: yccW+1ACapqEoCH6+LHPWiR8nw1+mshcVd6qYR3Nz+w= Subject key identifier: FE:0F:16:9D:14:1B:14:CE:02:D1:CD:E9:0E:1C:55:5D:E9:97:61:D6 Certificate issuer: /CN=A911A7D2/serialNumber=B21C2B8BCF482F9D766D2A4D32598EE94BF665AC Certificate serial: 25 Authority key identifier: B2:1C:2B:8B:CF:48:2F:9D:76:6D:2A:4D:32:59:8E:E9:4B:F6:65:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/shwri89IL512bSpNMlmO6Uv2Zaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A7D2/5BDB152CFEEC11EFAFA6917EC4F9AE02/C7FAB578FEEC11EFB40D667FC4F9AE02.roa Signing time: Tue 13 May 2025 07:33:48 +0000 ROA not before: Tue 13 May 2025 07:33:48 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 398704 IP address blocks: 103.167.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A7D2/5BDB152CFEEC11EFAFA6917EC4F9AE02/shwri89IL512bSpNMlmO6Uv2Zaw.crl rsync://rpki.apnic.net/member_repository/A911A7D2/5BDB152CFEEC11EFAFA6917EC4F9AE02/shwri89IL512bSpNMlmO6Uv2Zaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/shwri89IL512bSpNMlmO6Uv2Zaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:28:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A7D2, serialNumber=B21C2B8BCF482F9D766D2A4D32598EE94BF665AC Validity Not Before: May 13 07:33:48 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6822f5dc-bef6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:07:85:a9:a6:2e:e3:0f:81:ef:ba:e5:da:ad: c7:5f:7e:13:50:18:91:25:b1:3e:2c:67:07:41:ce: e6:b3:c8:3e:35:59:e8:3c:a2:ad:f3:f1:5e:3e:01: 14:4c:8c:60:0e:c0:12:65:16:1e:01:a2:85:db:19: 89:b1:1c:b6:3b:c8:9a:6e:dc:dd:21:1d:6e:c7:5c: 3d:77:cb:f0:84:3d:e9:54:25:05:98:d4:0e:51:dc: ca:d2:9f:7f:04:65:b1:1b:6c:c9:ca:71:7a:96:d4: 53:e8:d6:d9:41:8a:fb:de:19:99:55:45:44:57:12: 51:90:26:8c:a7:0f:dc:56:21:15:a3:f7:7d:f6:d9: 86:b4:95:46:cf:7a:4e:ea:7b:ee:df:75:1f:2e:a9: 84:90:2f:4e:eb:1c:f8:1e:1a:9c:db:81:e5:88:05: b3:95:55:d4:7b:3f:8c:6d:46:98:4e:fe:e6:2c:57: 44:26:73:d9:bb:3b:d2:42:45:65:4f:e7:6e:69:7f: c2:05:43:49:1f:d6:44:62:c8:26:47:15:7f:ff:06: c1:59:47:22:78:1b:46:b4:a5:d7:c6:7b:84:34:e4: 65:84:5d:9f:0c:9d:b3:d6:2c:f8:3c:15:ad:13:da: 5e:45:65:76:82:8a:9b:49:53:57:da:cd:0b:bd:d2: 79:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:0F:16:9D:14:1B:14:CE:02:D1:CD:E9:0E:1C:55:5D:E9:97:61:D6 X509v3 Authority Key Identifier: keyid:B2:1C:2B:8B:CF:48:2F:9D:76:6D:2A:4D:32:59:8E:E9:4B:F6:65:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A7D2/5BDB152CFEEC11EFAFA6917EC4F9AE02/shwri89IL512bSpNMlmO6Uv2Zaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/shwri89IL512bSpNMlmO6Uv2Zaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A7D2/5BDB152CFEEC11EFAFA6917EC4F9AE02/C7FAB578FEEC11EFB40D667FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.60.0/23 Signature Algorithm: sha256WithRSAEncryption 9f:1e:b4:bb:da:d8:a5:9d:e0:f3:04:b7:e8:1a:fa:f3:78:58: 98:ae:f9:f3:87:00:a1:b3:d2:e0:fe:f6:84:36:09:3b:ee:23: 64:1f:6a:71:90:20:32:af:e5:36:09:cd:c8:f8:cf:47:25:08: 95:ae:34:91:ba:0f:5a:fe:46:2f:35:ff:0d:1b:c7:d6:0b:bb: d5:17:00:ce:2c:2f:c8:ba:46:fd:d0:25:91:fc:dc:2a:00:65: 03:94:75:b1:03:61:15:65:cb:b7:a1:c6:0f:63:e2:30:3f:cb: 12:da:eb:b0:91:46:1c:f3:45:1f:c0:af:5c:fb:af:51:02:00: 4b:f1:5e:c2:45:d6:76:2f:f2:61:12:f6:f9:9e:d0:23:c6:b1: 4b:c7:a0:d3:04:b1:9d:a9:42:f2:d1:02:31:cf:58:52:73:03: 6d:03:fa:72:4a:5a:0d:44:37:34:b7:da:91:6d:21:b0:bd:18: 51:76:c8:90:dd:4a:c1:02:1c:ab:8d:95:00:aa:6b:58:3b:b9: c7:d9:c2:c2:57:9d:36:bc:4a:69:fc:18:05:82:88:7f:2b:ac: e5:ce:24:31:67:52:8b:79:1e:11:d3:83:21:78:2f:16:27:82: 5c:29:41:ae:2c:6a:8c:54:47:1e:f2:a4:e2:ac:c7:4f:59:dd: 5c:f7:b0:fa -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QTdEMjExMC8GA1UEBRMoQjIxQzJCOEJDRjQ4MkY5RDc2NkQyQTREMzI1OThFRTk0 QkY2NjVBQzAeFw0yNTA1MTMwNzMzNDhaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MjJmNWRjLWJlZjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGB4Wppi7jD4HvuuXarcdffhNQGJElsT4sZwdBzuazyD41Weg8oq3z8V4+ARRM jGAOwBJlFh4BooXbGYmxHLY7yJpu3N0hHW7HXD13y/CEPelUJQWY1A5R3MrSn38E ZbEbbMnKcXqW1FPo1tlBivveGZlVRURXElGQJoynD9xWIRWj93322Ya0lUbPek7q e+7fdR8uqYSQL07rHPgeGpzbgeWIBbOVVdR7P4xtRphO/uYsV0Qmc9m7O9JCRWVP 525pf8IFQ0kf1kRiyCZHFX//BsFZRyJ4G0a0pdfGe4Q05GWEXZ8MnbPWLPg8Fa0T 2l5FZXaCiptJU1fazQu90nmxAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/g8WnRQb FM4C0c3pDhxVXemXYdYwHwYDVR0jBBgwFoAUshwri89IL512bSpNMlmO6Uv2Zaww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBN0QyLzVCREIxNTJDRkVF QzExRUZBRkE2OTE3RUM0RjlBRTAyL3Nod3JpODlJTDUxMmJTcE5NbG1PNlV2Mlph dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc2h3cmk4OUlMNTEyYlNwTk1sbU82VXYyWmF3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTdEMi81QkRCMTUyQ0ZFRUMxMUVGQUZBNjkxN0VDNEY5QUUwMi9DN0ZBQjU3OEZF RUMxMUVGQjQwRDY2N0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWenPDANBgkqhkiG9w0BAQsFAAOCAQEAnx60u9rYpZ3g8wS3 6Br683hYmK7584cAobPS4P72hDYJO+4jZB9qcZAgMq/lNgnNyPjPRyUIla40kboP Wv5GLzX/DRvH1gu71RcAziwvyLpG/dAlkfzcKgBlA5R1sQNhFWXLt6HGD2PiMD/L EtrrsJFGHPNFH8CvXPuvUQIAS/FewkXWdi/yYRL2+Z7QI8axS8eg0wSxnalC8tEC Mc9YUnMDbQP6ckpaDUQ3NLfakW0hsL0YUXbIkN1KwQIcq42VAKprWDu5x9nCwled NrxKafwYBYKIfyus5c4kMWdSi3keEdODIXgvFieCXClBrixqjFRHHvKk4qzHT1nd XPew+g== -----END CERTIFICATE-----Generated at Mon Jun 2 05:13:17 2025 by rpki-client