$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/751E90665BAB11EFB9769A80C4F9AE02.roa File: 751E90665BAB11EFB9769A80C4F9AE02.roa (raw, json) Hash identifier: eILOAPk7hEfHA4Xc/eZDuicer6q0kZbC4fsjNG1XiFo= Subject key identifier: AB:F1:81:F7:C5:2E:ED:DA:72:2A:5D:3D:09:58:D1:84:9F:47:2A:7B Certificate issuer: /CN=A911F5B7/serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802 Certificate serial: 0180 Authority key identifier: D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/751E90665BAB11EFB9769A80C4F9AE02.roa Signing time: Mon 19 May 2025 13:30:43 +0000 ROA not before: Mon 19 May 2025 13:30:43 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 135817 IP address blocks: 103.78.46.0/24 maxlen: 24 103.97.46.0/23 maxlen: 24 103.97.84.0/24 maxlen: 24 103.110.164.0/23 maxlen: 24 103.123.234.0/23 maxlen: 24 103.148.152.0/23 maxlen: 23 103.148.152.0/24 maxlen: 24 103.148.153.0/24 maxlen: 24 2001:df2:da80::/48 maxlen: 48 2001:df4:a300::/48 maxlen: 48 2403:8940::/32 maxlen: 32 2403:8940:2::/48 maxlen: 48 2403:8940:40::/48 maxlen: 48 2403:8940:1a00::/40 maxlen: 40 2403:8940:abcd::/48 maxlen: 48 2403:8940:fffd::/48 maxlen: 48 2403:8940:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 19:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 384 (0x180) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5B7, serialNumber=D72E92435CE7DBB7789B2438A48F211C431C5802 Validity Not Before: May 19 13:30:43 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=682b3283-f100 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c9:ca:4e:9b:6f:96:95:86:82:8c:3b:be:a2: 1e:35:5c:b8:ef:db:34:6e:ad:36:60:bf:57:f2:cf: 03:e3:19:5a:21:4b:c3:9b:69:81:9f:e2:09:d1:48: e7:e9:3c:d2:f8:8a:dd:ee:38:fa:86:dc:fc:e5:69: cf:34:b1:52:d6:36:2c:25:b3:93:8c:a1:d1:93:62: 39:4b:af:55:a3:22:c0:fd:e6:5d:0d:a1:ef:2a:89: 01:0e:97:7c:9a:24:6f:57:37:ea:73:64:e2:5e:24: 27:82:2f:62:a0:9f:6e:5f:41:07:3d:6d:5b:af:5b: 4f:6d:bb:5f:91:fd:34:c4:b2:26:29:58:ff:a7:56: ff:e2:c3:0b:e7:99:28:df:71:66:86:66:de:d3:62: 7b:32:15:96:35:c4:39:27:66:58:ce:6d:e0:53:04: d7:fa:b2:2b:94:f9:5e:75:17:88:01:34:53:0a:06: c9:b9:01:c6:60:d5:24:68:92:59:77:b9:b9:12:c5: 4e:85:ec:18:c3:6f:3e:fd:2b:ae:3e:e5:c0:e3:28: af:cb:a9:5f:3e:d4:4b:30:d7:dc:d6:b1:41:8e:99: 5b:4f:57:01:e8:14:72:37:6e:33:e4:aa:83:0a:df: 10:c6:db:b2:5c:4d:e3:95:8d:db:41:ad:c4:30:68: 3a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:F1:81:F7:C5:2E:ED:DA:72:2A:5D:3D:09:58:D1:84:9F:47:2A:7B X509v3 Authority Key Identifier: keyid:D7:2E:92:43:5C:E7:DB:B7:78:9B:24:38:A4:8F:21:1C:43:1C:58:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/1y6SQ1zn27d4myQ4pI8hHEMcWAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1y6SQ1zn27d4myQ4pI8hHEMcWAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5B7/71E7A222519511EA8464BA78C4F9AE02/751E90665BAB11EFB9769A80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.78.46.0/24 103.97.46.0/23 103.97.84.0/24 103.110.164.0/23 103.123.234.0/23 103.148.152.0/23 IPv6: 2001:df2:da80::/48 2001:df4:a300::/48 2403:8940::/32 Signature Algorithm: sha256WithRSAEncryption af:ca:9b:52:e4:0b:69:27:8f:2c:e6:6e:99:5b:aa:94:1c:dd: 50:14:86:61:38:60:32:51:e0:a4:1a:cc:2c:82:fa:0a:46:bf: fc:32:7b:98:4b:08:22:4f:b1:55:c3:58:9d:e5:e1:b9:73:5b: f0:36:98:ec:2d:e2:57:7f:ca:0f:e6:8d:0c:24:d5:26:d2:95: 54:59:8c:32:d5:e9:f4:91:19:7e:3b:dd:51:a2:b2:61:79:0b: 20:08:79:26:69:52:07:b3:e7:e9:7c:64:55:99:42:63:45:65: b8:ff:20:f3:63:dd:97:dc:df:6c:53:18:3c:4e:3a:e4:91:85: 9c:80:c5:c0:0d:31:1d:42:9c:c6:03:60:32:44:b3:93:50:4b: 6c:ec:fa:44:84:e5:e6:80:19:13:1e:b4:a0:c9:8a:c1:86:e0: e3:09:b7:0f:43:f0:fe:f7:e3:06:35:19:97:16:fd:7c:11:59: 04:1f:db:ee:37:32:19:12:1e:53:d3:c9:79:5a:58:fa:e2:cb: e5:51:1b:03:67:18:52:43:8f:d1:84:33:c3:37:a0:20:8b:79: 45:db:0e:f7:8d:14:46:d5:5a:3b:b6:46:6a:bd:35:1d:bc:c3: c8:39:69:ca:64:a3:6a:4e:e4:7a:61:33:08:75:37:50:3c:04: 8b:82:c7:4b -----BEGIN CERTIFICATE----- MIIFsDCCBJigAwIBAgICAYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1QjcxMTAvBgNVBAUTKEQ3MkU5MjQzNUNFN0RCQjc3ODlCMjQzOEE0OEYyMTFD NDMxQzU4MDIwHhcNMjUwNTE5MTMzMDQzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODJiMzI4My1mMTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMnKTptvlpWGgow7vqIeNVy479s0bq02YL9X8s8D4xlaIUvDm2mBn+IJ0Ujn 6TzS+Ird7jj6htz85WnPNLFS1jYsJbOTjKHRk2I5S69VoyLA/eZdDaHvKokBDpd8 miRvVzfqc2TiXiQngi9ioJ9uX0EHPW1br1tPbbtfkf00xLImKVj/p1b/4sML55ko 33Fmhmbe02J7MhWWNcQ5J2ZYzm3gUwTX+rIrlPledReIATRTCgbJuQHGYNUkaJJZ d7m5EsVOhewYw28+/SuuPuXA4yivy6lfPtRLMNfc1rFBjplbT1cB6BRyN24z5KqD Ct8QxtuyXE3jlY3bQa3EMGg6NwIDAQABo4IC1DCCAtAwHQYDVR0OBBYEFKvxgffF Lu3acipdPQlY0YSfRyp7MB8GA1UdIwQYMBaAFNcukkNc59u3eJskOKSPIRxDHFgC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVCNy83MUU3QTIyMjUx OTUxMUVBODQ2NEJBNzhDNEY5QUUwMi8xeTZTUTF6bjI3ZDRteVE0cEk4aEhFTWNX QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF5NlNRMXpuMjdkNG15UTRwSThoSEVNY1dBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUY1QjcvNzFFN0EyMjI1MTk1MTFFQTg0NjRCQTc4QzRGOUFFMDIvNzUxRTkwNjY1 QkFCMTFFRkI5NzY5QTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXgYIKwYBBQUHAQcBAf8E TzBNMCoEAgABMCQDBABnTi4DBAFnYS4DBABnYVQDBAFnbqQDBAFne+oDBAFnlJgw HwQCAAIwGQMHACABDfLagAMHACABDfSjAAMFACQDiUAwDQYJKoZIhvcNAQELBQAD ggEBAK/Km1LkC2knjyzmbplbqpQc3VAUhmE4YDJR4KQazCyC+gpGv/wye5hLCCJP sVXDWJ3l4blzW/A2mOwt4ld/yg/mjQwk1SbSlVRZjDLV6fSRGX473VGismF5CyAI eSZpUgez5+l8ZFWZQmNFZbj/IPNj3Zfc32xTGDxOOuSRhZyAxcANMR1CnMYDYDJE s5NQS2zs+kSE5eaAGRMetKDJisGG4OMJtw9D8P734wY1GZcW/XwRWQQf2+43MhkS HlPTyXlaWPriy+VRGwNnGFJDj9GEM8M3oCCLeUXbDveNFEbVWju2Rmq9NR28w8g5 acpko2pO5HphMwh1N1A8BIuCx0s= -----END CERTIFICATE-----Generated at Mon Jun 2 07:18:05 2025 by rpki-client